🎟

How to attach permissions to a service account?

📃
BigQuery Data Editor

To attach permissions to a service account for BigQuery Data Editor in GCP, follow the steps below:
  1. 1.
    Navigate to the GCP console: Log in to your GCP account and navigate to the console at https://console.cloud.google.com/
  2. 2.
    Choose the Project: Select the project that contains the service account to which you want to add permissions.
  3. 3.
    Access the IAM & Admin dashboard: Click on the hamburger menu on the top left-hand side and select IAM & Admin from the menu.
  4. 4.
    Locate the service account: Locate the service account to which you want to attach the BigQuery Data Editor role. You can search for the service account using the search bar at the top of the page.
  5. 5.
    Select the service account: Once you have located the service account, click on the Edit button next to the service account's name.
  6. 6.
    Click on the Add Member button: Scroll down to the "Members" section of the page and click on the "Add Member" button.
  7. 7.
    Enter the email address: Enter the email address of the user or group that you want to add to the service account. Alternatively, you can enter the unique ID of the user or group.
  8. 8.
    Select the BigQuery Data Editor Role: In the "Role" dropdown, select the "BigQuery Data Editor" role from the list of available roles.
  9. 9.
    Save the changes: Click on the "Save" button to add the user or group to the service account with the specified role.
  10. 10.
    Verify the permissions: Once the user or group has been added, you can verify that they have the necessary permissions by navigating to the BigQuery console and confirming that they have the ability to edit data in the datasets associated with the project.
Congratulations! You have successfully attached permissions to a service account for BigQuery Data Editor in GCP.

📔
Assign Viewer permission to a GCP project/ organization

Google Cloud Platform (GCP) provides a powerful infrastructure for hosting and running applications. However, as with any cloud platform, it's important to ensure that access to your resources is tightly controlled.
Viewer permission is a basic level of access that allows users to view resources within a project/organization but not modify them. This permission is useful for stakeholders who need to monitor the project's status, such as managers, auditors, or other members of the team who don't require full access to the project's resources.
To assign Viewer permission to a GCP project, you must follow these steps:
  1. 1.
    Sign in to the GCP Console
  2. 2.
    Select the project/ organization for which you want to assign Viewer permission.
  3. 3.
    Click on the Navigation menu (☰) on the top-left corner of the console and select IAM & Admin.
  4. 4.
    In the IAM & Admin panel, select IAM.
  5. 5.
    In the IAM page, click on Add button at the top.
  6. 6.
    In the Add members panel, enter the email address of the user or group you want to add as a Viewer.
  7. 7.
    In the Role drop-down, search for Viewer or select the Viewer role from the list of predefined roles.
  8. 8.
    Click on the Save button to add the user or group as a Viewer.
  9. 9.
    The user or group you have added will receive an email notification that they have been granted Viewer permission to the project or organization.
That's it! The user or group you added will now be able to view the resources within the project/organization but won't be able to make any changes. If you need to remove a user's Viewer permission, simply follow these same steps and select the user's name from the IAM page. Click on the Edit button and remove the Viewer role from the user's assigned roles.