If you had actually read the post you would have understood there are ways to ditch GCP, but they are perceived as cumbersome.
The exaple is OpenID Connect. It works well with Azure (according to the post).
I'm sorry to say this, but the author is choosing something easy but unrealiable over something a bit more complicated but reliable.
It's really the author's fault. They are choosing their comfort over the service reliability (and keeping promises made to customers).
Heck they might even go with api keys. They could give explicit direction on the minimal amount of permissions the api key would need and they could ping the users each 3-4 months to rotate them.
But no, I guess we'll have another post at some point about the fourth (definitive?) account suspension.
alt Hacker News
yes.
If you had actually read the post you would have understood there are ways to ditch GCP, but they are perceived as cumbersome.
The exaple is OpenID Connect. It works well with Azure (according to the post).
I'm sorry to say this, but the author is choosing something easy but unrealiable over something a bit more complicated but reliable.
It's really the author's fault. They are choosing their comfort over the service reliability (and keeping promises made to customers).
Heck they might even go with api keys. They could give explicit direction on the minimal amount of permissions the api key would need and they could ping the users each 3-4 months to rotate them.
But no, I guess we'll have another post at some point about the fourth (definitive?) account suspension.