Releases: darkbitio/gcp-iam-role-permissions
Releases · darkbitio/gcp-iam-role-permissions
Release 2025-01-10-13-14-55
GCP IAM Update 2025-01-10-13-14-55
gcp_roles_cai.json | 50 ++++++++++++++++++------------------
roles/anthosservicemesh.serviceAgent | 1 +
roles/apigee.runtimeAgent | 1 +
roles/bigquery.admin | 1 +
roles/bigquery.dataOwner | 1 +
roles/container.serviceAgent | 6 +++++
roles/dataflow.serviceAgent | 1 +
roles/datafusion.admin | 7 +++++
roles/datafusion.serviceAgent | 1 +
roles/dataplex.aspectTypeOwner | 1 +
roles/dataplex.catalogEditor | 1 +
roles/dataplex.entryGroupOwner | 1 +
roles/dataprep.serviceAgent | 1 +
roles/dlp.orgdriver | 7 +++++
roles/editor | 30 ++++++++++++++++++++++
roles/iam.securityAdmin | 7 +++++
roles/iam.securityReviewer | 6 +++++
roles/netapp.admin | 5 ++++
roles/netapp.viewer | 2 ++
roles/retail.admin | 2 ++
roles/retail.editor | 1 +
roles/seclm.serviceAgent | 3 +++
roles/securitycenter.settingsAdmin | 1 +
roles/securitycentermanagement.admin | 1 +
roles/viewer | 16 ++++++++++++
roles/visualinspection.serviceAgent | 14 ++++++++++
26 files changed, 143 insertions(+), 25 deletions(-)
Release 2025-01-10-01-30-04
GCP IAM Update 2025-01-10-01-30-04
gcp_roles_cai.json | 65 ++++++++++++-----------
roles/aiplatform.admin | 14 +++++
roles/aiplatform.customCodeServiceAgent | 13 +++++
roles/aiplatform.expressAdmin | 3 +-
roles/aiplatform.modelMonitoringServiceAgent | 1 +
roles/aiplatform.provisionedThroughputAdmin (new) | 11 ++++
roles/aiplatform.serviceAgent | 13 +++++
roles/aiplatform.user | 13 +++++
roles/aiplatform.viewer | 6 +++
roles/auditmanager.serviceAgent | 9 ++++
roles/automlrecommendations.admin | 1 +
roles/bigquery.dataEditor | 1 +
roles/bigquery.studioAdmin | 1 +
roles/connectors.serviceAgent | 1 +
roles/datafusion.developer | 4 ++
roles/datafusion.operator | 4 ++
roles/datafusion.viewer | 3 ++
roles/datamigration.admin | 1 +
roles/dataplex.catalogAdmin | 1 +
roles/dataplex.entryTypeOwner | 1 +
roles/dataplex.serviceAgent | 1 +
roles/dataproc.serviceAgent | 1 +
roles/designcenter.serviceAgent | 32 +++++++++++
roles/dlp.projectdriver | 7 +++
roles/dlp.serviceAgent | 1 +
roles/firebase.managementServiceAgent | 4 ++
roles/multiclusteringress.serviceAgent | 6 +++
roles/owner | 32 +++++++++++
roles/retail.viewer | 1 +
roles/securitycenter.admin | 1 +
roles/securitycenter.attackPathsViewer | 3 +-
roles/securitycenter.settingsEditor | 1 +
roles/securitycentermanagement.settingsEditor | 1 +
roles/servicehealth.viewer | 1 +
34 files changed, 224 insertions(+), 34 deletions(-)
Release 2025-01-09-13-16-21
GCP IAM Update 2025-01-09-13-16-21
gcp_roles_cai.json | 25 +++++++++++-----------
roles/aiplatform.extensionServiceAgent | 1 +
roles/aiplatform.provisionedThroughputAdmin (gone) | 7 ------
roles/aiplatform.serviceAgent | 13 -----------
roles/datafusion.admin | 7 ------
roles/datafusion.developer | 4 ----
roles/dataplex.entryGroupOwner | 1 -
roles/dataplex.entryTypeOwner | 1 -
roles/multiclusteringress.serviceAgent | 6 ------
roles/retail.admin | 2 --
roles/securitycenter.settingsAdmin | 1 -
roles/securitycenter.settingsEditor | 1 -
roles/securitycentermanagement.admin | 1 -
roles/securitycentermanagement.settingsEditor | 1 -
