docs: improve GCP service account authentication documentation

[d-bytebase]

Summary

• Rewrote GCP Secret Manager documentation to use the most secure authentication method (GCE VM service accounts)
• Created unified service account setup section that works for both GCE and GKE deployments
• Significantly improved documentation clarity and reduced wordiness

Changes

Security Improvements

• Primary method now uses GCE VM service accounts - eliminates need for service account keys
• Added GKE Workload Identity support - secure authentication for Kubernetes deployments
• Moved service account keys to "Alternative" section with clear warnings about security risks

Documentation Structure

• Created shared Prerequisites section - eliminates duplication between Cloud SQL and Secret Manager
• Consolidated to single bytebase service account - simpler than managing multiple accounts
• Removed 7 obsolete screenshots - replaced with clear text instructions

Technical Corrections

• Fixed IAM user creation - now correctly shows gcloud/Console methods (not SQL commands)
• Corrected username formats:
  • MySQL: bytebase (service account name only)
  • PostgreSQL: bytebase@PROJECT_ID.iam (without .gserviceaccount.com suffix)
• Updated all Google Cloud documentation links - verified all links are valid

Content Improvements

• Reduced word count by ~50% while maintaining clarity
• Added comprehensive references to official Google Cloud documentation
• Improved step-by-step instructions with clearer navigation paths

Test Plan

• Verified all documentation links are valid and accessible
• Checked technical accuracy against Google Cloud documentation
• Ensured internal anchor links work correctly
• Confirmed deleted images are not referenced elsewhere

🤖 Generated with Claude Code

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
bytebase-com	Ready	Preview	Comment	Aug 20, 2025 2:56pm

[Copilot]

Pull Request Overview

This PR improves GCP service account authentication documentation by prioritizing secure authentication methods and consolidating redundant content. The changes make the documentation more secure, clearer, and easier to follow.

Key changes:

• Restructured to use GCE VM service accounts as the primary authentication method instead of service account keys
• Created unified Prerequisites section that eliminates duplication between Cloud SQL and Secret Manager configurations
• Significantly reduced content length while improving clarity and removing obsolete screenshots

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[github-actions]

📝 Broken Links Check Report

Note: Entries under /api-reference/ are likely false positives and can be ignored.

The following is the output from the broken links check:

found 16 broken links in 9 files

integrations/api/audit-log.mdx
 ⎿  /api-reference/auditlogservice/post-v1auditlogs:search

integrations/api/authentication.mdx
 ⎿  /api-reference/authservice/post-v1authlogin

integrations/api/data-classification.mdx
 ⎿  /api-reference/settingservice/patch-v1settings
 ⎿  /api-reference/databaseservice/patch-v1instances-databases

integrations/api/issue.mdx
 ⎿  /api-reference/issueservice/post-v1projects-issues

integrations/api/permission.mdx
 ⎿  /api-reference/workspaceservice/get-v1workspaces-:getIamPolicy
 ⎿  /api-reference/projectservice/get-v1projects-:getIamPolicy
 ⎿  /api-reference/roleservice/get-v1roles
 ⎿  /api-reference/userservice/get-v1users
 ⎿  /api-reference/groupservice/get-v1groups

integrations/api/plan.mdx
 ⎿  /api-reference/planservice/post-v1projects-plans
 ⎿  /api-reference/sheetservice/post-v1projects-sheets

integrations/api/release.mdx
 ⎿  /api-reference/releaseservice/post-v1projects-releases

integrations/api/rollout.mdx
 ⎿  /api-reference/rolloutservice/post-v1projects-rollouts

integrations/api/sql-review.mdx
 ⎿  /api-reference/releaseservice/post-v1projects-releases:check
 ⎿  /api-reference/sqlservice/post-v1sqlcheck