Syntax
A google_iam_service_accounts
is used to test a Google ServiceAccount resource
Examples
describe google_iam_service_accounts(project: 'chef-gcp-inspec', name: "display-name@project-id.iam.gserviceaccount.com") do
its('service_account_emails') { should include "display-name@project-id.iam.gserviceaccount.com" }
its('count') { should be <= 1000 }
end
Properties
Properties that can be accessed from the google_iam_service_accounts
resource:
See googleiamservice_account.md for more detailed information
* service_account_names
: an array of google_iam_service_account
name
* project_ids
: an array of google_iam_service_account
projectid
* `serviceaccountids: an array of
googleiamserviceaccountunique_id
*
serviceaccountemails: an array of
googleiamserviceaccountemail
*
serviceaccountdisplaynames: an array of
googleiamserviceaccount` displayname
* oauth2_client_ids
: an array of google_iam_service_account
oauth2clientid
Filter Criteria
This resource supports all of the above properties as filter criteria, which can be used
with where
as a block or a method.
GCP Permissions
Ensure the Identity and Access Management (IAM) API is enabled for the current project.