From a1e95a69bc40a00caa326aca90f87594aa337c95 Mon Sep 17 00:00:00 2001
From: Philippe Boneff <phb@google.com>
Date: Tue, 29 Oct 2024 11:02:12 +0000
Subject: [PATCH] Don't validate that the issuer bucket exists, and fail if it
 does not. (#31)

This allows to remove permissions from the service accounts running
the binary.
---
 storage/gcp/issuers.go | 16 +---------------
 1 file changed, 1 insertion(+), 15 deletions(-)

diff --git a/storage/gcp/issuers.go b/storage/gcp/issuers.go
index 12971ee..98e3c7b 100644
--- a/storage/gcp/issuers.go
+++ b/storage/gcp/issuers.go
@@ -21,9 +21,8 @@ import (
 	"path"
 
 	gcs "cloud.google.com/go/storage"
-	"github.com/transparency-dev/static-ct"
+	sctfe "github.com/transparency-dev/static-ct"
 	"google.golang.org/api/googleapi"
-	"google.golang.org/api/iterator"
 	"k8s.io/klog/v2"
 )
 
@@ -43,19 +42,6 @@ func NewIssuerStorage(ctx context.Context, projectID string, bucket string, pref
 		return nil, fmt.Errorf("failed to create GCS client: %v", err)
 	}
 
-	it := c.Buckets(ctx, projectID)
-	for {
-		bAttrs, err := it.Next()
-		if err == iterator.Done {
-			return nil, fmt.Errorf("bucket %q does not exist, please create it", bucket)
-		}
-		if err != nil {
-			return nil, fmt.Errorf("error scanning buckets: %v", err)
-		}
-		if bAttrs.Name == bucket {
-			break
-		}
-	}
 	r := &IssuersStorage{
 		bucket:      c.Bucket(bucket),
 		prefix:      prefix,