App Engine 역할 및 권한

이 페이지에는 App Engine의 IAM 역할과 권한이 나와 있습니다. 모든 역할과 권한을 검색하려면 역할 및 권한 색인을 참조하세요.

App Engine 역할

Role Permissions

Role	Permissions
App Engine Admin (`roles/appengine.appAdmin`) Read/Write/Modify access to all application configuration and settings. To deploy new versions, a principal must have the Service Account User (`roles/iam.serviceAccountUser`) role on the assigned App Engine service account, and the Cloud Build Editor (`roles/cloudbuild.builds.editor`), and Cloud Storage Object Admin (`roles/storage.objectAdmin`) roles on the project. Lowest-level resources where you can grant this role: Project	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.applications.update` `appengine.instances.` `appengine.instances.delete` `appengine.instances.enableDebug` `appengine.instances.get` `appengine.instances.list` `appengine.memcache.addKey` `appengine.memcache.flush` `appengine.memcache.get` `appengine.memcache.update` `appengine.operations.` `appengine.operations.get` `appengine.operations.list` `appengine.runtimes.actAsAdmin` `appengine.services.*` `appengine.services.delete` `appengine.services.get` `appengine.services.list` `appengine.services.update` `appengine.versions.create` `appengine.versions.delete` `appengine.versions.get` `appengine.versions.list` `appengine.versions.update` `artifactregistry.projectsettings.get` `artifactregistry.repositories.deleteArtifacts` `artifactregistry.repositories.downloadArtifacts` `artifactregistry.repositories.uploadArtifacts` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Creator (`roles/appengine.appCreator`) Ability to create the App Engine resource for the project. Lowest-level resources where you can grant this role: Project	`appengine.applications.create` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Viewer (`roles/appengine.appViewer`) Read-only access to all application configuration and settings. Lowest-level resources where you can grant this role: Project	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.instances.get` `appengine.instances.list` `appengine.operations.*` `appengine.operations.get` `appengine.operations.list` `appengine.services.get` `appengine.services.list` `appengine.versions.get` `appengine.versions.list` `artifactregistry.projectsettings.get` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Code Viewer (`roles/appengine.codeViewer`) Read-only access to all application configuration, settings, and deployed source code. Lowest-level resources where you can grant this role: Project	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.instances.get` `appengine.instances.list` `appengine.operations.*` `appengine.operations.get` `appengine.operations.list` `appengine.services.get` `appengine.services.list` `appengine.versions.get` `appengine.versions.getFileContents` `appengine.versions.list` `artifactregistry.projectsettings.get` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Managed VM Debug Access (`roles/appengine.debugger`) Ability to read or manage v2 instances.	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.instances.` `appengine.instances.delete` `appengine.instances.enableDebug` `appengine.instances.get` `appengine.instances.list` `appengine.operations.` `appengine.operations.get` `appengine.operations.list` `appengine.services.get` `appengine.services.list` `appengine.versions.get` `appengine.versions.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Deployer (`roles/appengine.deployer`) Read-only access to all application configuration and settings. To deploy new versions, you must also have the Service Account User (`roles/iam.serviceAccountUser`) role on the assigned App Engine service account, and the Cloud Build Editor (`roles/cloudbuild.builds.editor`), and Cloud Storage Object Admin (`roles/storage.objectAdmin`) roles on the project. Cannot modify existing versions other than deleting versions that are not receiving traffic. Lowest-level resources where you can grant this role: Project	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.instances.get` `appengine.instances.list` `appengine.operations.*` `appengine.operations.get` `appengine.operations.list` `appengine.services.get` `appengine.services.list` `appengine.versions.create` `appengine.versions.delete` `appengine.versions.get` `appengine.versions.list` `artifactregistry.projectsettings.get` `artifactregistry.repositories.deleteArtifacts` `artifactregistry.repositories.downloadArtifacts` `artifactregistry.repositories.uploadArtifacts` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Memcache Data Admin (`roles/appengine.memcacheDataAdmin`) Can get, set, delete, and flush App Engine Memcache items.	`appengine.applications.get` `appengine.memcache.addKey` `appengine.memcache.flush` `appengine.memcache.get` `appengine.memcache.update` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Service Admin (`roles/appengine.serviceAdmin`) Read-only access to all application configuration and settings. Write access to module-level and version-level settings. Cannot deploy a new version. Lowest-level resources where you can grant this role: Project	`appengine.applications.get` `appengine.applications.listRuntimes` `appengine.instances.delete` `appengine.instances.get` `appengine.instances.list` `appengine.operations.` `appengine.operations.get` `appengine.operations.list` `appengine.services.` `appengine.services.delete` `appengine.services.get` `appengine.services.list` `appengine.services.update` `appengine.versions.delete` `appengine.versions.get` `appengine.versions.list` `appengine.versions.update` `artifactregistry.projectsettings.get` `resourcemanager.projects.get` `resourcemanager.projects.list`
App Engine Standard Environment Service Agent (`roles/appengine.serviceAgent`) Give App Engine Standard Envirnoment service account access to managed resources. Includes access to service accounts. Warning: Do not grant service agent roles to any principals except service agents.	`appengine.versions.delete` `appengine.versions.get` `appengine.versions.list` `appengine.versions.update` `artifactregistry.aptartifacts.create` `artifactregistry.dockerimages.` `artifactregistry.dockerimages.get` `artifactregistry.dockerimages.list` `artifactregistry.files.download` `artifactregistry.files.get` `artifactregistry.files.list` `artifactregistry.kfpartifacts.create` `artifactregistry.locations.` `artifactregistry.locations.get` `artifactregistry.locations.list` `artifactregistry.mavenartifacts.` `artifactregistry.mavenartifacts.get` `artifactregistry.mavenartifacts.list` `artifactregistry.npmpackages.` `artifactregistry.npmpackages.get` `artifactregistry.npmpackages.list` `artifactregistry.packages.get` `artifactregistry.packages.list` `artifactregistry.projectsettings.get` `artifactregistry.pythonpackages.` `artifactregistry.pythonpackages.get` `artifactregistry.pythonpackages.list` `artifactregistry.repositories.create` `artifactregistry.repositories.downloadArtifacts` `artifactregistry.repositories.get` `artifactregistry.repositories.list` `artifactregistry.repositories.listEffectiveTags` `artifactregistry.repositories.listTagBindings` `artifactregistry.repositories.readViaVirtualRepository` `artifactregistry.repositories.uploadArtifacts` `artifactregistry.tags.create` `artifactregistry.tags.get` `artifactregistry.tags.list` `artifactregistry.tags.update` `artifactregistry.versions.get` `artifactregistry.versions.list` `artifactregistry.yumartifacts.create` `datastore.databases.get` `datastore.entities.create` `datastore.entities.delete` `datastore.entities.get` `datastore.entities.list` `datastore.entities.update` `datastore.indexes.list` `datastore.namespaces.` `datastore.namespaces.get` `datastore.namespaces.list` `datastore.statistics.*` `datastore.statistics.get` `datastore.statistics.list` `iam.serviceAccounts.getAccessToken` `iam.serviceAccounts.getOpenIdToken` `iam.serviceAccounts.signBlob` `serviceusage.services.enable` `serviceusage.services.get` `storage.buckets.create` `storage.buckets.get`

