我正在尝试使用云函数在composer环境中触发Airflow DAG。为了做到这一点,我需要按照此处所述获取客户端ID。我尝试使用curl命令,但它没有返回任何值。通过Python脚本,我不断收到以下错误:
Traceback (most recent call last):
File "get_client_id.py", line 55, in <module>
get_client_id(
File "get_client_id.py", line 40, in get_client_id
print(query_string['client_id'][0])
KeyError: 'client_id'
Python代码:
import google.auth
import google.auth.transport.requests
import requests
import six.moves.urllib.parse
# Authenticate with Google Cloud.
# See: https://cloud.google.com/docs/authentication/getting-started
credentials, _ = google.auth.default(
scopes=['https://www.googleapis.com/auth/cloud-platform'])
authed_session = google.auth.transport.requests.AuthorizedSession(
credentials)
project_id = 'my-project'
location = 'my-region'
composer_environment = 'my-env'
environment_url = (
'https://composer.googleapis.com/v1beta1/projects/{}/locations/{}'
'/environments/{}').format(project_id, location, composer_environment)
composer_response = authed_session.request('GET', environment_url)
environment_data = composer_response.json()
airflow_uri = environment_data['config']['airflowUri']
# The Composer environment response does not include the IAP client ID.
# Make a second, unauthenticated HTTP request to the web server to get the
# redirect URI.
redirect_response = requests.get(airflow_uri, allow_redirects=False)
redirect_location = redirect_response.headers['location']
# Extract the client_id query parameter from the redirect.
parsed = six.moves.urllib.parse.urlparse(redirect_location)
query_string = six.moves.urllib.parse.parse_qs(parsed.query)
print(query_string['client_id'][0])
cURL命令:
curl -v my_airflow_url 2>&1 >/dev/null | grep -o "client_id\=[A-Za-z0-9-]*\.apps\.googleusercontent\.com"
有没有人知道如何获取IAM代理的client_id?
IAM还是IAP吗?您的标题指向 IAM,但在代码中却有...IAP 客户端 ID。如果您要求的是IAP,您是否看到了这个帖子 如何使用用户默认凭据以编程方式对 Cloud Identity-Aware Proxy(Cloud IAP)安全资源进行身份验证??此外,GCP 中还有一些文档 在此处。这是否是您正在寻找的内容? - PjoterS