Merge pull request #1326 from Pionerd/master

Update Google DNS doc in case custom role is used

Author: jetstack-bot

content/docs/configuration/acme/dns01/google.md

@@ -45,7 +45,8 @@ gcloud projects add-iam-policy-binding $PROJECT_ID \
 >  * `dns.resourceRecordSets.*`
 >  * `dns.changes.*`
 >  * `dns.managedZones.list`
-
+>
+> In case you do not use the `dns.admin` role, you will also need to make sure that the Service Account used by your GKE cluster (e.g. the Compute Engine default service account) has the `https://www.googleapis.com/auth/cloud-platform` access scope assigned to it. See [Access scopes in GKE](https://cloud.google.com/kubernetes-engine/docs/how-to/access-scopes).
 ## Use Static Credentials
 
 Follow the instructions in the following sections to deploy cert-manager using