App Engine Admin

(roles/appengine.appAdmin)

Read/Write/Modify access to all application configuration and settings.

To deploy new versions, a principal must have the Service Account User (roles/iam.serviceAccountUser) role on the assigned App Engine service account, and the Cloud Build Editor (roles/cloudbuild.builds.editor), and Cloud Storage Object Admin (roles/storage.objectAdmin) roles on the project.

Lowest-level resources where you can grant this role:

Project

appengine.applications.get

appengine.applications.listRuntimes

appengine.applications.update

appengine.instances.*

appengine.instances.delete
appengine.instances.enableDebug
appengine.instances.get
appengine.instances.list

appengine.memcache.addKey

appengine.memcache.flush

appengine.memcache.get

appengine.memcache.update

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.runtimes.actAsAdmin

appengine.services.*

appengine.services.delete
appengine.services.get
appengine.services.list
appengine.services.update

appengine.versions.create

appengine.versions.delete

appengine.versions.get

appengine.versions.list

appengine.versions.update

artifactregistry.projectsettings.get

artifactregistry.repositories.deleteArtifacts

artifactregistry.repositories.downloadArtifacts

artifactregistry.repositories.uploadArtifacts

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Creator

(roles/appengine.appCreator)

Ability to create the App Engine resource for the project.

Lowest-level resources where you can grant this role:

Project

appengine.applications.create

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Viewer

(roles/appengine.appViewer)

Read-only access to all application configuration and settings.

Lowest-level resources where you can grant this role:

Project

appengine.applications.get

appengine.applications.listRuntimes

appengine.instances.get

appengine.instances.list

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.services.get

appengine.services.list

appengine.versions.get

appengine.versions.list

artifactregistry.projectsettings.get

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Code Viewer

(roles/appengine.codeViewer)

Read-only access to all application configuration, settings, and deployed source code.

