Function Caller

The GCP Cloud Run integration in P0 allows you to securely invoke your Cloud Run services in response to events like access requests, approvals, or escalations. Whether you're running fully containerized workloads or deploying lightweight functions, this integration ensures that P0 can trigger your services reliably and securely.

This component is important because it:

• Event-driven automation: Trigger Cloud Run services from access requests or escalations.

• Flexible deployment: Supports both containers and function-style deployments.

• Authenticated requests: Uses IAM identity tokens for secure, private access.

• Reusable setup: Use the same service across multiple P0 events.

Setting up the function-caller is a powerful way to connect P0's event system to your existing GCP infrastructure — giving you flexibility, security, and control over your automation.

Before you begin

This guide walks you through setting up your Google Cloud function caller, but before diving into the steps make sure you have configured a Google Cloud Organization and a Cloud Run service.

Install the Google Cloud function caller component

First, you'll need to define an installer component in P0 that knows how to call your Google Cloud service. This component will give P0 the permission to invoke only the specified service.

1. Go to p0.app in your browser, navigate to Integrations, and select Google Cloud.

2. Select the function-caller component

1. Inside the Google Cloud integration, find the function caller component and click "Add Cloud Run Service".

4. Please provide the Cloud Run service name, service URL, as well as the project ID and region. All of which can be found on your Google Cloud Run service details page.

5. Follow the provided instructions to provision access using Google Cloud Shell or Terraform. This step grants P0 permission to call your Cloud run service securely.

1. Once completed, P0 is now set up to call your Google Cloud run function.