添加链接 注册    登录
link管理
链接快照平台
  • 输入网页链接,自动生成快照
  • 标签化管理网页链接
相关文章推荐
无邪的灌汤包  ·  使用Python开发一个恐龙跑跑小游戏,玩起 ...·  3 月前    · 
鼻子大的杨桃  ·  Service Messages | ...·  5 月前    · 
光明磊落的铁链  ·  电磁发射火箭能让“小马”拉“大车”_中国航天 ...·  6 月前    · 
逆袭的汉堡包  ·  哪些二本院校可以保研?含拥有保研资格的二本大学推荐·  6 月前    · 
魁梧的灭火器  ·  第23章 其他话题 | Python ...·  1 年前    · 
link管理  ›  google.auth package — google-auth 2.22.0 documentation
https://googleapis.dev/python/google-auth/latest/reference/google.auth.html
神勇威武的消炎药
1 年前
default ( scopes = None , request = None , quota_project_id = None , default_scopes = None ) [source]

Gets the default credentials for the current environment.

Application Default Credentials provides an easy way to obtain credentials to call Google APIs for server-to-server or local applications. This function acquires credentials from the environment in the following order:

  • If the environment variable GOOGLE_APPLICATION_CREDENTIALS is set to the path of a valid service account JSON private key file, then it is loaded and returned. The project ID returned is the project ID defined in the service account file if available (some older files do not contain project ID information).

    If the environment variable is set to the path of a valid external account JSON configuration file (workload identity federation), then the configuration file is used to determine and retrieve the external credentials from the current environment (AWS, Azure, etc). These will then be exchanged for Google access tokens via the Google STS endpoint. The project ID returned in this case is the one corresponding to the underlying workload identity pool resource if determinable.

    If the environment variable is set to the path of a valid GDCH service account JSON file ( Google Distributed Cloud Hosted ), then a GDCH credential will be returned. The project ID returned is the project specified in the JSON file.

  • If the Google Cloud SDK is installed and has application default credentials set they are loaded and returned.

    To enable application default credentials with the Cloud SDK run: 

    gcloud auth application-default login

    If the Cloud SDK has an active project, the project ID is returned. The
active project can be set using:
    

    gcloud config set project

  • If the application is running in the App Engine standard environment
(first generation) then the credentials and project ID from the
App Identity Service are used.
    • 

  • If the application is running in Compute Engine or Cloud Run or
the App Engine flexible environment or the App Engine standard
environment (second generation) then the credentials and project ID
are obtained from the Metadata Service.
    • 

  • If no credentials are found,
DefaultCredentialsError will be raised.
    • 

    Example:
    

    import google.auth
credentials, project_id = google.auth.default()

    Parameters:
    

  • scopes (Sequencestr) – The list of scopes for the credentials. If
specified, the credentials will automatically be scoped if
necessary.
    • 

  • request (Optionalgoogle.auth.transport.Request) – An object used to make
HTTP requests. This is used to either detect whether the application
is running on Compute Engine or to determine the associated project
ID for a workload identity pool resource (external account
credentials). If not specified, then it will either use the standard
library http client to make requests for Compute Engine credentials
or a google.auth.transport.requests.Request client for external
account credentials.
    • 

  • quota_project_id (Optionalstr) – The project ID used for
quota and billing.
    • 

  • default_scopes (OptionalSequencestr) – Default scopes passed by a
Google client library. Use ‘scopes’ for user-defined scopes.
    • 

    Returns:
    

    the current environment’s credentials and project ID. Project ID
may be None, which indicates that the Project ID could not be
ascertained from the environment.
    

    Return type:
    

    TupleCredentials, Optionalstr
    

    Raises:
    

    DefaultCredentialsError – If no credentials were found, or if the credentials found were
    invalid.
    
load_credentials_from_file(filename, scopes=None, default_scopes=None, quota_project_id=None, request=None)[source]

    Loads Google credentials from a file.
    

    The credentials file must be a service account key, stored authorized
user credentials, external account credentials, or impersonated service
account credentials.
    

    Parameters:
    

  • filename (str) – The full path to the credentials file.
    • 

  • scopes (OptionalSequencestr) – The list of scopes for the credentials. If
specified, the credentials will automatically be scoped if
necessary
    • 

  • default_scopes (OptionalSequencestr) – Default scopes passed by a
Google client library. Use ‘scopes’ for user-defined scopes.
    • 

  • quota_project_id (Optionalstr) – The project ID used for
quota and billing.
    • 

  • request (Optionalgoogle.auth.transport.Request) – An object used to make
HTTP requests. This is used to determine the associated project ID
for a workload identity pool resource (external account credentials).
If not specified, then it will use a
google.auth.transport.requests.Request client to make requests.
    • 

    Returns:
    

    Loaded
    credentials and the project ID. Authorized user credentials do not
have the project ID information. External account credentials project
IDs may not always be determined.
    
load_credentials_from_dict(info, scopes=None, default_scopes=None, quota_project_id=None, request=None)[source]

    Loads Google credentials from a dict.
    

    The credentials file must be a service account key, stored authorized
user credentials, external account credentials, or impersonated service
account credentials.
    

    Parameters:
    

  • info (Dictstr, Any) – A dict object containing the credentials
    • 

  • scopes (OptionalSequencestr) – The list of scopes for the credentials. If
specified, the credentials will automatically be scoped if
necessary




    

    • 

  • default_scopes (OptionalSequencestr) – Default scopes passed by a
Google client library. Use ‘scopes’ for user-defined scopes.
    • 

  • quota_project_id (Optionalstr) – The project ID used for
quota and billing.
    • 

  • request (Optionalgoogle.auth.transport.Request) – An object used to make
HTTP requests. This is used to determine the associated project ID
for a workload identity pool resource (external account credentials).
If not specified, then it will use a
google.auth.transport.requests.Request client to make requests.
    • 

    Returns:
    

    Loaded
    credentials and the project ID. Authorized user credentials do not
have the project ID information. External account credentials project
IDs may not always be determined.
    

  • Credentials.service_account_email
    • 

  • Credentials.requires_scopes
    • 

  • Credentials.with_quota_project()
    • 

  • Credentials.with_scopes()
    • 

  • Credentials.apply()
    • 

  • Credentials.before_request()
    • 

  • Credentials.default_scopes
    • 

  • Credentials.expired
    • 

  • Credentials.has_scopes()
    • 

  • Credentials.quota_project_id
    • 

  • Credentials.scopes
    • 

  • Credentials.valid
    • 

  • Credentials.token
    • 

  • Credentials.expiry
    • 

  • IDTokenCredentials
    •  
    推荐文章
    无邪的灌汤包  ·  使用Python开发一个恐龙跑跑小游戏,玩起来-阿里云开发者社区
    3 月前
    鼻子大的杨桃  ·  Service Messages | TeamCity On-Premises Documentation
    5 月前
    光明磊落的铁链  ·  电磁发射火箭能让“小马”拉“大车”_中国航天科技集团
    6 月前
    逆袭的汉堡包  ·  哪些二本院校可以保研?含拥有保研资格的二本大学推荐
    6 月前
    魁梧的灭火器  ·  第23章 其他话题 | Python 核心编程 第二版
    1 年前
    Link管理   ·   51好读   ·   Sov5搜索   ·   小百科
    link管理 - 链接快照平台