Hello,
I’m trying to deploy a http load balancer but I keep getting permission errors.
When I go for regional resources, I get this error:
Error: Error creating RegionTargetHttpProxy: googleapi: Error 403: Required ‘compute.regionTargetHttpProxies.create’ permission for ‘projects/clgcporg8-018/regions/us-west1/targetHttpProxies/web-dev-mylb-http-proxy’
│ More details:
│ Reason: forbidden, Message: Required ‘compute.regionTargetHttpProxies.create’ permission for ‘projects/clgcporg8-018/regions/us-west1/targetHttpProxies/web-dev-mylb-http-proxy’
│ Reason: forbidden, Message: Required ‘compute.regionUrlMaps.use’ permission for ‘projects/clgcporg8-018/regions/us-west1/urlMaps/web-dev-mylb-url-map’
If I go for global, I’m stuck as well as I get permission error for creating global IP…
We typically do not include load balancers in our playground offerings, since these tend to be costly sorts of components in cloud platforms. The work-around is to use NodePort type services, or to use tools like kubectl port-forward if you want to see a service outside of the playground. So what are you trying to do where you would otherwise use a load balancer?
Still, what are you trying to do with a load balancer here? I’ll investigate what’s in the page, but knowing what you’re trying to do will make it easier for me to replicate the error, and ask engineering about it.
A step-by-step describing what you want to try to do that brings up the error will help me a lot in figuring out how to write this up.
In Part 3 and 4 I need a loadbalancer ideally global, but regional would also suffice.
With global, the only resource i was unable to create via terraform was a global IP but later I found out I was able to create in console.
With regional, I was missing permissions to only create regional http target proxy.
I also did not have permissions to enable certificate manager, I know it’s not on the list of available resources however it would be a really useful to have this unlocked.
Oh and at the end I run terraform destroy to delete the vpc I created with terraform and also faced permission error.
This, TBH, is just too elaborate an example for me to test. I can handle trying something in the console, or gcloud command. But your repo will require more time than I can allocate to a single question. Can you give me something simple and concrete that will fail?
