Generating ID token with ImpersonatedCredentials does not support overriding quota project #977
Labels
help wanted
We'd love to have community involvement on this issue.
priority: p2
Moderately-important priority. Fix may not be included in next release.
type: bug
Error or flaw in code with unintended results or allowing sub-optimal usage patterns.
Is your feature request related to a problem? Please describe.
ImpersonatedCredentials
accepts a quota project in its builder, and the quota project is properly overridden when generating an access token. However, when generating id token with theidTokenWithAudience()
method, it won't perform such override. The impact is that if a service does impersonate many IdTokens on its own quota - it exceeds a default limit of 60k.Describe the solution you'd like
It seems to me that providing the quota project in the
additionalFields
argument when invoking theIamUtils.getIdToken()
method would workDescribe alternatives you've considered
There doesn't seem to be good alternatives.
The text was updated successfully, but these errors were encountered: