I'm trying to configure cloud build for a customer but I'm not sure how grant some people only the viewer access for this app. My goal is to have a cloud build configured for their github testing and they should be able to view each run.
If I give them roles/cloudbuild.builds.viewer
then they cannot view inside a particular build and see how their test run.
I can give them the roles/viewer
role but this is not what I need as they can also view everything else in the project.
I know there was an issue with this in the past Google Cloud Build - View logs permissions but maybe there was some fix created over the years?
Any ideas?
If you want to share the logs of Cloud build, you must grant the user as Cloud logging Viewer to allow them to access the logs. Use the logging.viewer
role for that