Closed SpyderDave closed 2 years ago
This is already possible today. You can leave the permissions list empty if you don't want to add any permissions. Example:
module "custom-roles" {
source = "terraform-google-modules/iam/google//modules/custom_role_iam"
base_roles = ["roles/compute.viewer", "roles/bigquery.viewer"]
permissions = []
}
Actually, if you leave the permissions empty as you indicated, it produces an error "attribute supports 1 item minimum"
TL;DR
It would be nice to be able to use this module in a manner which would allow simply combining multiple roles (base_roles) into a single custom role without the need to specify individual permissions from the base_roles.
Maybe this is possible?
Terraform Resources
No response
Detailed design
No response
Additional information
No response