Integrating BigQuery with SYNQ
Permission | Description | Included in BQ role | Purpose |
---|---|---|---|
bigquery.datasets.get | Get metadata about a dataset. | Data Viewer | automated / custom monitors |
bigquery.datasets.getIamPolicy | Required by the Cloud Console to give the user the option of getting a dataset’s IAM permissions. Fails open. The ability to actually perform the operation of getting the permissions is gated by the bigquery.datasets.get permission. | Data Viewer | automated / custom monitors |
bigquery.jobs.create | Run jobs (including queries) within the project. | Job User | automated / custom monitors |
bigquery.jobs.get | Get data and metadata on any job.1 | ||
bigquery.jobs.list | List all jobs and retrieve metadata on any job submitted by any user. For jobs submitted by other users, details and metadata are redacted. | Resource Viewer | query logs |
bigquery.jobs.listAll | List all jobs and retrieve metadata on any job submitted by any user. | Resource Viewer | query logs |
bigquery.tables.get | Get table metadata. | Data Viewer | automated monitors |
bigquery.tables.getData | Get table data. | Data Viewer | automated / custom monitors |
bigquery.tables.list | List tables and metadata on tables. | Data Viewer | automated / custom monitors |
bigquery.routines.get | To query data in INFORMATION_SCHEMA.TABLES. | Data Viewer | tables DDL |
bigquery.routines.list | To query data in INFORMATION_SCHEMA.TABLES. | Data Viewer | tables DDL |
resourcemanager.projects.get | Data/Jobs/Resource Viewer | All |
IAM and Admin
> Roles
Create Role
button on top.
SYNQ Monitoring
SYNQ Monitoring role
General Availability
IAM and Admin
> Service Accounts
Create Service Account
button
Create and continue
Done
Keys
tab
BigQuery