Implementation of filtering for project display management by google user

[Zyrox-pixel]

In the context of an organization, if a google user does not have access to a project then he should only see his projects and not the others

For example in an organization with 10 projects, if the user xxxxx@gmail.com has the right to only 4 projects, then after being authenticated on Zorya he should only see his 4 projects

[eranchetz]

Hey @Zyrox-pixel thanks for the feedback, currently Zorya is authenticating with the default service account, this can be changed easily see docs here.
We currently have no plans to implement user access polices or IAM into Zorya, my suggestion would be to deploy single instance of zorya into each project with specfic permissions to that project.

[Zyrox-pixel]

Hello @eranchetz Thank you for your feedback.

At the moment there is only one default service account used by this application and I would like that following the authentication via IAP, that the application authenticates with the user's service account not the default appspot service account.

How would you suggest that I implement this ?