hashicorp · sahnikan · Mar 28, 2024 · Mar 28, 2024 · Mar 28, 2024 · Mar 28, 2024
@@ -0,0 +1,3 @@
+```release-note:improvement
+Documentation: Update hcp_iam_policy docs with HCP Vault Secrets Roles App Manager and App Secret Reader
+```
@@ -10,14 +10,19 @@ description: |-
 Generates an IAM policy that may be referenced by and applied to other HCP IAM resources, such as the `hcp_project_iam_policy` resource.
 
 To see what each role grants, please see [HCP
-Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#organization-role).
+Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#organization).
 The basic roles can be referenced as follows:
 
 * `roles/owner`
 * `roles/admin`
 * `roles/contributor`
 * `roles/viewer`
 
+HCP Vault Secrets specific roles can be referenced as shown below, please see [Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#project) for more details.
+* `roles/secrets.app-manager`
+* `roles/secrets.app-secret-reader`
+
+
 ## Example Usage
 
 ```terraform
@@ -39,7 +44,7 @@ data "hcp_iam_policy" "example" {
       ]
     },
     {
-      role = "roles/viewer"
+      role = "roles/secrets.app-secret-reader"
       principals = [
         "example-sp-3"
       ]

@@ -16,7 +16,7 @@ data "hcp_iam_policy" "example" {
       ]
     },
     {
-      role = "roles/viewer"
+      role = "roles/secrets.app-secret-reader"
       principals = [
         "example-sp-3"
       ]

@@ -10,14 +10,19 @@ description: |-
 {{ .Description | trimspace }}
 
 To see what each role grants, please see [HCP
-Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#organization-role).
+Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#organization).
 The basic roles can be referenced as follows:
 
 * `roles/owner`
 * `roles/admin`
 * `roles/contributor`
 * `roles/viewer`
 
+HCP Vault Secrets specific roles can be referenced as shown below, please see [Documentation](https://developer.hashicorp.com/hcp/docs/hcp/admin/iam/users#project) for more details.
+* `roles/secrets.app-manager`
+* `roles/secrets.app-secret-reader`
+
+
 ## Example Usage
 
 {{ tffile "examples/data-sources/hcp_iam_policy/data-source.tf" }}