just gcp-sa create-sa project sa_name sa_description:
The Service Account Manager Service Account can create and manage other service accounts
Running the following command will:
- Create the Service Account Manager Service Account
- Generate the Service Account Key in the
credentialsfolder - Authenticate gcloud with the Service Account
just gcp-sa create-sa-manager PROJECT_ID
Running the following command will:
- Create the service accounts required to set up and run the cluster:
- Activate the GCP APIs required for the cluster
just gcp-cluster sa-accounts-setup PROJECT:
To create a key for an existing service account, run
just gcp-sa create-sa-key project sa_name key_file:
key_file: the path to where you want the key file to be created.
Below are the various service accounts defined in the project and how they're meant to be used.