What is a Service Account
A Service Account is a special type of account within your Google Cloud Platform (GCP) Project that is used by virtual machines or an application, instead of an individual end-user. Like a regular account, a Service account has assigned roles and permissions, access keys, billing, and so on.
Follow all steps below to create your GCP service account to provide access to some sources in By-request pipelines.
Create a GCP service account
Follow the procedure below to create a service account.
Step 1. Go to the webpage https://console.cloud.google.com and select (or create) your Project in the top menu bar.
Step 2. Browse to section IAM & Admin -> Service Accounts. Here you will see a list of current service accounts.
Step 3. Click ‘+ CREATE SERVICE ACCOUNT’.
Important GCP users with iam.serviceAccounts.create and iam.serviceAccounts.list permissions can create service accounts.
Step 4. Name your service account and click ‘Create’.
Step 5. In the section, ‘Grant this service account access to the project’ add "BigQuery User" and "BigQuery Data Editor" roles.
Step 6. Click ‘Continue’ to move on.
Step 7. In the section, ‘Grant users access to this service account’ click ‘Create key’.
Step 8. In the new pop-up select ‘JSON’ and click ‘Create’. The key is generated and placed in a JSON file.
Step 9. Click ‘Create’ to finish setting up a key.
Step 10. And finally, click 'Done' to create your new service account.
You have now created a GCP service account with necessary roles, as well as a service account key in JSON format.