kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Enable creation of organization- and folder-level service agents (#3877)

Browse Source 
* Enable creation of organization- and folder-level service agents

* formatting

* Add folder test

* Add org tests

* linting

* more linting

* Fix tests
This commit is contained in:
Julio Castillo
2026-04-16 19:35:17 +02:00
committed by GitHub
parent 2cb67b3532
commit ad912d795a
16 changed files with 336 additions and 197 deletions
Download Patch File Download Diff File Expand all files Collapse all files

137
modules/project/service-agents.yaml
View File

@@ -44,6 +44,14 @@
is_primary: false
aliases: []
skip_iam: false
- name: aiplatform-pie
display_name: AI Platform Private Instance (PIE) Service Agent
api: aiplatform.googleapis.com
identity: service-${project_number}@gcp-sa-aiplatform-pie.${universe_domain}iam.gserviceaccount.com
role: roles/aiplatform.serviceAgent
is_primary: false
aliases: []
skip_iam: false
- name: vertex-eval
display_name: AI Platform Rapid Eval Service Agent
api: aiplatform.googleapis.com
@@ -132,6 +140,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: agentgateway
display_name: Agent Gateway Service Account
api: networkservices.googleapis.com
identity: service-${project_number}@gcp-sa-agentgateway.${universe_domain}iam.gserviceaccount.com
role: roles/agentgateway.serviceAgent
is_primary: false
aliases: []
skip_iam: false
- name: alloydb
display_name: AlloyDB Service Account
api: alloydb.googleapis.com
@@ -277,6 +293,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: appoptimize
display_name: App Optimize Service Agent
api: appoptimize.googleapis.com
identity: service-${project_number}@gcp-sa-appoptimize.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: true
aliases: []
skip_iam: false
- name: integrations
display_name: Application Integration Service Agent
api: integrations.googleapis.com
@@ -309,6 +333,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: autoannotate
display_name: Auto Annotate Service Account
api: storage.googleapis.com
identity: service-${project_number}@gcp-sa-autoannotate.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: recommendationengine
display_name: AutoML Recommendations Service Account
api: recommendationengine.googleapis.com
@@ -406,6 +438,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: bqms
display_name: BigQuery Migration Service Agent
api: bigquerymigration.googleapis.com
identity: service-${project_number}@gcp-sa-bqms.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: true
aliases: []
skip_iam: false
- name: prod-bigqueryomni
display_name: BigQuery Omni Service Agent
api: bigquery.googleapis.com
@@ -446,14 +486,6 @@
is_primary: true
aliases: []
skip_iam: false
- name: chronicle-sv
display_name: Chronicle Security Validation Service Account
api: chronicle.googleapis.com
identity: service-${project_number}@gcp-sa-chronicle-sv.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: chronicle
display_name: Chronicle Service Account
api: chronicle.googleapis.com
@@ -648,14 +680,6 @@
is_primary: false
aliases: []
skip_iam: false
- name: lifesciences
display_name: Cloud Life Sciences Service Agent
api: lifesciences.googleapis.com
identity: service-${project_number}@gcp-sa-lifesciences.${universe_domain}iam.gserviceaccount.com
role: roles/lifesciences.serviceAgent
is_primary: true
aliases: []
skip_iam: false
- name: logging
display_name: Cloud Logging Service Account
api: logging.googleapis.com
@@ -864,6 +888,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: hypercomputecluster
display_name: Cluster Director Service Agent
api: hypercomputecluster.googleapis.com
identity: service-${project_number}@gcp-sa-hypercomputecluster.${universe_domain}iam.gserviceaccount.com
role: roles/hypercomputecluster.serviceAgent
is_primary: true
aliases: []
skip_iam: false
- name: compute-system
display_name: Compute Engine Service Agent
api: compute.googleapis.com
@@ -985,6 +1017,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: ces
display_name: Customer Engagement Suite Service Account
api: ces.googleapis.com
identity: service-${project_number}@gcp-sa-ces.${universe_domain}iam.gserviceaccount.com
role: roles/ces.serviceAgent
is_primary: true
aliases: []
skip_iam: false
- name: dataconnectors
display_name: Data Connectors Service Account
api: dataconnectors.googleapis.com
@@ -1009,6 +1049,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: datastudio-cmek
display_name: Data Studio CMEK Service Account
api: datastudio.googleapis.com
identity: service-${project_number}@gcp-sa-datastudio-cmek.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: datastudio
display_name: Data Studio Service Account
api: datastudio.googleapis.com
@@ -1241,6 +1289,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: storage-search
display_name: GCS Search Service Account
api: storage.googleapis.com
identity: service-${project_number}@gcp-sa-storage-search.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: gkedataplanev2
display_name: GKE Dataplane V2 Service Account
api: gkedataplanev2.googleapis.com
@@ -1282,6 +1338,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: generativelanguage
display_name: Generative Language Service Agent
api: generativelanguage.googleapis.com
identity: service-${project_number}@gcp-sa-generativelanguage.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: true
aliases: []
skip_iam: false
- name: gkeonprem
display_name: Gke On-Prem Service Account
api: gkeonprem.googleapis.com
@@ -1401,6 +1465,14 @@
aliases:
- storage
skip_iam: false
- name: diagon
display_name: Hypercompute Diagon Service Account
api: hypercomputecluster.googleapis.com
identity: service-${project_number}@gcp-sa-diagon.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: iap
display_name: IAP Service Account
api: iap.googleapis.com
@@ -1417,6 +1489,14 @@
is_primary: false
aliases: []
skip_iam: false
- name: global-spanner
display_name: Infra Spanner Production Service Account
api: spanner.googleapis.com
identity: service-${project_number}@gcp-sa-global-spanner.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: config
display_name: Infrastructure Manager Service Account
api: config.googleapis.com
@@ -1860,6 +1940,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: vs-cmek
display_name: Vector Search Cmek Service Account
api: vectorsearch.googleapis.com
identity: service-${project_number}@gcp-sa-vs-cmek.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: vectorsearch
display_name: Vector Search Service Account
api: vectorsearch.googleapis.com
@@ -1868,6 +1956,14 @@
is_primary: true
aliases: []
skip_iam: false
- name: vertex-sandbox
display_name: Vertex AI Agent Sandbox Service Agent
api: aiplatform.googleapis.com
identity: service-${project_number}@gcp-sa-vertex-sandbox.${universe_domain}iam.gserviceaccount.com
role: roles/aiplatform.agentSandboxServiceAgent
is_primary: false
aliases: []
skip_iam: false
- name: vertex-shtune
display_name: Vertex AI Ancillary Secure Fine Tuning Service Agent
api: aiplatform.googleapis.com
@@ -1964,6 +2060,14 @@
is_primary: false
aliases: []
skip_iam: false
- name: vertex-vtc
display_name: Vertex AI Training Cluster Service Agent
api: aiplatform.googleapis.com
identity: service-${project_number}@gcp-sa-vertex-vtc.${universe_domain}iam.gserviceaccount.com
role: null
is_primary: false
aliases: []
skip_iam: false
- name: vertex-agent
display_name: Vertex Agent Service Agent
api: aiplatform.googleapis.com
@@ -2012,3 +2116,4 @@
is_primary: false
aliases: []
skip_iam: false