Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-09-22 22:14:43 -04:00
Code Issues Projects Releases Packages Wiki Activity

add minimal gcp permissions

Browse source
This commit is contained in:
stdoutput 2023-03-17 10:35:57 +01:00
parent 0b498d1ae6
commit 3132bbf45a
1 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

8
docs/docs/workflows/config.md
View file

@ -115,7 +115,15 @@ Since `clientSecretValue` is a sensitive value, you can leave it empty in the co
You must be authenticated with the [GCP CLI](https://cloud.google.com/sdk/gcloud) in the shell session. You must be authenticated with the [GCP CLI](https://cloud.google.com/sdk/gcloud) in the shell session.
Your GCP account also needs to have at least the following permissions: Your GCP account also needs to have at least the following permissions:
* `iam.serviceAccountKeys.create`
* `iam.serviceAccountKeys.delete`
* `iam.serviceAccountKeys.get`
* `iam.serviceAccounts.create` * `iam.serviceAccounts.create`
* `iam.serviceAccounts.delete`
* `iam.serviceAccounts.get`
* `iam.serviceAccounts.getAccessToken`
* `resourcemanager.projects.getIamPolicy`
* `resourcemanager.projects.setIamPolicy`
```bash ```bash
constellation iam create gcp --projectID=yourproject-12345 --zone=europe-west2-a --serviceAccountID=constell-test constellation iam create gcp --projectID=yourproject-12345 --zone=europe-west2-a --serviceAccountID=constell-test