TF_GCP_04

Asset

google_iam_policy

Description

Ensures that a google_iam_policy is not used that will grant access to a resource for a public or anonymous user by checking if any of the IAM members corresponds to allUsers or allAuthenticatedUsers.

google_iam_policy can be used on lots of different resources in GCP, among them being buckets, bq datasets, etc.