Restrict Google App Engine Endpoints API access

https://stackoverflow.com/questions/23285249

security
google-app-engine
google-cloud-endpoints

09-07-2023
|

Question

How do I restrict Google App Engine Endpoints API access to only one email domain?

Solution

You can inject the User object to any of the endpoint API Methods that you want. On successful authentication, the User object will be populated and you can access various methods like getEmail(), getAuthDomain(), etc to perform your check.

Take a look at :

Adding User Parameters to Methods for Authentication
User Class

Licensed under: CC-BY-SA with attribution

Not affiliated with StackOverflow