From 27f56b4229ef93227c813f7bb284a911b4231817 Mon Sep 17 00:00:00 2001 From: Damien Gustave Date: Tue, 15 Oct 2024 09:18:24 +0200 Subject: [PATCH] fix(external-backup): after some changes in GCP export methods, new permissions are required for exporting dumps --- modules/backup/main.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/backup/main.tf b/modules/backup/main.tf index a682bcfb..d590738d 100644 --- a/modules/backup/main.tf +++ b/modules/backup/main.tf @@ -196,7 +196,7 @@ resource "google_storage_bucket_iam_member" "sql_instance_account" { count = var.enable_export_backup ? 1 : 0 bucket = split("/", var.export_uri)[2] #Get the name of the bucket out of the URI member = "serviceAccount:${data.google_sql_database_instance.backup_instance.service_account_email_address}" - role = "roles/storage.objectCreator" + role = "roles/storage.objectAdmin" } # We want to get notified if there hasn't been at least one successful backup in a day