What is a Service Account
A Service Account is a special type of account within your Google Cloud Platform (GCP) Project that is used by virtual machines or an application, instead of an individual end-user. Like a regular account, a Service account has assigned roles and permissions, access keys, billing, and so on.
Follow all steps below to create your GCP service account to provide access to some sources in By-request pipelines.
Create a GCP service account
Follow the procedure below to create a service account.
Step 1. Go to the webpage https://console.cloud.google.com and select (or create) your Project in the top menu bar.
Step 2. Browse to section IAM & Admin -> Service Accounts. Here you will see a list of current service accounts.
Step 3. Click ‘+ CREATE SERVICE ACCOUNT’.
Important GCP users with iam.serviceAccounts.create and iam.serviceAccounts.list permissions can create service accounts.
Step 4. Name your service account and click ‘Create’.
Step 5. In the section, ‘Grant this service account access to the project’ add "BigQuery Admin" and "BigQuery Data Editor" roles.
Step 6. Click ‘Continue’ to move on.
Step 7. Skip grant user access to this service and click Done.
Step 8. Choose the account you just created.
Step 9. Go to tab Key and click Add key → Create new key.
Step 10. In the new pop-up select ‘JSON’ and click ‘Create’. The key is generated and placed in a JSON file.
You have now created a GCP service account with the necessary roles, as well as a service account key in JSON format.