» google_folder_iam_policy

Allows creation and management of the IAM policy for an existing Google Cloud Platform folder.

» Example Usage

resource "google_folder_iam_policy" "folder_admin_policy" {
  folder     = "${google_folder.department1.name}"
  policy_data = "${data.google_iam_policy.admin.policy_data}"
}

resource "google_folder" "department1" {
  display_name = "Department 1"
  parent     = "organizations/1234567"
}

data "google_iam_policy" "admin" {
  binding {
    role = "roles/editor"

    members = [
      "user:jane@example.com",
    ]
  }
}

» Argument Reference

The following arguments are supported:

• folder - (Required) The resource name of the folder the policy is attached to. Its format is folders/{folder_id}.

• policy_data - (Required) The google_iam_policy data source that represents the IAM policy that will be applied to the folder. This policy overrides any existing policy applied to the folder.

» Attributes Reference

In addition to the arguments listed above, the following computed attributes are exported:

• etag - (Computed) The etag of the folder's IAM policy. etag is used for optimistic concurrency control as a way to help prevent simultaneous updates of a policy from overwriting each other.

» Import

A policy can be imported using the folder, e.g.

$ terraform import google_folder_iam_policy.my-folder-policy {{folder_id}}