Skip to content

Commit

Permalink
remove personal email
Browse files Browse the repository at this point in the history
  • Loading branch information
lionelmace committed Jun 28, 2024
1 parent a2a9709 commit 663d0a3
Show file tree
Hide file tree
Showing 5 changed files with 17 additions and 4 deletions.
2 changes: 1 addition & 1 deletion iam/invite-user-iks-workshop.sh
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@ do
#ibmcloud account user-invite $email -o cloud-workshop -s $lastname --space-role SpaceDeveloper

## Give Editor access to a Resource Group (Not the right command)
ibmcloud iam user-policy-create [email protected] --roles Viewer --resource-type resource-group --resource a260658ac8b14975827b8d6b3d146aea
ibmcloud iam user-policy-create $email --roles Viewer --resource-type resource-group --resource a260658ac8b14975827b8d6b3d146aea
# a260658ac8b14975827b8d6b3d146aea
# ibmcloud iam user-policy-create $email --roles Viewer --resource-group-name $RG

Expand Down
2 changes: 1 addition & 1 deletion openshift/openshift-rbac1-clusterrolebinding.yml
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ metadata:
subjects:
- kind: User
apiGroup: rbac.authorization.k8s.io
name: 'IAM#lionel.mace@gmail.com'
name: 'IAM#first.last@gmail.com'
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
Expand Down
2 changes: 1 addition & 1 deletion openshift/openshift-rbac3-rolebinding.yml
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ metadata:
subjects:
- kind: User
apiGroup: rbac.authorization.k8s.io
name: 'IAM#lionel.mace@gmail.com'
name: 'IAM#first.last@gmail.com'
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
Expand Down
2 changes: 1 addition & 1 deletion terraform/iam/iam-users.tf
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@

# invite the users in the account and attach them to their access group
resource "ibm_iam_user_invite" "invite_user" {
users = ["lionel.mace@gmail.com"]
users = ["first.last@gmail.com"]
access_groups = [ibm_iam_access_group.ag-test.id]
}
13 changes: 13 additions & 0 deletions terraform/iam/iam.tf
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,19 @@ resource "ibm_iam_access_group_policy" "iam_create_user_api_key_service_id" {
}
}

# Service: PowerVS
# resource "ibm_iam_access_group_policy" "policy-power-vs" {
# access_group_id = ibm_iam_access_group.ag-test.id
# resource_attributes {
# name = "serviceType"
# operator = "stringEquals"
# value = "service"
# }
# # roles = ["Administrator", "Manager"]
# roles = ["Viewer"]
# }


# Service: All Identity and Access enabled services
resource "ibm_iam_access_group_policy" "policy-all-iam-services" {
access_group_id = ibm_iam_access_group.ag-test.id
Expand Down

0 comments on commit 663d0a3

Please sign in to comment.