Per https://docs.cloud.google.com/chronicle/docs/reference/ingestion-methods:
"To use Ingestion methods in the Chronicle API, you must grant a user or service account the Chronicle API Editor IAM (Identity and Access Management) role. This role provides the necessary permissions to call the API."

However, the secops-wrapper ingestion functions make calls to the log-types API in addition to the ingestion API, and these require permissions in the Chronicle API Admin IAM role. I would like to be able to skip these log-types calls so I can do ingestion with the secops-wrapper without the Admin role. There is a force_log_type argument that would skip checking, but the if condition on https://github.com/google/secops-wrapper/blob/main/src/secops/chronicle/log_ingest.py#L825 needs to be re-ordered to short-circuit the log-types call when force_log_type is True.