This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Need to decrypt access token to set in env variable before deploying proxy

Posted on 11-15-2022 11:49 PM
Shrimoyee
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

Hello,

we are using get-gcp-access-token node module for generating access token which is working fine but the output is encoded. How do we decode it? Since we need to set the value to an env variable before using it in subsequent deployment call.

Solved Solved
0 2 1,865
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

I think you are referring to a GCP access token. A typical GCP access token looks something like this :

ya29.a0AeTM1ieNdl027moRL6_...many more characters...es4e7

To answer your question, as far as I know, Google does not document how to decode or "decrypt", as you say, that token. It's an opaque token. From your perspective, it's just a string of random characters. Only Google systems know what to do with that token, how to validate it, what permissions are granted with it, when it expires, and so on.

Since we need to set the value to an env variable before using it in subsequent deployment call.

You can certainly set that token into a context variable, then inject it into a header or other parameter for an outbound call, or use it in some other way within the API Proxy. The thing you cannot do is "crack it open". From your perspective, it's just a string.

View solution in original post

Jump to Solution
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

I think you are referring to a GCP access token. A typical GCP access token looks something like this :

ya29.a0AeTM1ieNdl027moRL6_...many more characters...es4e7

To answer your question, as far as I know, Google does not document how to decode or "decrypt", as you say, that token. It's an opaque token. From your perspective, it's just a string of random characters. Only Google systems know what to do with that token, how to validate it, what permissions are granted with it, when it expires, and so on.

Since we need to set the value to an env variable before using it in subsequent deployment call.

You can certainly set that token into a context variable, then inject it into a header or other parameter for an outbound call, or use it in some other way within the API Proxy. The thing you cannot do is "crack it open". From your perspective, it's just a string.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
Shrimoyee
Bronze 3
Bronze 3
In response to dchiesa1
Reply posted on --/--/---- --:-- AM

Thankyou for the help! We created a function within the main function which takes the token and set it in auth header for deployment. This is working fine.

Jump to Solution
0 Likes
Top Solution Authors
View all