Fix unresolved variables in starter-gcd and customizations tests (#3967)

* Fix unresolved variables in starter-gcd dataset (#3961)

* Fix unresolved variables in customizations test (#3961)

* leftover files for the fix

fast/stages/0-org-setup/datasets/starter-gcd/defaults.yaml

@@ -56,6 +56,3 @@ output_files:
     0-org-setup:
       bucket: $storage_buckets:iac-0/iac-org-state
       service_account: $iam_principals:service_accounts/iac-0/iac-org-rw
-    0-org-setup-ro:
-      bucket: $storage_buckets:iac-0/iac-org-state
-      service_account: $iam_principals:service_accounts/iac-0/iac-org-ro

fast/stages/0-org-setup/datasets/starter-gcd/organization/tags/environment.yaml

@@ -21,23 +21,23 @@ description: "Organization-level environments."
 values:
   development:
     description: "Development."
-    iam:
-      "roles/resourcemanager.tagUser":
-        - $iam_principals:service_accounts/iac-0/iac-networking-rw
-        - $iam_principals:service_accounts/iac-0/iac-security-rw
-        - $iam_principals:service_accounts/iac-0/iac-pf-rw
-      "roles/resourcemanager.tagViewer":
-        - $iam_principals:service_accounts/iac-0/iac-networking-ro
-        - $iam_principals:service_accounts/iac-0/iac-security-ro
-        - $iam_principals:service_accounts/iac-0/iac-pf-ro
+    # iam:
+    #   "roles/resourcemanager.tagUser":
+    #     - $iam_principals:service_accounts/iac-0/iac-networking-rw
+    #     - $iam_principals:service_accounts/iac-0/iac-security-rw
+    #     - $iam_principals:service_accounts/iac-0/iac-pf-rw
+    #   "roles/resourcemanager.tagViewer":
+    #     - $iam_principals:service_accounts/iac-0/iac-networking-ro
+    #     - $iam_principals:service_accounts/iac-0/iac-security-ro
+    #     - $iam_principals:service_accounts/iac-0/iac-pf-ro
   production:
     description: "Production."
-    iam:
-      "roles/resourcemanager.tagUser":
-        - $iam_principals:service_accounts/iac-0/iac-networking-rw
-        - $iam_principals:service_accounts/iac-0/iac-security-rw
-        - $iam_principals:service_accounts/iac-0/iac-pf-rw
-      "roles/resourcemanager.tagViewer":
-        - $iam_principals:service_accounts/iac-0/iac-networking-ro
-        - $iam_principals:service_accounts/iac-0/iac-security-ro
-        - $iam_principals:service_accounts/iac-0/iac-pf-ro
+    # iam:
+    #   "roles/resourcemanager.tagUser":
+    #     - $iam_principals:service_accounts/iac-0/iac-networking-rw
+    #     - $iam_principals:service_accounts/iac-0/iac-security-rw
+    #     - $iam_principals:service_accounts/iac-0/iac-pf-rw
+    #   "roles/resourcemanager.tagViewer":
+    #     - $iam_principals:service_accounts/iac-0/iac-networking-ro
+    #     - $iam_principals:service_accounts/iac-0/iac-security-ro
+    #     - $iam_principals:service_accounts/iac-0/iac-pf-ro

fast/stages/0-org-setup/datasets/starter-gcd/projects/iac-0.yaml

@@ -52,8 +52,6 @@ buckets:
     iam:
       roles/storage.admin:
         - $iam_principals:service_accounts/iac-0/iac-org-rw
-      $custom_roles:storage_viewer:
-        - $iam_principals:service_accounts/iac-0/iac-org-ro
   iac-outputs:
     description: Terraform state for the org-level automation.
     versioning: true