Add service account admin permissions to terraform service accounts (#4022)

Signed-off-by: Erika Pacheco <[email protected]>

Author: ohrite

iac/cal-itp-data-infra-staging/iam/us/project_iam_member.tf

@@ -227,6 +227,7 @@ resource "google_project_iam_member" "github-actions-terraform" {
     "roles/editor",
     "roles/storage.admin",
     "roles/iam.roleAdmin",
+    "roles/iam.serviceAccountAdmin",
     "roles/logging.configWriter"
   ])
   role    = each.key

iac/cal-itp-data-infra/iam/us/project_iam_member.tf

@@ -542,6 +542,7 @@ resource "google_project_iam_member" "github-actions-terraform" {
   for_each = toset([
     "roles/resourcemanager.projectIamAdmin",
     "roles/iam.roleAdmin",
+    "roles/iam.serviceAccountAdmin",
     "roles/editor",
     "roles/storage.admin"
   ])