堆栈内存溢出
  简体   繁体   English

Cloud Dataflow 作业从一个 BigQuery 项目读取并写入另一个 BigQuery 项目

[英]Cloud Dataflow job reading from one Bigquery project and writing to another BigQuery project

 原文  2020-05-08 17:52:42       google-cloud-platform/ google-bigquery/ google-cloud-dataflow/ apache-beam/ service-accounts

问题描述

I'm implementing a Cloud Dataflow job on GCP that needs to deal with 2 GCP projects.我正在 GCP 上实施一个 Cloud Dataflow 作业,需要处理 2 个 GCP 项目。 Both input and output are Bigquery partitionned tables.输入和 output 都是 Bigquery 分区表。 The issue I'm going through now is that I must read data from a project A and write it into a project B.我现在遇到的问题是我必须从项目 A 中读取数据并将其写入项目 B。

I havent seen anything related to cross project service accounts and I can't give Dataflow two different credential key either which is a bit annoying?我还没有看到与跨项目服务帐户相关的任何内容,我也不能给 Dataflow 两个不同的凭据密钥,这有点烦人吗? I don't know if someone else went through that kind of architecture or how you dealt with it.我不知道其他人是否经历过这种架构,或者你是如何处理的。

2 个解决方案

解决方案1
 3 已采纳  2020-05-10 03:40:56

I think you can accomplish this with the following steps:我认为您可以通过以下步骤完成此操作:

  1. Create a dedicated service account in the project running the Dataflow job.在运行 Dataflow 作业的项目中创建一个专用服务帐户。
  2. Grant the service account the Dataflow Worker and BigQuery Job User roles.为服务帐号授予Dataflow WorkerBigQuery Job User角色。 The service account might need additional roles based on the full resource needs of the Dataflow job.根据 Dataflow 作业的全部资源需求,服务帐号可能需要其他角色。
  3. In Project A, grant the service account the BigQuery Data Viewer role to either the entire project or to specific datasets.在项目 A 中,向服务帐号授予整个项目或特定数据集的BigQuery 数据查看者角色。
  4. In Project B, grant the service account the BigQuery Data Editor role to either the entire project or to specific datasets.在项目 B 中,向服务帐号授予整个项目或特定数据集的BigQuery 数据编辑者角色。
  5. When you start the Dataflow job, override the service account pipeline option supplying the new service account.启动 Dataflow 作业时,覆盖提供新服务帐户的服务帐户管道选项。

解决方案2
 0  2020-05-11 19:24:03

It is very simple.这很简单。 you need to give required permission/access to your service account from both the project.您需要从两个项目中授予对您的服务帐户的所需权限/访问权限。

So you need only service account which has required access/permission in both the project因此,您只需要在两个项目中都需要访问/权限的服务帐户

Hope it helps.希望能帮助到你。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 将 BigQuery 表从一个项目导出到另一个项目 - Exporting BigQuery table from one project to another 无法从 BigQuery 作业连接到不同项目中的 Cloud SQL Postgres - Unable to connect from BigQuery job to Cloud SQL Postgres in different project 写入 BigQuery 时出现 Cloud Dataflow 性能问题 - Cloud Dataflow performance issue while writing to BigQuery 从云存储读取架构时将作业加载到 BigQuery 失败 - Load job to BigQuery failing when reading schema from cloud storage 从Dataflow(Python)向BigQuery编写嵌套模式 - Writing nested schema to BigQuery from Dataflow (Python) 在数据流中从BigQuery读取时设置maximumBillingTier - Set maximumBillingTier when reading from BigQuery in Dataflow 使用 DataFlow 中的从 SQL 选项卡创建作业将数据从 BigQuery 导出到 Google Cloud SQL - Export Data from BigQuery to Google Cloud SQL using Create Job From SQL tab in DataFlow 通过Google Cloud Dataflow创建/写入分片(过时的)BigQuery表 - Creating/Writing to Sharded (Dated) BigQuery table via Google Cloud Dataflow 将视图移动到另一个项目 Bigquery - Moving views to another Project Bigquery 将 BigQuery 项目克隆到另一个帐户 - Clone BigQuery Project to another account
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM