» google_organization_iam_policy

Allows management of the entire IAM policy for an existing Google Cloud Platform Organization.

» Example Usage

resource "google_organization_iam_policy" "policy" {
  org_id      = "123456789"
  policy_data = data.google_iam_policy.admin.policy_data
}

data "google_iam_policy" "admin" {
  binding {
    role = "roles/editor"

    members = [
      "user:jane@example.com",
    ]
  }
}

» Argument Reference

The following arguments are supported:

  • org_id - (Required) The numeric ID of the organization in which you want to create a custom role.

  • policy_data - (Required) The google_iam_policy data source that represents the IAM policy that will be applied to the organization. This policy overrides any existing policy applied to the organization.

» Import

$ terraform import google_organization_iam_policy.my_org your-org-id