From de88c8bad1f3b588532d211e9fb321c95f8f6f72 Mon Sep 17 00:00:00 2001 From: Modular Magician Date: Mon, 13 Apr 2020 23:20:03 +0000 Subject: [PATCH] Added name field to both custom project and org roles (#3370) * added name field to both custom project and org roles * patched the schema to include computed values * Update third_party/terraform/resources/resource_google_organization_iam_custom_role.go Co-Authored-By: Cameron Thornton * Update third_party/terraform/resources/resource_google_project_iam_custom_role.go Co-Authored-By: Cameron Thornton Co-authored-by: Cameron Thornton Signed-off-by: Modular Magician --- .changelog/3370.txt | 4 ++++ google-beta/resource_google_organization_iam_custom_role.go | 5 +++++ google-beta/resource_google_project_iam_custom_role.go | 5 +++++ .../docs/r/google_organization_iam_custom_role.html.markdown | 4 ++++ website/docs/r/google_project_iam.html.markdown | 3 ++- website/docs/r/google_project_iam_custom_role.html.markdown | 4 ++++ 6 files changed, 24 insertions(+), 1 deletion(-) create mode 100644 .changelog/3370.txt diff --git a/.changelog/3370.txt b/.changelog/3370.txt new file mode 100644 index 0000000000..ac4457613f --- /dev/null +++ b/.changelog/3370.txt @@ -0,0 +1,4 @@ +```release-note:enhancement +iam: Added `name` field to `google_project_iam_custom_role` +iam: Added `name` field to `google_organization_iam_custom_role` +``` diff --git a/google-beta/resource_google_organization_iam_custom_role.go b/google-beta/resource_google_organization_iam_custom_role.go index bde1b7269e..6582ea4af3 100644 --- a/google-beta/resource_google_organization_iam_custom_role.go +++ b/google-beta/resource_google_organization_iam_custom_role.go @@ -55,6 +55,10 @@ func resourceGoogleOrganizationIamCustomRole() *schema.Resource { Type: schema.TypeBool, Computed: true, }, + "name": { + Type: schema.TypeString, + Computed: true, + }, }, } } @@ -122,6 +126,7 @@ func resourceGoogleOrganizationIamCustomRoleRead(d *schema.ResourceData, meta in d.Set("role_id", parsedRoleName.Name) d.Set("org_id", parsedRoleName.OrgId) d.Set("title", role.Title) + d.Set("name", role.Name) d.Set("description", role.Description) d.Set("permissions", role.IncludedPermissions) d.Set("stage", role.Stage) diff --git a/google-beta/resource_google_project_iam_custom_role.go b/google-beta/resource_google_project_iam_custom_role.go index c3df43e2a3..5879ff62d4 100644 --- a/google-beta/resource_google_project_iam_custom_role.go +++ b/google-beta/resource_google_project_iam_custom_role.go @@ -58,6 +58,10 @@ func resourceGoogleProjectIamCustomRole() *schema.Resource { Type: schema.TypeBool, Computed: true, }, + "name": { + Type: schema.TypeString, + Computed: true, + }, }, } } @@ -126,6 +130,7 @@ func resourceGoogleProjectIamCustomRoleRead(d *schema.ResourceData, meta interfa d.Set("role_id", GetResourceNameFromSelfLink(role.Name)) d.Set("title", role.Title) + d.Set("name", role.Name) d.Set("description", role.Description) d.Set("permissions", role.IncludedPermissions) d.Set("stage", role.Stage) diff --git a/website/docs/r/google_organization_iam_custom_role.html.markdown b/website/docs/r/google_organization_iam_custom_role.html.markdown index 69a007ad5f..59b0591ca3 100644 --- a/website/docs/r/google_organization_iam_custom_role.html.markdown +++ b/website/docs/r/google_organization_iam_custom_role.html.markdown @@ -60,6 +60,10 @@ exported: * `deleted` - (Optional) The current deleted state of the role. +* `id` - an identifier for the resource with the format `organizations/{{org_id}}/roles/{{role_id}}` + +* `name` - The name of the role in the format `organizations/{{org_id}}/roles/{{role_id}}`. Like `id`, this field can be used as a reference in other resources such as IAM role bindings. + ## Import Customized IAM organization role can be imported using their URI, e.g. diff --git a/website/docs/r/google_project_iam.html.markdown b/website/docs/r/google_project_iam.html.markdown index 14a427b82d..f94e6c151e 100644 --- a/website/docs/r/google_project_iam.html.markdown +++ b/website/docs/r/google_project_iam.html.markdown @@ -28,7 +28,8 @@ Four different resources help you manage your IAM policy for a project. Each of from anyone without organization-level access to the project. Proceed with caution. It's not recommended to use `google_project_iam_policy` with your provider project to avoid locking yourself out, and it should generally only be used with projects - fully managed by Terraform. + fully managed by Terraform. If you do use this resource, it is recommended to **import** the policy before + applying the change. ```hcl resource "google_project_iam_policy" "project" { diff --git a/website/docs/r/google_project_iam_custom_role.html.markdown b/website/docs/r/google_project_iam_custom_role.html.markdown index d4dd6c8ed5..d4081d15ec 100644 --- a/website/docs/r/google_project_iam_custom_role.html.markdown +++ b/website/docs/r/google_project_iam_custom_role.html.markdown @@ -60,6 +60,10 @@ exported: * `deleted` - (Optional) The current deleted state of the role. + * `id` - an identifier for the resource with the format `projects/{{project}}/roles/{{role_id}}` + + * `name` - The name of the role in the format `projects/{{project}}/roles/{{role_id}}`. Like `id`, this field can be used as a reference in other resources such as IAM role bindings. + ## Import Customized IAM project role can be imported using their URI, e.g.