1apiVersion: iam.cnrm.cloud.google.com/v1beta1
2kind: IAMServiceAccount
3metadata:
4 name: ctlfish
5spec:
6 displayName: ctlfish pub sub service account
7 resourceID: ctlfish-${cluster_hash}
8---
9apiVersion: iam.cnrm.cloud.google.com/v1beta1
10kind: IAMPolicyMember
11metadata:
12 name: ctlfish
13spec:
14 member: serviceAccount:ctlfish-${cluster_hash}@${gcp_project_id}.iam.gserviceaccount.com
15 resourceRef:
16 apiVersion: pubsub.cnrm.cloud.google.com/v1beta1
17 kind: PubSubTopic
18 external: projects/${foreman_gcp_project_id}/topics/ctlfish-pubsub
19 role: roles/pubsub.publisher
View as plain text