Change theme
Help
Press space for more information.
Show links for this issue (Shortcut: i, l)
Copy issue ID
Previous Issue (Shortcut: k)
Next Issue (Shortcut: j)
Sign in to use full features.
Vote: I am impacted
Notification menu
Refresh (Shortcut: Shift+r)
Go home (Shortcut: u)
Pending code changes (auto-populated)
View issue level access limits(Press Alt + Right arrow for more information)
Request for new functionality
View staffing
Description
What you would like to accomplish:
We want to disable signed urls in Google Cloud Storage buckets for certain users.
How this might work:
Implement more granular IAM permissions such as storage.objects.signedurl.get and storage.objects.signedurl.create to limit who is allowed to create, get, and put signed urls.
If applicable, reasons why alternative solutions are not sufficient:
This will be add an extra security step to handle GCS busckets.
Other information (workarounds you have tried, documentation consulted, etc):
There is no current workaround.