google_resourcemanager_organization_policy resource
Syntax
A google_resourcemanager_organization_policy
is used to test organization policy constraints. More information can be found here Organization Policy Constraints
Examples
describe google_resourcemanager_organization_policy(organization_name: "organizations/123456789", constraint: "constraints/compute.disableSerialPortAccess") do
it { should exist }
its('constraint') { should eq 'constraints/compute.disableSerialPortAccess' }
its('boolean_policy.enforced') { should be true }
end
Properties
Properties that can be accessed from the google_resourcemanager_organization_policy
resource:
version
- The version of the policy.
constraint
- The name of the constraint the policy is configuring.
update_time
- The time stamp the policy was previously updated.
list_policy
- List of values either allowed or disallowed
allowed_values
- List of values allowed
denied_values
- List of values denied
boolean_policy
- Used to specify how a boolean policy will behave
enforced
- If true then the policy is enforced. If false then any configuration is acceptable
GCP Permissions
Ensure the Cloud Resource Manager API is enabled for the current project.