Authentication
These are the supported authentication methods for GCP in Tempest:OAuth2 (Quick Setup)
OAuth2 tokens require re-authentication every 24 hours by default. For production use, we recommend using Service Account authentication.
How to connect with OAuth2
How to connect with OAuth2
1
Access Recipes
Navigate to Recipes and create or select a recipe
2
Add GCP Resource
Add or select a GCP resource in your recipe
3
Link Credentials
Click “Add credentials” then “+Link credentials”
4
Select OAuth
Choose “OAuth” authentication method
5
Complete Google Login
Select your Google account and authorize the connection
Service Account (Recommended)
The service account must have appropriate permissions for all resources you plan to manage through Tempest.
How to connect with Service Account
How to connect with Service Account
1
Generate Service Account Key
Create a key following Google Cloud documentation
2
Access Recipes
Navigate to Recipes and create or select a recipe
3
Add GCP Resource
Add or select a GCP resource in your recipe
4
Link Credentials
Click “Add credentials” then “+Link credentials”
5
Select Service Account
Choose “Show more” then “Service Account”
6
Name Credentials
Enter an identifier for these credentials
7
Upload Key File
Upload your service account JSON key file
Resources
Cloud Build Configuration
Configure CI/CD pipelines with GitHub integration. Configuration options:- Region selection
- Repository configuration
- Build settings
- Public key data
- Secret management
- Regional settings
Trigger
Create and manage build triggers. Configuration options:- Branch targeting
- Commit specification
- Image configuration
- Dockerfile location
- Image identification
- Build tracking
- Regional settings
Cloud DNS
Zone
Manage DNS zones in Google Cloud DNS. Configuration options:- DNS name configuration
- Zone visibility
- Description management
- Zone identification
- DNS configuration
- Visibility status
Record
Create and manage DNS records. Configuration options:- Record type selection
- Target configuration
- TTL settings
- Record identification
- Content management
- Type specification
Memorystore Redis
Manage Redis instances in Google Cloud. Configuration options:- Region selection
- Instance sizing
- High availability setup
- Name customization
- Instance identification
- Connection details
- Regional settings
Cloud Run Service
Deploy containerized applications. Configuration options:- Regional deployment
- Service naming
- Container configuration
- Instance scaling
- Port management
- Service identification
- URI and FQDN
- Regional settings
CloudSQL Instance
Manage database instances. Configuration options:- Database engine selection
- Instance tier
- Edition selection
- Regional deployment
- Connection details
- Service account integration
- Endpoint configuration
Cloud Storage Bucket
Configure cloud storage buckets. Configuration options:- Location selection
- Versioning settings
- Naming conventions
- Bucket identification
- Storage configuration
- Location settings