By using workload identity federation, we can let applications use AWS credentials to authenticate to Google Cloud. That’s useful if we have an application that runs on AWS and needs access to Google APIs. But what if we are in the opposite situation, where we have an application on Google Cloud that needs access to AWS? In a case like that, we can use AWS’s AssumeRoleWithWebIdentity, which: Returns a set of temporary security credentials for users who have been authenticated in a mobile ...
