What role should I assign to my service account in Google Cloud in order to allow pilling containers from Google Cloud Registry (GCR)?
I tried Artifact Registry Reader and Cloud Build Viewer, but it didn't help.
Still getting: "docker login: denied: Permission denied" error message.
If I use Project Editor Role, it works. Is there something more granular?
The documentation provides you the right level of permission that you require.
For instance, Storage object viewer is the correct role to set for pulling an image