New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
google_iam_role return all included_permissions #6770
Comments
@rileykarson We can close this issue. The API that this datasource implements doesn't have a way of requesting the API to only return project/org level permissions. https://cloud.google.com/iam/docs/reference/rest/v1/roles/get I recommend you go here and open a feature request with Google to implement this in their APIs. Once that is done, we can implement it in terraform. |
Hmm, that seems right. @bdronneau can you point out a role that contains those messages? I tried |
Hey @rileykarson , I use After digging in the link of @upodroid , in |
Hmm- yeah, I think this would be infeasible to implement. In an example like you've provided Terraform would need to query the API 185 times to determine whether each permission is viable. These requests would need to happen on every single refresh/plan/apply, and would likely quickly burn through quota and cause Terraform to return errors as you hit get request quota limits. |
Too bad, but I could not agree more. |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
Community Note
Description
Hi,
I'm using data iam_role in order to get
included_permissions
field and generate a custom roleIn fields return, there is some fields flag as
Not applicable for project-level custom roles
orNot applicable for project-level custom roles
.Add some filters on the data source will allow more flexibility.
New or Affected Resource(s)
Potential Terraform Configuration
References
The text was updated successfully, but these errors were encountered: