Change theme
Help
Press space for more information.
Show links for this issue (Shortcut: i, l)
Copy issue ID
Previous Issue (Shortcut: k)
Next Issue (Shortcut: j)
Sign in to use full features.
Vote: I am impacted
Notification menu
Refresh (Shortcut: Shift+r)
Go home (Shortcut: u)
Pending code changes (auto-populated)
View issue level access limits(Press Alt + Right arrow for more information)
Unintended behavior
View staffing
Description
Please provide as much information as possible. At least, this should include a description of your issue and steps to reproduce the problem. If possible please provide a summary of what steps or workarounds you have already tried, and any docs or articles you found (un)helpful.
Problem you have encountered:
A user was trying to create a data store in Vertex AI Agent Builder against a Google Cloud Storage bucket. However, no matter how open that Google Cloud Storage bucket is, the console always reports that something is missing the storage.objects.get permission.
The discovery engine service account [1] is able to read all the files at the Google Cloud Storage bucket but just in case the user temporarily made the bucket available to allUsers, and still, the data store creation failed.
What you expected to happen:
The data store creation at the Vertex AI Agent Builder should be succeeded.
Steps to reproduce:
Trying to create the Datastore for an App at the Vertex AI Agent Builder Console will fail with the error [2]
Other information (workarounds you have tried, documentation consulted, etc):
The issue is already known to the product specialist team and it is a front end issue and they are looking forward to resolve it.
For that the product specialist team has indicated if for whatever reason creating a new bucket in the Google Cloud Storage UI and then using that without granting any legacy permissions seems to work on this issue.
This also seems to work via API (curl) approach and the user who reported it also worked for him.
This is also requested to update the document [3] to include this limitation for the Console
[1] Data Engine Service Account: service-[PROJECT_NUMBER]@
[2] Error message: Missing required permissions: Storage.objects.get
[3] Import once from Cloud Storage: