From d59e08641cc0e2291ca522fc35569e2063dab8b5 Mon Sep 17 00:00:00 2001
From: jenish-jain <jenishjain@rocketmail.com>
Date: Sun, 8 Oct 2023 13:58:56 +0530
Subject: [PATCH] adding roles required by SA for deployment |<Jenish>

Signed-off-by: jenish-jain <jenishjain@rocketmail.com>
---
 register_wif.bash | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/register_wif.bash b/register_wif.bash
index 178f2c3..a5052bd 100644
--- a/register_wif.bash
+++ b/register_wif.bash
@@ -10,6 +10,14 @@ export PROJECT_ID="realm-asgard"
 export REPO="jenish-jain/bean_counter"
 
 export SERVICE_ACCOUNT_ID="cloud-function-deployer"
+# Roles required by SA #
+# Cloud Functions Developer
+# Cloud Functions Service Agent
+# Secret Manager Secret Accessor
+# Service Account Token Creator
+# Service Account User
+# Storage Admin
+# Workload Identity User
 
 gcloud iam service-accounts create "${SERVICE_ACCOUNT_ID}" \
   --project "${PROJECT_ID}"