Establish a workflow for managing employees, service accounts, credentials

[ilyasotkov]

The workflow for granting access to an employee should be well-established and secure.

Read this article about GCP Service Accounts and credentials for them: https://cloud.google.com/iam/docs/understanding-service-accounts

[ilyasotkov]

This is a good overview of how IAM works on GCP: https://cloud.google.com/iam/docs/overview

[ilyasotkov]

https://github.com/ilyasotkov/exekube/issues/8

[ilyasotkov]

We already have this file https://github.com/ilyasotkov/exekube/blob/develop/live/infra/gcp-ethereal-argon/access.tf for testing out GCP IAM and policy resources, but it doesn't do anything useful yet.