Closed zefdelgadillo closed 3 years ago
/gcbrun
@morgante @kunalkg11 @bharathkkb - Should we consider automatically excluding permissions that are unsupported for custom roles? If this is merged, it's less clear which unsupported permissions might be in custom role scope given the input is predefined roles.
@zefdelgadillo Yes we should automatically filter out permissions that can't be used: https://registry.terraform.io/providers/hashicorp/google/latest/docs/data-sources/iam_testable_permissions
@zefdelgadillo Yes we should automatically filter out permissions that can't be used: https://registry.terraform.io/providers/hashicorp/google/latest/docs/data-sources/iam_testable_permissions
Thanks. This now excludes unsupported permissions by default using the linked data source.
Adds support for creation of custom roles based on permissions within predefined roles.