Lowest-level resources where you can grant this role:

Project

appengine.applications.get

appengine.applications.listRuntimes

appengine.instances.get

appengine.instances.list

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.services.get

appengine.services.list

appengine.versions.get

appengine.versions.getFileContents

appengine.versions.list

artifactregistry.projectsettings.get

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Managed VM Debug Access

(roles/appengine.debugger)

Ability to read or manage v2 instances.

appengine.applications.get

appengine.applications.listRuntimes

appengine.instances.*

appengine.instances.delete
appengine.instances.enableDebug
appengine.instances.get
appengine.instances.list

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.services.get

appengine.services.list

appengine.versions.get

appengine.versions.list

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Deployer

(roles/appengine.deployer)

Read-only access to all application configuration and settings.

To deploy new versions, you must also have the Service Account User (roles/iam.serviceAccountUser) role on the assigned App Engine service account, and the Cloud Build Editor (roles/cloudbuild.builds.editor), and Cloud Storage Object Admin (roles/storage.objectAdmin) roles on the project.

Cannot modify existing versions other than deleting versions that are not receiving traffic.

Lowest-level resources where you can grant this role:

Project

appengine.applications.get

appengine.applications.listRuntimes

appengine.instances.get

appengine.instances.list

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.services.get

appengine.services.list

appengine.versions.create

appengine.versions.delete

appengine.versions.get

appengine.versions.list

artifactregistry.projectsettings.get

artifactregistry.repositories.deleteArtifacts

artifactregistry.repositories.downloadArtifacts

artifactregistry.repositories.uploadArtifacts

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Memcache Data Admin

(roles/appengine.memcacheDataAdmin)

Can get, set, delete, and flush App Engine Memcache items.

appengine.applications.get

appengine.memcache.addKey

appengine.memcache.flush

appengine.memcache.get

appengine.memcache.update

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Service Admin

(roles/appengine.serviceAdmin)

Read-only access to all application configuration and settings.

Write access to module-level and version-level settings. Cannot deploy a new version.

Lowest-level resources where you can grant this role:

Project

appengine.applications.get

appengine.applications.listRuntimes

appengine.instances.delete

appengine.instances.get

appengine.instances.list

appengine.operations.*

appengine.operations.get
appengine.operations.list

appengine.services.*

appengine.services.delete
appengine.services.get
appengine.services.list
appengine.services.update

appengine.versions.delete

appengine.versions.get

appengine.versions.list

appengine.versions.update

artifactregistry.projectsettings.get

resourcemanager.projects.get

resourcemanager.projects.list

App Engine Standard Environment Service Agent

(roles/appengine.serviceAgent)

Give App Engine Standard Envirnoment service account access to managed resources. Includes access to service accounts.

