Google Access Approval Organization Access Approval Settings
This page shows how to write Terraform for Access Approval Organization Access Approval Settings and write them securely.
The Organization Access Approval Settings in Access Approval can be configured in Terraform with the resource name
google_organization_access_approval_settings. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
An example could not be found in GitHub.
enrolled_ancestoroptional computed - bool
This field will always be unset for the organization since organizations do not have ancestors.
The resource name of the settings. Format is "organizations/[organization_id]/accessApprovalSettings"
notification_emailsoptional computed - set of string
A list of email addresses to which notifications relating to approval requests should be sent. Notifications relating to a resource will be sent to all emails in the settings of ancestor resources of that resource. A maximum of 50 email addresses are allowed.
organization_idrequired - string
ID of the organization of the access approval settings.
cloud_productrequired - string
The product for which Access Approval will be enrolled. Allowed values are listed (case-sensitive): all appengine.googleapis.com bigquery.googleapis.com bigtable.googleapis.com cloudkms.googleapis.com compute.googleapis.com dataflow.googleapis.com iam.googleapis.com pubsub.googleapis.com storage.googleapis.com
enrollment_leveloptional - string
The enrollment level of the service. Default value: "BLOCK_ALL" Possible values: ["BLOCK_ALL"]
Explanation in Terraform Registry
Access Approval enables you to require your explicit approval whenever Google support and engineering need to access your customer content. To get more information about OrganizationSettings, see: