Currently the Terraform service account used to deploy the solution requires roles/owner in the prepare_terraform_service_account.sh script which is quite broad. Customers\users deploying this requires a minimal set of roles to adhere to the least privilege principle.
Currently the Terraform service account used to deploy the solution requires
roles/ownerin the prepare_terraform_service_account.sh script which is quite broad. Customers\users deploying this requires a minimal set of roles to adhere to the least privilege principle.