terraform-google-project-factory
terraform-google-project-factory copied to clipboard
Make sure tests do not depend on organization viewer permission
To ensure that #20 doesn't get repeated.
I've made some test, and discovered that core module depends on org-level permissions:
Error: Error reading Organization Not Found : 684124036889: googleapi: Error 403: The caller does not have permission, forbidden
on ../../../modules/gsuite_group/main.tf line 26, in data "google_organization" "org":
26: data "google_organization" "org" {
That happens because of calling gsuite_group
module from core-module. That has data org resource
To avoid that we need to make some changes in the logic for the case if no gsiute functionality used and parent of the project is not a folder.
Shall I create PR for that?
Fixed in #320