search

terraform-google-modules / terraform-example-foundation

Shows how the CFT modules can be composed to build a secure cloud foundation
https://cloud.google.com/architecture/security-foundations
Apache License 2.0
1.23k stars 720 forks source link

Error 403: The caller does not have permission, forbidden #32

Closed sbadakhc closed 4 years ago

sbadakhc commented 4 years ago

Hi,

Following the instructions in the 1-org directory and after making the changes as required I get the following error. I'm using the service account created for terraform in the previous stage.

org-terraform@cft-seed-xxxx.iam.gserviceaccount.com
]$ terraform plan
Acquiring state lock. This may take a few moments...
data.google_service_account_access_token.default: Refreshing state...

Error: googleapi: Error 403: The caller does not have permission, forbidden

  on providers.tf line 30, in data "google_service_account_access_token" "default":
  30: data "google_service_account_access_token" "default" {

Releasing state lock. This may take a few moments...
sbadakhc commented 4 years ago

I managed to fix this by adding my user to billing and org admin accounts via gsuite.