Rervert the jupyter hub sa change to fix the cluster creation fail

Tested-by: zlq
blackzlq · Mar 11, 2024 · 64b6c07 · 64b6c07
1 parent 339aba2
commit 64b6c07
Showing 1 changed file with 11 additions and 2 deletions.
diff --git a/modules/jupyter/main.tf b/modules/jupyter/main.tf
@@ -65,17 +65,26 @@ resource "kubernetes_annotations" "hub" {
   ]
 }
 
+data "google_service_account" "sa" {
+  account_id = var.workload_identity_service_account
+  depends_on = [
+    helm_release.jupyterhub,
+    module.jupyterhub-workload-identity
+  ]
+}
+
 resource "google_service_account_iam_binding" "hub-workload-identity-user" {
   count              = var.add_auth ? 1 : 0
-  service_account_id = module.jupyterhub-workload-identity.gcp_service_account
+  service_account_id = data.google_service_account.sa.name
   role               = "roles/iam.workloadIdentityUser"
 
   members = [
     "serviceAccount:${var.project_id}.svc.id.goog[${var.namespace}/hub]",
     "serviceAccount:${var.project_id}.svc.id.goog[${var.namespace}/${var.workload_identity_service_account}]",
   ]
   depends_on = [
-    helm_release.jupyterhub
+    helm_release.jupyterhub,
+    module.jupyterhub-workload-identity
   ]
 }