Add required role to see data access logs (#12300)

configs/terraform/environments/prod/iam.tf

@@ -18,3 +18,11 @@ resource "google_project_iam_member" "kyma_developer_admin_logging_viewer" {
   role = "roles/logging.viewer"
   member = "group:${var.kyma_developer_admin_email}"
 }
+
+# roles/logging.privateLogViewer is required to see Data Access audit logs
+resource "google_project_iam_member" "kyma_developer_admin_private_logging_viewer" {
+  provider = google.kyma_project
+  project = var.kyma_project_gcp_project_id
+  role = "roles/logging.privateLogViewer"
+  member = "group:${var.kyma_developer_admin_email}"
+}