issue in a build whith gcloud.run. deploy

google-cloud-platform

I tried to build pipeline using GitLab for deploy on Google Cloud.

Everything works fine, except the gcloud command for deploy.

I have the following error : ERROR: (gcloud.run.deploy) PERMISSION_DENIED: Permission 'iam.serviceaccounts.actAs' denied on service account [email protected] (or it may not exist)

I searched for a solution in stack overflow and added 'iam.serviceaccounts.actAs' using gcloud command : gcloud projects add-iam-policy-binding YYYYY --member='serviceAccount:[email protected]' --role='roles/iam.serviceAccountUser'

The role is added to the service account, but the deploy still fail.

Any idea ?


When you create certain Google Cloud resources, you have the option to attach a service account. The attached service account acts as the identity of any jobs running on the resource, allowing the jobs to authenticate to Google Cloud APIs.

For most Google Cloud services, users need permission to impersonate a service account in order to attach that service account to a resource. This means that the user needs the iam.serviceAccounts.actAs permission on the service account.

I suggest you to follow this path and check if you have implemented all needed to impersonate the service account.

Related

MaxMind GeoIP CSV to .dat
smb fails to start on centos7 radius server
Enabling Unconstrained Delegation on Active Directory Domains
How can I safely revert libglapi-mesa version?
How to change Unity's default login screen to allow users to type in their logins and passwords?
Syndaemon won't start as startup application
Sound card not detected on Ubuntu 18.04
Ubuntu and VLC - make default and hue
How to use apt-get/synaptic behind a proxy? [duplicate]
Can I write an alias that takes an argument? [duplicate]
Bionic: Block Notification: laptop Battery Critically Low
dpkg: error: parsing file '/var/lib/dpkg/status' near line 6449 [duplicate]