User permissions
Assign permissions to your user.
In GCP, you don't directly grant users permissions. Instead, you grant them roles. These are the permissions associated with the roles that you granted to use Function Store and a brief description of what they do:
Permission | Description |
cloudfunctions.functions.create | Create new functions. |
cloudfunctions.functions.delete | Delete functions. |
cloudfunctions.functions.setIamPolicy | Update IAM policies associated with a function. |
cloudfunctions.functions.update | Update existing functions. |
cloudfunctions.functions.list | List functions. |
cloudfunctions.functions.get | View functions, excluding IAM policies. |
serviceusage.services.get | Returns the service configuration and enabled state for a given service. |
serviceusage.services.enable | Enable a service so that it can be used with a project. |
resourcemanager.projects.get | Grant permissions to retrieve Firebase project information. |
firebaseauth.users.get | Retrieve a list of existing Authentication users. |
firebaseauth.users.update | Update existing users in Authentication. |
iam.serviceAccounts.actAs | Permission to impersonate a service account in order to attach that service account to a resource. |
Note that for HTTPS functions, you need to set up the cloudfunctions.functions.setIamPolicy to invoke the function.
Once you've granted these permissions by assigning roles to your service account, it's time to link a billing account. In the next section, we'll guide you through the process👇.
Last updated