Skip to content

Commit

Permalink
Merge pull request #124 from uche-madu/develop
Browse files Browse the repository at this point in the history 
add service account user role
  • Loading branch information
@uche-madu
uche-madu committed Oct 25, 2023
2 parents add010a + b04536f commit 6f401dd
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions terraform/gke.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -89,7 +89,7 @@ module "airflow_worker_workload_identity" {
namespace = var.airflow_namespace
project_id = var.project_id
impersonate_service_account = data.google_service_account.deb-sa.email
roles = ["roles/storage.admin", "roles/compute.admin", "roles/dataproc.editor", "roles/bigquery.admin", "roles/cloudsql.admin"]
roles = ["roles/storage.admin", "roles/compute.admin", "roles/dataproc.editor", "roles/bigquery.admin", "roles/cloudsql.admin", "roles/iam.serviceAccountUser"]
module_depends_on = [helm_release.argocd]
}

Expand All @@ -100,7 +100,7 @@ module "airflow_scheduler_workload_identity" {
namespace = var.airflow_namespace
project_id = var.project_id
impersonate_service_account = data.google_service_account.deb-sa.email
roles = ["roles/storage.admin", "roles/compute.admin", "roles/dataproc.editor", "roles/bigquery.admin", "roles/cloudsql.admin"]
roles = ["roles/storage.admin", "roles/compute.admin", "roles/dataproc.editor", "roles/bigquery.admin", "roles/cloudsql.admin", "roles/iam.serviceAccountUser"]
module_depends_on = [helm_release.argocd]
}

Expand Down

0 comments on commit 6f401dd

Please sign in to comment.