14 files changed, 13 insertions(+), 58 deletions(-)
Release 2025-01-08-13-15-00
GCP IAM Update 2025-01-08-13-15-00
gcp_roles_cai.json | 23 ++++++++++++-----------
roles/aiplatform.provisionedThroughputAdmin (new) | 7 +++++++
roles/aiplatform.serviceAgent | 13 +++++++++++++
roles/datafusion.admin | 7 +++++++
roles/datafusion.developer | 4 ++++
roles/dataplex.entryGroupOwner | 1 +
roles/dataplex.entryTypeOwner | 1 +
roles/multiclusteringress.serviceAgent | 6 ++++++
roles/retail.admin | 2 ++
roles/securitycenter.settingsAdmin | 1 +
roles/securitycenter.settingsEditor | 1 +
roles/securitycentermanagement.admin | 1 +
roles/securitycentermanagement.settingsEditor | 1 +
13 files changed, 57 insertions(+), 11 deletions(-)
Release 2024-12-14-13-14-29
GCP IAM Update 2024-12-14-13-14-29
gcp_roles_cai.json | 219 ++++++++++++---------
roles/anthossupport.serviceAgent | 2 +
roles/appengine.appAdmin | 1 +
roles/appengine.appViewer | 1 +
roles/appengine.codeViewer | 1 +
roles/appengine.serviceAdmin | 1 +
roles/appengineflex.serviceAgent | 5 +
roles/auditmanager.ccfAdmin (new) | 20 ++
roles/auditmanager.ccfViewer (new) | 17 ++
roles/auditmanager.serviceAgent | 7 +
roles/backupdr.admin | 1 +
roles/backupdr.backupConfigViewer (new) | 11 ++
roles/batch.serviceAgent | 10 +
roles/bigquery.admin | 1 +
roles/bigquery.resourceAdmin | 1 +
roles/bigquery.resourceEditor | 1 +
roles/bigquery.resourceViewer | 1 +
roles/bigquery.studioAdmin | 47 ++++-
roles/bigquery.studioUser | 46 ++++-
roles/bigquery.user | 1 +
roles/bigquerymigration.editor | 5 +-
roles/bigquerymigration.orchestrator | 3 -
roles/bigquerymigration.viewer | 2 -
roles/bigquerymigration.worker | 2 -
roles/billing.admin | 5 +
roles/billing.costsManager | 4 +
roles/billing.viewer | 3 +
roles/cloudsql.admin | 4 +
roles/cloudsql.studioUser | 4 +
roles/cloudtpu.serviceAgent | 10 +
roles/commerceorggovernance.admin | 2 +
roles/commerceorggovernance.user | 2 +
roles/commerceorggovernance.viewer | 2 +
roles/composer.serviceAgent | 22 +++
roles/compute.admin | 10 +
roles/compute.instanceAdmin | 10 +
roles/compute.instanceAdmin.v1 | 10 +
roles/compute.viewer | 2 +
roles/contactcenterinsights.viewer | 1 +
roles/container.cloudKmsKeyUser | 1 +
roles/container.serviceAgent | 10 +
roles/datafusion.serviceAgent | 2 +
roles/datapipelines.serviceAgent | 2 +
roles/dataplex.encryptionAdmin | 4 +-
roles/dataprep.serviceAgent | 3 +
roles/dataproc.hubAgent | 2 +
roles/dataproc.serverlessEditor (new) | 55 ++++++
roles/dataproc.serverlessNode (new) | 17 ++
roles/dataproc.serverlessViewer (new) | 22 +++
roles/dataproc.serviceAgent | 12 ++
roles/datastream.serviceAgent | 1 +
roles/discoveryengine.user | 6 +-
roles/dlp.orgdriver | 7 +-
roles/dlp.projectdriver | 7 +-
roles/dlp.serviceAgent | 3 +
roles/editor | 85 +++++++-
roles/firebase.admin | 2 +
roles/firebase.developAdmin | 2 +
roles/firebaseapphosting.serviceAgent | 1 +
roles/firebasecrashlytics.serviceAgent (new) | 17 ++
roles/gameservices.serviceAgent | 2 +
roles/genomics.serviceAgent | 10 +
roles/gkehub.admin | 5 +
roles/gkehub.viewer | 2 +
roles/gkemulticloud.serviceAgent | 5 +
roles/healthcare.fhirStoreAdmin | 2 +
roles/iam.securityAdmin | 19 +-
roles/krmapihosting.anthosApiEndpointServiceAgent | 5 +
roles/lifesciences.serviceAgent | 10 +
roles/logging.admin | 5 +
roles/logging.configWriter | 5 +
roles/logging.viewer | 2 +
roles/meshcontrolplane.serviceAgent | 2 +
roles/ml.serviceAgent | 2 +
.../networksecurity.interceptDeploymentAdmin (new) | 22 +++
.../networksecurity.interceptDeploymentUser (new) | 12 ++
...networksecurity.interceptDeploymentViewer (new) | 15 ++
roles/networksecurity.interceptEndpointAdmin (new) | 22 +++
roles/networksecurity.interceptEndpointUser (new) | 12 ++
.../networksecurity.interceptEndpointViewer (new) | 15 ++
roles/notebooks.admin | 2 +
roles/notebooks.legacyAdmin | 10 +
roles/notebooks.legacyViewer | 2 +
roles/notebooks.runner | 2 +
roles/notebooks.serviceAgent | 10 +
roles/notebooks.viewer | 2 +
roles/observability.admin | 5 +
roles/observability.analyticsUser (new) | 15 ++
roles/observability.editor | 5 +
roles/observability.viewer | 2 +
roles/oracledatabase.autonomousDatabaseViewer | 1 -
roles/oracledatabase.viewer | 1 -
roles/orgpolicy.policyAdmin | 8 +-
roles/owner | 93 ++++++++-
roles/parametermanager.admin (new) | 24 +++
roles/parametermanager.parameterAccessor (new) | 14 ++
roles/parametermanager.parameterVersionAdder (new) | 16 ++
.../parametermanager.parameterVersionManager (new) | 20 ++
roles/parametermanager.parameterViewer (new) | 17 ++
.../recommender.firestoredatabasereliabilityAdmin | 2 +-
.../recommender.firestoredatabasereliabilityViewer | 2 +-
roles/recommender.orgPolicyAdmin (new) | 19 ++
roles/recommender.orgPolicyViewer (new) | 17 ++
roles/recommender.spannerAdmin (new) | 19 ++
roles/recommender.spannerViewer (new) | 17 ++
roles/recommender.viewer | 8 +
roles/resourcemanager.tagUser | 6 +-
roles/resourcemanager.tagViewer | 4 +-
roles/run.jobsExecutor | 2 +-
roles/run.jobsExecutorWithOverrides | 2 +-
roles/run.sourceDeveloper | 28 +++
roles/storage.admin | 2 +
roles/storage.legacyBucketOwner | 2 +
roles/telcoautomation.admin | 2 +
roles/telcoautomation.opsAdminTier1 | 2 +
roles/telcoautomation.opsAdminTier4 | 2 +
roles/tpu.admin | 1 +
roles/viewer | 43 +++-
roles/visualinspection.serviceAgent | 2 +
roles/workflows.admin | 4 +
roles/workflows.editor | 4 +
roles/workflows.viewer | 4 +-
122 files changed, 1238 insertions(+), 137 deletions(-)
Release 2024-12-14-01-28-57
GCP IAM Update 2024-12-14-01-28-57
gcp_roles_cai.json | 141 +++++++++------------
roles/anthossupport.serviceAgent | 2 -
roles/appengine.appAdmin | 1 -
roles/appengine.deployer | 1 +
roles/appengineflex.serviceAgent | 5 -
roles/auditmanager.ccfAdmin (gone) | 7 -
roles/auditmanager.ccfViewer (gone) | 17 ---
roles/auditmanager.serviceAgent | 7 -
roles/backupdr.admin | 1 -
roles/backupdr.backupConfigViewer (gone) | 0
roles/batch.serviceAgent | 10 --
roles/bigquery.admin | 1 -
roles/bigquery.resourceAdmin | 1 -
roles/bigquery.studioAdmin | 47 +------
roles/bigquerymigration.editor | 5 +-
roles/bigquerymigration.orchestrator | 3 +
roles/bigquerymigration.viewer | 2 +
roles/billing.admin | 5 -
roles/billing.costsManager | 4 -
roles/billing.viewer | 3 -
roles/cloudsql.studioUser | 4 -
roles/cloudtpu.serviceAgent | 10 --
roles/composer.serviceAgent | 22 ----
roles/compute.admin | 10 --
roles/compute.instanceAdmin.v1 | 10 --
