feat: Add option to add topic publishers #262
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
omer2500
requested review from
a team,
ayushmjain,
imrannayer and
q2w
as code owners
|
Hi, any update on this:)? would be great to get review |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Use Case:
Currently, this module only allows default Google service accounts to publish messages to a Pub/Sub topic. However, there are many scenarios where additional members — such as service accounts used by microservices — need publish permissions for specific topics.
Proposed Solution:
Introduce a new variable (similar to bucket_creators in the Cloud Storage module) that accepts a list of IAM members. These members will be granted the pubsub.publisher role on the topic, allowing for more flexible and explicit control over who can publish messages.
For example: