By using workload identity federation, we can let applications use Azure credentials to authenticate to Google Cloud. That’s useful if we have an application that runs on Azure and needs access to Google APIs. But what if we are in the opposite situation, where we have an application on Google Cloud that needs access to Azure APIs? Client secrets One option is to authenticate a service principal by using a client secret: In Azure AD, create an application and generate a client secret. In Go...
