One of the things that should be handled before we're happy with central-server approach is securing the endpoints, so not anyone on WashU with the IP address is able to create workflows against projects they aren't allowed on. Google Cloud provides an approach called Identity Aware Proxy which will wrap around the server and block requests sent by people not authorized to create the resources needed to run a workflow.
One of the things that should be handled before we're happy with central-server approach is securing the endpoints, so not anyone on WashU with the IP address is able to create workflows against projects they aren't allowed on. Google Cloud provides an approach called Identity Aware Proxy which will wrap around the server and block requests sent by people not authorized to create the resources needed to run a workflow.