This section provides a copy of the file rbbnGcpTerraformRole.yaml for reference.

# All the roles needed to create and destroy a HFE SBC in GCP
# gcloud iam roles create {ROLE ID} --project {PROJECT ID} --file {fileName}

title: "HFE Terraform Creation"
description: "All the permissions needed to create the a Ribbon HFE SBC"
stage: "Alpha"
includedPermissions:
- compute.addresses.create
- compute.addresses.delete
- compute.addresses.deleteInternal
- compute.addresses.get
- compute.addresses.use
- compute.addresses.useInternal
- compute.addresses.createInternal
- compute.disks.create
- compute.disks.get
- compute.disks.resize
- compute.disks.use
- compute.diskTypes.get
- compute.firewalls.create
- compute.firewalls.delete
- compute.firewalls.get
- compute.firewalls.update
- compute.images.get
- compute.images.useReadOnly
- compute.images.getFromFamily
- compute.instances.create
- compute.instances.delete
- compute.instances.get
- compute.instances.setMetadata
- compute.instances.setServiceAccount
- compute.instances.setTags
- compute.instances.setMachineResources
- compute.instances.setMachineType
- compute.instances.addAccessConfig
- compute.machineTypes.get
- compute.networks.create
- compute.networks.delete
- compute.networks.get
- compute.networks.updatePolicy
- compute.networks.use
- compute.networks.useExternalIp
- compute.routes.create
- compute.routes.delete
- compute.routes.get
- compute.subnetworks.create
- compute.subnetworks.delete
- compute.subnetworks.get
- compute.subnetworks.update
- compute.subnetworks.use
- compute.subnetworks.useExternalIp
- compute.zones.get
- iam.serviceAccounts.actAs
- iam.serviceAccounts.get