EDIT: After poking around, I was able to deploy by adding "Regional Endpoint Admin" to my service account. Leaving for anyone else who hits this.
I've been deploying to app engine with the same service account from google cloud build with no issues, but today I got this error:
ERROR: (gcloud.app.deploy) PERMISSION_DENIED: Request to https://compute.googleapis.com/compute/v1/projects/projects/my-project/regions/us-central1?key failed, details: Regions.Get and Zones.Get are already migrated to regional or zonal esf-proxy/Mixer. See go/gce-location-apis-r13n. For more information please contact GCE API Frontend oncall https://oncall.corp.google.com/cloud-cluster-frontend-dev. This command is authenticated as app-deploy-prod@my-project.iam.gserviceaccount.com which is the active account specified by the [core/account] property.
I am able to deploy from my laptop with my owner account with all permissions, but I don't understand what the error message wants me to do. I tried to access the oncall website but I didn't have access.
Command in my cloud build:
gcloud app deploy app_prod.yaml
app_prod.yaml
# [START django_app]
runtime: custom
env: flex
entrypoint: gunicorn -b :$PORT app.wsgi --timeout=120
service: default
env_variables:
ENV: "PROD"
SETTINGS_NAME: "app-env-prod"
handlers:
- url: /static
static_dir: public/
beta_settings:
cloud_sql_instances: my-project:us-east1:app-prod
manual_scaling:
instances: 8
resources:
cpu: 4
memory_gb: 12
disk_size_gb: 10
readiness_check:
path: "/readiness-check"
check_interval_sec: 15
timeout_sec: 5
failure_threshold: 2
success_threshold: 2
app_start_timeout_sec: 120
LinkedIn
Twitter
