A bit scary. Was able to connect to my instance using google cloud sql proxy after deleting my service role account
-- 1. Created a service account under editor role
2. Was able to access my server using:
/usr/local/bin/cloud_sql_proxy -dir=/cloudsql -instances=my-project:us-central1:sql-instance=tcp:3306 -credential_file=/prod.json &
3. Deleted my service account
4. Was able to access my instance after deletion of service account using:
/usr/local/bin/cloud_sql_proxy -dir=/cloudsql -instances=my-project:us-central1:sql-instance=tcp:3306 -credential_file=/prod.json &
You received this message because you are subscribed to the Google Groups "Google Cloud SQL discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-cloud-sql-discuss+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/google-cloud-sql-discuss/042a2622-79eb-40ea-9ee0-ab40aecb47e0%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment