https://github.com/yukigeshiki/gcp-cloud-run-deploy-rust
A basic GitHub Actions/Cloud Build GCP Cloud Run deploy pipeline for a Rocket web service.
https://github.com/yukigeshiki/gcp-cloud-run-deploy-rust
cloudbuild cloudrun gcp githubactions rocket rust serverless webservice
Last synced: 8 months ago
JSON representation
A basic GitHub Actions/Cloud Build GCP Cloud Run deploy pipeline for a Rocket web service.
- Host: GitHub
- URL: https://github.com/yukigeshiki/gcp-cloud-run-deploy-rust
- Owner: Yukigeshiki
- License: mit
- Created: 2023-04-05T09:14:48.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2024-04-08T08:42:14.000Z (about 2 years ago)
- Last Synced: 2025-04-10T14:31:52.227Z (about 1 year ago)
- Topics: cloudbuild, cloudrun, gcp, githubactions, rocket, rust, serverless, webservice
- Language: Rust
- Homepage:
- Size: 43 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# gcp-cloud-run-deploy-rust
A basic GitHub Actions/Cloud Build GCP Cloud Run deploy pipeline for a Rocket web service. This can be used as a starting point for a Rocket Cloud Run deploy strategy.
### GitHub Actions secrets
```
SA_KEY_JSON # JSON key file for a custom service account to be used by GitHub actions
PROJECT_ID # The ID for the project you are deploying to
CR_SA # The custom service account that Cloud Run will use
CR_SERVICE_NAME # The Cloud Run service name
```
### GitHub Actions custom service account
e.g. github-actions-sa@project-id.iam.gserviceaccount.com
#### Roles
- Cloud Build Service Agent
### Cloud Run custom service account
e.g. cloud-run-sa@project-id.iam.gserviceaccount.com
#### Roles
Existing roles:
- Cloud Run Invoker
Cloud Run SA Core Permissions (custom role created at the org level with permissions):
- resourcemanager.projects.get
- resourcemanager.projects.list
- secretmanager.versions.access
### Cloud Build default service account
e.g. project-number@cloudbuild.gserviceaccount.com
#### Roles
Existing roles:
- Cloud Build Service Account
Cloud Build SA Core Permissions (custom role created at the org level with permissions):
- iam.serviceAccounts.actAs
- iam.serviceAccounts.get
- iam.serviceAccounts.list
- recommender.locations.get
- recommender.locations.list
- resourcemanager.projects.get
- resourcemanager.projects.list
- run.configurations.get
- run.configurations.list
- run.locations.list
- run.operations.delete
- run.operations.get
- run.operations.list
- run.revisions.delete
- run.revisions.get
- run.revisions.list
- run.routes.get
- run.routes.list
- run.services.create
- run.services.createTagBinding
- run.services.delete
- run.services.deleteTagBinding
- run.services.get
- run.services.getIamPolicy
- run.services.list
- run.services.listEffectiveTags
- run.services.listTagBindings
- run.services.setIamPolicy
- run.services.update
- secretmanager.versions.access