How to Override the Authentication Credentials

Unless otherwise configured, the client libraries use Application Default Credentials to authenticate with Google Cloud Services. While this works for most applications, in some cases you may need to override this default. You can do so by providing the UnifiedCredentialsOption The following example shows how to explicitly load a service account key file:

  [](std::string const& keyfile) {
    auto is = std::ifstream(keyfile);
    is.exceptions(std::ios::badbit);  // Minimal error handling in examples
    auto contents = std::string(std::istreambuf_iterator<char>(is.rdbuf()), {});
    auto options =
        google::cloud::Options{}.set<google::cloud::UnifiedCredentialsOption>(
            google::cloud::MakeServiceAccountCredentials(contents));
    return google::cloud::iap_v1::IdentityAwareProxyAdminServiceClient(
        google::cloud::iap_v1::MakeIdentityAwareProxyAdminServiceConnection(
            options));
  }

Follow these links to find examples for other *Client classes:

• iap_v1::IdentityAwareProxyAdminServiceClient
• iap_v1::IdentityAwareProxyOAuthServiceClient

Keep in mind that we chose this as an example because it is relatively easy to understand. Consult the Best practices for managing service account keys guide for more details.

See Also

Authentication Components - for more information on the factory functions to create google::cloud::Credentials objects.