diff --git a/configs/terraform/environments/prod/iam.tf b/configs/terraform/environments/prod/iam.tf index 5edbd87ca953..250086435f95 100644 --- a/configs/terraform/environments/prod/iam.tf +++ b/configs/terraform/environments/prod/iam.tf @@ -18,3 +18,11 @@ resource "google_project_iam_member" "kyma_developer_admin_logging_viewer" { role = "roles/logging.viewer" member = "group:${var.kyma_developer_admin_email}" } + +# roles/logging.privateLogViewer is required to see Data Access audit logs +resource "google_project_iam_member" "kyma_developer_admin_private_logging_viewer" { + provider = google.kyma_project + project = var.kyma_project_gcp_project_id + role = "roles/logging.privateLogViewer" + member = "group:${var.kyma_developer_admin_email}" +}