0

I am using getSignedUrl to get a public authenticated url for a video. It is working fine in my local machine. But after deploying it in GKE, it is not working. I have checked a related question on SigningError with Firebase getSignedUrl(). But I don't see a service account for GKE to configure those roles. I have already assigned full storage and service enabled permissions to the cluster while creating the kubernetes cluester.

Do I have to add any more permissions to get rid of this error or should I do anything else.

smnth90
  • 750
  • 5
  • 14
  • Have you create a serviceAccount with the right permissions and linked in yout deployment files? Please clarify from where you are trying to get the video, it's from cloud storage? – Mr.KoopaKiller Oct 21 '20 at 10:28
  • This got fixed. Thank you @KoopaKiller for your comment. Yes, I am trying to get the video from Cloud Storage. Here issue was accessing the service account from the GKE which does not have direct access to the google service account. I have followed the below steps to fix this issue. – smnth90 Oct 21 '20 at 11:04

1 Answers1

1

This issue got fixed. I have followed this link https://cloud.google.com/kubernetes-engine/docs/tutorials/authenticating-to-cloud-platform#console to fix this issue.

We have to access the service account from the GKE. Google cloud service accounts are not directly accessed by the GKE. I have Followed the below steps to access google cloud service account from GKE.

  1. We have to create service account with the required roles - Storage Object Creator and Service Account Token Creator.
  2. Generate a key and save the json file in your app for one time.
  3. Add volume, volumeMounts, GOOGLE_APPLICATION_CREDENTIALS env variable to deployment.yaml
  4. Use kubectl create secret generic [key name] --from-file=key.json=PATH-TO-KEY-FILE.json
  5. Deploy your manifest using kubectl apply -f deployment.yaml.

These steps will provide access to storage and service account which will fix the signingError.

smnth90
  • 750
  • 5
  • 14