User Story:

I want the installer to create only the minimally needed identities to install and operate a cluster, so that our clusters adhere to the security principle of least privilege.

Acceptance Criteria:

Description of criteria:

• Installer does not create any unnecessary identities.
• Passing e2e-tests

Out of Scope:

• GCP Shared VPC installs allow users to pass existing service accounts to the control plane nodes. This card should not affect that functionality.

Engineering Details:

• The primary purpose of these credentials was to authenticate the in-tree cloud provider. Now that we are moving out of tree, we may be able to remove them.
• Master service accounts are created here: https://github.com/openshift/installer/blob/9dfc08bc02dcce80af0d2f3dc63c6d0216247591/data/data/gcp/cluster/master/main.tf#L5-L45
• Compute service accounts are created: https://github.com/openshift/installer/blob/master/data/data/gcp/cluster/iam/main.tf
• Service accounts are assigned in machines(ets) here: https://github.com/openshift/installer/blob/master/pkg/asset/machines/gcp/machines.go#L157

This requires/does not require a design proposal.
This requires/does not require a feature gate.