Google OAuth
Authentication runs through Google's standard OAuth flow. leg never handles your Google password.
Official home page for leg, a desktop command-line app for authorized Google Cloud users.
$ leg auth login opening browser for Google OAuth... signed in as you@company.com $ leg profile set project acme-prod active project: acme-prod $ leg vm list NAME ZONE STATUS web-1 us-central1-a RUNNING worker-3 europe-west1-b RUNNING db-replica-a us-east1-c STOPPED $ leg filestore show shared-fs
This public home page is visible without login and identifies the Google OAuth app named leg. It describes the app functionality, the purpose of Google data access, and the public policy links used on the OAuth consent screen.
leg focuses on the resources teams touch when running production workloads. Authenticate once, switch profiles quickly, and keep operational work in the terminal.
After you sign in with Google OAuth, leg uses your authorization to call Google Cloud APIs directly from your computer. The data is used to show command output, switch profiles, and perform resource operations you request.
leg is a local tool. It uses Google's OAuth flow, calls Google Cloud APIs directly on your behalf, and avoids collecting data for analytics or advertising.
Authentication runs through Google's standard OAuth flow. leg never handles your Google password.
OAuth tokens and CLI configuration are stored on the user's device, not in a leg backend.
The CLI talks to Google Cloud APIs directly for operations the authenticated user is allowed to perform.
No analytics, no advertising, and no sale or sharing of user data by leg.
Distributed as a single binary for the major desktop platforms, with the same focused command surface across environments.