google-cloud-platform google-cloud-endpoints

Google Cloud Endpoint 403 Exception

I'm trying to deploy Google Cloud Functions behind Cloud Endpoints according to these steps:

https://cloud.google.com/endpoints/docs/openapi/get-started-cloud-functions

I followed the steps exactly like described and added API key authentication to the OpenAPI specification.

When I call the endpoint with the API key I get the following error: INTERNAL:Calling Google Service Control API failed with: 403 and body: \bMPermission 'servicemanagement.services.check' denied for the consumer project.

Is there some additional role I have to add to a service account ? I did not specify a service account when executing gcloud run deploy.

Thank you for your help

Solution

Just found the solution. Before deploying the endpoint like described in the documentation I had to create a new service account with "Service Controller" role and then using it when deploying:

gcloud run deploy --service-account="..."

gcloud auth login throwing error: gcloud crashed (ConnectionError): HTTPSConnectionPool(host='oauth2.googleapis.com', port=443): Max retries exceeded
Google Cloud Build Error: build step 0 "gcr.io/cloud-builders/docker" failed: step exited with non-zero status: 1
Terraform - GCP - Import project IAM member
Choosing fields to return with Places API (new) client library
Getting random "User not found in file /etc/passwd" error on Cloud Run Job
Change time format in GCP Logs Explorer
Deploying to Cloud Run with a custom service account failed with iam.serviceaccounts.actAs error
Deploying a pelican site to Google Cloud Run with Dockerfile not working
Is there a good explanation of resource labels versus metric labels?
Why do I set the resource type when writing the metric but not when creating a descriptor?
google-github-actions/get-gke-credentials failed with: required "container.clusters.get" permission(s)
GA4 Data Not Retained for More Than 60 Days Despite BigQuery Table Expiration Set to 'Never
How to list all enabled API services for Google Cloud Platform project
Google Cloud calendar API connection error
Downloading a folder from cloud storage in GitHub action and move it inside a docker container is not working
How to fix CloudRun error 'The request was aborted because there was no available instance'
Google Cloud Build with Dockerfile and copy files
Firebase CLI console: Cannot find module @google-cloud/tasks
Does Cloud SQL have a query console or is CLI the only option?
How to use Google Cloud Shell with the new Windows Terminal
Why does GKE kubernetes cluster need a version?
Unable to Read Mounted GCSFuse Directory After Adding --implicit-dirs Option
Error: 10: Developer console is not set up correctly (Not Using Firebase) (One Tap sign-up)
Connection between Private GKE and Cloud SQL
Kubernetes cluster architecture
Validating PubSub message against AVRO JSON schema with multiple union types
Can i run cloud run jobs locally
How to log SSL/TLS Handshake details on Google Cloud Load Balancer
Utilizing Gemini: Through Vertex AI or through Google/generative-ai?
How to use Puppeteer in 2nd gen Cloud Functions?