Cloud Run Jobs events to trigger Cloud Function with EventArc
I set up a Terraform google_cloudfunctions2_function with the following trigger config:
event_trigger {
trigger_region = var.region
event_type = "google.cloud.audit.log.v1.written"
retry_policy = "RETRY_POLICY_RETRY"
service_account_email = google_service_account.event.email
event_filters {
attribute = "serviceName"
value = "run.googleapis.com"
}
event_filters {
attribute = "methodName"
value = "/Jobs.RunJob"
}
...
If I query the Cloud Logs for:
protoPayload.serviceName="run.googleapis.com"
protoPayload.methodName="/Jobs.RunJob"
I can see the events there, but they're not triggering my Cloud Function. Roles are all there:
- roles/eventarc.eventReceiver
- roles/run.invoker
- roles/cloudfunctions.invoker
What am I doing wrong?
What's odd is that this is all v1 in my Audit Logs. The job is created as google_cloud_run_v2_job in Terraform and I explicitly added execution_environment = "EXECUTION_ENVIRONMENT_GEN2", but still v1.
In the Cloud Logs, I can find/filter by those parameters for the events I want to use as a trigger:
I can't believe it is that difficult to trigger something when a Cloud Run Job is done! There should be a simple event already on PubSub just like Cloud Build.
None of the Eventarc methods worked and we subscribed to paid Google Cloud support to get this resolved. The answer is a Log Sink with the following filter:
resource.type = cloud_run_job
protoPayload.status.message =~ Execution.*.has completed successfully
With PubSub as destination.
- python 3: Using pisa for creating pdf with multiple image urls in html content, rendering images incorrectly
- schedule autoscaler in terraform for GCP?
- Multiple STRING_AGG in one query
- Why aren't nacked messages ending up in my dead letter topic?
- Handle 503 error when making jobs.insert call
- Use http Google Cloud Functions "Require Authentication" with Firebase
- Google App Engine slow cold boot time (Flask app)
- gcloud SSH in same terminal window
- Cannot enable API on GCP (User role=Owner && Billing account is linked)
- Select All Columns Except Some in Google BigQuery?
- Why does my flex env google app engine instance have a minimum of 2 instances running, even when there is no traffic?
- How Does GCP Global Application Load Balancer Select the Closest Backend?
- How to use Google Search Grounding with Dynamic Retrieval Configuration
- Google Stackdriver Logging add comments to advanced filter
- Exporting from Cloud SQL to CSV with column headers
- BigQuery Date-Partitioned Views
- Check TPU workload/utilization
- Google Forms API raises google.auth.exceptions.RefreshError: 'No access token in response.'
- How can I see request count (not rate) for a Google Cloud Run application?
- I can write to my Firebase Firestore database, but am unable to read from it (Android Studio using Java)
- How to get task count in GCP cloud task
- Programmatically get current Service Account on GCP
- How to Access GKE Private Master from VPN in Hub VPC with Peering
- My gcp service account with "artifact registry admin" account was not able to push the docker image to repo
- GCP API Gateway: Cannot use path params
- Flask api on gcloud's URL keeps on loading
- GCP CloudBuild substitution fails in pipeline
- Is it secure to use an .env file to store API keys in Firebase Cloud Functions instead of Google Secret Manager?
- How do I keep a long-running background task from stopping on Google Cloud Run?
- GCP Cloud SQL Proxy times out: connectex