I'm raising a PR to try and fix this issue. Though I will need to do thorough testing before we can merge it due to the timing and nature of this bug.
An unknown for me currently is how the permissions will work for multiple projects, while we may be able to technically support this, we may not be able to leverage components such as the cloud credential operator to bootstrap credentials for Machines using this feature. (Though user provisioned credentials are already supported)
Need to add an extra PR to fix the webhooks, moving to assigned
VALIDATED ON - 4.6.0-0.nightly-2020-08-18-005041
1. Do an cluster install on GCP using upi-on-gcp/versioned-installer-xpn profile [choose - disable_worker_machineset: "no"]
2. Update machineset with below for network and projectID values based on your env.
- network: aos-qe-network
[you can get these values from the machines in gcp console after installation]
3.Add "Compute Network User" role to service account firstname.lastname@example.org on the GCP host project mentioned in the template during installation - #host_project: "openshift-qe-shared-vpc"
get the service account name using - oc get credentialsrequests -n openshift-cloud-credential-operator openshift-machine-api-gcp -o json | jq -r '.status.providerStatus.serviceAccountID'
4.Scale the edited machineset
new machines will be provisioned successfully and nodes are in ready state .
oc get machines -o wide
miyadav-b62-6nv99-worker-f-mfbgf Running n1-standard-4 us-central1 us-central1-f 27m miyadav-b62-6nv99-worker-f-mfbgf.c.openshift-qe.internal gce://openshift-qe/us-central1-f/miyadav-b62-6nv99-worker-f-mfbgf RUNNING
Expected - Machines should be provisioned successfully .
Moved to VERIFIED
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.