IAMPolicy and IAMPolicyMember do not accept projectViewer #234
Description
Describe the bug
The IAMPolicy and IAMPolicyMember resources don't accept projectViewer as a member reference.
This is an addendum to a previously closed issue here: #208. The 1.13.0 update fixed projectOwner and projectEditor member references, but not projectViewer.
ConfigConnector Version
1.13.1
To Reproduce
Create a bucket IAM policy using projectViewer to delegate bucket permissions. See original ticket, #208, for more information.
YAML snippets:
apiVersion: iam.cnrm.cloud.google.com/v1beta1
kind: IAMPolicy
metadata:
name: test-bucket-iampolicy
spec:
bindings:
- members:
- projectViewer:project-name
role: roles/storage.legacyBucketReader
resourceRef:
apiVersion: storage.cnrm.cloud.google.com/v1beta1
kind: StorageBucket
name: test-bucketThis above YAML should be legal based on the special-casing for member references in bucket permissions. Instead, the CRD regex rejects this since it doesn't explicitly accept the projectViewer special reference kind.