This module allows simplified creation and management of one a service account and its IAM bindings. A key can optionally be generated and will be stored in Terraform state. To use it create a sensitive output in your root modules referencing the `key` output, then extract the private key from the JSON formatted outputs.
| *iam* | IAM bindings on the service account in {ROLE => [MEMBERS]} format. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *iam_billing_roles* | Project roles granted to the service account, by billing account id. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *iam_folder_roles* | Project roles granted to the service account, by folder id. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *iam_organization_roles* | Project roles granted to the service account, by organization id. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *iam_project_roles* | Project roles granted to the service account, by project id. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *iam_storage_roles* | Storage roles granted to the service account, by bucket name. | <codetitle="map(list(string))">map(list(string))</code> | | <codetitle="">{}</code> |
| *service_account_create* | Create service account. When set to false, uses a data source to reference an existing service account. | <codetitle="">bool</code> | | <codetitle="">true</code> |