You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Create a gcp/roleset on a specific resource of BigQuery Dataset, received successfully prompt from Vault CLI.
However the created GCP service account wasn't granted the expected IAM role (permission).
to create a gcp/roleset with role bound with specific BigQuery Dataset
Receiced successful prompt from Vault CLI: Success! Data written to: gcp/roleset/<some-gcp-roleset-to-create>
Expected behavior
A. Expect the underlining GCP service account associates with the created gcp/roleset can create Bigquery Table on the specified Bigquery Dataset
B. The GCP 'Dataset permissions' tab of the specified Bigquery Dataset shows the service account with the specified role, i.e. "roles/bigquery.admin"
Ref: https://cloud.google.com/bigquery/docs/dataset-access-controls#granting_access_to_a_dataset
Environment:
Vault Server Version (retrieve with vault status): 1.6.1
Vault CLI Version (retrieve with vault version): Vault v1.6.1 (6d2db3f033e02e70202bef9ec896360062b88b03)
Server Operating System/Architecture: Debian GNU/Linux 10 (buster)
Additional context
I have been working well with the GCP-project-wise specification, i.e. //cloudresourcemanager.googleapis.com/projects/<some-gcp-project>
Describe the bug
Create a gcp/roleset on a specific resource of BigQuery Dataset, received successfully prompt from Vault CLI.
However the created GCP service account wasn't granted the expected IAM role (permission).
To Reproduce
Steps to reproduce the behavior:
to create a gcp/roleset with role bound with specific BigQuery Dataset
Success! Data written to: gcp/roleset/<some-gcp-roleset-to-create>
Expected behavior
A. Expect the underlining GCP service account associates with the created gcp/roleset can create Bigquery Table on the specified Bigquery Dataset
B. The GCP 'Dataset permissions' tab of the specified Bigquery Dataset shows the service account with the specified role, i.e. "roles/bigquery.admin"
Ref: https://cloud.google.com/bigquery/docs/dataset-access-controls#granting_access_to_a_dataset
Environment:
vault status
):1.6.1
vault version
):Vault v1.6.1 (6d2db3f033e02e70202bef9ec896360062b88b03)
Debian GNU/Linux 10 (buster)
Vault server configuration file(s):
Additional context
I have been working well with the GCP-project-wise specification, i.e.
//cloudresourcemanager.googleapis.com/projects/<some-gcp-project>
The text was updated successfully, but these errors were encountered: