gcf/User Service Account Check
Check if User/Service account has permissions on Cloud function runtime service account
Product: Cloud Functions
Step Type: AUTOMATED STEP
Description
None
Failure Reason
The user principal โ{user_principal}โ does not have roles/iam.serviceAccountUser role on the runtime Service Account โ{runtime_account}โ
Failure Remediation
Assign the Service Account User role (roles/iam.serviceAccountUser) to the user on the default or non-default runtime service account. This role includes the iam.serviceAccounts.actAs permission. https://cloud.google.com/functions/docs/reference/iam/roles#additional-configuration
Success Reason
The user principal โ{user_principal}โ has roles/iam.serviceAccountUser role on the runtime Service Account โ{runtime_account}โ