mirror of
https://github.com/letic/terraform-provider-google.git
synced 2024-07-05 17:52:38 +00:00
c7c90dd595
Update the Google Compute Engine provider to add support for service accounts on `google_compute_instance`. Both gcloud shorthand (`compute-ro`, `storage-ro`, etc.) and OAuth2 API endpoints are supported. This feature is currently limited to a single service account (supporting multiple scopes) and an automatically-generated service account email.
26 lines
1.1 KiB
Go
26 lines
1.1 KiB
Go
package google
|
|
|
|
func canonicalizeServiceScope(scope string) string {
|
|
// This is a convenience map of short names used by the gcloud tool
|
|
// to the GCE auth endpoints they alias to.
|
|
scopeMap := map[string]string{
|
|
"bigquery": "https://www.googleapis.com/auth/bigquery",
|
|
"compute-ro": "https://www.googleapis.com/auth/compute.readonly",
|
|
"compute-rw": "https://www.googleapis.com/auth/compute",
|
|
"datastore": "https://www.googleapis.com/auth/datastore",
|
|
"sql": "https://www.googleapis.com/auth/sqlservice",
|
|
"sql-admin": "https://www.googleapis.com/auth/sqlservice.admin",
|
|
"storage-full": "https://www.googleapis.com/auth/devstorage.full_control",
|
|
"storage-ro": "https://www.googleapis.com/auth/devstorage.read_only",
|
|
"storage-rw": "https://www.googleapis.com/auth/devstorage.read_write",
|
|
"taskqueue": "https://www.googleapis.com/auth/taskqueue",
|
|
"userinfo-email": "https://www.googleapis.com/auth/userinfo.email",
|
|
}
|
|
|
|
if matchedUrl, ok := scopeMap[scope]; ok {
|
|
return matchedUrl
|
|
} else {
|
|
return scope
|
|
}
|
|
}
|