From b3c528b9b9bd621a8c40b57867fc3611215600f0 Mon Sep 17 00:00:00 2001
From: Miguel Pais <miguel.pais@sysdig.com>
Date: Wed, 22 Jan 2025 13:16:27 +0100
Subject: [PATCH] fixing org onboarding

---
 modules/vm-workload-scanning/organizational.tf | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/modules/vm-workload-scanning/organizational.tf b/modules/vm-workload-scanning/organizational.tf
index 02af491..463e77b 100644
--- a/modules/vm-workload-scanning/organizational.tf
+++ b/modules/vm-workload-scanning/organizational.tf
@@ -34,11 +34,9 @@ resource "google_organization_iam_custom_role" "custom_role" {
 }
 
 resource "google_organization_iam_member" "controller" {
-  for_each = var.is_organizational ? toset([
-    "organizations/${data.google_organization.org[0].org_id}/roles/${google_organization_iam_custom_role.custom_role[0].role_id}"
-  ]) : []
+  count = var.is_organizational ? 1 : 0
 
   org_id = data.google_organization.org[0].org_id
-  role   = each.key
+  role   = "organizations/${data.google_organization.org[0].org_id}/roles/${google_organization_iam_custom_role.custom_role[0].role_id}"
   member = "serviceAccount:${google_service_account.controller.email}"
 }