search

terraform-google-modules / terraform-google-group

Manages Google Groups
https://registry.terraform.io/modules/terraform-google-modules/group/google
Apache License 2.0
43 stars 27 forks source link

Need documentation of limitation: owners, managers, members must be non-overlapping sets #45

Closed nate-thirdwave closed 1 year ago

nate-thirdwave commented 1 year ago

TL;DR

Defining a group with a user in both the owners set and the managers set yields an error because the membership relation already exists.

Expected behavior

Any one of:

Observed behavior

Error: Error: Error creating GroupMembership: googleapi: Error 409: Error(4003): Cannot create membership '#####@#####.com in 'groups/#########' because it already exists.

Terraform Configuration

provider "google" {
  project     = "###projectname"
  region      = "###region"
}

provider "google-beta" {
  billing_project       = "###projectname"
  user_project_override = true
}
module "gcp-users-group" {
  source  = "terraform-google-modules/group/google"
  version = "~> 0.4"

  id           = "gcp-users@domain.com"
  display_name = "GCP Users"
  description  = "Users - managed by Terraform"
  domain       = "domain.com"
  owners       = ["user@domain.com"]
  managers     = ["user@domain.com"]
  members      = ["user@domain.com"]
}

Terraform Version

Terraform v1.3.4
on linux_amd64
+ provider registry.terraform.io/hashicorp/google v4.54.0
+ provider registry.terraform.io/hashicorp/google-beta v4.53.1


### Additional information

_No response_
github-actions[bot] commented 1 year ago

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days