From b38520031f0d4a4ace2cc75c63e5f0d744962d07 Mon Sep 17 00:00:00 2001
From: Francesco Medas <104889824+frankmeds@users.noreply.github.com>
Date: Tue, 24 Dec 2024 10:45:10 +0400
Subject: [PATCH] feat: DEVOPS-1795 provide nodes admin access to persistence
 bucket (#2076)

---
 infra/tf/main.tf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/infra/tf/main.tf b/infra/tf/main.tf
index e77aadff6..f552d57c1 100644
--- a/infra/tf/main.tf
+++ b/infra/tf/main.tf
@@ -45,9 +45,9 @@ resource "google_storage_bucket" "persistence" {
   }
 }
 
-resource "google_storage_bucket_iam_binding" "persistence_bucket_viewers" {
+resource "google_storage_bucket_iam_binding" "persistence_bucket_admins" {
   bucket = google_storage_bucket.persistence.name
-  role   = "roles/storage.objectViewer"
+  role   = "roles/storage.objectAdmin"
   members = [
     "serviceAccount:${module.bootstraps.service_account.email}",
     "serviceAccount:${module.validators.service_account.email}",