Workspace Admin
role, you can copy the service key as service_key
and the email as service_account
to initialize the Terraform provider in the next step.
terraform plan
and terraform apply
, you can:
terraform apply
:
Assign the Workspace Admin
role.
terraform plan
:
Create a custom role with only read permissions under IAM & Admin > Custom Roles, then assign it to the plan-only service account.
.list
and .get
permissionsbb.databases.export
bb.databases.query
bb.databases.getSchema
bb.databases.getSecrets
bb.auditLogs.export
bb.auditLogs.search
bb.issues.subscribe
bb.projects.getIamPolicy
terraform apply
.
To recover, please run terraform refresh
to refresh the state first.