roles/contactcenterinsights.viewer | 1 -
roles/container.serviceAgent | 10 --
roles/dataflow.serviceAgent | 18 +++
roles/datapipelines.serviceAgent | 2 -
roles/dataplex.encryptionAdmin | 4 +-
roles/dataplex.serviceAgent | 3 +
roles/dataproc.serverlessEditor (gone) | 55 --------
roles/dataproc.serverlessNode (gone) | 0
roles/dataproc.serverlessViewer (gone) | 22 ----
roles/dataproc.serviceAgent | 12 --
roles/dlp.orgdriver | 7 +-
roles/dlp.serviceAgent | 3 -
roles/editor | 85 +------------
roles/firebase.admin | 2 -
roles/firebaseapphosting.serviceAgent | 1 -
roles/firebasecrashlytics.serviceAgent (gone) | 17 ---
roles/gameservices.serviceAgent | 2 -
roles/genomics.serviceAgent | 10 --
roles/gkehub.admin | 5 -
roles/gkehub.viewer | 2 -
roles/healthcare.fhirStoreAdmin | 2 -
roles/krmapihosting.anthosApiEndpointServiceAgent | 5 -
roles/logging.admin | 5 -
roles/logging.viewer | 2 -
roles/meshcontrolplane.serviceAgent | 2 -
...networksecurity.interceptDeploymentAdmin (gone) | 11 --
.../networksecurity.interceptDeploymentUser (gone) | 12 --
...etworksecurity.interceptDeploymentViewer (gone) | 15 ---
.../networksecurity.interceptEndpointAdmin (gone) | 22 ----
roles/networksecurity.interceptEndpointUser (gone) | 7 -
.../networksecurity.interceptEndpointViewer (gone) | 15 ---
roles/notebooks.admin | 2 -
roles/notebooks.viewer | 2 -
roles/observability.analyticsUser (gone) | 15 ---
roles/observability.editor | 5 -
roles/oracledatabase.autonomousDatabaseViewer | 1 +
roles/oracledatabase.viewer | 1 +
roles/orgpolicy.policyAdmin | 8 +-
roles/owner | 93 +-------------
roles/parametermanager.admin (gone) | 24 ----
roles/parametermanager.parameterAccessor (gone) | 14 --
.../parametermanager.parameterVersionAdder (gone) | 11 --
...parametermanager.parameterVersionManager (gone) | 20 ---
roles/parametermanager.parameterViewer (gone) | 17 ---
.../recommender.firestoredatabasereliabilityViewer | 2 +-
roles/recommender.orgPolicyAdmin (gone) | 19 ---
roles/recommender.orgPolicyViewer (gone) | 17 ---
roles/recommender.viewer | 8 --
roles/resourcemanager.tagUser | 6 +-
roles/resourcemanager.tagViewer | 4 +-
roles/run.jobsExecutorWithOverrides | 2 +-
roles/storage.legacyBucketOwner | 2 -
roles/telcoautomation.admin | 2 -
roles/telcoautomation.opsAdminTier1 | 2 -
roles/tpu.admin | 1 -
roles/viewer | 43 +------
roles/visualinspection.serviceAgent | 2 -
roles/workflows.admin | 4 -
83 files changed, 113 insertions(+), 892 deletions(-)
Release 2024-12-13-13-18-34
GCP IAM Update 2024-12-13-13-18-34
gcp_roles_cai.json | 117 ++++++++++++---------
roles/appengine.codeViewer | 1 -
roles/appengine.serviceAdmin | 1 -
roles/auditmanager.serviceAgent | 7 ++
roles/bigquery.resourceAdmin | 1 +
roles/bigquery.resourceEditor | 1 -
roles/bigquery.resourceViewer | 1 -
roles/bigquery.studioUser | 46 +-------
roles/bigquery.user | 1 -
roles/billing.admin | 5 +
roles/billing.costsManager | 4 +
roles/cloudsql.admin | 4 -
roles/cloudtpu.serviceAgent | 10 ++
roles/commerceorggovernance.admin | 2 -
roles/commerceorggovernance.user | 2 -
roles/compute.admin | 10 ++
roles/compute.instanceAdmin | 10 --
roles/contactcenterinsights.viewer | 1 +
roles/container.cloudKmsKeyUser | 1 -
