The following IAM permissions are required for each user to provide baseline functionality in Cloud Dataprep by TRIFACTA® INC. and access to common integrations
Dataprep.User IAM Role
All users of any version of
Cloud Dataprep by TRIFACTA INC. must be assigned the
Dataprep.User IAM Role.
Additional Permissions for Cloud Dataprep Premium by TRIFACTA INC.
Read and write to BigQuery, including views and custom SQL:
Run Cloud Dataprep jobs on Cloud Dataflow:
Google Cloud Storage
Read and write to Google Cloud Storage, the base storage for Cloud Dataprep by TRIFACTA INC.:
Additional Permissions for Cloud IAM
In addition to the IAM roles above, users must also be granted the following to enable data access based on their Cloud IAM:
- dataset level permissions in BigQuery: See https://cloud.google.com/bigquery/docs/dataset-access-controls.
- Cloud Storage object ACLs: See https://cloud.google.com/storage/docs/access-control.
These permissions ensure that users can access the appropriate data within
Cloud Dataprep by TRIFACTA® INC..