DLP service agent enabled

modules/project/service-accounts.tf

@@ -92,6 +92,15 @@ resource "google_project_iam_member" "servicenetworking" {
   member  = "serviceAccount:${google_project_service_identity.servicenetworking.0.email}"
 }
 
+#DLP service identity
+resource "google_project_service_identity" "dlp" {
+  provider   = google-beta
+  count      = contains(var.services, "dlp.googleapis.com") ? 1 : 0
+  project    = local.project.project_id
+  service    = "dlp.googleapis.com"
+  depends_on = [google_project_service.project_services]
+}
+
 # Secret Manager SA created just in time, we need to trigger the creation.
 resource "google_project_service_identity" "jit_si" {
   for_each   = setintersection(var.services, local.service_accounts_jit_services)