From 1d6b5d57a47ba2688e345f0b7a047ca37a980613 Mon Sep 17 00:00:00 2001
From: Ranyodh Singh <rsingh@mirantis.com>
Date: Mon, 8 Aug 2022 12:34:44 -0600
Subject: [PATCH] Downgrade the service account role

---
 examples/terraform/gcp/modules/common/main.tf | 2 +-
 examples/terraform/gcp/variables.tf           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/examples/terraform/gcp/modules/common/main.tf b/examples/terraform/gcp/modules/common/main.tf
index 19de888..60c40e5 100644
--- a/examples/terraform/gcp/modules/common/main.tf
+++ b/examples/terraform/gcp/modules/common/main.tf
@@ -30,7 +30,7 @@ resource "google_service_account" "default" {
 resource "google_project_iam_member" "default" {
   project = var.project_id
   member  = "serviceAccount:${google_service_account.default.email}"
-  role    = "roles/owner"
+  role    = "roles/compute.admin"
 }
 
 resource "google_compute_firewall" "common_internal" {
diff --git a/examples/terraform/gcp/variables.tf b/examples/terraform/gcp/variables.tf
index 6695c75..2fdaa85 100644
--- a/examples/terraform/gcp/variables.tf
+++ b/examples/terraform/gcp/variables.tf
@@ -20,7 +20,7 @@ variable "gcp_service_credential" {
 
 variable "vpc_mtu" {
   default     = 1500
-  description = "MTU for the VPC. GCP support two MTU values for the VPC: 1440 or 1500"
+  description = "MTU for the VPC. GCP support two MTU values for the VPC: 1460 or 1500"
 }
 
 variable "vpc_cidr" {