Terraform newbie here.
I’m trying to create a service account in GCP using this module - Terraform Registry
I’m logged in on my laptop’s CLI (using gcloud init) to my GCP account, which has the Editor role assigned for the project I’m trying to create the account in. The IAM API is enabled.
When I run terraform apply, I see this error
Error: Error creating service account: googleapi: Error 403: Permission iam.serviceAccounts.create is required to perform this operation on project projects/removed., forbidden
(I’ve replaced my project name with “removed”)
I can see that the iam.serviceAccounts.create permission is part of the Editor role.
Any idea on what I am doing wrong?