I have a client who wishes to transfer 200GB of sensitive data to us. I would like them to upload this data to a GCloud bucket.
What is the best way to set up an external user to have access to a single new bucket and be able to upload?
google-cloud-platform
Add a comment
|
1 Answer
Through GCP Console try below 2 ways to set up an external user access:
1.Your client requires a valid Google Account (Gmail Account):
- Go to Console
- Select Cloud Storage
- Select Bucket
- Click on Create (new bucket)
- After creating a bucket click on the newly created bucket
- Click on Permissions
- Click on +Grant access
- Add the user’s Google Account (Gmail Acocunt)
- Select Storage Object Creator role.
- Now the created role grants the permissions to create objects(upload data) into the bucket.
2. A service account can be used to grant access to resources :
- Go to Console
- Select IAM & Admin
- Select Service Accounts
- Click on +Create Service Account
- Click on the created service account
- Click on Permissions
- Service account permission, select a role
- Select Storage
- Storage Object Creator Click to continue
- Click on Create Key
- Check the JSON button for the key type
- Save the created JSON file.
Now your service account is created. Make a note of the email address created by Google Cloud which is like d*****@****-dev.iam.gserviceaccount.com and the JSON file credentials.
For further information go through the GCloud Official documents.
References :