mirror of
https://github.com/google/nomulus.git
synced 2025-07-04 10:13:30 +02:00
520145f641
* Move terraform and kubernetes folder to be under proxy There is no reason for them to be under proxy/src/... any more now that we have a Gradle-idiomatic folder structure.
20 lines
734 B
HCL
20 lines
734 B
HCL
resource "google_service_account" "proxy_service_account" {
|
|
account_id = "proxy-service-account"
|
|
display_name = "Nomulus proxy service account"
|
|
}
|
|
|
|
resource "google_project_iam_member" "gcr_storage_viewer" {
|
|
project = "${var.gcr_project_name}"
|
|
role = "roles/storage.objectViewer"
|
|
member = "serviceAccount:${google_service_account.proxy_service_account.email}"
|
|
}
|
|
|
|
resource "google_project_iam_member" "metric_writer" {
|
|
role = "roles/monitoring.metricWriter"
|
|
member = "serviceAccount:${google_service_account.proxy_service_account.email}"
|
|
}
|
|
|
|
resource "google_project_iam_member" "log_writer" {
|
|
role = "roles/logging.logWriter"
|
|
member = "serviceAccount:${google_service_account.proxy_service_account.email}"
|
|
}
|