我正在尝试在我的GCP VM实例上运行以下代码。
!gsutil cp 'text.csv' 'gs://BucketName/folderName/'
我收到错误消息AccessDeniedException: 403 XXXXXXX-compute@developer.gserviceaccount.com does not have storage.objects.list access to mybucket
我试图编辑IAM访问权限并为服务帐户提供存储管理员权限,但是我仍然无法解决。
我还运行以下检查:
$ gcloud projects get-iam-policy Project-ID
bindings:
- members:
- serviceAccount:service-XXXXX@compute-system.iam.gserviceaccount.com
role: roles/compute.serviceAgent
- members:
- serviceAccount:XXXXX-compute@developer.gserviceaccount.com
- serviceAccount:XXXXX@cloudservices.gserviceaccount.com
- serviceAccount:service-XXXXX@sourcerepo-service-accounts.iam.gserviceaccount.com
- user:myemail@company.com
role: roles/owner
- members:
- user:mycolleagueemail@company.com
role: roles/resourcemanager.projectOwnerInvitee
- members:
- serviceAccount:service-XXXX@sourcerepo-service-accounts.iam.gserviceaccount.com
role: roles/sourcerepo.serviceAgent
- members:
- serviceAccount:XXXXX-compute@developer.gserviceaccount.com
- serviceAccount:XXXXXX@cloudservices.gserviceaccount.com
- serviceAccount:service-XXXXX@compute-system.iam.gserviceaccount.com
- serviceAccount:service-XXXXXX@sourcerepo-service-accounts.iam.gserviceaccount.com
- user:myemail@company.com
role: roles/storage.admin
etag: BwWHPRO76cr=
version: 1
我对GCP还是陌生的,因此,任何建议/帮助都将不胜感激。谢谢!