Merge pull request #78 from remerge/IT-6296

hollow · web-flow · commit 6d3f10c17f96 · 2025-08-08T11:21:10.000+02:00
Fix missing Platform Team
diff --git a/nomad/base/main.tf b/nomad/base/main.tf
@@ -137,11 +137,30 @@ resource "nomad_acl_role" "root" {
   }
 }
 
-resource "nomad_acl_binding_rule" "platform" {
+moved {
+  from = nomad_acl_binding_rule.platform
+  to   = nomad_acl_binding_rule.core
+}
+
+resource "nomad_acl_binding_rule" "core" {
+  auth_method = nomad_acl_auth_method.okta.name
+  bind_type   = "role"
+  bind_name   = nomad_acl_role.root.name
+  selector    = "\"Core Platform Team\" in list.groups"
+}
+
+resource "nomad_acl_binding_rule" "data" {
+  auth_method = nomad_acl_auth_method.okta.name
+  bind_type   = "role"
+  bind_name   = nomad_acl_role.root.name
+  selector    = "\"Data Platform Team\" in list.groups"
+}
+
+resource "nomad_acl_binding_rule" "oncall" {
   auth_method = nomad_acl_auth_method.okta.name
   bind_type   = "role"
   bind_name   = nomad_acl_role.root.name
-  selector    = "\"Platform Team\" in list.groups"
+  selector    = "\"On-Call Team\" in list.groups"
 }
 
 resource "nomad_acl_policy" "github_actions" {
diff --git a/okta/pam/project/variables.tf b/okta/pam/project/variables.tf
@@ -11,6 +11,7 @@ variable "groups" {
   default = [
     "owners",
     "On-Call Team",
-    "Platform Team",
+    "Core Platform Team",
+    "Data Platform Team",
   ]
 }