appengine.versions.delete

appengine.versions.get

appengine.versions.list

appengine.versions.update

artifactregistry.aptartifacts.create

artifactregistry.dockerimages.*

artifactregistry.dockerimages.get
artifactregistry.dockerimages.list

artifactregistry.files.download

artifactregistry.files.get

artifactregistry.files.list

artifactregistry.kfpartifacts.create

artifactregistry.locations.*

artifactregistry.locations.get
artifactregistry.locations.list

artifactregistry.mavenartifacts.*

artifactregistry.mavenartifacts.get
artifactregistry.mavenartifacts.list

artifactregistry.npmpackages.*

artifactregistry.npmpackages.get
artifactregistry.npmpackages.list

artifactregistry.packages.get

artifactregistry.packages.list

artifactregistry.projectsettings.get

artifactregistry.pythonpackages.*

artifactregistry.pythonpackages.get
artifactregistry.pythonpackages.list

artifactregistry.repositories.create

artifactregistry.repositories.downloadArtifacts

artifactregistry.repositories.get

artifactregistry.repositories.list

artifactregistry.repositories.listEffectiveTags

artifactregistry.repositories.listTagBindings

artifactregistry.repositories.readViaVirtualRepository

artifactregistry.repositories.uploadArtifacts

artifactregistry.tags.create

artifactregistry.tags.get

artifactregistry.tags.list

artifactregistry.tags.update

artifactregistry.versions.get

artifactregistry.versions.list

artifactregistry.yumartifacts.create

datastore.databases.get

datastore.entities.create

datastore.entities.delete

datastore.entities.get

datastore.entities.list

datastore.entities.update

datastore.indexes.list

datastore.namespaces.*

datastore.namespaces.get
datastore.namespaces.list

datastore.statistics.*

datastore.statistics.get
datastore.statistics.list

iam.serviceAccounts.getAccessToken

iam.serviceAccounts.getOpenIdToken

iam.serviceAccounts.signBlob

serviceusage.services.enable

serviceusage.services.get

storage.buckets.create

storage.buckets.get

App Engine 권한

권한	역할에 포함됨
`appengine.applications.create`	소유자(`roles/owner`) App Engine 생성자(`roles/appengine.appCreator`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Firebase Service Management 서비스 에이전트(`roles/firebase.managementServiceAgent`)
`appengine.applications.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine Memcache 데이터 관리자(`roles/appengine.memcacheDataAdmin`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) Cloud Scheduler 관리자(`roles/cloudscheduler.admin`) Cloud Scheduler 작업 실행자(`roles/cloudscheduler.jobRunner`) Cloud Scheduler 뷰어(`roles/cloudscheduler.viewer`) Web Security Scanner 편집자(`roles/cloudsecurityscanner.editor`) Cloud Datastore 가져오기 내보내기 관리자(`roles/datastore.importExportAdmin`) Cloud Datastore 색인 관리자(`roles/datastore.indexAdmin`) Cloud Datastore 소유자(`roles/datastore.owner`) Cloud Datastore 사용자(`roles/datastore.user`) Cloud Datastore 뷰어(`roles/datastore.viewer`) Firebase 관리자(`roles/firebase.admin`) Firebase 개발 관리자(`roles/firebase.developAdmin`) Firebase Admin SDK 관리자 서비스 에이전트(`roles/firebase.sdkAdminServiceAgent`) Firebase Extensions API 서비스 에이전트(`roles/firebasemods.serviceAgent`) 보안 센터 관리자(`roles/securitycenter.admin`) 보안 센터 관리자 편집자(`roles/securitycenter.adminEditor`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) Datapipelines 서비스 에이전트(`roles/datapipelines.serviceAgent`) DLP API 서비스 에이전트(`roles/dlp.serviceAgent`) Firebase Service Management 서비스 에이전트(`roles/firebase.managementServiceAgent`) Cloud Web Security Scanner 서비스 에이전트(`roles/websecurityscanner.serviceAgent`) Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`)
`appengine.applications.listRuntimes`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.applications.update`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Firebase Service Management 서비스 에이전트(`roles/firebase.managementServiceAgent`) Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.instances.delete`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.instances.enableDebug`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.instances.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.instances.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.memcache.addKey`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine Memcache 데이터 관리자(`roles/appengine.memcacheDataAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.memcache.flush`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine Memcache 데이터 관리자(`roles/appengine.memcacheDataAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.memcache.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine Memcache 데이터 관리자(`roles/appengine.memcacheDataAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.memcache.getKey`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`)
`appengine.memcache.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`)
`appengine.memcache.update`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine Memcache 데이터 관리자(`roles/appengine.memcacheDataAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.operations.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) Firebase Service Management 서비스 에이전트(`roles/firebase.managementServiceAgent`) Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`)
`appengine.operations.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.runtimes.actAsAdmin`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.services.delete`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.services.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.services.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Firebase Service Management 서비스 에이전트(`roles/firebase.managementServiceAgent`) Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`)
`appengine.services.update`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`)
`appengine.versions.create`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 배포자(`roles/appengine.deployer`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`)
`appengine.versions.delete`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`) Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) App Engine 표준 환경 서비스 에이전트(`roles/appengine.serviceAgent`)
`appengine.versions.get`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`) Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) App Engine 표준 환경 서비스 에이전트(`roles/appengine.serviceAgent`)
`appengine.versions.getFileContents`	소유자(`roles/owner`) App Engine 코드 뷰어(`roles/appengine.codeViewer`)
`appengine.versions.list`	소유자(`roles/owner`) 편집자(`roles/editor`) 뷰어 (`roles/viewer`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 뷰어(`roles/appengine.appViewer`) App Engine 코드 뷰어(`roles/appengine.codeViewer`) App Engine 관리형 VM 디버그 액세스(`roles/appengine.debugger`) App Engine 배포자(`roles/appengine.deployer`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 보안 관리자(`roles/iam.securityAdmin`) 보안 검토자(`roles/iam.securityReviewer`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Deployment Manager 서비스 에이전트(`roles/clouddeploymentmanager.serviceAgent`) Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) App Engine 표준 환경 서비스 에이전트(`roles/appengine.serviceAgent`)
`appengine.versions.update`	소유자(`roles/owner`) 편집자(`roles/editor`) App Engine 관리자(`roles/appengine.appAdmin`) App Engine 서비스 관리자(`roles/appengine.serviceAdmin`) 서비스 에이전트 역할 경고: 서비스 에이전트를 제외하고 주 구성원에 서비스 에이전트 역할을 부여하지 마세요. Cloud Composer API 서비스 에이전트(`roles/composer.serviceAgent`) App Engine 표준 환경 서비스 에이전트(`roles/appengine.serviceAgent`)

App Engine 역할 및 권한