Article by Moses Frost (@mosesrenegade).
Default Account Information
Service accounts are similar to Azure Service Principals. They can allow for programmatic access but also abuse.
Information on Service Accounts
User-Created Service Account:
Using the format above, you can denote the following items:
service-account-name: This will tell you potentially what services this is for:
project-id: This will be the project identifier that the service account is for. You can set your
gcloudconfiguration to this
project-id. It will be numerical typically.
Default Service Account filename permutations:
Application-Based Service Account:
email@example.com: Ths would be
project-idvalue for App Engine or anything leveraging App Engine.
firstname.lastname@example.org: This service account is for Compute Engine where the
How to use Service Accounts
In a BASH (or equivalent) shell: