googleCloudRunner
googleCloudRunner copied to clipboard
MarkEdmondson1234
http_403 error for test #5
Hi Mark,
When I run test number 5 (Cloud Scheduler -- R script), I get an http_403 error (user not authorized to perform this action). Any idea what might be causing this? I am running the development version, which I just installed now.
Here is the exact text for the test and error message:
-- Testing scheduling R script deployments via cr_deploy_r(schedule = '* * * * *') --
i 2022-03-30 08:30:56 > Deploy R script cr_rscript_2022031648643456083056 to Cloud Build i 2022-03-30 08:30:56 > Scheduling R script on cron schedule: * * * * * i 2022-03-30 08:30:56 > Creating PubSub topic: cr_rscript_2022031648643456083056-topic √ projects/recession-charts/topics/cr_rscript_2022031648643456083056-topic succesfully created i 2022-03-30 08:31:01 > Request Status Code: 403 Error: http_403 User not authorized to perform this action.
Thanks for your help!
Thanks - would you mind reporting what IAM roles the service account you created in setup has in the web console? By default called googlecloudrunner@{project-id}.iam.gserviceaccount.com
Should see it on this URL: https://console.cloud.google.com/iam-admin/iam
Is it different from this?
Yes, it is different. I only see a subset of those roles:
Did I miss a step during the setup or something?
Its probably my fault with the permissions code. Would you mind running the test to fail again, with options(googleAuthR.verbose=2) to give more logging info? That can narrow down which service is missing. As it stands now I suspect maybe its the general Viewer role that is necessary for viewing logs.
OK, sure. Here is what I see when I run it that way:
-- Testing scheduling R script deployments via cr_deploy_r(schedule = '* * * * *') --
i 2022-03-30 11:14:53 > Deploy R script cr_rscript_2022031648653293111453 to Cloud Build
i 2022-03-30 11:14:53 > Scheduling R script on cron schedule: * * * * *
i 2022-03-30 11:14:53 > Creating PubSub topic: cr_rscript_2022031648653293111453-topic
i 2022-03-30 11:14:53 > Token exists.
i 2022-03-30 11:14:53 > Request: https://pubsub.googleapis.com/v1/projects/recession-charts/topics/cr_rscript_2022031648653293111453-topic/
i 2022-03-30 11:14:53 > Body JSON parsed to: {}
√ projects/recession-charts/topics/cr_rscript_2022031648653293111453-topic succesfully created
i 2022-03-30 11:14:57 > data json: "projects/recession-charts/topics/cr_rscript_2022031648653293111453-topic"
i 2022-03-30 11:14:57 > data encoded to: InByb2plY3RzL3JlY2Vzc2lvbi1jaGFydHMvdG9waWNzL2NyX3JzY3JpcHRfMjAyMjAzMTY0ODY1MzI5MzExMTQ1My10b3BpYyI=
i 2022-03-30 11:14:57 > Token exists.
i 2022-03-30 11:14:57 > Request: https://pubsub.googleapis.com/v1/projects/recession-charts/topics/cr_rscript_2022031648653293111453-topic/
i 2022-03-30 11:14:57 > Request Status Code: 403
i 2022-03-30 11:14:57 > API error: User not authorized to perform this action.
i 2022-03-30 11:14:57 > No retry attempted: User not authorized to perform this action.
i 2022-03-30 11:14:57 > Custom error 403 User not authorized to perform this action.
Error in abort_http():
! http_403 User not authorized to perform this action.
Does that help?