# Licensed to the Apache Software Foundation (ASF) under one or more # contributor license agreements. See the NOTICE file distributed with # this work for additional information regarding copyright ownership. # The ASF licenses this file to You under the Apache License, Version 2.0 # (the "License"); you may not use this file except in compliance with # the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # This file is auto-generated by generate_roles.py. # Do not edit manually. # This file was generated on 2025-08-11 14:34:54 UTC description: This is the beam_infra_manager role permissions: - artifactregistry.aptartifacts.create - artifactregistry.attachments.create - artifactregistry.files.update - artifactregistry.files.upload - artifactregistry.kfpartifacts.create - artifactregistry.packages.update - artifactregistry.projectsettings.update - artifactregistry.repositories.create - artifactregistry.repositories.createOnPush - artifactregistry.repositories.deleteArtifacts - artifactregistry.repositories.update - artifactregistry.repositories.uploadArtifacts - artifactregistry.rules.create - artifactregistry.rules.update - artifactregistry.tags.create - artifactregistry.tags.update - artifactregistry.versions.update - artifactregistry.yumartifacts.create - biglake.catalogs.create - biglake.databases.create - biglake.databases.update - biglake.locks.check - biglake.locks.create - biglake.namespaces.create - biglake.namespaces.update - biglake.tables.create - biglake.tables.lock - biglake.tables.update - biglake.tables.updateData - bigquery.bireservations.update - bigquery.capacityCommitments.update - bigquery.config.update - bigquery.connections.create - bigquery.connections.update - bigquery.connections.updateTag - bigquery.dataPolicies.create - bigquery.dataPolicies.update - bigquery.datasets.updateTag - bigquery.models.create - bigquery.models.updateData - bigquery.models.updateMetadata - bigquery.models.updateTag - bigquery.objectRefs.write - bigquery.reservationAssignments.create - bigquery.reservationGroups.create - bigquery.reservations.create - bigquery.reservations.update - bigquery.routines.create - bigquery.routines.update - bigquery.routines.updateTag - bigquery.rowAccessPolicies.create - bigquery.rowAccessPolicies.update - bigquery.savedqueries.create - bigquery.savedqueries.update - bigquery.tables.createIndex - bigquery.tables.deleteIndex - bigquery.tables.restoreSnapshot - bigquery.tables.updateIndex - bigquery.transfers.update - bigquerymigration.workflows.create - bigquerymigration.workflows.enableAiOutputTypes - bigquerymigration.workflows.enableLineageOutputTypes - bigquerymigration.workflows.enableOutputTypePermissions - bigquerymigration.workflows.update - cloudasset.othercloudconnections.create - cloudasset.othercloudconnections.update - cloudasset.othercloudconnections.verify - cloudasset.savedqueries.create - cloudasset.savedqueries.update - cloudbuild.builds.approve - cloudbuild.builds.create - cloudbuild.builds.update - cloudbuild.connections.create - cloudbuild.connections.update - cloudbuild.integrations.create - cloudbuild.integrations.update - cloudbuild.repositories.create - cloudbuild.workerpools.create - cloudbuild.workerpools.update - cloudbuild.workerpools.use - cloudfunctions.functions.call - cloudfunctions.functions.create - cloudfunctions.functions.generationUpgrade - cloudfunctions.functions.invoke - cloudfunctions.functions.sourceCodeSet - cloudfunctions.functions.update - cloudkms.cryptoKeyVersions.create - cloudkms.cryptoKeyVersions.update - cloudkms.cryptoKeys.create - cloudkms.cryptoKeys.update - cloudkms.ekmConfigs.update - cloudkms.ekmConnections.create - cloudkms.ekmConnections.update - cloudkms.ekmConnections.use - cloudkms.importJobs.create - cloudkms.importJobs.useToImport - cloudkms.kajPolicyConfigs.update - cloudkms.keyRings.create - cloudsql.backupRuns.create - cloudsql.backupRuns.update - cloudsql.databases.create - cloudsql.databases.update - cloudsql.instances.addServerCa - cloudsql.instances.addServerCertificate - cloudsql.instances.clone - cloudsql.instances.connect - cloudsql.instances.create - cloudsql.instances.demoteMaster - cloudsql.instances.executeSql - cloudsql.instances.failover - cloudsql.instances.import - cloudsql.instances.migrate - cloudsql.instances.performDiskShrink - cloudsql.instances.promoteReplica - cloudsql.instances.reencrypt - cloudsql.instances.resetReplicaSize - cloudsql.instances.resetSslConfig - cloudsql.instances.restart - cloudsql.instances.restoreBackup - cloudsql.instances.rotateServerCa - cloudsql.instances.rotateServerCertificate - cloudsql.instances.startReplica - cloudsql.instances.stopReplica - cloudsql.instances.truncateLog - cloudsql.instances.update - cloudsql.instances.updateBackupDrConfig - cloudsql.sslCerts.create - cloudsql.users.create - cloudsql.users.update - compute.addresses.create - compute.addresses.use - compute.autoscalers.create - compute.autoscalers.update - compute.backendBuckets.addSignedUrlKey - compute.backendBuckets.create - compute.backendBuckets.deleteSignedUrlKey - compute.backendBuckets.setSecurityPolicy - compute.backendBuckets.update - compute.backendBuckets.use - compute.backendServices.addSignedUrlKey - compute.backendServices.create - compute.backendServices.deleteSignedUrlKey - compute.backendServices.setSecurityPolicy - compute.backendServices.update - compute.backendServices.use - compute.commitments.create - compute.commitments.update - compute.commitments.updateReservations - compute.crossSiteNetworks.create - compute.crossSiteNetworks.update - compute.diskSettings.update - compute.disks.addResourcePolicies - compute.disks.create - compute.disks.removeResourcePolicies - compute.disks.resize - compute.disks.setLabels - compute.disks.startAsyncReplication - compute.disks.stopAsyncReplication - compute.disks.stopGroupAsyncReplication - compute.disks.update - compute.disks.use - compute.externalVpnGateways.create - compute.externalVpnGateways.setLabels - compute.externalVpnGateways.use - compute.firewallPolicies.cloneRules - compute.firewallPolicies.create - compute.firewallPolicies.update - compute.firewallPolicies.use - compute.firewalls.create - compute.firewalls.update - compute.forwardingRules.create - compute.forwardingRules.pscCreate - compute.forwardingRules.pscDelete - compute.forwardingRules.pscSetLabels - compute.forwardingRules.pscUpdate - compute.forwardingRules.setTarget - compute.forwardingRules.update - compute.forwardingRules.use - compute.futureReservations.create - compute.futureReservations.update - compute.globalAddresses.create - compute.globalAddresses.createInternal - compute.globalAddresses.deleteInternal - compute.globalAddresses.use - compute.globalForwardingRules.create - compute.globalForwardingRules.pscCreate - compute.globalForwardingRules.pscDelete - compute.globalForwardingRules.pscSetLabels - compute.globalForwardingRules.pscUpdate - compute.globalForwardingRules.update - compute.globalNetworkEndpointGroups.attachNetworkEndpoints - compute.globalNetworkEndpointGroups.create - compute.globalNetworkEndpointGroups.detachNetworkEndpoints - compute.globalNetworkEndpointGroups.use - compute.globalPublicDelegatedPrefixes.create - compute.globalPublicDelegatedPrefixes.updatePolicy - compute.healthChecks.create - compute.healthChecks.update - compute.healthChecks.use - compute.httpHealthChecks.create - compute.httpHealthChecks.update - compute.httpsHealthChecks.create - compute.httpsHealthChecks.update - compute.images.create - compute.images.deprecate - compute.images.setLabels - compute.images.update - compute.instanceGroupManagers.create - compute.instanceGroupManagers.update - compute.instanceGroupManagers.use - compute.instanceGroups.create - compute.instanceGroups.update - compute.instanceGroups.use - compute.instanceSettings.update - compute.instanceTemplates.create - compute.instances.addAccessConfig - compute.instances.addNetworkInterface - compute.instances.addResourcePolicies - compute.instances.attachDisk - compute.instances.create - compute.instances.deleteAccessConfig - compute.instances.deleteNetworkInterface - compute.instances.detachDisk - compute.instances.osAdminLogin - compute.instances.osLogin - compute.instances.pscInterfaceCreate - compute.instances.removeResourcePolicies - compute.instances.reset - compute.instances.resume - compute.instances.sendDiagnosticInterrupt - compute.instances.setDiskAutoDelete - compute.instances.setLabels - compute.instances.setMachineResources - compute.instances.setMachineType - compute.instances.setMetadata - compute.instances.setMinCpuPlatform - compute.instances.setName - compute.instances.setScheduling - compute.instances.setSecurityPolicy - compute.instances.setServiceAccount - compute.instances.setShieldedInstanceIntegrityPolicy - compute.instances.setShieldedVmIntegrityPolicy - compute.instances.setTags - compute.instances.simulateMaintenanceEvent - compute.instances.start - compute.instances.startWithEncryptionKey - compute.instances.suspend - compute.instances.update - compute.instances.updateAccessConfig - compute.instances.updateDisplayDevice - compute.instances.updateNetworkInterface - compute.instances.updateSecurity - compute.instances.updateShieldedInstanceConfig - compute.instances.updateShieldedVmConfig - compute.instances.use - compute.instantSnapshots.create - compute.instantSnapshots.export - compute.instantSnapshots.setLabels - compute.interconnectAttachmentGroups.create - compute.interconnectAttachmentGroups.patch - compute.interconnectGroups.create - compute.interconnectGroups.patch - compute.licenses.update - compute.machineImages.create - compute.machineImages.setLabels - compute.multiMig.create - compute.networkAttachments.create - compute.networkAttachments.update - compute.networkAttachments.use - compute.networkEdgeSecurityServices.create - compute.networkEdgeSecurityServices.update - compute.networkEndpointGroups.attachNetworkEndpoints - compute.networkEndpointGroups.create - compute.networkEndpointGroups.detachNetworkEndpoints - compute.networkEndpointGroups.use - compute.networks.access - compute.networks.create - compute.networks.mirror - compute.networks.setFirewallPolicy - compute.networks.updatePeering - compute.networks.updatePolicy - compute.networks.use - compute.networks.useExternalIp - compute.nodeGroups.addNodes - compute.nodeGroups.create - compute.nodeGroups.deleteNodes - compute.nodeGroups.performMaintenance - compute.nodeGroups.setNodeTemplate - compute.nodeGroups.simulateMaintenanceEvent - compute.nodeGroups.update - compute.nodeTemplates.create - compute.organizations.setFirewallPolicy - compute.organizations.setSecurityPolicy - compute.packetMirrorings.create - compute.packetMirrorings.update - compute.previewFeatures.update - compute.projects.setCloudArmorTier - compute.projects.setCommonInstanceMetadata - compute.projects.setManagedProtectionTier - compute.projects.setUsageExportBucket - compute.publicAdvertisedPrefixes.create - compute.publicAdvertisedPrefixes.update - compute.publicAdvertisedPrefixes.updatePolicy - compute.publicDelegatedPrefixes.create - compute.publicDelegatedPrefixes.update - compute.publicDelegatedPrefixes.updatePolicy - compute.publicDelegatedPrefixes.use - compute.regionBackendServices.create - compute.regionBackendServices.setSecurityPolicy - compute.regionBackendServices.update - compute.regionBackendServices.use - compute.regionFirewallPolicies.cloneRules - compute.regionFirewallPolicies.create - compute.regionFirewallPolicies.update - compute.regionFirewallPolicies.use - compute.regionHealthCheckServices.create - compute.regionHealthCheckServices.update - compute.regionHealthCheckServices.use - compute.regionHealthChecks.create - compute.regionHealthChecks.update - compute.regionHealthChecks.use - compute.regionNetworkEndpointGroups.attachNetworkEndpoints - compute.regionNetworkEndpointGroups.create - compute.regionNetworkEndpointGroups.detachNetworkEndpoints - compute.regionNetworkEndpointGroups.use - compute.regionNotificationEndpoints.create - compute.regionNotificationEndpoints.update - compute.regionNotificationEndpoints.use - compute.regionSecurityPolicies.create - compute.regionSecurityPolicies.update - compute.regionSecurityPolicies.use - compute.regionSslCertificates.create - compute.regionSslPolicies.create - compute.regionSslPolicies.update - compute.regionSslPolicies.use - compute.regionTargetHttpProxies.create - compute.regionTargetHttpProxies.setUrlMap - compute.regionTargetHttpProxies.use - compute.regionTargetHttpsProxies.create - compute.regionTargetHttpsProxies.setSslCertificates - compute.regionTargetHttpsProxies.setUrlMap - compute.regionTargetHttpsProxies.update - compute.regionTargetHttpsProxies.use - compute.regionTargetTcpProxies.create - compute.regionTargetTcpProxies.use - compute.regionUrlMaps.create - compute.regionUrlMaps.invalidateCache - compute.regionUrlMaps.update - compute.regionUrlMaps.use - compute.reservationBlocks.performMaintenance - compute.reservationSubBlocks.performMaintenance - compute.reservations.create - compute.reservations.performMaintenance - compute.reservations.resize - compute.reservations.update - compute.resourcePolicies.create - compute.resourcePolicies.update - compute.resourcePolicies.use - compute.routers.create - compute.routers.deleteRoutePolicy - compute.routers.update - compute.routers.updateRoutePolicy - compute.routers.use - compute.routes.create - compute.securityPolicies.setLabels - compute.serviceAttachments.create - compute.serviceAttachments.update - compute.serviceAttachments.use - compute.snapshotSettings.update - compute.snapshots.create - compute.snapshots.setLabels - compute.sslCertificates.create - compute.storagePools.create - compute.storagePools.update - compute.storagePools.use - compute.subnetworks.create - compute.subnetworks.expandIpCidrRange - compute.subnetworks.mirror - compute.subnetworks.setPrivateIpGoogleAccess - compute.subnetworks.update - compute.subnetworks.use - compute.subnetworks.useExternalIp - compute.subnetworks.usePeerMigration - compute.targetGrpcProxies.create - compute.targetGrpcProxies.update - compute.targetGrpcProxies.use - compute.targetHttpProxies.create - compute.targetHttpProxies.setUrlMap - compute.targetHttpProxies.update - compute.targetHttpProxies.use - compute.targetHttpsProxies.create - compute.targetHttpsProxies.setCertificateMap - compute.targetHttpsProxies.setQuicOverride - compute.targetHttpsProxies.setSslCertificates - compute.targetHttpsProxies.setUrlMap - compute.targetHttpsProxies.update - compute.targetHttpsProxies.use - compute.targetInstances.create - compute.targetInstances.setSecurityPolicy - compute.targetInstances.use - compute.targetPools.addHealthCheck - compute.targetPools.addInstance - compute.targetPools.create - compute.targetPools.removeHealthCheck - compute.targetPools.removeInstance - compute.targetPools.setSecurityPolicy - compute.targetPools.update - compute.targetPools.use - compute.targetSslProxies.create - compute.targetSslProxies.setBackendService - compute.targetSslProxies.setCertificateMap - compute.targetSslProxies.setProxyHeader - compute.targetSslProxies.setSslCertificates - compute.targetSslProxies.setSslPolicy - compute.targetSslProxies.update - compute.targetSslProxies.use - compute.targetTcpProxies.create - compute.targetTcpProxies.update - compute.targetTcpProxies.use - compute.targetVpnGateways.create - compute.targetVpnGateways.use - compute.vpnGateways.create - compute.vpnGateways.setLabels - compute.vpnGateways.use - compute.vpnTunnels.create - compute.wireGroups.create - compute.wireGroups.update - container.clusters.create - container.clusters.getCredentials - container.clusters.update - container.controllerRevisions.create - container.controllerRevisions.update - container.mutatingWebhookConfigurations.create - container.mutatingWebhookConfigurations.update - container.podSecurityPolicies.create - container.podSecurityPolicies.update - container.validatingWebhookConfigurations.create - container.validatingWebhookConfigurations.update - containeranalysis.notes.attachOccurrence - containeranalysis.notes.create - containeranalysis.notes.listOccurrences - containeranalysis.notes.update - containeranalysis.occurrences.create - containeranalysis.occurrences.update - containersecurity.clusterSummaries.list - containersecurity.findings.list - dataflow.jobs.create - dataflow.jobs.snapshot - dataflow.jobs.updateContents - dataflow.shuffle.read - dataflow.shuffle.write - dataflow.streamingWorkItems.ImportState - dataflow.streamingWorkItems.commitWork - dataflow.streamingWorkItems.getData - dataflow.streamingWorkItems.getWork - dataflow.streamingWorkItems.getWorkerMetadata - dataflow.workItems.lease - dataflow.workItems.sendMessage - dataflow.workItems.update - dataform.commentThreads.create - dataform.commentThreads.update - dataform.comments.create - dataform.comments.update - dataform.compilationResults.create - dataform.config.update - dataform.releaseConfigs.create - dataform.releaseConfigs.update - dataform.repositories.commit - dataform.repositories.update - dataform.workflowConfigs.create - dataform.workflowConfigs.update - dataform.workflowInvocations.create - dataform.workspaces.commit - dataform.workspaces.create - dataform.workspaces.installNpmPackages - dataform.workspaces.makeDirectory - dataform.workspaces.moveDirectory - dataform.workspaces.moveFile - dataform.workspaces.pull - dataform.workspaces.push - dataform.workspaces.removeDirectory - dataform.workspaces.removeFile - dataform.workspaces.reset - dataform.workspaces.writeFile - dataplex.aspectTypes.create - dataplex.aspectTypes.update - dataplex.aspectTypes.use - dataplex.assets.create - dataplex.assets.update - dataplex.content.create - dataplex.content.update - dataplex.dataAttributeBindings.create - dataplex.dataAttributeBindings.update - dataplex.dataAttributes.bind - dataplex.dataAttributes.create - dataplex.dataAttributes.update - dataplex.dataTaxonomies.configureDataAccess - dataplex.dataTaxonomies.configureResourceAccess - dataplex.dataTaxonomies.create - dataplex.dataTaxonomies.update - dataplex.datascans.create - dataplex.datascans.run - dataplex.datascans.update - dataplex.entities.create - dataplex.entities.update - dataplex.entries.create - dataplex.entries.link - dataplex.entries.update - dataplex.entryGroups.create - dataplex.entryGroups.import - dataplex.entryGroups.update - dataplex.entryGroups.useContactsAspect - dataplex.entryGroups.useDataQualityScorecardAspect - dataplex.entryGroups.useDefinitionEntryLink - dataplex.entryGroups.useGenericAspect - dataplex.entryGroups.useGenericEntry - dataplex.entryGroups.useOverviewAspect - dataplex.entryGroups.useRelatedEntryLink - dataplex.entryGroups.useSchemaAspect - dataplex.entryGroups.useSynonymEntryLink - dataplex.entryLinks.create - dataplex.entryLinks.reference - dataplex.entryTypes.create - dataplex.entryTypes.update - dataplex.entryTypes.use - dataplex.environments.create - dataplex.environments.execute - dataplex.environments.update - dataplex.glossaries.create - dataplex.glossaries.import - dataplex.glossaries.update - dataplex.glossaryCategories.create - dataplex.glossaryCategories.update - dataplex.glossaryTerms.create - dataplex.glossaryTerms.update - dataplex.glossaryTerms.use - dataplex.lakes.create - dataplex.lakes.update - dataplex.metadataJobs.create - dataplex.partitions.create - dataplex.partitions.update - dataplex.tasks.create - dataplex.tasks.run - dataplex.tasks.update - dataplex.zones.create - dataplex.zones.update - dataproc.agents.create - dataproc.agents.update - dataproc.autoscalingPolicies.create - dataproc.autoscalingPolicies.update - dataproc.batches.analyze - dataproc.batches.create - dataproc.batches.sparkApplicationWrite - dataproc.clusters.create - dataproc.clusters.start - dataproc.clusters.update - dataproc.clusters.use - dataproc.jobs.create - dataproc.jobs.update - dataproc.nodeGroups.create - dataproc.nodeGroups.update - dataproc.sessionTemplates.create - dataproc.sessionTemplates.update - dataproc.sessions.create - dataproc.sessions.sparkApplicationWrite - dataproc.tasks.lease - dataproc.tasks.reportStatus - dataproc.workflowTemplates.create - dataproc.workflowTemplates.instantiate - dataproc.workflowTemplates.instantiateInline - dataproc.workflowTemplates.update - dataprocessing.datasources.update - dataprocrm.nodePools.create - dataprocrm.nodePools.deleteNodes - dataprocrm.nodePools.resize - dataprocrm.nodes.heartbeat - dataprocrm.nodes.update - dataprocrm.workloads.create - datastore.backupSchedules.create - datastore.backupSchedules.update - datastore.databases.update - datastore.indexes.create - datastore.indexes.update - datastore.userCreds.create - datastore.userCreds.update - dns.changes.create - dns.gkeClusters.bindDNSResponsePolicy - dns.gkeClusters.bindPrivateDNSZone - dns.managedZones.create - dns.managedZones.update - dns.networks.bindDNSResponsePolicy - dns.networks.bindPrivateDNSPolicy - dns.networks.bindPrivateDNSZone - dns.networks.targetWithPeeringZone - dns.networks.useHealthSignals - dns.policies.create - dns.policies.update - dns.resourceRecordSets.create - dns.resourceRecordSets.update - dns.responsePolicies.create - dns.responsePolicies.update - dns.responsePolicyRules.create - dns.responsePolicyRules.update - firebase.clients.create - firebase.clients.undelete - firebase.clients.update - firebase.projects.update - firebaseabt.experiments.create - firebaseabt.experiments.update - firebaseanalytics.resources.googleAnalyticsEdit - firebaseappcheck.appAttestConfig.update - firebaseappcheck.automations.create - firebaseappcheck.automations.resume - firebaseappcheck.automations.suspend - firebaseappcheck.automations.update - firebaseappcheck.debugTokens.update - firebaseappcheck.deviceCheckConfig.update - firebaseappcheck.playIntegrityConfig.update - firebaseappcheck.recaptchaEnterpriseConfig.update - firebaseappcheck.recaptchaV3Config.update - firebaseappcheck.resourcePolicies.update - firebaseappcheck.safetyNetConfig.update - firebaseappcheck.services.update - firebaseappdistro.groups.update - firebaseappdistro.releases.update - firebaseappdistro.testers.update - firebaseauth.configs.create - firebaseauth.configs.getHashConfig - firebaseauth.configs.getSecret - firebaseauth.configs.update - firebaseauth.users.create - firebaseauth.users.createSession - firebaseauth.users.sendEmail - firebaseauth.users.update - firebasecrash.issues.update - firebasecrashlytics.config.update - firebasecrashlytics.issues.update - firebasedatabase.instances.create - firebasedatabase.instances.disable - firebasedatabase.instances.reenable - firebasedatabase.instances.undelete - firebasedatabase.instances.update - firebasedataconnect.connectors.create - firebasedataconnect.connectors.update - firebasedataconnect.schemas.create - firebasedataconnect.schemas.update - firebasedataconnect.services.create - firebasedataconnect.services.executeGraphql - firebasedataconnect.services.executeGraphqlRead - firebasedataconnect.services.update - firebasedynamiclinks.domains.create - firebasedynamiclinks.domains.update - firebasedynamiclinks.links.create - firebasedynamiclinks.links.update - firebaseextensionspublisher.extensions.create - firebasehosting.sites.create - firebasehosting.sites.update - firebaseinappmessaging.campaigns.create - firebaseinappmessaging.campaigns.update - firebasemessagingcampaigns.campaigns.create - firebasemessagingcampaigns.campaigns.start - firebasemessagingcampaigns.campaigns.update - firebaseml.models.create - firebaseml.models.update - firebaseml.modelversions.create - firebaseml.modelversions.update - firebasenotifications.messages.create - firebasenotifications.messages.update - firebaseperformance.config.update - firebaserules.releases.create - firebaserules.releases.update - firebaserules.rulesets.create - firebaserules.rulesets.get - firebasestorage.buckets.addFirebase - firebasestorage.buckets.removeFirebase - firebasestorage.defaultBucket.create - firebasevertexai.configs.update - iam.serviceAccountApiKeyBindings.create - iam.serviceAccountApiKeyBindings.undelete - iam.serviceAccountKeys.create - iam.serviceAccountKeys.disable - iam.serviceAccountKeys.enable - iam.serviceAccounts.actAs - iam.serviceAccounts.create - iam.serviceAccounts.disable - iam.serviceAccounts.enable - iam.serviceAccounts.getAccessToken - iam.serviceAccounts.getOpenIdToken - iam.serviceAccounts.implicitDelegation - iam.serviceAccounts.signBlob - iam.serviceAccounts.signJwt - iam.serviceAccounts.update - iap.tunnelDestGroups.create - iap.tunnelDestGroups.update - monitoring.alertPolicies.create - monitoring.alertPolicies.update - monitoring.dashboards.create - monitoring.dashboards.update - monitoring.groups.create - monitoring.groups.update - monitoring.metricDescriptors.create - monitoring.services.create - monitoring.services.update - monitoring.slos.create - monitoring.slos.update - monitoring.snoozes.create - monitoring.snoozes.update - monitoring.timeSeries.create - monitoring.uptimeCheckConfigs.create - monitoring.uptimeCheckConfigs.update - pubsub.schemas.commit - pubsub.schemas.create - pubsub.schemas.rollback - pubsub.snapshots.create - pubsub.subscriptions.consume - pubsub.subscriptions.create - pubsub.subscriptions.update - pubsub.topics.attachSubscription - pubsub.topics.create - pubsub.topics.detachSubscription - pubsub.topics.publish - pubsub.topics.update - pubsub.topics.updateTag - pubsublite.reservations.attachTopic - pubsublite.reservations.create - pubsublite.reservations.update - pubsublite.subscriptions.create - pubsublite.subscriptions.seek - pubsublite.subscriptions.setCursor - pubsublite.subscriptions.update - pubsublite.topics.create - pubsublite.topics.publish - pubsublite.topics.update - redis.backupCollections.create - redis.backups.create - redis.clusters.backup - redis.clusters.connect - redis.clusters.create - redis.clusters.update - redis.instances.create - redis.instances.export - redis.instances.failover - redis.instances.getAuthString - redis.instances.import - redis.instances.rescheduleMaintenance - redis.instances.update - redis.instances.updateAuth - redis.instances.upgrade - resourcemanager.hierarchyNodes.createTagBinding - resourcemanager.hierarchyNodes.deleteTagBinding - resourcemanager.projects.move - resourcemanager.projects.update - resourcemanager.tagHolds.create - resourcemanager.tagKeys.create - resourcemanager.tagKeys.update - resourcemanager.tagValueBindings.create - resourcemanager.tagValues.create - resourcemanager.tagValues.update - secretmanager.secrets.create - secretmanager.secrets.update - secretmanager.versions.add - secretmanager.versions.disable - secretmanager.versions.enable - servicemanagement.services.bind - servicemanagement.services.check - servicemanagement.services.create - servicemanagement.services.quota - servicemanagement.services.report - servicemanagement.services.update - serviceusage.services.disable - serviceusage.services.enable - serviceusage.services.use - spanner.backupSchedules.create - spanner.backupSchedules.update - spanner.backups.copy - spanner.backups.create - spanner.backups.restoreDatabase - spanner.backups.update - spanner.databases.adapt - spanner.databases.addSplitPoints - spanner.databases.beginOrRollbackReadWriteTransaction - spanner.databases.beginPartitionedDmlTransaction - spanner.databases.changequorum - spanner.databases.create - spanner.databases.createBackup - spanner.databases.drop - spanner.databases.update - spanner.databases.updateDdl - spanner.databases.useRoleBasedAccess - spanner.databases.write - spanner.instanceConfigs.create - spanner.instanceConfigs.update - spanner.instancePartitions.create - spanner.instancePartitions.update - spanner.instances.create - spanner.instances.update - storage.buckets.create - storage.folders.create - storage.folders.rename - storage.hmacKeys.create - storage.hmacKeys.update - storage.managedFolders.create - storage.managedFolders.get - storage.managedFolders.list - storage.multipartUploads.abort - storage.multipartUploads.create - storage.multipartUploads.listParts - storage.objects.create - storage.objects.get - storage.objects.list - storageinsights.datasetConfigs.create - storageinsights.datasetConfigs.linkDataset - storageinsights.datasetConfigs.unlinkDataset - storageinsights.datasetConfigs.update - storageinsights.reportConfigs.create - storageinsights.reportConfigs.update - storagetransfer.agentpools.create - storagetransfer.agentpools.update - storagetransfer.jobs.create - storagetransfer.jobs.run - storagetransfer.jobs.update - storagetransfer.operations.pause - storagetransfer.operations.resume role_id: beam_infra_manager stage: GA title: beam_infra_manager