On this Page
You can create an account with the Designer or Manager. In Designer, when working on pipelines, every Snap that needs an account prompts you to create a new account or use an existing account. The accounts can be created in or used from:
Create a Service Account in the Google Cloud console.
Create a custom role and grant it to the Service account. It’s necessary for the custom role to have one or more of the following permissions depending on the type of operation performed, insufficient permissions will fail the Snap:
storage.objects.get (Read)
storage.objects.list (Read)
storage.objects.create (Write)
storage.objects.update (Write)
storage.objects.delete (Write)
The storage.buckets.list permission is required to use the Snap Account Validation feature.
In Manager, you can navigate to the required folder and create an account in it (see Accounts). To create an account for binary files:
Supply the necessary information.
Label | Required. User-provided label for the account instance. Default value: N/A | |
---|---|---|
JSON Key | Required. The relative path of the JSON key in the SLDB. You can upload the JSON file to the SLDB by clicking → Upload.
Example: ../shared/testproject1234-a0545b98719d_dummy.json Default value: N/A |
Standard Encryption | If you are using Standard Encryption, the High sensitivity settings under Enhanced Encryption are followed. | |
---|---|---|
Enhanced Encryption | If you have the Enhanced Account Encryption feature, the following describes which fields are encrypted for each sensitivity level selected per account.
|