From cab1555e6d8c745a52aad8ba2b4ba02eba991606 Mon Sep 17 00:00:00 2001 From: Sam Levenick Date: Tue, 3 Dec 2019 17:44:44 +0000 Subject: [PATCH] Groups not supported in acm levels members Signed-off-by: Modular Magician --- google-beta/resource_access_context_manager_access_level.go | 6 ++++-- .../r/access_context_manager_access_level.html.markdown | 5 +++-- 2 files changed, 7 insertions(+), 4 deletions(-) diff --git a/google-beta/resource_access_context_manager_access_level.go b/google-beta/resource_access_context_manager_access_level.go index 17eabaedc1..0594dc0ad9 100644 --- a/google-beta/resource_access_context_manager_access_level.go +++ b/google-beta/resource_access_context_manager_access_level.go @@ -166,12 +166,14 @@ If empty, all IP addresses are allowed.`, "members": { Type: schema.TypeList, Optional: true, - Description: `An allowed list of members (users, groups, service accounts). + Description: `An allowed list of members (users, service accounts). +Using groups is not supported yet. + The signed-in user originating the request must be a part of one of the provided members. If not specified, a request may come from any user (logged in/not logged in, not present in any groups, etc.). -Formats: 'user:{emailid}', 'group:{emailid}', 'serviceAccount:{emailid}'`, +Formats: 'user:{emailid}', 'serviceAccount:{emailid}'`, Elem: &schema.Schema{ Type: schema.TypeString, }, diff --git a/website/docs/r/access_context_manager_access_level.html.markdown b/website/docs/r/access_context_manager_access_level.html.markdown index a2675a03d2..0c97e6b3fa 100644 --- a/website/docs/r/access_context_manager_access_level.html.markdown +++ b/website/docs/r/access_context_manager_access_level.html.markdown @@ -132,12 +132,13 @@ The `conditions` block supports: * `members` - (Optional) - An allowed list of members (users, groups, service accounts). + An allowed list of members (users, service accounts). + Using groups is not supported yet. The signed-in user originating the request must be a part of one of the provided members. If not specified, a request may come from any user (logged in/not logged in, not present in any groups, etc.). - Formats: `user:{emailid}`, `group:{emailid}`, `serviceAccount:{emailid}` + Formats: `user:{emailid}`, `serviceAccount:{emailid}` * `negate` - (Optional)