@quiet-plastic-34312 this indicates the service account or other credentials you're using in the CI pipeline don't have permission to create an IAM policy. update your service account
q
quiet-plastic-34312
12/20/2021, 3:03 PM
its the one that have the key associated right? i put all the roles
Cloud Run Service Agent
Cloud Run Service Agent
Editor
Security Admin
Security Reviewer
Service Account Admin
Service Account User
and still get the error...
have any way to check the key roles?
b
billowy-army-68599
12/20/2021, 3:06 PM
yes, but the error is coming because you need to add IAM modify permissions, not just for cloud run
this support is outside the scope of Pulumi. the 403 error definitely indicates you don't have the correct permissions, if it works locally, I would engage with Google Cloud support