Permissions for @turbot/gcp-iam
Taking a look at permissions and associated grant levels for each permission for IAM:
Permission | Grant Level | Help |
---|---|---|
iam.roles.create | Owner | |
iam.roles.delete | Owner | |
iam.roles.get | Metadata | |
iam.roles.list | Metadata | |
iam.roles.undelete | Owner | |
iam.roles.update | Owner | |
iam.serviceAccountKeys.create | Owner | |
iam.serviceAccountKeys.delete | Owner | |
iam.serviceAccountKeys.get | Metadata | |
iam.serviceAccountKeys.list | Metadata | |
iam.serviceAccounts.create | Owner | |
iam.serviceAccounts.delete | Owner | |
iam.serviceAccounts.disable | Owner | |
iam.serviceAccounts.enable | Owner | |
iam.serviceAccounts.get | Metadata | |
iam.serviceAccounts.getIamPolicy | Metadata | |
iam.serviceAccounts.list | Metadata | |
iam.serviceAccounts.setIamPolicy | Owner | |
iam.serviceAccounts.update | Owner | |
resourcemanager.projects.get | Metadata | |
resourcemanager.projects.getIamPolicy | Metadata | |
resourcemanager.projects.setIamPolicy | Owner | |
serviceusage.services.list | Metadata |