Permissions for @turbot/gcp-iam
Taking a look at permissions and associated grant levels for each permission for IAM:
| Permission | Grant Level | Help |
|---|---|---|
| iam.roles.create | Owner | |
| iam.roles.delete | Owner | |
| iam.roles.get | Metadata | |
| iam.roles.list | Metadata | |
| iam.roles.undelete | Owner | |
| iam.roles.update | Owner | |
| iam.serviceAccountKeys.create | Owner | |
| iam.serviceAccountKeys.delete | Owner | |
| iam.serviceAccountKeys.get | Metadata | |
| iam.serviceAccountKeys.list | Metadata | |
| iam.serviceAccounts.create | Owner | |
| iam.serviceAccounts.delete | Owner | |
| iam.serviceAccounts.disable | Owner | |
| iam.serviceAccounts.enable | Owner | |
| iam.serviceAccounts.get | Metadata | |
| iam.serviceAccounts.getIamPolicy | Metadata | |
| iam.serviceAccounts.list | Metadata | |
| iam.serviceAccounts.setIamPolicy | Owner | |
| iam.serviceAccounts.update | Owner | |
| resourcemanager.projects.get | Metadata | |
| resourcemanager.projects.getIamPolicy | Metadata | |
| resourcemanager.projects.setIamPolicy | Owner | |
| serviceusage.services.list | Metadata |