roles/dataflow.serviceAgent | 18 ----
roles/datafusion.serviceAgent | 2 -
roles/dataplex.encryptionAdmin | 4 +-
roles/dataplex.serviceAgent | 3 -
roles/dataprep.serviceAgent | 3 -
roles/dataproc.serverlessEditor | 2 +-
roles/dataproc.serverlessViewer | 2 +-
roles/dataproc.serviceAgent | 12 +++
roles/discoveryengine.user | 6 +-
roles/dlp.serviceAgent | 3 +
roles/firebase.admin | 2 +
roles/firebasecrashlytics.serviceAgent (new) | 17 +++
roles/gameservices.serviceAgent | 2 +
roles/genomics.serviceAgent | 10 ++
roles/iam.securityAdmin | 19 +---
roles/lifesciences.serviceAgent | 10 --
roles/logging.admin | 5 +
roles/logging.configWriter | 5 -
roles/ml.serviceAgent | 2 -
.../networksecurity.interceptDeploymentAdmin (new) | 11 ++
.../networksecurity.interceptDeploymentUser (new) | 12 +++
...networksecurity.interceptDeploymentViewer (new) | 15 +++
roles/networksecurity.interceptEndpointAdmin (new) | 22 ++++
roles/networksecurity.interceptEndpointUser (new) | 7 ++
.../networksecurity.interceptEndpointViewer (new) | 15 +++
roles/notebooks.legacyViewer | 2 -
roles/observability.admin | 5 -
roles/observability.analyticsUser (new) | 15 +++
roles/observability.editor | 5 +
roles/parametermanager.admin (new) | 24 +++++
roles/parametermanager.parameterAccessor (new) | 14 +++
roles/parametermanager.parameterVersionAdder (new) | 11 ++
.../parametermanager.parameterVersionManager (new) | 20 ++++
roles/parametermanager.parameterViewer (new) | 17 +++
.../recommender.firestoredatabasereliabilityAdmin | 2 +-
.../recommender.firestoredatabasereliabilityViewer | 2 +-
roles/recommender.orgPolicyAdmin (new) | 19 ++++
roles/recommender.orgPolicyViewer (new) | 17 +++
roles/resourcemanager.tagUser | 6 +-
roles/resourcemanager.tagViewer | 4 +-
roles/run.jobsExecutorWithOverrides | 2 +-
roles/run.sourceDeveloper | 28 -----
roles/storage.admin | 2 -
roles/storage.legacyBucketOwner | 2 +
roles/telcoautomation.opsAdminTier1 | 2 +
roles/workflows.admin | 4 +
roles/workflows.editor | 4 -
roles/workflows.viewer | 4 +-
67 files changed, 407 insertions(+), 238 deletions(-)
Release 2024-12-13-01-28-38
GCP IAM Update 2024-12-13-01-28-38
gcp_roles_cai.json | 134 +++++++++++----------
roles/anthossupport.serviceAgent | 2 +
roles/appengine.appAdmin | 1 +
roles/appengine.codeViewer | 1 +
roles/appengine.serviceAdmin | 1 +
roles/appengineflex.serviceAgent | 5 +
roles/auditmanager.ccfAdmin (new) | 7 ++
roles/auditmanager.ccfViewer (new) | 17 +++
roles/backupdr.admin | 1 +
roles/backupdr.backupConfigViewer (new) | 0
roles/batch.serviceAgent | 10 ++
roles/bigquery.admin | 1 +
roles/bigquery.resourceEditor | 1 +
roles/bigquery.resourceViewer | 1 +
roles/bigquery.studioAdmin | 47 +++++++-
roles/bigquery.studioUser | 46 ++++++-
roles/bigquery.user | 1 +
roles/bigquerymigration.editor | 5 +-
roles/bigquerymigration.orchestrator | 3 -
roles/bigquerymigration.viewer | 2 -
roles/billing.viewer | 3 +
roles/cloudsql.admin | 4 +
roles/cloudsql.studioUser | 4 +
roles/commerceorggovernance.admin | 2 +
roles/commerceorggovernance.user | 2 +
roles/composer.serviceAgent | 22 ++++
roles/compute.instanceAdmin | 10 ++
roles/compute.instanceAdmin.v1 | 10 ++
roles/container.cloudKmsKeyUser | 1 +
roles/container.serviceAgent | 10 ++
