Skip to main content

Prerequisites

  • A GCS bucket (must already exist).
  • A GCP project ID.
If the bucket does not exist, Test Connection returns a 404.

GCP Console Setup

  1. Create a Cloud Storage bucket.
  2. Create a Service Account:
    • IAM & Admin → Service Accounts → Create Service Account.
    • Grant storage permissions. Recommended options:
      • Storage Admin (simplest, includes storage.buckets.get), or
      • Storage Object Admin plus a bucket-level role like Storage Legacy Bucket Reader/Owner (for storage.buckets.get), or
      • Custom roles with:
        • storage.objects.get
        • storage.objects.create
        • storage.objects.delete
        • storage.objects.list
        • storage.buckets.get
  3. Create a JSON key for the service account and download it:
    • IAM & Admin → Service Accounts → select account → KeysAdd KeyCreate new key → JSON.

UI Configuration

In Settings → Storage:
  • Enable Custom Storage
  • Provider: GCP
  • Bucket / Container Name: existing bucket name
  • Credential Secret (optional):
    • Create a secret of type GCP Service Account and select it
    • Or leave empty to use workload identity / default credentials
Click Test Connection.

Notes

  • Ensure the service account has storage permissions (read, write, delete, list).