서비스 계정을 만들고 권한을 부여합니다.
더 살펴보기
이 코드 샘플이 포함된 자세한 문서는 다음을 참조하세요.
코드 샘플
Terraform
Terraform 구성을 적용하거나 삭제하는 방법은 기본 Terraform 명령어를 참조하세요. 자세한 내용은 Terraform 제공업체 참고 문서를 확인하세요.
다음 단계
다른 Google Cloud 제품의 코드 샘플을 검색하고 필터링하려면 Google Cloud 샘플 브라우저를 참조하세요.
Terraform을 사용하여 트리거 만들기(서비스 계정)
달리 명시되지 않는 한 이 페이지의 콘텐츠에는 Creative Commons Attribution 4.0 라이선스에 따라 라이선스가 부여되며, 코드 샘플에는 Apache 2.0 라이선스에 따라 라이선스가 부여됩니다. 자세한 내용은 Google Developers 사이트 정책을 참조하세요. 자바는 Oracle 및/또는 Oracle 계열사의 등록 상표입니다.
[[["이해하기 쉬움","easyToUnderstand","thumb-up"],["문제가 해결됨","solvedMyProblem","thumb-up"],["기타","otherUp","thumb-up"]],[["이해하기 어려움","hardToUnderstand","thumb-down"],["잘못된 정보 또는 샘플 코드","incorrectInformationOrSampleCode","thumb-down"],["필요한 정보/샘플이 없음","missingTheInformationSamplesINeed","thumb-down"],["번역 문제","translationIssue","thumb-down"],["기타","otherDown","thumb-down"]],[],[[["\u003cp\u003eThis Terraform configuration creates a service account named "eventarc-workflows-sa" for use with Eventarc triggers and Workflows.\u003c/p\u003e\n"],["\u003cp\u003eThe configuration grants the created service account the "roles/workflows.invoker" role, allowing it to invoke Workflows.\u003c/p\u003e\n"],["\u003cp\u003eIt also assigns the "roles/eventarc.eventReceiver" role to the service account, which provides the ability to receive events.\u003c/p\u003e\n"],["\u003cp\u003eThe service account is further granted the "roles/logging.logWriter" role, enabling it to write logs.\u003c/p\u003e\n"]]],[],null,["# Create a trigger using Terraform (service account)\n\nCreates a service account and grants permissions.\n\nExplore further\n---------------\n\n\nFor detailed documentation that includes this code sample, see the following:\n\n- [Create a trigger using Terraform](/eventarc/docs/creating-triggers-terraform)\n\nCode sample\n-----------\n\n### Terraform\n\n\nTo learn how to apply or remove a Terraform configuration, see\n[Basic Terraform commands](/docs/terraform/basic-commands).\n\n\nFor more information, see the\n[Terraform provider reference documentation](https://registry.terraform.io/providers/hashicorp/google/latest/docs).\n\n # Used to retrieve project information later\n data \"google_project\" \"project\" {}\n\n # Create a service account for Eventarc trigger and Workflows\n resource \"google_service_account\" \"eventarc\" {\n account_id = \"eventarc-workflows-sa\"\n display_name = \"Eventarc Workflows Service Account\"\n }\n\n # Grant permission to invoke Workflows\n resource \"google_project_iam_member\" \"workflowsinvoker\" {\n project = data.google_project.project.id\n role = \"roles/workflows.invoker\"\n member = \"serviceAccount:${google_service_account.eventarc.email}\"\n }\n\n # Grant permission to receive events\n resource \"google_project_iam_member\" \"eventreceiver\" {\n project = data.google_project.project.id\n role = \"roles/eventarc.eventReceiver\"\n member = \"serviceAccount:${google_service_account.eventarc.email}\"\n }\n\n # Grant permission to write logs\n resource \"google_project_iam_member\" \"logwriter\" {\n project = data.google_project.project.id\n role = \"roles/logging.logWriter\"\n member = \"serviceAccount:${google_service_account.eventarc.email}\"\n }\n\nWhat's next\n-----------\n\n\nTo search and filter code samples for other Google Cloud products, see the\n[Google Cloud sample browser](/docs/samples?product=eventarc)."]]