UDCA permission check
The Use Case: Verify udca sa 'from scratch'.
export PROJECT=amer-cs-hybrid-demo6
export AHR_HOME=~/apigee-hybrid/ahr source $AHR_HOME/bin/ahr-env
$ ahr-sa-ctl config udca apigee-udca Service Account: apigee-udca@amer-cs-hybrid-demo6.iam.gserviceaccount.com ROLE roles/apigee.analyticsAgent GCP Project Permission: { "permissions": [ "apigee.environments.getDataLocation" ] } Apigee Hybrid Org/Env Permission: { "permissions": [ "apigee.environments.getDataLocation" ] }
TODO: Look at ahr-sa-ctl key....
$ ahr-sa-ctl key udca service-accounts/amer-cs-hybrid-demo6-apigee-udca.json Service Account: apigee-udca@amer-cs-hybrid-demo6.iam.gserviceaccount.com ROLE roles/apigee.analyticsAgent GCP Project Permission: { "permissions": [ "apigee.environments.getDataLocation" ] } Apigee Hybrid Org/Env Permission: { "error": { "code": 400, "message": "Invalid JSON payload received. Unknown name "permissions" at 'environment': Cannot find field.", "status": "INVALID_ARGUMENT", "details": [ { "@type": "type.googleapis.com/google.rpc.BadRequest", "fieldViolations": [ { "field": "environment", "description": "Invalid JSON payload received. Unknown name "permissions" at 'environment': Cannot find field." } ] } ] } } yuriyl@cloudshell:~/apigee-hybrid/joel-amer-demo6 (amer-cs-hybrid-demo6)$
AHR-*-CTL - TADA: Apigee Hybrid Container Traffic Analysis with tcpdump for Target Requests
- TADAA: Cloud Code IDE Java Callout Debugging
- Hybrid Ingress Walkthrough 1.5
- Hybrid CRD Objects Diagram 1.3.2
- List of Components for Air-gapped Deployments
- GKE/EKS Multi-cloud Small Topology 1.4 [single-project] | AHR Profile Quick Start
- Single-Zone Cluster, Small footprint 1.1
- Multi-Zone Cluster, Large footprint 1.1
- Multi-Region Cluster, Large footprint 1.1
-
Private Cluster
-
Performance Testing: distGatling
- Delete Hybrid Installation
- Hybrid Ingress Walkthrough 1.3