title	platform
About the google_project_iam_binding Resource	gcp

google_project_iam_binding

Use the google_project_iam_binding InSpec audit resource to test properties of a single GCP project IAM binding.

Syntax

A google_project_iam_binding resource block declares the tests for a single GCP project IAM binding by role.

describe google_project_iam_binding(project: 'chef-inspec-gcp',  role: 'roles/compute.admin') do
  it { should exist }
end

Examples

The following examples show how to use this InSpec audit resource.

Test that a GCP project iam_binding exists

describe google_project_iam_binding(project: 'chef-inspec-gcp',  role: 'roles/compute.admin') do
  it { should exist }
end

Test that a GCP project IAM binding role has the desired user included

describe google_project_iam_binding(project: 'chef-inspec-gcp',  role: 'roles/compute.admin') do
  its('members') {should include 'user:someuser@domain.com' }
end

Properties

members

GCP Permissions

Ensure the Cloud Resource Manager API is enabled for the project.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

google_project_iam_binding.md

google_project_iam_binding.md

google_project_iam_binding

Syntax

Examples

Test that a GCP project iam_binding exists

Test that a GCP project IAM binding role has the desired user included

Properties

GCP Permissions

Files

google_project_iam_binding.md

Latest commit

History

google_project_iam_binding.md

File metadata and controls

google_project_iam_binding

Syntax

Examples

Test that a GCP project iam_binding exists

Test that a GCP project IAM binding role has the desired user included

Properties

GCP Permissions