Use the tool to create and query a sqlite database containing a mapping of the GCP IAM permissions to roles. Useful when you get an error message stating that you need a specific GCP IAM permission and do not know which roles contain the permission.
First you need to create a sqlite database containing the mapping. Then you can query it using the commandline or via a web interface.
Demo available at:
https://gcp-iam-search-6moformwsq-uc.a.run.app/
Create the sqlite database as follows:
gcp_iam_search createdb
Now you have a iam.db file.
By default port 3000 is used to serve.
./gcp_iam_search serve
Here's the query page:
Query for roles as follows:
./gcp_iam_search query compute.instances.listR
The commandline tool supports --help
to find all available commands and options.
For issues, please file an issue here.