I have permissions to create folders and files in a specific bucket (i.e., I can create and move files around in the console). However, when I try to push files to the bucket from a VM located in another project (service account is different), I get:
AccessDeniedException: 403 xxxxxxxxxxx-compute@developer.gserviceaccount.com does not have storage.objects.create access to zzzzzzzzzzzzz
How can I let GCS know that I'm the same user?
Your VM does not have permissions , so to let your VM have permissions so that it can transfer your files from GCS of one project to other:
1] Create a service account of VM as a role "Storage Admin" in the project where GCS is created.
Reference: