Source Repository external access

[Ashish Patel]

Is it possible to secure a Source Repository by limiting access by IP Address? We are trying to prevent developers from checking out code from the cloud repository outside of work.

I tried to search for this on here and on the internet, but not had much success.

Thank you

NOTICE AND DISCLAIMER: This electronic message (including attachments) ('email') contains information which may be privileged or confidential. The information is intended for the use of the individual recipient(s) or entity named above. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents, in full or in part, of this information is prohibited. If you have received this email in error, please notify us immediately by reply. We cannot accept liability for any breach of confidence arising through use of email. Any opinions expressed in this email are those of the author and do not necessarily reflect the opinions of the Company. We will not accept responsibility for any commitments made by our employees outside the scope of our business. We do not warrant the accuracy or completeness of such information. Visit our website at: www.cdllogistics.com

[Ali T (Cloud Platform Support)]

Hi Ashish ,

Source Repositories don’t currently allow for IP based restrictions. Access control can only be managed on a role level basis [1].

I opened a feature request for Source Repositories to have a feature allowing for IP address level restriction. By clicking the star at the top of the following link [2], you will receive updates when changes occur on the thread. Moreover, starring the issue will help promote it and have more traction towards it.

[1] Controlling Access to Repository: https://cloud.google.com/source-repositories/docs/configure-access-control#top_of_page

[2] Restrict Source Repository Access by IP Address : https://issuetracker.google.com/111181099

[Ashish Patel]

Thank you Ali. Appreciate you creating the request.

Since it is not possible to restrict access by IP. Do audit logs capture IP address of the host where the code is checkout/cloned? Is that possible so we can track it?

[Ashish Patel]

Thank you. Ali T's answer is what I was looking for. I appreciate your help though.

On Thursday, July 5, 2018 at 12:49:59 PM UTC-4, Y...@globalindustrial.com wrote:

Hi,

I'm not sure if I can do that.

Will it be possible to do a test on your end to see how it looks?

I just push "Hello World. ipynb" on the notebook repository, and below is how it looks in the browser.

The "Hello World" notebook exist for all users in the datalab/docs. 

Would you be able to mimic the process and see how to view this in the browser properly? 

Or how other users can load this file into their datalab to view and edit?

Thanks,

On Thursday, July 5, 2018 at 11:41:07 AM UTC-4, Ashish Patel wrote:

[Ali T (Cloud Platform Support)]

Hello Ashish, 

Audit logs do capture the IP address and the action performed. This gives you access to know who accessed your repository, what they did and from where as per the documentation. The following page shows how to enable these features. Once enabled, the information will be available under the Activity Dashboard or the Logs Viewer.