Add IAM resources for Pub/Sub schema

[EricStG]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment. If the issue is assigned to the "modular-magician" user, it is either in the process of being autogenerated, or is planned to be autogenerated soon. If the issue is assigned to a user, that user is claiming responsibility for the issue. If the issue is assigned to "hashibot", a community member has claimed the issue already.

Description

Pub/Sub supports IAM at the schema level, but there are no existing resources that allow us to assign them

New or Affected Resource(s)

• google_pubsub_schema_iam_policy
• google_pubsub_schema_iam_binding
• google_pubsub_schema_iam_member

Potential Terraform Configuration

# Propose what you think the configuration to take advantage of this feature should look like.
# We may not use it verbatim, but it's helpful in understanding your intent.

resource "google_pubsub_topic_iam_policy" "policy" {
  project = google_pubsub_schema.example.project
  schema = google_pubsub_schema.example.name
  policy_data = data.google_iam_policy.admin.policy_data
}

resource "google_pubsub_topic_iam_binding" "binding" {
  project = google_pubsub_schema.example.project
  schema = google_pubsub_schema.example.name
  role = "roles/viewer"
  members = [
    "user:jane@example.com",
  ]
}

resource "google_pubsub_topic_iam_member" "member" {
  project = google_pubsub_schema.example.project
  schema = google_pubsub_schema.example.name
  role = "roles/viewer"
  member = "user:jane@example.com"
}

References

• Same pattern as google_pubsub_topiciam* resources
• Access control reference

[melinath]

Duplicate of https://github.com/hashicorp/terraform-provider-google/issues/14934

[github-actions[bot]]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.