Hi,
I have created a dataflow template for reading storage objects .
I have provided the same compute service account while creating the dataflow template and cloud scheduler in terraform
for creating dataflow template the SA parameter -
–service_account_email ${var.sa_compute}
for creating the cloud schedular
oauth_token {
service_account_email = var.sa_compute
}
these are the available roles with the following service account
Artifact Registry Reader
-
BigQuery Job User
-
BigQuery User
-
Cloud Run Admin
-
Cloud Run Invoker
-
Cloud Scheduler Job Runner
-
Cloud SQL Client
-
Compute Admin
-
Dataflow Developer
-
Dataflow Worker
-
Kubernetes Engine Admin
-
Kubernetes Engine Cluster Admin
-
Logs Writer
-
Monitoring Metric Writer
-
Secret Manager Secret Accessor
-
Storage Object User
-
Storage Object Viewer
still while executing the schedular , i am getting the following error
debugInfo: “URL_ERROR-ERROR_OTHER. Original HTTP response code number = 403”
status: “PERMISSION_DENIED”
please help
Regards