hcp_iam_policy (Data Source)

Generates an IAM policy that may be referenced by and applied to other HCP IAM resources, such as the hcp_project_iam_policy resource.

To see what each role grants, please see HCP Documentation. The basic roles can be referenced as follows:

HCP Vault Secrets specific roles can be referenced as shown below, please see Documentation for more details.

Example Usage

data "hcp_iam_policy" "example" {
  bindings = [
    {
      role = "roles/admin"
      principals = [
        "example-user-id-1",
        "example-group-id-1",
        "example-sp-1"
      ]
    },
    {
      role = "roles/contributor"
      principals = [
        "example-user-id-2",
        "example-group-id-2",
      ]
    },
    {
      role = "roles/secrets.app-secret-reader"
      principals = [
        "example-sp-3"
      ]
    },
  ]
}

Schema

Required

Read-Only

Nested Schema for bindings

Required: