Syntax

A google_iam_service_accounts is used to test a Google ServiceAccount resource

Examples

describe google_iam_service_accounts(project: 'chef-gcp-inspec', name: "display-name@project-id.iam.gserviceaccount.com") do
  its('service_account_emails') { should include "display-name@project-id.iam.gserviceaccount.com" }
  its('count') { should be <= 1000 }
end

Properties

Properties that can be accessed from the google_iam_service_accounts resource:

See googleiamservice_account.md for more detailed information * service_account_names: an array of google_iam_service_account name * project_ids: an array of google_iam_service_account projectid * `serviceaccountids: an array ofgoogleiamserviceaccountunique_id *serviceaccountemails: an array ofgoogleiamserviceaccountemail *serviceaccountdisplaynames: an array ofgoogleiamserviceaccount` displayname * oauth2_client_ids: an array of google_iam_service_account oauth2clientid

Filter Criteria

This resource supports all of the above properties as filter criteria, which can be used with where as a block or a method.

GCP Permissions

Ensure the Identity and Access Management (IAM) API is enabled for the current project.