From a55c3a401d1deec9d8ebf36c408f164537e81586 Mon Sep 17 00:00:00 2001 From: Jonathan Lacefield Date: Fri, 22 Nov 2024 16:49:54 -0500 Subject: [PATCH 1/2] Small change for TF User best practices docs. --- docs/production-deployment/cloud/terraform-provider.mdx | 1 + 1 file changed, 1 insertion(+) diff --git a/docs/production-deployment/cloud/terraform-provider.mdx b/docs/production-deployment/cloud/terraform-provider.mdx index b25356fa61..f93d649337 100644 --- a/docs/production-deployment/cloud/terraform-provider.mdx +++ b/docs/production-deployment/cloud/terraform-provider.mdx @@ -270,6 +270,7 @@ Cautions about Temporal User management: - Account Owners and Global Admins automatically gain access to all Namespaces in Temporal. Therefore, you cannot specify Namespace access for these roles. This is also true for Service Accounts. +- Follow Terraform best practices for resource management. Manage a specific user in one and only one .tf file. There's a risk that you may overwrite a user's permissions if you don't. - To Import a user, you'll need the User's ID which is currently not available in the Temporal Cloud UI. You can fetch current User ID by running the `tcld user list` command. From cb2c9b2414007156aefdd8f942e5e0ff767ea4c0 Mon Sep 17 00:00:00 2001 From: Erica Sadun <156466156+fairlydurable@users.noreply.github.com> Date: Fri, 22 Nov 2024 15:02:17 -0700 Subject: [PATCH 2/2] Update docs/production-deployment/cloud/terraform-provider.mdx --- docs/production-deployment/cloud/terraform-provider.mdx | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/docs/production-deployment/cloud/terraform-provider.mdx b/docs/production-deployment/cloud/terraform-provider.mdx index f93d649337..8e9d080b45 100644 --- a/docs/production-deployment/cloud/terraform-provider.mdx +++ b/docs/production-deployment/cloud/terraform-provider.mdx @@ -270,7 +270,9 @@ Cautions about Temporal User management: - Account Owners and Global Admins automatically gain access to all Namespaces in Temporal. Therefore, you cannot specify Namespace access for these roles. This is also true for Service Accounts. -- Follow Terraform best practices for resource management. Manage a specific user in one and only one .tf file. There's a risk that you may overwrite a user's permissions if you don't. +- Follow Terraform best practices for resource management. + Manage a specific user in one and only one .tf file. + There's a risk that you may overwrite a user's permissions if you don't. - To Import a user, you'll need the User's ID which is currently not available in the Temporal Cloud UI. You can fetch current User ID by running the `tcld user list` command.