rename iam variables in folder module
This commit is contained in:
parent
d47478a466
commit
02d867ff3d
|
@ -11,7 +11,7 @@ module "folder" {
|
|||
source = "./modules/folder"
|
||||
parent = "organizations/1234567890"
|
||||
name = "Folder name"
|
||||
iam_members = {
|
||||
iam = {
|
||||
"roles/owner" = ["group:users@example.com"]
|
||||
}
|
||||
}
|
||||
|
@ -46,7 +46,7 @@ module "folder" {
|
|||
|---|---|:---: |:---:|:---:|
|
||||
| name | Folder name. | <code title="">string</code> | ✓ | |
|
||||
| parent | Parent in folders/folder_id or organizations/org_id format. | <code title="string validation { condition = can(regex("(organizations|folders)/[0-9]+", var.parent)) error_message = "Parent must be of the form folders/folder_id or organizations/organization_id." }">string</code> | ✓ | |
|
||||
| *iam_members* | List of IAM members keyed by role. | <code title="map(set(string))">map(set(string))</code> | | <code title="">null</code> |
|
||||
| *iam* | IAM bindings in {ROLE => [MEMBERS]} format. | <code title="map(set(string))">map(set(string))</code> | | <code title="">null</code> |
|
||||
| *policy_boolean* | Map of boolean org policies and enforcement value, set value to null for policy restore. | <code title="map(bool)">map(bool)</code> | | <code title="">{}</code> |
|
||||
| *policy_list* | Map of list org policies, status is true for allow, false for deny, null for restore. Values can only be used for allow or deny. | <code title="map(object({ inherit_from_parent = bool suggested_value = string status = bool values = list(string) }))">map(object({...}))</code> | | <code title="">{}</code> |
|
||||
|
||||
|
|
|
@ -21,7 +21,7 @@ resource "google_folder" "folder" {
|
|||
}
|
||||
|
||||
resource "google_folder_iam_binding" "authoritative" {
|
||||
for_each = var.iam_members
|
||||
for_each = var.iam
|
||||
folder = google_folder.folder.name
|
||||
role = each.key
|
||||
members = each.value
|
||||
|
|
|
@ -14,10 +14,10 @@
|
|||
* limitations under the License.
|
||||
*/
|
||||
|
||||
variable "iam_members" {
|
||||
description = "List of IAM members keyed by role."
|
||||
variable "iam" {
|
||||
description = "IAM bindings in {ROLE => [MEMBERS]} format."
|
||||
type = map(set(string))
|
||||
default = null
|
||||
default = {}
|
||||
}
|
||||
|
||||
variable "name" {
|
||||
|
|
Loading…
Reference in New Issue