I've been following the steps in the Google tutorial, Using Pub/Sub with Cloud Run tutorial. All ok until allowing Google's service account to create auth tokens (Integrating with Pub/Sub 2.b.) Her...

I have succesfully deployed a 2nd generation cloud function with a storage trigger per the google tutorial. The Cloud Function works when I run a test command in the shell. But if I try for real by...

I am trying to allocate the roles to the user in the Terraform file in a GCP project, but I am getting the below error : Error: Request "Create IAM Members roles/compute.networkAdmin user:[em...

Is there a way to programmatically access the email of the currently used Service Account on a GCP instance when no GOOGLE_APPLICATION_CREDENTIALS is set? (ie. when using the default Service Accoun...

I encounter the following warning: WARNING: You do not appear to have access to project [$PROJECT] or it does not exist. after running the following commands locally: Activate and set a service ...

I am trying to deploy a service with a non-default service account by following this guide and it says I need "the iam.serviceAccounts.actAs permission on the service account being deployed". The s...

The following setup exist and works fine: Google Cloud Run (my API worked when I used the open URL - i.e. something like this https://some_name-ab3adasmjk-oa.a.run.app) Google Cloud Scheduler (ca...

I want to create an automatic deployment of GCP for clients. In order to do that, I have opened a page for them to login with google, and then enabled the IAM API and the Service Usage API. Then ...

I know that I can do it via the UI (Cloud Console), and that I can also assign a role. Although, how do I grant a single permission easily? For example, I was pushing an image to Google Container ...

I am building an http endpoint with Google Cloud Functions. I have an encrypted secret stored as a file that is loaded and decrypted in the function as a way to prevent my secret from being stored ...

I am trying to deploy node js app on google cloud but getting following error - Step #1: ERROR: (gcloud.app.deploy) Permissions error fetching application [apps /mytest-240512]. Please make sure y...

TLDR; I'm having trouble assigning an IAM permission to a service account. I'm building a test that involves minting custom tokens with firebase Auth. When I hit: const token = await admin.auth...

I have created a Google Cloud Platform service account, $GCP_SERVICE_ACCOUNT, with the Storage Admin (roles/storage.admin) role. Now I wish to restrict this account so that it can only access a spe...

I'm failing to test the ability to use an IAM user in Google Cloud's PostgreSQL offering. Here's my thinking process: I've set respective flag on my PostgreSQL instance on Google Cloud: $ gcloud s...

I am trying to create a Service Account with 'roles/container.admin' and i get an error saying that the role is not supported for this resource. $ gcloud iam service-accounts add-iam-policy-bindin...

Running into problems building deploying functions. When trying to programmatically deploy the function I get the following output in builder logs (ERRORS). 2020-10-20T02:22:12.155866856Z starting...

I'm trying to do gsutil ls however that results in: ubuntu@ip:~$ gsutil ls AccessDeniedException: 403 [email protected] does not have storage.buckets.list access to project xxxxxxxxxxxxxxx. ...

I find myself using a lot roles/storage.legacyBucketWriter which has the following permissions: storage.buckets.get storage.objects.create storage.objects.delete storage.objects.list May be it's ...

On GCP, I'm trying to enable "Identity and Access Management (IAM) API" with this Terraform code below: provider "google" { credentials = file("myCredentials.json") ...

We are developing a program that uses Google spreadsheets as the input. The values of the spreadsheet is read, processed and a result is showed in a webpage. When an user sign up we clone a spreads...

In the google cloud gui console I went to "IAM & admin" > "Service accounts" and created a service account named "my-service-account" with the viewer role. I then ran this command: gcloud iam...

I've previously only used Cloud Functions of gen. 1 but now plan to move to 2nd generation and is just trying to deploy/test a first basic function. I'm just taking the Google sample for a storage ...

This is the shape of my JSON service account key from Google. { "type": "service_account", "project_id": "", "private_key_id": "", &q...

I'd like to be able to list all users and service account associated with my projects (preferably using the gcloud CLI tool, but happy to make an API call if needs be). I can easily list all the s...

I am working on a bitbucket pipeline for pushing image to gc container registry. I have created a service account with Storage Admin role. ([email protected]) gcloud auth activate-service-a...