provider/google: add scope aliases

[obsh]

Hi,
this PR adds following gcloud scope aliases:

• cloud-source-repos
• monitoring-write
• service-control
• service-management

It is based on scope aliases list from this page: :https://cloud.google.com/sdk/gcloud/reference/compute/instances/create

[cblecker]

One question. Looks good otherwise.

[cblecker]

I don't see pubsub in the list you linked. Was it deprecated?

[obsh]

I've checked pubsub alias with gcloud, it doesn't work:

gcloud compute instances create test-scopes \
  --image-project=debian-cloud \
  --image-family=debian-8 \
  --machine-type n1-standard-1 \
  --scopes pubsub

 ERROR: (gcloud.compute.instances.create) Some requests did not succeed:
 - One or more of the service account scopes are invalid: 'pubsub'

[cblecker]

So I guess we should remove this from the list in Terraform too, while we're updating the scopes?

[obsh]

Wouldn't it break configurations, that uses this alias?
Because full scope "https://www.googleapis.com/auth/pubsub" works, so alias is workable now in Terraform.

[cblecker]

Ah. Yeah, I just wanted to make sure that it was still a valid scope. Was able to confirm here: https://developers.google.com/identity/protocols/googlescopes#pubsubv1

[obsh]

Also I see "cloud-source-repos-ro" in the list, I'm pretty sure it was added today.
Added to PR.

[stack72]

Thanks for the work here @obsh :) LGTM!

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.