Allows creation and management of the IAM policy for an existing Google Cloud Platform folder.
resource "google_folder_iam_policy" "folder_admin_policy" { folder = "${google_folder.department1.name}" policy_data = "${data.google_iam_policy.admin.policy_data}" } resource "google_folder" "department1" { display_name = "Department 1" parent = "organizations/1234567" } data "google_iam_policy" "admin" { binding { role = "roles/editor" members = [ "user:[email protected]", ] } }
The following arguments are supported:
folder
- (Required) The resource name of the folder the policy is attached to. Its format is folders/{folder_id}.
policy_data
- (Required) The google_iam_policy
data source that represents the IAM policy that will be applied to the folder. This policy overrides any existing policy applied to the folder.
In addition to the arguments listed above, the following computed attributes are exported:
etag
- (Computed) The etag of the folder's IAM policy. etag
is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other.
© 2018 HashiCorpLicensed under the MPL 2.0 License.
https://www.terraform.io/docs/providers/google/r/google_folder_iam_policy.html