-
Notifications
You must be signed in to change notification settings - Fork 69
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GCS source should be able to automatically create all the required resources on GCP #1420
Comments
@jmcx I walked through the GCS source and in my opinion configuration is dead simple - create the bucket, create the SA (and role, if needed), get the key, create the source with that key. I'm not sure what you're doing in the 4th step in your instruction, but it seems like an optional thing if you have properly configured role in 1st step. |
@tzununbekov are you using the same roles described above (Pub/Sub Editor & Storage Admin)? Or does it work differently? |
@jmcx I'm using the custom role that has a small fraction of the permission set that you should get with the Pub/Sub Editor & Storage Admin roles. |
Ok, I'm gonna do another round of test. |
@jmcx I did try out to deploy the source with Pub/Sub Editor and Storage Admin roles, while it does create the topic and the subscription, it fails to add notification as seen in the
The service account seen in these logs is a "Google Storage Service Agent" which is of course different from the one configured in the source manifest. As we use terraform to deploy all these components, what worked was adding a
|
Similar to the AWS S3 source, we should be able to pass the GCS source a bucket name, a project name, and a service account, and it should be able to handle all the rest.
Currently, the following flow works but it would be great if it could be achieved with less steps, possibly removing step 4, and maybe with some adjustments to the permissions given in step 1:
The text was updated successfully, but these errors were encountered: