I have created a service account in order to deploy a project to google app engine.
The service account I have created has these two roles:
I downloaded the json key file, and then run these commands:
gcloud auth activate-service-account --key-file key.json
gcloud -q app deploy app_deploy.yaml --version 1.0 --promote
I got this error message:
ERROR: (gcloud.app.deploy) Error Response: [403] Operation not allowed
Details: [
[
{
"@type": "type.googleapis.com/google.rpc.ResourceInfo",
"description": "The \"appengine.applications.get\" permission is required.",
"resourceType": "gae.api"
}
]
]
What role did I miss to add?
It works if I replace the role App Engine -> App Engine Deployer with App Engine -> App Engine Admin.
No idea why Deployer will not be sufficient for app deployment.