roles/dataflow.serviceAgent | 18 +++
roles/datafusion.serviceAgent | 2 +
roles/datapipelines.serviceAgent | 2 +
roles/dataplex.serviceAgent | 3 +
roles/dataprep.serviceAgent | 3 +
roles/dataproc.serverlessEditor (new) | 55 +++++++++
roles/dataproc.serverlessNode (new) | 0
roles/dataproc.serverlessViewer (new) | 22 ++++
roles/discoveryengine.user | 6 +-
roles/dlp.orgdriver | 7 +-
roles/editor | 85 ++++++++++++-
roles/firebaseapphosting.serviceAgent | 1 +
roles/gkehub.admin | 5 +
roles/gkehub.editor | 5 +
roles/gkehub.viewer | 2 +
roles/healthcare.fhirStoreAdmin | 2 +
roles/iam.securityAdmin | 19 ++-
roles/iam.securityReviewer | 19 ++-
roles/krmapihosting.anthosApiEndpointServiceAgent | 5 +
roles/lifesciences.serviceAgent | 10 ++
roles/logging.configWriter | 5 +
roles/logging.viewer | 2 +
roles/meshcontrolplane.serviceAgent | 2 +
roles/ml.serviceAgent | 2 +
roles/notebooks.admin | 2 +
roles/notebooks.legacyViewer | 2 +
roles/notebooks.viewer | 2 +
roles/observability.admin | 5 +
roles/oracledatabase.autonomousDatabaseViewer | 1 -
roles/oracledatabase.viewer | 1 -
roles/orgpolicy.policyAdmin | 8 +-
roles/owner | 93 ++++++++++++--
.../recommender.firestoredatabasereliabilityAdmin | 2 +-
roles/recommender.viewer | 8 ++
roles/run.sourceDeveloper | 28 +++++
roles/storage.admin | 2 +
roles/telcoautomation.admin | 2 +
roles/tpu.admin | 1 +
roles/viewer | 43 ++++++-
roles/visualinspection.serviceAgent | 2 +
roles/workflows.editor | 4 +
roles/workflows.viewer | 4 +-
72 files changed, 750 insertions(+), 96 deletions(-)
Release 2024-11-17-01-30-48
GCP IAM Update 2024-11-17-01-30-48
gcp_roles_cai.json | 132 +++++++++++----------
.../aiplatform.onlinePredictionServiceAgent (new) | 25 ++++
roles/aiplatform.ragServiceAgent | 5 +-
roles/batch.serviceAgent | 3 +
roles/chronicle.admin | 5 +-
roles/chronicle.editor | 3 +-
roles/chronicle.limitedViewer | 1 -
roles/chronicle.restrictedDataAccessViewer | 7 ++
roles/chronicle.viewer | 3 +-
roles/chroniclesm.admin | 1 +
roles/chroniclesm.viewer | 1 +
roles/cloudaicompanion.serviceAgent | 4 +-
roles/cloudaicompanion.user | 1 +
roles/cloudtpu.serviceAgent | 4 +
roles/composer.serviceAgent | 4 +
roles/compute.admin | 4 +
roles/compute.instanceAdmin.v1 | 3 +
roles/compute.networkAdmin | 3 +
roles/compute.networkUser | 2 +
roles/compute.networkViewer | 2 +
roles/compute.viewer | 3 +
roles/container.serviceAgent | 4 +
roles/dataflow.serviceAgent | 3 +
roles/datafusion.serviceAgent | 2 +
roles/dataplex.admin | 5 +
roles/dataplex.encryptionAdmin (new) | 14 +++
roles/dataprep.serviceAgent | 3 +
roles/dialogflow.serviceAgent | 3 +
roles/discoveryengine.admin | 3 +
roles/dlp.orgdriver | 29 +++++
roles/dlp.projectdriver | 29 +++++
roles/editor | 52 +++++++-
roles/genomics.serviceAgent | 3 +
roles/iam.denyAdmin | 8 +-
roles/iam.principalAccessBoundaryAdmin | 1 +
roles/iam.securityAdmin | 13 ++
roles/iam.securityReviewer | 13 ++
roles/licensemanager.admin (new) | 28 +++++
roles/licensemanager.viewer (new) | 21 ++++
roles/lifesciences.serviceAgent | 3 +
roles/netapp.admin | 1 +
roles/notebooks.admin | 3 +
roles/notebooks.legacyAdmin | 4 +
roles/notebooks.legacyViewer | 3 +
roles/notebooks.runner | 3 +
roles/notebooks.serviceAgent | 3 +
