Cloud Config: Make report bucket public.
mvanotti opened this issue · comments
I am following the documentation for setting up a cloud project, and there's step that mentions that you should make the report bucket public.
The first question is if that means that anyone can access the report bucket from their browser? If so, is it possible to add some ACL enforcement to make it so only allowed people can access the reports?
The second part of the issue is that even running that command does not seem to work:
gsutil iam ch allUsers:objectViewer gs://$REPORT_BUCKET_NAME<{
"error": {
"code": 412,
"message": "One or more users named in the policy do not belong to a permitted customer.",
"errors": [
{
"message": "One or more users named in the policy do not belong to a permitted customer.",
"domain": "global",
"reason": "conditionNotMet",
"locationType": "header",
"location": "If-Match"
}
]
}
}
>
I am an owner on the gcp project, so I don't know what else needs to be done.
The first question is if that means that anyone can access the report bucket from their browser?
I am pretty sure FB can use a private bucket: We offer that service to users seeking private evaluations.
I am an owner on the gcp project, so I don't know what else needs to be done.
You can also change the setting in the WebUI. It's under the 'PERMISSIONS' tab of your bucket.
Hi @mvanotti, were you able to make your bucket private in this way?