https://pulumi.com logo
#google-cloud
Title
# google-cloud
q

quiet-plastic-34312

12/20/2021, 2:47 PM
anyone can help me ... iwas trying publish a image on gcp using cloud run and create a noauthIamPolicy after to let access the endpoint... i create the json key and set the rules for iam at iam polices tab... when i run pulumi local it was normal but when i try the cicd integration i get that error
Diagnostics:
gcp:cloudrun:IamPolicy (noauthIamPolicy):
anyone know how to solve it?
b

billowy-army-68599

12/20/2021, 2:55 PM
@quiet-plastic-34312 this indicates the service account or other credentials you're using in the CI pipeline don't have permission to create an IAM policy. update your service account
q

quiet-plastic-34312

12/20/2021, 3:03 PM
its the one that have the key associated right? i put all the roles Cloud Run Service Agent Cloud Run Service Agent Editor Security Admin Security Reviewer Service Account Admin Service Account User and still get the error... have any way to check the key roles?
b

billowy-army-68599

12/20/2021, 3:06 PM
yes, but the error is coming because you need to add IAM modify permissions, not just for cloud run this support is outside the scope of Pulumi. the 403 error definitely indicates you don't have the correct permissions, if it works locally, I would engage with Google Cloud support
q

quiet-plastic-34312

12/20/2021, 3:10 PM
gona do that ... ty