Skip to content

Commit 818e22f

Browse files
q2wq2w
committed
Downgrade the blueprint roles
1 parent ff07b65 commit 818e22f

File tree

2 files changed

+6
-34
lines changed

2 files changed

+6
-34
lines changed

metadata.yaml

Lines changed: 2 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -195,16 +195,10 @@ spec:
195195
roles:
196196
- level: Project
197197
roles:
198-
- roles/owner
199-
module_roles:
200-
root:
198+
- roles/memorystore.admin
201199
- roles/redis.admin
202-
memcache:
203200
- roles/memcache.admin
204-
redis-cluster:
205-
- roles/redis.admin
206-
valkey:
207-
- roles/memorystore.admin
201+
- roles/compute.networkAdmin
208202
services:
209203
- cloudresourcemanager.googleapis.com
210204
- serviceusage.googleapis.com
@@ -213,15 +207,6 @@ spec:
213207
- serviceconsumermanagement.googleapis.com
214208
- networkconnectivity.googleapis.com
215209
- compute.googleapis.com
216-
module_services:
217-
root:
218-
- redis.googleapis.com
219-
memcache:
220-
- memcache.googleapis.com
221-
redis-cluster:
222-
- redis.googleapis.com
223-
valkey:
224-
- memorystore.googleapis.com
225210
providerVersions:
226211
- source: hashicorp/google
227212
version: ">= 4.74.0, < 7"

test/setup/iam.tf

Lines changed: 4 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -16,23 +16,10 @@
1616

1717
locals {
1818
int_required_roles = [
19-
"roles/owner"
20-
]
21-
22-
root_module_roles = [
23-
"roles/redis.admin"
24-
]
25-
26-
memcache_module_roles = [
27-
"roles/memcache.admin"
28-
]
29-
30-
redis-cluster_module_roles = [
31-
"roles/redis.admin"
32-
]
33-
34-
valkey_module_roles = [
35-
"roles/memorystore.admin"
19+
"roles/memorystore.admin",
20+
"roles/redis.admin",
21+
"roles/memcache.admin",
22+
"roles/compute.networkAdmin"
3623
]
3724

3825
}

0 commit comments

Comments
 (0)