Adds service directory viewer

Author: amandakarina

1-bootstrap/iam.tf

@@ -139,6 +139,14 @@ resource "google_project_iam_member" "project_iam_member" {
   project = local.worker_pool_project
 }
 
+resource "google_project_iam_member" "service_directory_viewer" {
+  for_each = tomap({ for i, obj in local.expanded_environment_with_service_accounts : i => obj if obj.multitenant_pipeline == "applicationfactory" })
+
+  role    = "roles/servicedirectory.viewer"
+  member  = "serviceAccount:${each.value.email}"
+  project = local.worker_pool_project
+}
+
 resource "google_project_iam_member" "secret_iam_member" {
   for_each = tomap({ for i, obj in local.expanded_environment_with_service_accounts : i => obj if obj.multitenant_pipeline == "applicationfactory" })