Questions tagged [google-iam]
Cloud Identity and Access Management (Cloud IAM) enables you to create and manage permissions for Google Cloud Platform resources. Cloud IAM unifies access control for Cloud Platform services into a single system and presents a consistent set of operations.
google-iam
785
questions
0
votes
0
answers
5
views
Service Account Role and Scope Relation while creating Virtual Machine
I have created a new Virtual Machine with custom defined service account. I have given "Storage Object Creator" & "Storage Object Viewer" roles to the service account. Now ...
0
votes
1
answer
37
views
Not able to create Virtual Machine
I have added one principal with my another google email address and provided the role "Compute Admin". Now when I logged in to the console with that google account and try to create a new ...
1
vote
1
answer
32
views
I cannot connect to my Cloud SQL instance via my Golang app in Cloud Run: "hostname resolving error: no such host"
Here are the technologies I am using:
Terraform
Golang + pgx/v5/pgxpool
Cloud SQL (PostgreSQL)
Cloud Run
Cloud Build
I have provisioned my PostgeSQL instance like so:
terraform {
...
1
vote
1
answer
39
views
Getting a 403 error when triggering a Cloud Function from a PubSub Topic
I created a cloud function that is triggered by a publish to a pubsub Topic. When I publish a message to the topic and read the funcition logs, I see this error:
"The request was not ...
-1
votes
1
answer
37
views
Restricting Firestore access by service account
I have a node app that uses the firebase sdk to read/write to a firestore db.
"dependencies": {
"firebase": "^9.12.1",
"firebase-admin": "^10.0.2&...
1
vote
2
answers
131
views
How can I use workload identity pooling to succesfully push docker images to GCP?
I am setting up a service which I want to deploy to Cloud Run from Github Actions. However although the authentication action step is successful:
- name: Authenticate to Google Cloud
id: auth
uses:...
-1
votes
0
answers
19
views
GCP IAM access management
Let's suppose we have a number of GCP projects and several dev teams. What is the recommended way of managing access to the resources in the projects for the different teams?
We are considering ...
0
votes
1
answer
178
views
Google Cloud Function error 401 by using service account key
I am trying to authenticate in Python to GCP in order to call Cloud Functions.
I have set up a service account with roles as follows
and created a JSON key for it. Double-checking from the Cloud ...
1
vote
0
answers
56
views
cant make firebase cloud function public
i recently created a simple cloud function in firebase to get http responses from an endpoint.
But every time i make a request, i'm getting a 401 with the message "The request was not authorized ...
0
votes
1
answer
167
views
local dev, Application Default Credentials not found (GCP)
working on a kotlin API that call some endpoints on GCP, when I use postman or terminal to call the endpoint I get the following error:
java.lang.IllegalStateException: java.io.IOException: Your ...
2
votes
0
answers
46
views
GKE Workload Identity: Failed to generate federated token using STS: googleapi: got HTTP response code 400
I am observing weird behaviour in applications deployed in our GKE Cluster enabled with workload identity.
Environment: GKE 1.29 Cluster version
Codebase: Java v17
Issue:
Once in a while applications ...
0
votes
0
answers
42
views
Change credentials for "Extract data" data source in Looker Studio
We have reports that use "Extract data" data sources. Those have been created by an individual user that will leave the company (the account is still active). How can we change the ...
0
votes
1
answer
46
views
What is the difference between a data catalog policy tag and a "normal" data catalog tag?
I have actually gotten things to work properly (using the policy tag), yet I still don't understand the difference between the data catalog policy tag and the data catalog tag.
To be specific, I'm ...
1
vote
1
answer
194
views
How to initialize v2 Firebase Cloud Functions to authenticate as Firebase Admin SDK service account?
I really love Google products but sometimes the documentation can be painfully terse or fragmented. I read this incredibly eloquent answer by someone who was as clueless as me who felt compelled to ...
0
votes
1
answer
29
views
Best practice for attaching a specified Firebase service account to a Firebase Cloud Function?
I have a Firebase cloud function that needs to use the Firebase Admin SDK service account for authentication. By default, Firebase cloud functions use Google Cloud's default compute service account, ...