Skip to content

Does GoogleCloudStorageClient need to "get" a bucket to access it? #622

New issue
New issue
Open
Open
Does GoogleCloudStorageClient need to "get" a bucket to access it?#622
Labels
backendRelated to the back enddevopsSystem admin and devopsquestionFurther information is requestedsecurityA security-related feature
@cortadocodes

Description

@cortadocodes
cortadocodes
opened on Dec 11, 2023

To access a bucket, the GoogleCloudStorageClient uses a get_bucket method that requires the storage.buckets.get permission. Do we actually need to get the bucket or are we able to interact with buckets using lower level objects permissions instead of higher level bucket permissions? If we don't need to get buckets, we can reduce the number of permissions given to service accounts.

Metadata

Metadata

Assignees

No one assigned

    Labels

    backendRelated to the back enddevopsSystem admin and devopsquestionFurther information is requestedsecurityA security-related feature

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions