Improve error message when credentials lack BigQuery read API permissions

### What feature or improvement would you like to see?

The ADBC driver uses the Read API to make requests to BigQuery. That requires `roles/bigquery.readSessionUser`.

If the user lacks the permission, BigQuery errors with `require storage read API to be enabled`, which is imprecise, since (1) it [is enabled for all projects where the Storage API is enabled](https://cloud.google.com/bigquery/docs/reference/storage#enabling_the_api) and (2) it's actually a permissions error, not that the API is disabled.

I suggest we catch this 403 and return a better error like "Your credentials lack permissions for the Read API. Assign `roles/bigquery.readSessionUser` and try again."

If it is decided to implement what's suggested [here](https://github.com/apache/arrow-adbc/issues/3282), then this error message might change to something like "... or use the Jobs API instead".

<img width="3016" height="1728" alt="Image" src="https://github.com/user-attachments/assets/4e1e3695-a3f8-4d9a-b9c2-a4b01538b046" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Improve error message when credentials lack BigQuery read API permissions #3281

What feature or improvement would you like to see?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Improve error message when credentials lack BigQuery read API permissions #3281

Description

What feature or improvement would you like to see?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions