Skip to content

Commit 38e55a4

Browse files
authored
feat: Add support for granting permissions to apache kafka service agent (#960)
1 parent 4c2c26a commit 38e55a4

File tree

1 file changed

+4
-0
lines changed

1 file changed

+4
-0
lines changed

modules/shared_vpc_access/main.tf

+4
Original file line numberDiff line numberDiff line change
@@ -58,6 +58,10 @@ locals {
5858
service_account = format("service-%s@gcp-sa-networkconnectivity.iam.gserviceaccount.com", local.service_project_number)
5959
role = "roles/compute.networkUser"
6060
}
61+
"managedkafka.googleapis.com" : {
62+
service_account = format("service-%s@gcp-sa-managedkafka.iam.gserviceaccount.com", local.service_project_number)
63+
role = "roles/managedkafka.serviceAgent"
64+
}
6165
}
6266
gke_shared_vpc_enabled = contains(var.active_apis, "container.googleapis.com")
6367
composer_shared_vpc_enabled = contains(var.active_apis, "composer.googleapis.com")

0 commit comments

Comments
 (0)