Is there a way to secure Google Cloud Tasks so that they only run if they are initiated by your Google App Engine in Java?
With the old legacy Push Tasks you could set up a security-constraint in your web.xml but this doesn't work for me anyone.
What is the recommended way to secure a Google Cloud Task and know it came from your application?
Perhaps setting a handler in the app.yaml file to secure those Task urls is an option? I don't see a good example of how to do that though.