[DOC] - Document minimal GCP IAM permissions required for deploying and destroying Nebari

### Preliminary Checks

- [x] This issue is not a question, feature request, RFC, or anything other than a bug report. Please post those things in GitHub Discussions: https://github.com/nebari-dev/nebari/discussions

### Summary

Currently, our docs suggest [to use a service account with four predefined roles attached](https://github.com/nebari-dev/nebari-docs/blob/cdaaa56e11e7eb0ebba1e79349e7aca1ea1e1d8a/docs/docs/how-tos/nebari-gcp.md?plain=1#L65-L71). However, these are very broad permissions and they're far from ideal from a security and principle-of-least-privilege standpoint.

We should define and document custom GCP IAM roles with just enough permissions to deploy and destroy Nebari. This will help users follow best practices and safely integrate Nebari into more restrictive cloud environments.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[DOC] - Document minimal GCP IAM permissions required for deploying and destroying Nebari #583

Preliminary Checks

Summary

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[DOC] - Document minimal GCP IAM permissions required for deploying and destroying Nebari #583

Description

Preliminary Checks

Summary

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions