From 5595f8c40c06a04adbbf3218501ceac6687bb9c2 Mon Sep 17 00:00:00 2001
From: Sergey Melnik <admin.sa@gmail.com>
Date: Tue, 30 Apr 2024 17:46:51 +0200
Subject: [PATCH] feat: allow principals in members

https://github.com/mineiros-io/terraform-google-storage-bucket-iam/pull/21
---
 variables.tf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/variables.tf b/variables.tf
index 0cf9cde..7b3a110 100644
--- a/variables.tf
+++ b/variables.tf
@@ -19,8 +19,8 @@ variable "members" {
   default     = []
 
   validation {
-    condition     = alltrue([for m in var.members : can(regex("^(allUsers|allAuthenticatedUsers|(user|serviceAccount|group|domain|projectOwner|projectEditor|projectViewer|computed):)", m))])
-    error_message = "The value must be a non-empty list of strings where each entry is a valid principal type identified with `user:`, `serviceAccount:`, `group:`, `domain:`, `projectOwner:`, `projectEditor:`, `projectViewer:` or `computed`."
+    condition     = alltrue([for m in var.members : can(regex("^(allUsers|allAuthenticatedUsers|(user|serviceAccount|group|domain|projectOwner|projectEditor|projectViewer|computed|principal|principalSet):)", m))])
+    error_message = "The value must be a non-empty list of strings where each entry is a valid principal type identified with `user:`, `serviceAccount:`, `group:`, `domain:`, `projectOwner:`, `projectEditor:`, `projectViewer:`, `computed`, `principal` or `principalSet`."
   }
 }