Hi, what is the least privilege for nomad-autoscaler in GCP MIG,
we want to supply it with the serviceaccount json, with least privilege,
didn’t find right documentation for it, checking in here but not mentioned.
or is there anything that I didn’t know for configuring the nomad-autoscaler for GCP MIG ?
That’s a good questions, and something we should document. Looking at the code, the GCP plugin only calsl get, list and deleteInstances from the Compute API, so I created a role with only these two permissions and it seems to have been enough: