Skip to content

Commit fb9f925

Browse files
q2wq2w
committed
Downgrade the blueprint roles
1 parent ff07b65 commit fb9f925

File tree

3 files changed

+10
-52
lines changed

3 files changed

+10
-52
lines changed

metadata.yaml

Lines changed: 4 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -195,16 +195,11 @@ spec:
195195
roles:
196196
- level: Project
197197
roles:
198-
- roles/owner
199-
module_roles:
200-
root:
198+
- roles/memorystore.admin
201199
- roles/redis.admin
202-
memcache:
203200
- roles/memcache.admin
204-
redis-cluster:
205-
- roles/redis.admin
206-
valkey:
207-
- roles/memorystore.admin
201+
- roles/compute.networkAdmin
202+
- roles/resourcemanager.projectIamAdmin
208203
services:
209204
- cloudresourcemanager.googleapis.com
210205
- serviceusage.googleapis.com
@@ -213,15 +208,7 @@ spec:
213208
- serviceconsumermanagement.googleapis.com
214209
- networkconnectivity.googleapis.com
215210
- compute.googleapis.com
216-
module_services:
217-
root:
218-
- redis.googleapis.com
219-
memcache:
220-
- memcache.googleapis.com
221-
redis-cluster:
222-
- redis.googleapis.com
223-
valkey:
224-
- memorystore.googleapis.com
211+
- memorystore.googleapis.com
225212
providerVersions:
226213
- source: hashicorp/google
227214
version: ">= 4.74.0, < 7"

test/setup/iam.tf

Lines changed: 5 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -16,23 +16,11 @@
1616

1717
locals {
1818
int_required_roles = [
19-
"roles/owner"
20-
]
21-
22-
root_module_roles = [
23-
"roles/redis.admin"
24-
]
25-
26-
memcache_module_roles = [
27-
"roles/memcache.admin"
28-
]
29-
30-
redis-cluster_module_roles = [
31-
"roles/redis.admin"
32-
]
33-
34-
valkey_module_roles = [
35-
"roles/memorystore.admin"
19+
"roles/memorystore.admin",
20+
"roles/redis.admin",
21+
"roles/memcache.admin",
22+
"roles/compute.networkAdmin",
23+
"roles/resourcemanager.projectIamAdmin"
3624
]
3725

3826
}

test/setup/main.tf

Lines changed: 1 addition & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -14,24 +14,6 @@
1414
* limitations under the License.
1515
*/
1616

17-
locals {
18-
root_module_services = [
19-
"redis.googleapis.com"
20-
]
21-
22-
memcache_module_services = [
23-
"memcache.googleapis.com"
24-
]
25-
26-
redis-cluster_module_services = [
27-
"redis.googleapis.com"
28-
]
29-
30-
valkey_module_services = [
31-
"memorystore.googleapis.com"
32-
]
33-
}
34-
3517
module "project" {
3618
source = "terraform-google-modules/project-factory/google"
3719
version = "~> 17.0"
@@ -52,6 +34,7 @@ module "project" {
5234
"serviceconsumermanagement.googleapis.com",
5335
"networkconnectivity.googleapis.com",
5436
"compute.googleapis.com",
37+
"memorystore.googleapis.com",
5538
]
5639
}
5740

0 commit comments

Comments
 (0)