I am a backend developer currently working with Google Cloud for our infrastructure, and we are integrating with a financial partner in France.
Our challenge lies in the geographical requirement specified by this partner. They have informed us that API requests must originate from within France, whereas our Google Cloud setup is currently located outside of France, likely in different regions. Given that all our customers making these API requests are based in France, we need guidance on how to ensure that the requests to that partner are made from within France.
We are seeking insights and best practices on how to configure our Google Cloud infrastructure to meet this specific geographic requirement. Any suggestions or recommendations on configuring the network, utilizing regional services, or any other relevant approaches would be highly appreciated.
If I understand it correctly, you want to block API requests from users outside of France? If so, you can consider utilizing Google Cloud’s Cloud Armor and Cloud Firewall to block users from a certain country.
Here is a sample guide showing how to utilize Cloud Armour to geo-block users from certain countries to access API - Geo-blocking Apigee with Cloud Armor.
Take note that usage of proxies and VPNs can bypass this.
It’s actually the other way around. We have users in France and our
financing partner is located in France.
But our backend is set up in multiple locations so the API requests could
come from outside France. Right now, our financing partner does not accept
that.
We want to bridge the gap by setting up a way to send all our API requests
from the same country.