roles/notebooks.viewer | 3 +
roles/owner | 54 ++++++++-
roles/paymentsresellersubscription.partnerAdmin | 1 +
...ntsresellersubscription.userSessionEditor (new) | 10 ++
roles/policyanalyzer.activityAnalysisViewer | 1 +
roles/policysimulator.admin | 4 +
roles/redis.admin | 10 ++
roles/redis.editor | 5 +
roles/redis.viewer | 4 +
roles/riskmanager.serviceAgent | 1 +
roles/run.jobsExecutor (new) | 11 ++
roles/run.jobsExecutorWithOverrides (new) | 12 ++
roles/run.servicesInvoker (new) | 10 ++
roles/securitycenter.adminEditor | 1 +
roles/securitycenter.adminViewer | 1 +
roles/securitycenter.settingsViewer | 1 +
roles/securitycentermanagement.settingsViewer | 1 +
roles/securitycentermanagement.viewer | 1 +
roles/spanner.admin | 1 +
roles/spanner.databaseAdmin | 1 +
roles/spanner.databaseReader | 1 +
roles/spanner.databaseReaderWithDataBoost | 3 +-
roles/spanner.databaseUser | 1 +
roles/storage.legacyBucketOwner | 7 ++
roles/viewer | 31 ++++-
71 files changed, 572 insertions(+), 74 deletions(-)
Release 2024-11-16-13-13-43
GCP IAM Update 2024-11-16-13-13-43
gcp_roles_cai.json | 105 ++++++++++-----------
.../aiplatform.onlinePredictionServiceAgent (gone) | 25 -----
roles/aiplatform.ragServiceAgent | 5 +-
roles/chronicle.limitedViewer | 1 +
roles/chronicle.restrictedDataAccessViewer | 7 --
roles/chronicle.viewer | 3 +-
roles/chroniclesm.viewer | 1 -
roles/cloudaicompanion.serviceAgent | 4 +-
roles/cloudaicompanion.user | 1 -
roles/composer.serviceAgent | 4 -
roles/compute.admin | 4 -
roles/compute.instanceAdmin.v1 | 3 -
roles/compute.networkAdmin | 3 -
roles/compute.networkUser | 2 -
roles/compute.viewer | 3 -
roles/container.serviceAgent | 4 -
roles/dataflow.serviceAgent | 3 -
roles/datafusion.serviceAgent | 2 -
roles/dataplex.admin | 5 -
roles/dataplex.encryptionAdmin (gone) | 14 ---
roles/dataprep.serviceAgent | 3 -
roles/dialogflow.serviceAgent | 3 -
roles/discoveryengine.admin | 3 -
roles/dlp.orgdriver | 29 ------
roles/dlp.projectdriver | 29 ------
roles/editor | 52 +---------
roles/genomics.serviceAgent | 3 -
roles/iam.denyAdmin | 8 +-
roles/iam.principalAccessBoundaryAdmin | 1 -
roles/iam.securityAdmin | 13 ---
roles/iam.securityReviewer | 13 ---
roles/lifesciences.serviceAgent | 3 -
roles/notebooks.admin | 3 -
roles/notebooks.legacyAdmin | 4 -
roles/notebooks.legacyViewer | 3 -
roles/notebooks.runner | 3 -
roles/notebooks.serviceAgent | 3 -
roles/notebooks.viewer | 3 -
roles/owner | 54 +----------
roles/paymentsresellersubscription.partnerAdmin | 1 -
...tsresellersubscription.userSessionEditor (gone) | 10 --
roles/redis.admin | 10 --
roles/redis.editor | 5 -
roles/redis.viewer | 4 -
roles/riskmanager.serviceAgent | 1 -
roles/run.jobsExecutor (gone) | 11 ---
roles/run.jobsExecutorWithOverrides (gone) | 12 ---
roles/run.servicesInvoker (gone) | 10 --
roles/securitycenter.adminEditor | 1 -
roles/securitycenter.adminViewer | 1 -
roles/securitycenter.settingsViewer | 1 -
roles/securitycentermanagement.viewer | 1 -
roles/spanner.databaseReader | 1 -
roles/spanner.databaseReaderWithDataBoost (new) | 22 +++++
roles/spanner.databaseUser | 1 -
roles/storage.legacyBucketOwner | 7 --
roles/viewer | 31 +-----
57 files changed, 81 insertions(+), 481 deletions(-)