File tree Expand file tree Collapse file tree 1 file changed +17
-4
lines changed
bigquery/bigquery_create_connection_cloud_resource Expand file tree Collapse file tree 1 file changed +17
-4
lines changed Original file line number Diff line number Diff line change 1414* limitations under the License.
1515*/
1616
17+ # [START bigquery_create_connection_cloud_resource_iam]
1718# [START bigquery_create_connection_cloud_resource]
18- # # This creates a cloud resource connection.
19- # # Note: The cloud resource nested object has only one output field - serviceAccountId.
20- resource "google_bigquery_connection" "connection" {
19+
20+ # This queries the provider for project information.
21+ data "google_project" "default" {}
22+
23+ # This creates a cloud resource connection in the US region named my_cloud_resource_connection.
24+ # Note: The cloud resource nested object has only one output field - serviceAccountId.
25+ resource "google_bigquery_connection" "default" {
2126 connection_id = " my_cloud_resource_connection"
22- project = " myproject1-381000 "
27+ project = data . google_project . default . project_id
2328 location = " US"
2429 cloud_resource {}
2530}
2631# [END bigquery_create_connection_cloud_resource]
32+
33+ # # This grants IAM role access to the service account of the connection created in the previous step.
34+ resource "google_project_iam_member" "connectionPermissionGrant" {
35+ project = . google_project . default . project_id
36+ role = " roles/storage.objectViewer"
37+ member = " serviceAccount:${ google_bigquery_connection . default . cloud_resource [0 ]. service_account_id } "
38+ }
39+ # [END bigquery_create_connection_cloud_resource_iam]
You can’t perform that action at this time.
0 commit comments