Enable ADC for Gcloud provider (#1583)

Fallback to using Application Default Credentials if no
private_key is available in the creds.json-file.

This allows usage with various short lived credentials, for example
GCE-instances, gcloud auth application-default login, OIDC Workload
Identity etc

Co-authored-by: Tom Limoncelli <tlimoncelli@stackoverflow.com>

docs/_providers/gcloud.md

@@ -9,10 +9,12 @@ jsId: GCLOUD
 
 ## Configuration
 
-To use this provider, add an entry to `creds.json` with `TYPE` set to `GCLOUD`
-along with Google Cloud authentication values.
+To use this provider, add an entry to `creds.json` with `TYPE` set to `GCLOUD`.
 
-The provider requires a "Service Account Key" for your project. Newlines in the private key need to be replaced with `\n`. Copy the full JSON object into your `creds.json` like so:
+For authentication you can either include a Service Account Key in the file or use Application Default Credentials (ADC)
+
+### Using a Service Account Key
+Copy the full JSON object into your `creds.json`. Newlines in the private key need to be replaced with `\n`.
 
 Example:
 
@@ -41,6 +43,22 @@ Example:
 
 See [the Activation section](#activation) for some tips on obtaining these credentials.
 
+### Using Application Default Credentials
+If you prefer to authenticate using ADC you only need to specify `project_id` in your creds.json file.
+
+Example:
+
+```json
+{
+  "gcloud": {
+    "TYPE": "GCLOUD",
+    "project_id": "mydnsproject"
+  }
+}
+```
+
+**Note:** To use ADC, make sure to not add any `private_key` value to your configuration as that will prevent dnscontrol from attempting to use ADC.
+
 ## Metadata
 This provider does not recognize any special metadata fields unique to google cloud dns.