add the self project key to service account namespaces (#3490)
This commit is contained in:
Ludovico Magnocavallo
committed by
GitHub
GitHub
parent
4a9085675e
commit
c765043c5c
@@ -265,6 +265,7 @@ values:
|
||||
: condition: []
|
||||
members:
|
||||
- serviceAccount:app-0-be@test-pf-dev-ta-app0-be.iam.gserviceaccount.com
|
||||
- serviceAccount:app-0-fe@test-pf-dev-ta-app0-be.iam.gserviceaccount.com
|
||||
project: test-pf-dev-ta-app0-be
|
||||
role: roles/storage.objectViewer
|
||||
? module.project-factory.module.projects-iam["dev-ta-app0-be"].google_project_iam_member.shared_vpc_host_iam["$iam_principals:gcp-devops"]
|
||||
@@ -672,6 +673,15 @@ values:
|
||||
member: serviceAccount:app-0-be@test-pf-dev-tb-app0-1.iam.gserviceaccount.com
|
||||
project: test-pf-dev-tb-app0-1
|
||||
timeouts: null
|
||||
? module.project-factory.module.service_accounts-iam["dev-ta-app0-be/app-0-be"].google_service_account_iam_binding.authoritative["roles/iam.serviceAccountUser"]
|
||||
: condition: []
|
||||
members:
|
||||
- serviceAccount:app-0-fe@test-pf-dev-ta-app0-be.iam.gserviceaccount.com
|
||||
role: roles/iam.serviceAccountUser
|
||||
? module.project-factory.module.service_accounts-iam["dev-ta-app0-be/app-0-be"].google_service_account_iam_member.additive["$service_account_ids:_self_/app-0-fe-roles/iam.serviceAccountUser"]
|
||||
: condition: []
|
||||
role: roles/iam.serviceAccountUser
|
||||
service_account_id: projects/test-pf-dev-ta-app0-be/serviceAccounts/app-0-fe@test-pf-dev-ta-app0-be.iam.gserviceaccount.com
|
||||
? module.project-factory.module.service_accounts-iam["dev-tb-app0-0/vm-default"].google_service_account_iam_binding.authoritative["roles/iam.serviceAccountTokenCreator"]
|
||||
: condition: []
|
||||
members:
|
||||
@@ -699,7 +709,8 @@ counts:
|
||||
google_project_service: 13
|
||||
google_project_service_identity: 4
|
||||
google_service_account: 6
|
||||
google_service_account_iam_binding: 1
|
||||
google_service_account_iam_binding: 2
|
||||
google_service_account_iam_member: 1
|
||||
google_storage_bucket: 1
|
||||
google_storage_bucket_iam_binding: 2
|
||||
google_storage_project_service_account: 4
|
||||
@@ -707,6 +718,6 @@ counts:
|
||||
google_tags_tag_key: 1
|
||||
google_tags_tag_value: 2
|
||||
google_tags_tag_value_iam_binding: 1
|
||||
modules: 26
|
||||
resources: 92
|
||||
modules: 27
|
||||
resources: 94
|
||||
terraform_data: 1
|
||||
|
||||
Reference in New Issue
Block a user