Cloud Build SA needs Service Account Token Creator role

Question

Cloud Build SA needs Service Account Token Creator role

engelke opened this issue 2 years ago · 2 comments

If the Cloud Build Service Account (or any account that tries to run the Content API unit tests) does not have Service Account Token Creator role, it will not be able to fetch an id token for the test user service account.

Without that id token, none of the tests can pass.

As of the time of this issue, that role has been manually assigned, but needs to be added to the automated setup of new projects.

Answer 1 · 2023-04-03T23:23:34.000Z

This issue does not affect our maintenance projects, but will affect anyone that sets up Emblem and seeks to explore the full test lifecycle.

Answer 2 · 2023-04-19T00:56:11.000Z

It looks like this was fixed by #665, merged in September 2022.