Associate GCE service account with logging and monitoring API access to cell VM instances

elotl / kip

Virtual-kubelet provider running pods in cloud instances

Apache License 2.0

223 stars 14 forks source link

Associate GCE service account with logging and monitoring API access to cell VM instances #92

Closed ldx closed 4 years ago

ldx commented 4 years ago

Applications running on the VM use the service account of the instance to call Google Cloud APIs. We need a service account for cells that has the permissions "logs.write" and "monitoring.write", so that we can run the monitoring and logging agents.

ldx commented 4 years ago

https://cloud.google.com/monitoring/agent/authorization https://cloud.google.com/logging/docs/agent/authorization

ldx commented 4 years ago

Fixed in #114