Reputation: 3522
How to copy files from a bucket using gsutil from within a container on GCE
I have a container running within GCE kubernetes engine which is trying to copy some data from a bucket to a mounted persistent disk:
gsutil -m rsync -r -d "gs://${DB_BUCKET}/db" /db
When the container runs, it fails with the following message:
AccessDeniedException: 403 [email protected] does not have storage.objects.list access to my-bucket-db-data
If I look at the service account, it does appear to have permissions to view storage buckets. I create a populate this bucket as part of my deployment process if that makes any difference.
What permissions do I need to grant/how to be able to sync the data from the bucket across?
Upvotes: 1
Views: 1302
Answers (1)
Reputation: 1225
You need to add referred permission to [email protected]:
Follow this steps:
1) Access Permissions tab into ${DB_BUCKET}
2) Search for your service account in the search input field
3) In the Role(s) column find "Storage Object Viewer" role
Upvotes: 3
Related Questions
- How to copy file from bucket GCS to my local machine
- How to copy files from a kubernetes pod to a Google Cloud bucket programmatically
- copy files to GCP bucket without gcloud or gsuilt?
- Using gsutil to copy a file from a GKE container fails with AccessDeniedException: 403 Insufficient Permission
- Copy files to Container-Optimised OS from a GCP Storage bucket
- cloud/gsutil copy files from instance to bucket
- Copy file from pod to GCE bucket
- Copy files from remote server to google cloud bucket
- `gsutil cp` from Storage to compute instance running container doesn't copy files
- Copying files from AWS s3 (SSE) bucket to google cloud