Difference between revisions of "GCP cloud roles"
Jump to navigation
Jump to search
| (2 intermediate revisions by the same user not shown) | |||
| Line 25: | Line 25: | ||
* [[Cloud SQL]] IAM roles: https://cloud.google.com/sql/docs/mysql/iam-roles | * [[Cloud SQL]] IAM roles: https://cloud.google.com/sql/docs/mysql/iam-roles | ||
| + | |||
| + | |||
| + | {{storage.buckets}} | ||
| + | |||
| + | |||
| + | == Error == | ||
| + | * <code>[[Denied: Token exchange failed for project ... Caller does not have permission 'storage.buckets.get']]</code> | ||
| + | |||
| + | |||
== Related == | == Related == | ||
| Line 30: | Line 39: | ||
* [[AWS IAM role]] | * [[AWS IAM role]] | ||
* <code>[[--role]]</code> | * <code>[[--role]]</code> | ||
| − | |||
== See also == | == See also == | ||
Latest revision as of 09:54, 28 November 2022
gcloud iam roles list gcloud iam roles describe
Official example:
gcloud projects add-iam-policy-binding example-project-id-1 --member='user:[email protected]' --role='roles/editor'
Others:
roles/iam.serviceAccountKeyAdmin
roles/owner roles/editor
roles/cloudsql.admin roles/cloudsql.editor
roles/storage.objects.create roles/storage.objectAdmin roles/storage.objectViewer roles/storage.legacyBucketWriter
roles/container.developer
storage.buckets.create storage.buckets.createTagBinding storage.buckets.delete storage.buckets.deleteTagBinding storage.buckets.get storage.buckets.getIamPolicy storage.buckets.list storage.buckets.listEffectiveTags storage.buckets.listTagBindings storage.buckets.setIamPolicy storage.buckets.update
Error[edit]
Related[edit]
See also[edit]
Advertising:
