I have so many permissions and I'm still getting Error updating project googleapi: Error 403: The caller does not have permission, forbidden

Question

My permissions at the organization level are

Billing Account Administrator 
Billing Account Creator 
Billing Account Viewer 
Folder Creator 
Organization Policy Administrator 
Organization Viewer 
Owner 
Project Billing Manager 
Project Creator 
Project IAM Admin 
Project Mover 
Security Admin 
Service Account Token Creator 
Service Usage Admin Viewer

I'm trying to redeploy a project in Terraform that builds cloud build and a terraform service account and set some IAM roles. I'm still doing the initial deployment of these resources locally, so I'm pretty sure the permissions to do this fall on me? What could I possibly need to stop getting the error: Error updating project "______": googleapi: Error 403: The caller does not have permission, forbidden on my google_project resource.

It honestly doesn't make sense at this point because I feel like I'm absolutely overloaded and still getting this error.

Answer 1

How should I know my account has proper permissions to run, I usually go to reference to check my permission. In this case, I would go to Method: projects.builds.create try that method, and see what response will show.

Also, check out IAM roles and permissions, you may use predefined Cloud Build roles of Cloud Build Editor in specific project.