Skip to content

Commit

Permalink
OPS: Add bigquery IAM roles to terraform config
Browse files Browse the repository at this point in the history
  • Loading branch information
@cortadocodes
cortadocodes committed Mar 6, 2024
1 parent cdac7bf commit 0ee0584
Showing 1 changed file with 27 additions and 0 deletions.
27 changes: 27 additions & 0 deletions terraform/iam.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -91,6 +91,33 @@ resource "google_project_iam_binding" "bigquery_dataeditor" {
}


resource "google_project_iam_binding" "bigquery_dataviewer" {
project = var.project
role = "roles/bigquery.dataViewer"
members = [
"serviceAccount:${google_service_account.dev_cortadocodes_service_account.email}",
]
}


resource "google_project_iam_binding" "bigquery_jobuser" {
project = var.project
role = "roles/bigquery.jobUser"
members = [
"serviceAccount:${google_service_account.dev_cortadocodes_service_account.email}",
]
}


resource "google_project_iam_binding" "bigquery_readsessionuser" {
project = var.project
role = "roles/bigquery.readSessionUser"
members = [
"serviceAccount:${google_service_account.dev_cortadocodes_service_account.email}",
]
}


resource "google_iam_workload_identity_pool" "github_actions_pool" {
display_name = "github-actions-pool"
project = var.project
Expand Down

0 comments on commit 0ee0584

Please sign in to comment.