210 lines
4.9 KiB
HCL
210 lines
4.9 KiB
HCL
module "cs-folders-iam-0-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/folders_iam"
|
|
version = "~> 7.7"
|
|
|
|
folders = [
|
|
local.folder_map["Non-Production"].id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:gcp-developers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-folders-iam-0-containeradmin" {
|
|
source = "terraform-google-modules/iam/google//modules/folders_iam"
|
|
version = "~> 7.7"
|
|
|
|
folders = [
|
|
local.folder_map["Non-Production"].id,
|
|
]
|
|
bindings = {
|
|
"roles/container.admin" = [
|
|
"group:gcp-developers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-folders-iam-1-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/folders_iam"
|
|
version = "~> 7.7"
|
|
|
|
folders = [
|
|
local.folder_map["Development"].id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:gcp-developers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-folders-iam-1-containeradmin" {
|
|
source = "terraform-google-modules/iam/google//modules/folders_iam"
|
|
version = "~> 7.7"
|
|
|
|
folders = [
|
|
local.folder_map["Development"].id,
|
|
]
|
|
bindings = {
|
|
"roles/container.admin" = [
|
|
"group:gcp-developers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-2-loggingviewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/logging.viewer" = [
|
|
"group:gcp-logging-monitoring-viewers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-2-loggingprivateLogViewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/logging.privateLogViewer" = [
|
|
"group:gcp-logging-monitoring-viewers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-2-bigquerydataViewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/bigquery.dataViewer" = [
|
|
"group:gcp-logging-monitoring-viewers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-2-pubsubviewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/pubsub.viewer" = [
|
|
"group:gcp-logging-monitoring-viewers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-2-monitoringviewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/monitoring.viewer" = [
|
|
"group:gcp-logging-monitoring-viewers@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-3-bigquerydataViewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/bigquery.dataViewer" = [
|
|
"group:gcp-security-admins@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-projects-iam-3-pubsubviewer" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-project-logging-monitoring.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/pubsub.viewer" = [
|
|
"group:gcp-security-admins@tips-of-mine.com",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-service-projects-iam-4-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-svc-team-it-prod-svc-xvzz.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:${module.cs-gg-service-i-team-it-prod-svc.id}",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-service-projects-iam-5-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-svc-team-it-nonprod-svc-xvzz.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:${module.cs-gg-service-i-team-it-nonprod-svc.id}",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-service-projects-iam-6-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-svc-team-rh-prod-svc-xvzz.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:${module.cs-gg-service-i-team-rh-prod-svc.id}",
|
|
]
|
|
}
|
|
}
|
|
|
|
module "cs-service-projects-iam-7-computeinstanceAdminv1" {
|
|
source = "terraform-google-modules/iam/google//modules/projects_iam"
|
|
version = "~> 7.7"
|
|
|
|
projects = [
|
|
module.cs-svc-team-rh-nonprod-svc-xvzz.project_id,
|
|
]
|
|
bindings = {
|
|
"roles/compute.instanceAdmin.v1" = [
|
|
"group:${module.cs-gg-service-i-team-rh-nonprod-svc.id}",
|
|
]
|
|
}
|
|
}
|