Para usar o Firebase Data Connect, atribua papéis do IAM que permitam gerenciar conectores, acessar o Cloud SQL e gerar SDKs. Verifique se a conta de serviço que executa o Data Connect tem as permissões necessárias.
Papéis granulares do IAM para Data Connect
Os papéis básicos e predefinidos do Firebase são mapeados para papéis de nível inferior do Data Connect. Consulte a tabela para ver o mapeamento.
Para gerenciar atribuições individuais de papéis do IAM para Data Connect em um nível mais granular, use o console Google Cloud.
| Papel do IAM | Permissões |
|---|---|
firebasedataconnect.googleapis.com/adminAdministrador da API Firebase Data Connect Essa função inclui o leitor da API Firebase Data Connect. É equivalente a firebasedataconnect.*.Isso é fornecido pelas funções de proprietário do Cloud, editor do Cloud, administrador do Firebase e administrador do Firebase Develop. |
Acesso completo aos recursos da API Firebase Data Connect, inclusive dados.firebasedataconnect.googleapis.com/operations.deletefirebasedataconnect.googleapis.com/operations.cancelfirebasedataconnect.googleapis.com/services.createfirebasedataconnect.googleapis.com/services.updatefirebasedataconnect.googleapis.com/services.deletefirebasedataconnect.googleapis.com/services.executeGraphqlfirebasedataconnect.googleapis.com/services.executeGraphqlReadfirebasedataconnect.googleapis.com/schemas.createfirebasedataconnect.googleapis.com/schemas.updatefirebasedataconnect.googleapis.com/schemas.deletefirebasedataconnect.googleapis.com/schemaRevisions.createfirebasedataconnect.googleapis.com/schemaRevisions.deletefirebasedataconnect.googleapis.com/connectors.createfirebasedataconnect.googleapis.com/connectors.updatefirebasedataconnect.googleapis.com/connectors.deletefirebasedataconnect.googleapis.com/connectorRevisions.createfirebasedataconnect.googleapis.com/connectorRevisions.delete
|
firebasedataconnect.googleapis.com/viewerLeitor da API Firebase Data Connect É fornecido pelas funções de proprietário, editor, leitor, administrador do Firebase, leitor do Firebase, administrador de desenvolvimento do Firebase e leitor de desenvolvimento do Firebase do Cloud. |
Acesso somente leitura aos recursos da API Firebase Data Connect. O papel não concede acesso aos dados.cloudresourcemanager.googleapis.com/projects.listcloudresourcemanager.googleapis.com/projects.getfirebasedataconnect.googleapis.com/operations.listfirebasedataconnect.googleapis.com/operations.getfirebasedataconnect.googleapis.com/locations.listfirebasedataconnect.googleapis.com/locations.getfirebasedataconnect.googleapis.com/services.listfirebasedataconnect.googleapis.com/services.getfirebasedataconnect.googleapis.com/schemas.listfirebasedataconnect.googleapis.com/schemas.getfirebasedataconnect.googleapis.com/schemaRevisions.listfirebasedataconnect.googleapis.com/schemaRevisions.getfirebasedataconnect.googleapis.com/connectors.listfirebasedataconnect.googleapis.com/connectors.getfirebasedataconnect.googleapis.com/connectorRevisions.listfirebasedataconnect.googleapis.com/connectorRevisions.get
|
firebasedataconnect.googleapis.com/dataAdminAdministrador de dados da API Firebase Data Connect Fornecido pelas funções de proprietário, editor, administrador do Firebase e administrador de desenvolvimento do Firebase. |
Acesso completo de leitura e gravação às fontes de dados.firebasedataconnect.googleapis.com/services.executeGraphqlfirebasedataconnect.googleapis.com/services.executeGraphqlRead
|
firebasedataconnect.googleapis.com/dataViewerLeitor de dados da API Firebase Data Connect Fornecido pelas funções de proprietário do Cloud, editor do Cloud, administrador do Firebase e administrador de desenvolvimento do Firebase. |
Acesso somente leitura a fontes de dados.firebasedataconnect.googleapis.com/services.executeGraphqlRead
|