Trigger a dataflow job deployed through Cloud Run on object creation in GCP Storage Bucket
I have created a dataflow pipeline which read a file from GCS bucket and process it. It is working when I execute the job from my local.
I deployed the dataflow job in Cloud Run with trigger on storage.object.create.
But when I upload any file in GCS bucket, no trigger message shows in the log or dataflow job not executed.
Trigger config
Ingress:Allow traffic
Authentication:Allow authentication
Event source:Cloud Storage
Event type:google.cloud.audit.log.v1.written
Create time:2021-02-12 (16:05:25)
Receive events from:All regions (global)
Service URL path:/
Service account:[email protected]
Service name:storage.googleapis.com
Method name:storage.objects.create
What am I missing here? Please suggest.
The reason why your Cloud Run service isn't triggered is because there might be no audit logs written whenever an object is created/uploaded to your bucket. An Eventarc trigger is initiated whenever an event is written on Audit logs and by default, Cloud Storage is disabled:
The solution is to enable Audit Logs for Cloud Storage. It can be done two ways:
- Enable it on the first time you create an Eventarc trigger.
- Or go to IAM & Admin > Audit logs and make sure that all fields are checked for Cloud Storage:
As a reference, Audit logs can be seen on Home > Activity, here's an example:
- upload_many_blobs_with_transfer_manager() returned TimeoutError('The write operation timed out'))
- How to generate a Blob signed url in Google Cloud Run?
- Google Cloud: Access to image has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource
- Why does getMetadata().size show 20 bytes for an empty file in Google Cloud Storage?
- GCP Cloud Storage - Golang aws sdk2 - Upload file with s3 INTEROPERABILITY Creds
- Data loading and transformation from gcs to bigquery
- Error: error:1E08010C:DECODER routines::unsupported with Google auth library
- Deleting a large folder from Google Cloud Storage
- Error uploading file to google cloud storage
- Move files under multiple sub folders into one folder
- What is the quickest way to delete many blobs from GCS?
- Is it possible to wget / curl protected files from GCS?
- Can appengine files in asia.artifacts.../containers/images be safely deleted?
- Google Cloud Storage request blocked by CORS: not allowed by Access-Control-Allow-Origin
- How to upload a file to Google Cloud Storage on Python 3?
- Facing issues with the WriteObjectRequest for Google Cloud Storage using gRPC in Rust
- How to get list_blobs to behave like gsutil
- Firebase-Storage Access to fetch at '..' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource
- Getting 403 from GCP metadata server
- Permissions For Google Cloud SQL Import Using Service Accounts
- GCP Cloud Run: “missing required GoogleAccessID” when generating V4 Signed URL for Cloud Storage
- Read JSON file directly from google storage (using Cloud Functions)
- Uploading images to Firebase storage returns "Access denied" after some time
- Google Cloud Console "loading" forever
- Google Cloud Storage vs Google Cloud CDN
- Restrict a Load-Balanced Google backend bucket to a specific IP range
- Google Cloud Storage files access policy based on IP Address
- IP Restriction Google Cloud Storage
- Google Storage access based on IP Address
- Is there a way to set up a delete lifecycle rule of less than one day in google cloud storage?