google_organization_iam_policy

Allows management of the entire IAM policy for an existing Google Cloud Platform Organization.

Example Usage

resource "google_organization_iam_policy" "policy" {
  org_id = "123456789"
  policy_data = "${data.google_iam_policy.admin.policy_data}"
}

data "google_iam_policy" "admin" {
  binding {
    role = "roles/editor"

    members = [
      "user:[email protected]",
    ]
  }
}

Argument Reference

The following arguments are supported:

  • org_id - (Required) The numeric ID of the organization in which you want to create a custom role.

  • policy_data - (Required) The google_iam_policy data source that represents the IAM policy that will be applied to the organization. This policy overrides any existing policy applied to the organization.

Import

$ terraform import google_organization_iam_policy.my_org your-org-id