Google Cloud Storage (GCS) Destination

Use your existing Cloud Storage Bucket or create one if needed.

• Follow the steps in the Cloud Storage documentation to create one.

Create a Custom IAM Role.

• Use the following permissions and follow the IAM Role documentation.

  {
      "title": "CustomStorageRole",
      "description": "Custom role for accessing specific Cloud Storage bucket",
      "stage": "GA",
      "includedPermissions": [
          "storage.buckets.get",
          "storage.objects.get",
          "storage.objects.list",
          "storage.objects.create",
          "storage.objects.delete"
      ]
  }

Create a new Service Account and assign Roles.

• Follow the steps to create a new service account key, grant it the Custom Role for your bucket following the Bucket Permissions documentation.

Create a GCS connection.

• Download and record the JSON key file securely for the new service account and create a GCS connection.

Assign the custom role to the service account by following the instructions in Bucket Permissions documentation.