Module Cloud Run Service IAM This optional module is used to assign cloud run service roles
module "cloud-run-services-iam-bindings" {
source = "terraform-google-modules/iam/google//modules/cloud_run_services_iam"
version = "~> 8.0"
project = "my_cloud_run_project"
cloud_run_services = ["my_cloud_run_service_one", "my_cloud_run_service_two"]
mode = "authoritative"
bindings = {
"roles/run.invoker" = [
"serviceAccount:[email protected] ",
"group:[email protected] ",
"user:[email protected] ",
]
"roles/run.admin" = [
"serviceAccount:[email protected] ",
"group:[email protected] ",
"user:[email protected] ",
]
}
}
Name
Description
Type
Default
Required
bindings
Map of role (key) and list of members (value) to add the IAM policies/bindings
map(any)n/a
yes
cloud_run_services
Cloud Run services list to add the IAM policies/bindings
list(string)[]no
location
The location of the cloud run instance
string""no
mode
Mode for adding the IAM policies/bindings, additive and authoritative
string"additive"no
project
Project to add the IAM policies/bindings
string""no
Name
Description
cloud_run_services
Cloud Run services which received for bindings.
members
Members which were bound to the Cloud Run services.
roles
Roles which were assigned to members.