Pass build service account for resource cloudfunctions_function

davidedironza commented 3 months ago

Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request.
Please do not leave +1 or me too comments, they generate extra noise for issue followers and do not help prioritize the request.
If you are interested in working on this issue or have submitted a pull request, please leave a comment.
If an issue is assigned to a user, that user is claiming responsibility for the issue.
Customers working with a Google Technical Account Manager or Customer Engineer can ask them to reach out internally to expedite investigation and resolution of this issue.

Cloud Functions Gen1 already supports to use a custom service account to build the function but it is not implemented in terraform resource yet. In Gen2 resource cloudfunctions2_function it is already implemented https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/cloudfunctions2_function#service_account. Would be helpful if the custom service account could be passed in both generations

  ...
  build_service_account = "projects/PROJECT_ID/serviceAccounts/custom-service-account@PROJECT_ID.iam..."
  ...

b/354725684

BBBmau commented 3 months ago

From triage: Issue is referring to the buildServiceAccount field which is present in the API reference of cloud function gen1: https://cloud.google.com/functions/docs/reference/rest/v1/projects.locations.functions

daanheikens commented 2 months ago

I can pick this one up, looking into this option for one of our gen2 functions. Please assign me.

daanheikens commented 2 months ago

I can pick this one up, looking into this option for one of our gen2 functions. Please assign me.

Apologies, I see I misunderstood the request. It's for gen1. Anyway, I can still do this, no problem 👍

hashicorp / terraform-provider-google