Stay organized with collections
Save and categorize content based on your preferences.
Road Management Insights uses the Roads Selection API as a core component that
provides road data to BigQuery and Pub/Sub.
To create and manage selected routes in a Google Cloud project, the Roads Selection API must be enabled on the project. You must hold either the
Owner or Editor IAM role
on the project.
Alternatively, you can assign the following IAM roles to a user account or
service account that you use to manage selected routes:
The Roads Selection Admin role grants the user or services account
read/write access to selected routes in the project. This role lets the user perform all operations
on a selected-route.
You can run the following command for granting admin access to a principal:
The Roads Selection Viewer role grants read-only access
to selected routes in the project. This role lets you perform a list or get
operation on a selected-route.
You can run the following command for granting viewer access to a principal:
Additionally, the user must have at least serviceusage.services.use permission on
the project. Provide that permission through the project Owner or Editor roles, or through
the specific Service Usage Consumer role. The service throws an error if the user does not have
required Roads Selection permissions and Service Usage permissions on the selected project.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-26 UTC."],[],[],null,["# Configure roles\n\nRoad Management Insights uses the Roads Selection API as a core component that\nprovides road data to BigQuery and Pub/Sub.\n\nTo create and manage selected routes in a Google Cloud project, the Roads Selection API must be enabled on the project. You must hold either the\n[Owner or Editor IAM role](https://cloud.google.com/iam/docs/understanding-roles#role_types)\non the project.\n| **Note:** If you created the project, then you have the Owner role on the project. The [**IAM** page](https://console.cloud.google.com/iam-admin/iam) of the Google Cloud console shows the project owners and editors.\n\nAlternatively, you can assign the following IAM roles to a user account or\nservice account that you use to manage selected routes:\n\n- The `Roads Selection Admin` role grants the user or services account read/write access to selected routes in the project. This role lets the user perform all operations on a selected-route.\n\n You can run the following command for granting admin access to a principal: \n\n ```\n gcloud auth login\n\n gcloud projects add-iam-policy-binding PROJECT_ID \\\n --member user:user_email \\\n --role roles/roads.roadsSelectionAdmin\n \n ```\n- The `Roads Selection Viewer` role grants read-only access to selected routes in the project. This role lets you perform a list or get operation on a selected-route.\n\n You can run the following command for granting viewer access to a principal: \n\n ```\n gcloud auth login\n\n gcloud projects add-iam-policy-binding PROJECT_ID \\\n --member user:user_email \\\n --role roles/roads.roadsSelectionViewer\n \n ```\n\nAdditionally, the user must have at least `serviceusage.services.use` permission on\nthe project. Provide that permission through the project Owner or Editor roles, or through\nthe specific Service Usage Consumer role. The service throws an error if the user does not have\nrequired Roads Selection permissions and Service Usage permissions on the selected project.\n\nFor more information, see\n[Grant an IAM role by using the Google Cloud console](https://cloud.google.com/iam/docs/grant-role-console).\n\nWhat's next\n-----------\n\nAfter configuring roles, you must create an OAuth token:\n\n[Use OAuth](/maps/documentation/roads-management-insights/oauth-token)"]]
