Skip to content

Commit 2bc6e4a

Browse files
haresh-sureshharesh-suresh
committed
rm whiteline
1 parent 5e6e5db commit 2bc6e4a

File tree

1 file changed

+1
-2
lines changed

1 file changed

+1
-2
lines changed

modules/config-posture/main.tf

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -64,8 +64,7 @@ resource "google_iam_workload_identity_pool_provider" "posture_auth_pool_provide
6464
#---------------------------------------------------------------------------------------------
6565
resource "google_project_iam_member" "cspm" {
6666
# adding ciem role with permissions to the service account alongside cspm roles
67-
for_each = var.is_organizational ? [] : toset(["roles/cloudasset.viewer", "roles/iam.workloadIdentityUser", "roles/logging.viewer", "roles/cloudfunctions.viewer", "roles/cloudbuild.builds.viewer", "roles/orgpolicy.policyViewer",
68-
"roles/recommender.viewer", "roles/iam.serviceAccountViewer", "roles/iam.roleViewer", "roles/container.clusterViewer", "roles/compute.viewer"])
67+
for_each = var.is_organizational ? [] : toset(["roles/cloudasset.viewer", "roles/iam.workloadIdentityUser", "roles/logging.viewer", "roles/cloudfunctions.viewer", "roles/cloudbuild.builds.viewer", "roles/orgpolicy.policyViewer", "roles/recommender.viewer", "roles/iam.serviceAccountViewer", "roles/iam.roleViewer", "roles/container.clusterViewer", "roles/compute.viewer"])
6968

7069
project = var.project_id
7170
role = each.key

0 commit comments

Comments
 (0)