summaryrefslogtreecommitdiff
path: root/scripts/00-create-service-account.sh
blob: 984e55ba412a8aa8da16b98ca6a42ebc468e1c6c (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

#!/bin/sh

gcloud iam service-accounts create ${SERVICE_ACCOUNT} \
    --description="Spark access account to Google Cloud Buckets" \
    --display-name="Spark to Bucket"

gcloud projects add-iam-policy-binding ${PROJECT} \
    --member="serviceAccount:${SERVICE_ACCOUNT}@${PROJECT}.iam.gserviceaccount.com" \
    --role="roles/storage.objectAdmin"

gcloud projects add-iam-policy-binding ${PROJECT} \
    --member="serviceAccount:${SERVICE_ACCOUNT}@${PROJECT}.iam.gserviceaccount.com" \
    --role="roles/dataproc.worker"

gcloud iam service-accounts keys create ./google-service-account-key.json \
    --iam-account=${SERVICE_ACCOUNT}@${PROJECT}.iam.gserviceaccount.com
generated by cgit v1.2.3-18-g5258 (git 2.32.0) at 2025-04-02 23:12:32 +0000