Back to feed
GCP·Cloud Load Balancingfeature·
AI Insights

Policy profiles in authorization policies let you define the type of authorization being performed at the load balancer.

Policy profiles in authorization policies let you define the type of authorization being performed at the load balancer. This feature is available in Preview.

You can choose from the following profile types:

• Request authorization profile (REQUEST_AUTHZ): Evaluates access based on HTTP request headers. Authorization decisions can be made directly or delegated to custom services. This is the default profile. • Content authorization profile (CONTENT_AUTHZ): Enables deep inspection of application payloads (headers, body, and trailers). This is used for content-based security, such as blocking prompt injection attacks and preventing sensitive data leaks. Authorization decisions are always delegated.

Policy profiles are supported for the following Google Cloud services:

• Regional external Application Load Balancers • Regional internal Application Load Balancers • Agent Gateway (Preview) • Secure Web Proxy

To learn more about policy profiles, see Authorization policy overview.

Read original announcement

More from Cloud Load Balancing

Google tag gateway for advertisers lets website owners host and deploy Google tags through Google Cloud.May 19, 2026You can use three new variables in custom request and response headers for Application Load Balancers:May 14, 2026Backend Cloud Storage buckets are available for regional external Application Load Balancer and regional internal Application Load Balancer.Apr 30, 2026A new quota system governing the configuration size of Application Load Balancer is now available in Preview.Apr 27, 2026