Difference between revisions of "GCP cloud roles"
Jump to navigation
Jump to search
| (15 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
* https://cloud.google.com/iam/docs/understanding-roles | * https://cloud.google.com/iam/docs/understanding-roles | ||
| + | [[gcloud iam roles list]] | ||
[[gcloud iam roles]] describe | [[gcloud iam roles]] describe | ||
| + | Official example: | ||
| + | [[gcloud projects add-iam-policy-binding]] example-project-id-1 --member='user:[email protected]' [[--role]]='[[roles/editor]]' | ||
| + | Others: | ||
[[roles/iam.serviceAccountKeyAdmin]] | [[roles/iam.serviceAccountKeyAdmin]] | ||
| + | |||
| + | [[roles/owner]] | ||
| + | [[roles/editor]] | ||
| + | |||
| + | [[roles/cloudsql.admin]] | ||
| + | [[roles/cloudsql.editor]] | ||
| + | |||
| + | [[roles/storage.objects.create]] | ||
| + | [[roles/]]storage.[[objectAdmin]] | ||
| + | [[roles/storage.objectViewer]] | ||
| + | [[roles/storage.legacyBucketWriter]] | ||
| + | |||
| + | [[roles/container.developer]] | ||
| + | |||
| + | |||
| + | * [[Cloud SQL]] IAM roles: https://cloud.google.com/sql/docs/mysql/iam-roles | ||
| + | |||
| + | |||
| + | {{storage.buckets}} | ||
| + | |||
| + | |||
| + | == Error == | ||
| + | * <code>[[Denied: Token exchange failed for project ... Caller does not have permission 'storage.buckets.get']]</code> | ||
| + | |||
| + | |||
== Related == | == Related == | ||
| − | * [[Service accounts]] | + | * [[Google Cloud Service account|Service accounts]] |
| + | * [[AWS IAM role]] | ||
| + | * <code>[[--role]]</code> | ||
== See also == | == See also == | ||
| + | * {{gcloud iam roles}} | ||
* {{gcloud iam}} | * {{gcloud iam}} | ||
| + | * {{GCP IAM}} | ||
[[Category:GCP]] | [[Category:GCP]] | ||
Latest revision as of 09:54, 28 November 2022
gcloud iam roles list gcloud iam roles describe
Official example:
gcloud projects add-iam-policy-binding example-project-id-1 --member='user:[email protected]' --role='roles/editor'
Others:
roles/iam.serviceAccountKeyAdmin
roles/owner roles/editor
roles/cloudsql.admin roles/cloudsql.editor
roles/storage.objects.create roles/storage.objectAdmin roles/storage.objectViewer roles/storage.legacyBucketWriter
roles/container.developer
storage.buckets.create storage.buckets.createTagBinding storage.buckets.delete storage.buckets.deleteTagBinding storage.buckets.get storage.buckets.getIamPolicy storage.buckets.list storage.buckets.listEffectiveTags storage.buckets.listTagBindings storage.buckets.setIamPolicy storage.buckets.update
Error[edit]
Related[edit]
See also[edit]
Advertising:
