Hi everyone,
I’m trying to implement federated authentication (token exchange) from Google Cloud → Databricks without using a client ID / client secret only using a Google-issued service account token. I have also created a federation policy in Databricks.
const audience = "https://accounts.gcp.databricks.com";
const resp = await axios.post(
"https://accounts.gcp.databricks.com",
qs.stringify({
grant_type: "urn:ietf:params:oauth:grant-type:token-exchange",
subject_token: accessToken,
subject_token_type: "urn:ietf:params:oauth:token-type:jwt",
audience,
requested_token_type: "urn:ietf:params:oauth:token-type:access_token",
}),
{ headers: { "Content-Type": "application/x-www-form-urlencoded" } }
);
Which API should i use instead of "https://accounts.gcp.databricks.com"?
<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width,initial-scale=1">
<meta name="description" content="Databricks Sign in">
<title>Databricks - Sign in</title>
...
</html>
Can anyone help me to solve this error or provide any document for this Federated Token Exchange (GCP →Databricks).
Announcements
