colossal-tailor-72573
11/02/2023, 6:22 PMfull-eve-52536
11/02/2023, 6:28 PMnew gcp.cloudrun.IamBinding('idp-api-service-iam-binding', {
location: gcpConfig.require('region'),
service: idpApiCloudRunService.name,
role: 'roles/run.invoker',
members: ['allUsers'],
});
Adding that binding will ensure the CloudRun service allows unauthenticated user access.colossal-tailor-72573
11/02/2023, 6:29 PMglamorous-jelly-86558
11/02/2023, 10:19 PM// Create an IAM member to allow the service to be publicly accessible.
const apiNestInvoker = new gcp.cloudrunv2.ServiceIamBinding(
'api-server-invoker',
{
role: 'roles/run.invoker',
members: ['allUsers'],
name: apiServerService.name,
location: gcpRegion,
project: projectNameAndId,
},
);
colossal-tailor-72573
11/02/2023, 11:20 PM