Using `WorkloadIdentity` for `Google Cloud DNS`

To use WorkloadIdentity for Google Cloud DNS, you can create a WorkloadIdentity resource in the project namespace in the Garden cluster with the necessary configuration for Google Cloud authentication.

Note that the spec.targetSystem.type has to be set to gcp although the type of the DNS provider is google-clouddns. This allows to use the same WorkloadIdentity for different types of GCP resources, e.g., for infrastructure purposes and for DNSProvider purposes.

To create a WorkloadIdentity, follow the instructions in the GCP Workload Identity Federation documentation of the Google Cloud Provider extension.

For the required permissions, please refer to the Google Cloud DNS Provider.

Resources

Provider Alibaba Cloud

Tutorials

Provider AWS

Tutorials

Provider Azure

Tutorials

Kubernetes cluster on azure with gardener

Provider Equinix Metal

Provider GCP

Tutorials

Kubernetes cluster on gcp with gardener

proposals

Provider OpenStack

CoreOS/FlatCar OS

SUSE CHost OS

Ubuntu OS

Calico CNI

Cilium CNI

Kubernetes Auditing

Api Reference

Registry Cache

Registry cache

registry-mirror

Certificate Services

Tutorials

DNS Services

Tutorials

Workloadidentity

Lakom Service

Egress Filtering

Networking Problem Detector

OpenID Connect Services

Node Audit Logging

Concepts

Deployment

Concepts

Deployment

Getting started locally

Proposals

Documents

Proposals

To-Do

Style Guide

Using WorkloadIdentity for Google Cloud DNS ​

Using `WorkloadIdentity` for `Google Cloud DNS`