-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathterragrunt.hcl
50 lines (48 loc) · 1.51 KB
/
terragrunt.hcl
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
include {
path = find_in_parent_folders()
}
terraform {
source = "github.com/terraform-google-modules/terraform-google-bootstrap?ref=v1.1.0"
}
inputs = {
group_org_admins = get_env("GROUP_ORG_ADMINS")
group_billing_admins = get_env("GROUP_BILLING_ADMINS")
default_region = "europe-west3"
project_prefix = "sebastianneb"
activate_apis = [
"cloudbilling.googleapis.com",
"cloudbuild.googleapis.com",
"cloudkms.googleapis.com",
"cloudresourcemanager.googleapis.com",
"cloudtrace.googleapis.com",
"compute.googleapis.com",
"container.googleapis.com",
"containerregistry.googleapis.com",
"dns.googleapis.com",
"iam.googleapis.com",
"iamcredentials.googleapis.com",
"logging.googleapis.com",
"monitoring.googleapis.com",
"secretmanager.googleapis.com",
"serviceusage.googleapis.com",
"stackdriver.googleapis.com",
"storage-api.googleapis.com",
]
sa_org_iam_permissions = [
"roles/billing.user",
"roles/cloudbuild.builds.builder",
"roles/compute.networkAdmin",
"roles/compute.xpnAdmin",
"roles/iam.securityAdmin",
"roles/iam.serviceAccountAdmin",
"roles/iam.serviceAccountKeyAdmin",
"roles/logging.configWriter",
"roles/orgpolicy.policyAdmin",
"roles/resourcemanager.folderAdmin",
"roles/resourcemanager.organizationViewer",
"roles/resourcemanager.projectCreator",
"roles/resourcemanager.projectDeleter",
"roles/resourcemanager.projectIamAdmin",
"roles/resourcemanager.projectMover",
]
}