Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
q
quiet-plastic-34312
12/20/2021, 2:47 PManyone can help me ... iwas trying publish a image on gcp using cloud run and create a noauthIamPolicy after to let access the endpoint... i create the json key and set the rules for iam at iam polices tab... when i run pulumi local it was normal but when i try the cicd integration i get that error
Diagnostics:gcp:cloudrun:IamPolicy (noauthIamPolicy):b
billowy-army-68599
12/20/2021, 2:55 PM@quiet-plastic-34312 this indicates the service account or other credentials you're using in the CI pipeline don't have permission to create an IAM policy. update your service account
q
quiet-plastic-34312
12/20/2021, 3:03 PMits the one that have the key associated right? i put all the roles
Cloud Run Service Agent
Cloud Run Service Agent
Editor
Security Admin
Security Reviewer
Service Account Admin
Service Account User
and still get the error...
have any way to check the key roles?
b
billowy-army-68599
12/20/2021, 3:06 PMyes, but the error is coming because you need to add IAM modify permissions, not just for cloud run
this support is outside the scope of Pulumi. the 403 error definitely indicates you don't have the correct permissions, if it works locally, I would engage with Google Cloud support
q
quiet-plastic-34312
12/20/2021, 3:10 PMgona do that ... ty