Best way to reference a keyfile in nodejs
I did some searching, but my terms "keyfile reference secure" and various others turned up too many results, so here I am. If this has been asked before, I'd be happy to reference that.
I have a nodejs project that uses the Google Vision API/SDK and that sample project uses the google-cloud module and then uses this kind of structure to get the key file (reference here
var gcloud = require('google-cloud');
var datastore = gcloud.datastore(
projectId: config.projectId,
keyFilename: config.keyFilename
);
However, when using the @google-cloud/vision module directly, you can also use the GOOGLE_APPLICATION_CREDENTIALS environment variable pointing to a file containing the key file and it "just works" as long as you export the environment variable or set the variable and initiate the command like so:
GOOGLE_APPLICATION_CREDENTIALS=/home/jomama/somefolder/keyfile.json node
So, considering the project will be tracked with git, my questions are:
- What is the code level advantage of using either approach in the above?
- What security issues need to be addressed in either approach?
- Any other considerations I'm missing?
Granted I don't want my keyfile stored in git but I still want the project tracked there.
git google-cloud-platform private-key
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
add a comment |
I did some searching, but my terms "keyfile reference secure" and various others turned up too many results, so here I am. If this has been asked before, I'd be happy to reference that.
I have a nodejs project that uses the Google Vision API/SDK and that sample project uses the google-cloud module and then uses this kind of structure to get the key file (reference here
var gcloud = require('google-cloud');
var datastore = gcloud.datastore(
projectId: config.projectId,
keyFilename: config.keyFilename
);
However, when using the @google-cloud/vision module directly, you can also use the GOOGLE_APPLICATION_CREDENTIALS environment variable pointing to a file containing the key file and it "just works" as long as you export the environment variable or set the variable and initiate the command like so:
GOOGLE_APPLICATION_CREDENTIALS=/home/jomama/somefolder/keyfile.json node
So, considering the project will be tracked with git, my questions are:
- What is the code level advantage of using either approach in the above?
- What security issues need to be addressed in either approach?
- Any other considerations I'm missing?
Granted I don't want my keyfile stored in git but I still want the project tracked there.
git google-cloud-platform private-key
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
add a comment |
I did some searching, but my terms "keyfile reference secure" and various others turned up too many results, so here I am. If this has been asked before, I'd be happy to reference that.
I have a nodejs project that uses the Google Vision API/SDK and that sample project uses the google-cloud module and then uses this kind of structure to get the key file (reference here
var gcloud = require('google-cloud');
var datastore = gcloud.datastore(
projectId: config.projectId,
keyFilename: config.keyFilename
);
However, when using the @google-cloud/vision module directly, you can also use the GOOGLE_APPLICATION_CREDENTIALS environment variable pointing to a file containing the key file and it "just works" as long as you export the environment variable or set the variable and initiate the command like so:
GOOGLE_APPLICATION_CREDENTIALS=/home/jomama/somefolder/keyfile.json node
So, considering the project will be tracked with git, my questions are:
- What is the code level advantage of using either approach in the above?
- What security issues need to be addressed in either approach?
- Any other considerations I'm missing?
Granted I don't want my keyfile stored in git but I still want the project tracked there.
git google-cloud-platform private-key
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
I did some searching, but my terms "keyfile reference secure" and various others turned up too many results, so here I am. If this has been asked before, I'd be happy to reference that.
I have a nodejs project that uses the Google Vision API/SDK and that sample project uses the google-cloud module and then uses this kind of structure to get the key file (reference here
var gcloud = require('google-cloud');
var datastore = gcloud.datastore(
projectId: config.projectId,
keyFilename: config.keyFilename
);
However, when using the @google-cloud/vision module directly, you can also use the GOOGLE_APPLICATION_CREDENTIALS environment variable pointing to a file containing the key file and it "just works" as long as you export the environment variable or set the variable and initiate the command like so:
GOOGLE_APPLICATION_CREDENTIALS=/home/jomama/somefolder/keyfile.json node
So, considering the project will be tracked with git, my questions are:
- What is the code level advantage of using either approach in the above?
- What security issues need to be addressed in either approach?
- Any other considerations I'm missing?
Granted I don't want my keyfile stored in git but I still want the project tracked there.
git google-cloud-platform private-key
git google-cloud-platform private-key
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
asked Nov 13 '18 at 13:23
nomadic_squirrelnomadic_squirrel
346210
346210
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "1"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53281993%2fbest-way-to-reference-a-keyfile-in-nodejs%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53281993%2fbest-way-to-reference-a-keyfile-in-nodejs%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
