Added namespace as a prefix

wandb · Jul 11, 2024 · 20935bb · 20935bb
1 parent 1a4a861
commit 20935bb
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 4 deletions.
diff --git a/modules/service_accounts/main.tf b/modules/service_accounts/main.tf
@@ -65,7 +65,7 @@ resource "google_project_iam_member" "secretmanager_admin" {
 ####### service account for kms and gcs cross project access
 resource "google_service_account" "kms_gcs_sa" {
   count        = var.create_workload_identity == true ? 1 : 0
-  account_id   = var.kms_gcs_sa_name
+  account_id   = substr("kms-gcs-${random_id.main.hex}", 0, 30)
   display_name = "Service Account For Workload Identity"
 }
 
@@ -132,7 +132,7 @@ resource "google_service_account_iam_member" "workload_binding" {
 ### service account for stackdriver
 resource "google_service_account" "stackdriver" {
   count        = var.enable_stackdriver == true ? 1 : 0
-  account_id   = var.stackdriver_sa_name
+  account_id   = substr("stackdriver-${random_id.main.hex}", 0, 30)
   display_name = "Service Account For Workload Identity"
 }
 

diff --git a/variables.tf b/variables.tf
@@ -295,7 +295,7 @@ variable "ilb_proxynetwork_cidr" {
 variable "create_workload_identity" {
   description = "Flag to indicate whether to create a workload identity for the service account."
   type        = bool
-  default     = true
+  default     = false
 }
 
 variable "kms_gcs_sa_name" {
@@ -305,7 +305,7 @@ variable "kms_gcs_sa_name" {
 
 variable "enable_stackdriver" {
   type = bool
-  default = true
+  default = false
 }
 
 variable "stackdriver_sa_name" {