/

What is the difference between Owner role vs Custom role?

What is the difference between Owner role vs Custom role?

Owned by Vitaliy Loktyev (Unlicensed)

Last updated: Aug 29, 2024 by Liliia Ostrovska

1 min read

Our service uses API to interact with Google Cloud. The algorithm is:

The app needs to create a dataset first by calling Method: datasets.insert | BigQuery | Google Cloud. This requires bigquery.datasets.create permission.

After the dataset is created, the app creates tables with Method: tables.insert | BigQuery | Google Cloud request. Required permission - bigquery.tables.create.

Then the app can insert data into tables: Method: tabledata.insertAll | BigQuery | Google Cloud. Required permission: bigquery.tables.updateData.

On each refresh of the same data source, the app has to remove all tables and re-create them. Thus, another required permission is bigquery.tables.delete.

One predefined IAM role covers all these permissions: bigquery.dataOwner. And documentation states the following:

If a user has bigquery.datasets.create permissions, when that user creates a dataset, they are granted bigquery.dataOwner access to it. bigquery.dataOwner access gives the user the ability to copy tables and partitions in the dataset, but access to the destination dataset is required unless the user also created the destination dataset.

This means custom roles with only bigquery.datasets.create permission should work.

Related content

Administrator Guide

Administrator Guide

BigQuery Connector for Jira Cloud

Read with this

How to Create Service Account Key

How to Create Service Account Key

BigQuery Connector for Jira Cloud

Read with this

Schedule a Refresh on Power BI Service

Schedule a Refresh on Power BI Service

Power BI Connector for Jira

Read with this

User Guide

Power BI Connector for monday.com

Read with this

Supported Apps

Power BI Connector for Jira Cloud

Read with this

Data Schema

Power BI Connector for Jira Cloud

Read with this