在 Google 监控中限制对特定仪表板的访问
Limit access to specific dashboard in Google Monitoring
是否可以创建只能访问特定 Google 监控仪表板的 GCP IAM 用户?我认为应该可以通过 conditional role bindings,但监控仪表板不是受支持的资源。
还有其他方法可以实现吗?
正如@Kamelia Y 所提到的,目前此类功能尚不可用,public 跟踪器中有一个功能请求:https://issuetracker.google.com/147039227
There is not an available workaround for real-time separation of metrics.
However, a project owner can achieve this separation via exporting their metrics manually and sending the appropriate information to the appropriate user. Here are two examples of exporting Stackdriver Monitoring metrics using App Engine/PubSub [1] or using Colab/Monitoring API [2]. Both use BigQuery to query the data and Cloud Scheduler to automate exporting the information.
是否可以创建只能访问特定 Google 监控仪表板的 GCP IAM 用户?我认为应该可以通过 conditional role bindings,但监控仪表板不是受支持的资源。
还有其他方法可以实现吗?
正如@Kamelia Y 所提到的,目前此类功能尚不可用,public 跟踪器中有一个功能请求:https://issuetracker.google.com/147039227
There is not an available workaround for real-time separation of metrics.
However, a project owner can achieve this separation via exporting their metrics manually and sending the appropriate information to the appropriate user. Here are two examples of exporting Stackdriver Monitoring metrics using App Engine/PubSub [1] or using Colab/Monitoring API [2]. Both use BigQuery to query the data and Cloud Scheduler to automate exporting the information.