chore(deps): update all non-major dependencies
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| google (source) | required_provider | minor |
5.28.0 -> 5.42.0
|
| google-beta (source) | required_provider | minor |
5.28.0 -> 5.42.0
|
| random (source) | required_provider | patch |
3.6.1 -> 3.6.2
|
| uis/devops/continuous-delivery/ci-templates | repository | minor |
v4.4.0 -> v4.5.0
|
Release Notes
hashicorp/terraform-provider-google (google)
v5.42.0
DEPRECATIONS:
- compute: setting
google_compute_subnetwork.secondary_ip_range = []to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Usesend_secondary_ip_range_if_emptywhile removingsecondary_ip_rangefrom config instead. (#19122)
FEATURES:
-
New Data Source:
google_artifact_registry_locations(#19047) -
New Data Source:
google_cloud_identity_transitive_group_memberships(#19038) -
New Resource:
google_discovery_engine_schema(#19124) -
New Resource:
google_scc_folder_notification_config(#19057) -
New Resource:
google_scc_v2_folder_notification_config(#19055) -
New Resource:
google_vertex_ai_index_endpoint_deployed_index(#19061)
IMPROVEMENTS:
- clouddeploy: added
serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_labelandserial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_labelfields togoogle_clouddeploy_delivery_pipelineresource (#19100) - compute: added
send_secondary_ip_range_if_emptytogoogle_compute_subnetwork(#19122) - discoveryengine: added
skip_default_schema_creationfield togoogle_data_storeresource (#19017) - dns: changed
load_balancer_typefield from required to optional ingoogle_dns_record_set(#19050) - firestore: added
cmek_configfield togoogle_firestore_databaseresource (#19107) - servicenetworking: added
update_on_creation_failfield togoogle_service_networking_connectionresource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#19035) - sql: added
server_ca_modefield togoogle_sql_database_instanceresource (#18998)
BUG FIXES:
- bigquery: made
google_bigquery_dataset_iam_membernon-authoritative. To remove a bigquery dataset iam member, use an authoritative resource likegoogle_bigquery_dataset_iam_policy(#19121) - cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the
service_config.environment_variablesfield ingoogle_cloudfunctions2_functionresource (#19024) - cloudfunctions2: fixed a permadiff on
storage_source.generationingoogle_cloudfunctions2_functionresource (#19031) - compute: fixed issue where sub-resources managed by
google_compute_forwarding_ruleprevented resource deletion (#19117) - logging: changed
google_logging_project_bucket_config.enable_analyticsbehavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#19126) - workbench: fixed a bug with
google_workbench_instancemetadata drifting when using custom containers. (#19119)
v5.41.0
DEPRECATIONS:
- resourcemanager: deprecated
skip_deletefield in thegoogle_projectresource. Usedeletion_policyinstead. (#18867)
FEATURES:
-
New Data Source:
google_logging_log_view_iam_policy(#18990) -
New Data Source:
google_scc_v2_organization_source_iam_policy(#19004) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_egress_policy(#18994) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_ingress_policy(#18994) -
New Resource:
google_scc_v2_folder_mute_config(#18924) -
New Resource:
google_scc_v2_project_mute_config(#18993) -
New Resource:
google_scc_v2_project_notification_config(#19008) -
New Resource:
google_scc_v2_organization_source(#19004) -
New Resource:
google_scc_v2_organization_source_iam_binding(#19004) -
New Resource:
google_scc_v2_organization_source_iam_member(#19004) -
New Resource:
google_scc_v2_organization_source_iam_policy(#19004) -
New Resource:
google_logging_log_view_iam_binding(#18990) -
New Resource:
google_logging_log_view_iam_member(#18990) -
New Resource:
google_logging_log_view_iam_policy(#18990)
IMPROVEMENTS:
- clouddeploy: added
gke.proxy_urlfield togoogle_clouddeploy_target(#19016) - cloudrunv2: added field
binary_authorization.policyto resourcegoogle_cloud_run_v2_joband resourcegoogle_cloud_run_v2_serviceto support named binary authorization policy. (#18995) - compute: added
source_regionsfield togoogle_compute_healthcheckresource (#19006) - compute: added update-in-place support for the
google_compute_target_https_proxy.server_tls_policyfield (#18996) - compute: added update-in-place support for the
google_compute_region_target_https_proxy.server_tls_policyfield (#19007) - container: added
auto_provisioning_locationsfield togoogle_container_cluster(#18928) - dataform: added
kms_key_namefield togoogle_dataform_repositoryresource (#18947) - discoveryengine: added
skip_default_schema_creationfield togoogle_discovery_engine_data_storeresource (#19017) - gkehub: added
configmanagement.managementandconfigmanagement.config_sync.enabledfields togoogle_gkehub_feature_membership(#19016) - gkehub: added
managementfield togoogle_gke_hub_feature.fleet_default_member_config.configmanagement(#18963) - resourcemanager: added
deletion_policyfield to thegoogle_projectresource. Settingdeletion_policytoPREVENTwill protect the project against any destroy actions caused by a terraform apply or terraform destroy. Settingdeletion_policytoABANDONallows the resource to be abandoned rather than deleted and it behaves the same withskip_delete = true. Default value isDELETE.skip_delete = truetakes precedence overdeletion_policy = "DELETE". - storage: added
force_destroyfield togoogle_storage_managed_folderresource (#18973) - storage: added
generationfield togoogle_storage_bucket_objectresource (#18971)
BUG FIXES:
- compute: fixed
google_compute_instance.alias_ip_rangeupdate behavior to avoid temporarily deleting unchanged alias IP ranges (#19015) - compute: fixed the bug that creation of PSC forwarding rules fails in
google_compute_forwarding_ruleresource when provider default labels are set (#18984) - sql: fixed a perma-diff in
settings.insights_configingoogle_sql_database_instance(#18962)
v5.40.0
IMPROVEMENTS:
- bigquery: added support for value
DELTA_LAKEtosource_formatingoogle_bigquery_tableresource (#18915) - compute: added
access_modefield togoogle_compute_diskresource (#18857) - compute: added
stack_type, andgateway_ip_versionfields togoogle_compute_routerresource (#18839) - container: added field
ray_operator_configforresource_container_cluster(#18825) - container: promoted
additional_node_network_configsandadditional_pod_network_configsfields to GA in thegoogle_container_node_poolresource (#18842) - container: promoted
enable_multi_networkingto GA in thegoogle_container_clusterresource (#18842) - monitoring: updated
goalfield to accept a max threshold of up to 0.9999 ingoogle_monitoring_sloresource to 0.9999 (#18845) - networkconnectivity: added
export_pscfield togoogle_network_connectivity_hubresource (#18866) - sql: added
enable_dataplex_integrationfield togoogle_sql_database_instanceresource (#18852)
BUG FIXES:
- bigquery: fixed a permadiff when handling "assets" in
paramsin thegoogle_bigquery_data_transfer_configresource (#18898) - bigquery: fixed an issue preventing certain keys in
paramsfrom being assigned values ingoogle_bigquery_data_transfer_config(#18888) - compute: fixed perma-diff of
advertised_ip_rangesfield ingoogle_compute_routerresource (#18869) - container: fixed perma-diff on
node_config.guest_accelerator.gpu_driver_installation_configfield in GKE 1.30+ ingoogle_container_node_poolresource (#18835) - sql: fixed a perma-diff in
settings.insights_configingoogle_sql_database_instance(#18962)
v5.39.1
BUG FIXES:
- datastream: fixed a breaking change in 5.39.0
google_datastream_streamthat made one ofdestination_config.bigquery_destination_config.mergeordestination_config.bigquery_destination_config.append_onlyrequired (#18903)
v5.39.0
NOTES:
- networkconnectivity: migrated
google_network_connectivity_hubfrom DCL to MMv1 (#18724) - networkconnectivity: migrated
google_network_connectivity_spokefrom DCL to MMv1 (#18779)
DEPRECATIONS:
- bigquery: deprecated
allow_resource_tags_on_deletioningoogle_bigquery_table. (#18811) - bigqueryreservation: deprecated
multi_region_auxiliaryongoogle_bigquery_reservation. (#18803) - datastore: deprecated the resource
google_datastore_index. Use thegoogle_firestore_indexresource instead. (#18781)
FEATURES:
-
New Resource:
google_apigee_environment_keyvaluemaps_entries(#18707) -
New Resource:
google_apigee_environment_keyvaluemaps(#18707) -
New Resource:
google_compute_resize_request(#18725) -
New Resource:
google_compute_router_route_policy(#18759) -
New Resource:
google_scc_v2_organization_mute_config(#18752)
IMPROVEMENTS:
- alloydb: added
observability_configfield togoogle_alloydb_instanceresource (#18743) - bigquery: added
resource_tagsfield togoogle_bigquery_datasetresource (ga) (#18711) - bigquery: added
resource_tagsfield togoogle_bigquery_tableresource (#18741) - bigtable: added
data_boost_isolation_read_onlyanddata_boost_isolation_read_only.compute_billing_ownerfields togoogle_bigtable_app_profileresource (#18819) - cloudfunctions: added
build_service_accountfield togoogle_cloudfunctions_functionresource (#18702) - compute: added
aws_v4_authenticationfields togoogle_compute_backend_serviceresource (#18796) - compute: added
custom_learned_ip_rangesandcustom_learned_route_priorityfields togoogle_compute_router_peerresource (#18727) - compute: added
export_policiesandimport_policiesfields togoogle_compute_router_peerresource (#18759) - compute: added
shared_secretfield togoogle_compute_public_advertised_prefixresource (#18786) - compute: added
storage_poolunderboot_disk.initialize_paramstogoogle_compute_instanceresource (#18817) - compute: changed
target_servicefield on thegoogle_compute_service_attachmentresource to accept aForwardingRuleorGatewayURL. (#18742) - container: added field
ray_operator_configforgoogle_container_cluster(#18825) - datastream: added
mergeandappend_onlyfields togoogle_datastream_streamresource (#18726) - datastream: promoted
source_config.sql_server_source_configandbackfill_all.sql_server_excluded_objectsfields ingoogle_datastream_streamresource from beta to GA (#18732) - datastream: promoted
sql_server_profilefield ingoogle_datastream_connection_profileresource from beta to GA (#18732) - dlp: added
cloud_storage_targetfield togoogle_data_loss_prevention_discovery_configresource (#18740) - resourcemanager: added
check_if_service_has_usage_on_destroyfield togoogle_project_serviceresource (#18753) - resourcemanager: added the
memberproperty togoogle_project_service_identity(#18695) - vmwareengine: added
deletion_delay_hoursfield togoogle_vmwareengine_private_cloudresource (#18698) - vmwareengine: supported type change from
TIME_LIMITEDtoSTANDARDfor multi-nodegoogle_vmwareengine_private_cloudresource (#18698) - workbench: added
access_configstogoogle_workbench_instanceresource (#18737)
BUG FIXES:
- compute: fixed perma-diff for
interconnect_typebeingDEDICATEDingoogle_compute_interconnectresource (#18761) - dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating
google_dialogflow_cx_security_settingsresources (#18792) - firestore: fixed missing import of
fieldforgoogle_firestore_field. (#18771) - firestore: fixed bug where fields
database,collection,document_id, andfieldcould not be updated ongoogle_firestore_documentandgoogle_firestore_fieldresources. (#18821) - netapp: made the
smb_settingsfield on thegoogle_netapp_volumeresource default to the value returned from the API. This solves permadiffs when the field is unset. (#18790) - networksecurity: added recreate functionality on update for
client_validation_modeandclient_validation_trust_configingoogle_network_security_server_tls_policy(#18769)
v5.38.0
FEATURES:
-
New Data Source:
google_gke_hub_membership_binding(#18680) -
New Data Source:
google_site_verification_token(#18688) -
New Resource:
google_scc_project_notification_config(#18682)
IMPROVEMENTS:
- compute: promoted
labelsfield ongoogle_compute_global_addressresource from beta to GA (#18646) - compute: made the
google_compute_resource_policyresource updatable in-place (#18673) - privilegedaccessmanager: promoted
google_privileged_access_manager_entitlementresource from beta to GA (#18686) - vertexai: added
project_numberfield togoogle_vertex_ai_feature_online_store_featureviewresource (#18637)
BUG FIXES:
- cloudfunctions2: fixed permadiffs on
service_config.environment_variablesfield ingoogle_cloudfunctions2_functionresource (#18651)
v5.37.0
FEATURES:
-
New Data Source:
google_kms_crypto_keys(#18605) -
New Data Source:
google_kms_key_rings(#18611) -
New Resource:
google_scc_v2_organization_notification_config(#18594) -
New Resource:
google_secure_source_manager_repository(#18576) -
New Resource:
google_storage_managed_folder_iam(#18555) -
New Resource:
google_storage_managed_folder(#18555)
IMPROVEMENTS:
- certificatemanager: added
allowlisted_certificatesfield togoogle_certificate_manager_trust_configresource (#18587) - compute: added
max_run_durationandon_instance_stop_actionfields togoogle_compute_instance,google_compute_instance_template, andgoogle_compute_instance_from_machine_imageresources (#18623) - dataplex: added
sql_assertionfield togoogle_dataplex_datascanresource (#18559) - gkehub: added
fleet_default_member_config.configmanagement.config_sync.enabledfield togoogle_gke_hub_featureresource (#18582) - netapp: added
zoneandreplica_zonefield togoogle_netapp_storage_poolresource (#18609) - vertexai: added
project_numberfield togoogle_vertex_ai_feature_online_store_featureviewresource (#18637) - workstations: added
host.gce_instance.vm_tagsfield togoogle_workstations_workstation_configresource (#18588)
BUG FIXES:
- compute: fixed a bug preventing the creation of
google_compute_autoscalerandgoogle_compute_region_autoscalerresources if bothautoscaling_policy.max_replicasandautoscaling_policy.min_replicaswere configured as zero. (#18607) - resourcemanager: mitigated eventual consistency issues by adding a 10s wait after
google_service_account_keyresource creation (#18566) - vertexai: fixed issue where updating "metadata" field could fail in
google_vertex_ai_indexresource (#18632)
v5.36.0
FEATURES:
-
New Resource:
google_storage_managed_folder_iam(#18555) -
New Resource:
google_storage_managed_folder(#18555)
IMPROVEMENTS:
- bigtable: added
ignore_warningsfield togoogle_bigtable_gc_policyresource (#18492) - cloudfunctions2: added
build_config.automatic_update_policyandbuild_config.on_deploy_update_policyfields togoogle_cloudfunctions2_functionresource (#18540) - compute: added
confidential_instance_config.confidential_instance_typefield togoogle_compute_instance,google_compute_instance_template, andgoogle_compute_region_instance_templateresources (#18554) - compute: added
custom_error_response_policyanddefault_custom_error_response_policyfields togoogle_compute_url_mapresource (#18511) - compute: added
tls_early_datafield togoogle_compute_target_https_proxyresource (#18512) - compute: promoted
google_compute_network_attachmentresource from beta to GA (#18494) - datafusion: added
connection_typeandprivate_service_connect_configfields togoogle_data_fusion_instanceresource (#18525) - healthcare: added
encryption_specfield togoogle_healthcare_datasetresource (#18528) - monitoring: added
linksfield togoogle_monitoring_alert_policyresource (#18549) - vertexai: added update support for
big_query.entity_id_columnsfield ongoogle_vertex_ai_feature_groupresource (#18493) - vertexai: promoted
dedicated_serving_endpointfield ongoogle_vertex_ai_feature_online_storeresource from beta to GA (#18513)
BUG FIXES:
- accesscontextmanager: fixed perma-diff caused by ordering of
service_perimetersingoogle_access_context_manager_service_perimetersresource (#18520) - compute: fixed a crash in
google_compute_reservationresource whenshare_settingsfield has changes (#18498) - compute: fixed issue in
google_compute_instanceresource whereservice_accountis not set when specifyingservice_account.emailand noservice_account.scopes(#18521) - gkehub2: fixed
google_gke_hub_featureresource to allowfleet_default_member_configfield to be unset (#18487) - identityplatform: fixed perma-diff on
google_identity_platform_configresource whensms_region_configis not set (#18537) - logging: fixed perma-diff on
index_configsingoogle_logging_organization_bucket_configresource (#18501)
v5.35.0
FEATURES:
-
New Data Source:
google_artifact_registry_docker_image(#18446) -
New Resource:
google_service_networking_vpc_service_controls(#18448)
IMPROVEMENTS:
- billingbudget: added
enable_project_level_recipientsfield togoogle_billing_budgetresource (#18437) - compute: added
action_token_site_keysandsession_token_site_keysfields togoogle_compute_security_policyandgoogle_compute_security_policy_ruleresources (#18414) - gkehub2: added
ENTERPRISEoption tosecurity_posture_configfield ongoogle_gke_hub_fleetresource (#18440) - pubsub: added
bigquery_config.service_account_emailfield togoogle_pubsub_subscriptionresource (#18444) - redis: added
maintenance_versionfield togoogle_redis_instanceresource (#18424) - storage: changed update behavior in
google_storage_bucket_objectto no longer delete to avoid object deletion on content update (#18479) - sql: added support for more MySQL values in
typefield ofgoogle_sql_userresource (#18452) - sql: increased timeouts on
google_sql_database_instanceto 90m to account for longer-running actions such as creation through cloning (#18458) - workbench: added update support to
gce_setup.boot_diskandgce_setup.data_disksfields ingoogle_workbench_instanceresource (#18482)
BUG FIXES:
- compute: updated
google_compute_instanceto force reboot ifmin_node_cpusis updated (#18420) - compute: fixed
descriptionfield ingoogle_compute_firewallto support empty/null values on update (#18478) - compute: fixed perma-diff on
google_compute_diskfor Ubuntu amd64 canonical LTS images (#18418) - storage: fixed lowercased
custom_placement_configvalues ingoogle_storage_bucketcausing perma-destroy (#18456) - workbench: fixed issue where instance was not starting after an update in
google_workbench_instanceresource (#18464) - workbench: fixed perma-diff caused by empty
accelerator_configsingoogle_workbench_instanceresource (#18464)
v5.34.0
NOTES:
- compute: Updated field description of
connection_draining_timeout_sec,balancing_modeandoutlier_detectioningoogle_compute_region_backend_serviceandgoogle_compute_backend_serviceto inform that default values will be changed in 6.0.0 (#18399)
FEATURES:
-
New Resource:
google_netapp_backup(#18357) -
New Resource:
google_network_services_service_lb_policies(#18326) -
New Resource:
google_scc_management_folder_security_health_analytics_custom_module(#18360) -
New Resource:
google_scc_management_organization_project_security_health_analytics_custom_module(#18369) -
New Resource:
google_scc_management_organization_security_health_analytics_custom_module(#18374)
IMPROVEMENTS:
- alloydb: changed the resource
google_alloydb_instanceto be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#18344) - bigtable: added
automated_backup_configurationfield togoogle_bigtable_tableresource (#18335) - cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the
bitbucket_data_center_configandbitbucket_cloud_configfields ingoogle_cloudbuildv2_connection(#18375) - compute: added update support to
ssl_policyfield ingoogle_compute_region_target_https_proxyresource (#18361) - compute: removed enum validation on
guest_os_features.typeingoogle_compute_diskto allow for new features to be used without provider update (#18331) - compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#18358)
- container: added support for
security_posture_config.modevalue "ENTERPRISE" inresource_container_cluster(#18334) - discoveryengine: added
document_processing_configfield togoogle_discovery_engine_data_storeresource (#18350) - edgecontainer: added 'maintenance_exclusions' field to 'google_edgecontainer_cluster' resource (#18370)
- gkehub: added
prevent_driftfield to ConfigManagementfleet_default_member_config(#18330) - netapp: added
administratorsfield togoogle_netapp_active_directoryresource (#18333) - vertexai: promoted
optimizedfield to GA forgoogle_vertex_ai_feature_online_storeresource (#18348) - workbench: updated the metadata keys managed by the backend. (#18367)
BUG FIXES:
- compute: fixed an issue where
google_compute_instance_group_managerwith a pending operation was incorrectly removed due to the operation no longer being present in the backend (#18380) - compute: fixed issue where users could not create
google_compute_security_policyresources withlayer_7_ddos_defense_configexplicitly disabled (#18345) - workbench: fixed a bug in the
google_workbench_instanceresource where specifying a network in some scenarios would cause instance creation to fail (#18404
v5.33.0
DEPRECATIONS:
- healthcare: deprecated
notification_configingoogle_healthcare_fhir_storeresource. Usenotification_configsinstead. (#18306)
FEATURES:
-
New Data Source:
google_compute_security_policy(#18316) -
New Resource:
google_compute_project_cloud_armor_tier(#18319) -
New Resource:
google_network_services_service_lb_policies(#18326) -
New Resource:
google_scc_management_organization_event_threat_detection_custom_module(#18317) -
New Resource:
google_spanner_instance_config(#18322)
IMPROVEMENTS:
- appengine: added
flexible_runtime_settingsfield togoogle_app_engine_flexible_app_versionresource (#18325) - bigtable: added
force_destroyfield togoogle_bigtable_instanceresource. This will force delete any backups present in the instance and allow the instance to be deleted. (#18291) - clouddeploy: added
execution_configs.verbosefield togoogle_clouddeploy_targetresource (#18292) - compute: added
storage_poolfield togoogle_compute_diskresource (#18273) - dlp: added
secrets_discovery_target,cloud_sql_target.filter.database_resource_reference, andbig_query_target.filter.table_referencefields togoogle_data_loss_prevention_discovery_configresource (#18324) - gkebackup: added
backup_schedule.backup_config.permissive_modefield togoogle_gke_backup_backup_planresource (#18266) - gkebackup: added
restore_config.restore_orderfield togoogle_gke_backup_restore_planresource (#18266) - gkebackup: added
restore_config.volume_data_restore_policy_bindingsfield togoogle_gke_backup_restore_planresource (#18266) - gkebackup: added new enum values
MERGE_SKIP_ON_CONFLICT,MERGE_REPLACE_VOLUME_ON_CONFLICTandMERGE_REPLACE_ON_CONFLICTto fieldrestore_config.namespaced_resource_restore_modeingoogle_gke_backup_restore_planresource (#18266) - healthcare: added
notification_config.send_for_bulk_importfield togoogle_healthcare_dicom_storeresource (#18320) - healthcare: added
notification_configsfield togoogle_healthcare_fhir_storeresource (#18306) - integrationconnectors: added
endpoint_global_accessfield togoogle_integration_connectors_endpoint_attachmentresource (#18293) - netapp: added
backup_configfield togoogle_netapp_volumeresource (#18286) - redis: added
zone_distribution_configfield togoogle_redis_clusterresource (#18307) - resourcemanager: added support for
range_type = "default-domains-netblocks"ingoogle_netblock_ip_rangesdata source (#18290) - secretmanager: added support for IAM conditions in
google_secret_manager_secret_iam_*resources (#18294) - workstations: added
boot_disk_size_gb,enable_nested_virtualization, andpool_sizetohost.gce_instance.boost_configsingoogle_workstations_workstation_configresource (#18310)
BUG FIXES:
- container: fixed
google_container_node_poolcrash ifnode_config.secondary_boot_disks.modeis not set (#18323) - dlp: removed
requiredoninspect_config.limits.max_findings_per_info_type.info_typefield to allow the use of default limit by not setting this field ingoogle_data_loss_prevention_inspect_templateresource (#18285) - provider: fixed application default credential and access token authorization when
universe_domainis set (#18272)
v5.32.0
NOTES:
- privateca: converted
google_privateca_certificate_templateto now use the MMv1 engine instead of DCL (#18224)
FEATURES:
-
New Resource:
google_dataplex_entry_type(#18229) -
New Resource:
google_logging_log_view_iam_binding(#18243) -
New Resource:
google_logging_log_view_iam_member(#18243) -
New Resource:
google_logging_log_view_iam_policy(#18243)
IMPROVEMENTS:
- alloydb: added
psc_configfield togoogle_alloydb_clusterresource (#18263) - alloydb: added
psc_instance_configfield togoogle_alloydb_instanceresource (#18263) - cloudrunv2: added
default_uri_disabledfield to resourcegoogle_cloud_run_v2_serviceresource (#18246) - compute: added
NONEto acceptable options forupdate_policy.minimal_actionfield ingoogle_compute_instance_group_managerresource (#18236) - looker: increased validation length of
nametogoogle_looker_instanceresource (#18244) - sql: updated support for a new value
week5in fieldsetting.maintenance_window.update_trackingoogle_sql_database_instanceresource (#18223)
BUG FIXES:
- cloudrunv2: added validation for
timeoutfield togoogle_cloud_run_v2_jobandgoogle_cloud_run_v2_serviceresources (#18260) - compute: fixed permadiff in ordering of
advertised_ip_ranges.rangefield ongoogle_compute_routerresource (#18228) - iam: added a 10 second sleep when creating a 'google_service_account' resource to reduce eventual consistency errors(#18261)
- storage: fixed
google_storage_bucket.lifecycle_rule.conditionblock fieldsdays_since_noncurrent_timeanddays_since_custom_timeandnum_newer_versionswere not working for 0 value (#18231)
v5.31.1
BUG FIXES:
- iam: added a 10 second sleep when creating a
google_service_accountto reduce eventual consistency errors. See https://github.com/hashicorp/terraform-provider-google/issues/18024 for more details (#18261)
v5.31.0
FEATURES:
-
New Data Source:
google_compute_subnetworks(#18159) -
New Resource:
google_dataplex_aspect_type(#18201) -
New Resource:
google_dataplex_entry_group(#18188) -
New Resource:
google_kms_autokey_config(#18179) -
New Resource:
google_kms_key_handle(#18179) -
New Resource:
google_network_services_lb_route_extension(#18195)
IMPROVEMENTS:
- appengine: added field
instance_ip_modeto resourcegoogle_app_engine_flexible_app_versionresource (beta) (#18168) - bigquery: added
external_data_configuration.bigtable_optionstogoogle_bigquery_table(#18181) - composer: added support for importing
google_composer_user_workloads_secretvia the "{{environment}}/{{name}}" format. (#7390) - composer: improved timeouts for
google_composer_user_workloads_secret. (#7390) - compute: added
TLS_JA3_FINGERPRINTandUSER_IPoptions in fieldrate_limit_options.enforce_on_keytogoogle_compute_security_policyresource (#18167) - compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#18167)
- compute: changed
google_compute_region_ssl_policy'sregionfield to optional and allow to be inferred from environment (#18178) - compute: added
subnet_lengthfield togoogle_compute_interconnect_attachmentresource (#18187) - container: added
containerd_configfield and subfields togoogle_container_clusterandgoogle_container_node_poolresources, to allow those resources to access private image registries. (#18160) - container: allowed both
enable_autopilotandworkload_identity_configto be set ingoogle_container_clusterresource. (#18166) - datastream: added
create_without_validationfield togoogle_datastream_connection_profile,google_datastream_private_connectionandgoogle_datastream_streamresources (#18176) - network-security: added
trust_config,min_tls_version,tls_feature_profileandcustom_tls_featuresfields togoogle_network_security_tls_inspection_policyresource (#18139) - networkservices: made field
load_balancing_schemeimmutable in resourcegoogle_network_services_lb_traffic_extension, as in-place updating is always failing (#18195) - networkservices: made required fields
extension_chains.extensions.authorityandextension_chains.extensions.timeoutoptional in resourcegoogle_network_services_lb_traffic_extension(#18195) - networkservices: removed unsupported load balancing scheme
LOAD_BALANCING_SCHEME_UNSPECIFIEDfrom the fieldload_balancing_schemein resourcegoogle_network_services_lb_traffic_extension(#18195) - pubsub: added
cloud_storage_config.filename_datetime_formatfield togoogle_pubsub_subscriptionresource (#18180) - tpu: added
typeofaccelerator_configtogoogle_tpu_v2_vmresource (#18148)
BUG FIXES:
- monitoring: fixed a permadiff with
monitored_resource.labelsproperty in thegoogle_monitoring_uptime_check_configresource (#18174) - storage: fixed a bug where field
autoclassblock is generating permadiff whenever the block is removed from the config ingoogle_storage_bucketresource (#18197) - storagetransfer: fixed a permadiff with
transfer_spec.0.aws_s3_data_source.0.aws_access_keyresource_storage_transfer_job(#18190)
v5.30.0
FEATURES:
-
New Data Source:
google_cloud_asset_resources_search_all(#18129) -
New Resource:
google_compute_interconnect(#18064) -
New Resource:
google_network_services_lb_traffic_extension(#18138)
IMPROVEMENTS:
- compute: added
kms_key_namefield togoogle_bigquery_connectionresource (#18057) - compute: added
auto_network_tierfield togoogle_compute_router_natresource (#18055) - compute: promoted
enable_ipv4,ipv4_nexthop_addressandpeer_ipv4_nexthop_addressfields ingoogle_compute_router_peerresource to GA (#18056) - compute: promoted
identifier_rangefield ingoogle_compute_routerresource to GA (#18056) - compute: promoted
ip_versionfield ingoogle_compute_router_interfaceresource to GA (#18056) - container: added
KUBELETandCADVISORoptions tomonitoring_config.enable_componentsingoogle_container_clusterresource (#18090) - dataproc: added
local_ssd_interfacetogoogle_dataproc_clusterresource (#18137) - dataprocmetastore: promoted
google_dataproc_metastore_federationto GA (#18084) - dlp: added
cloud_sql_targetfield togoogle_data_loss_prevention_discovery_configresource (#18063) - netapp: added
FLEXvalue to fieldservice_levelingoogle_netapp_storage_poolresource (#18088) - networksecurity: added
trust_config,min_tls_version,tls_feature_profileandcustom_tls_featuresfields togoogle_network_security_tls_inspection_policyresource (#18139) - networkservices: supported in-place update for
gateway_security_policyandcertificate_urlsfields ingoogle_network_services_gatewayresource (#18082)
BUG FIXES:
- compute: fixed a perma-diff on
machine_typefield ingoogle_compute_instanceresource (#18071) - compute: fixed a perma-diff on
typefield ingoogle_compute_diskresource (#18071) - storage: fixed update issue for
lifecycle_rule.condition.custom_time_beforeandlifecycle_rule.condition.noncurrent_time_beforeingoogle_storage_bucketresource (#18127)
v5.29.1
BREAKING CHANGES:
- compute: removed
secondary_ip_range.reserved_internal_rangefield fromgoogle_compute_subnetwork(18133)
v5.29.0
NOTES:
- compute: added documentation for
md5_authentication_keyfield ingoogle_compute_router_peerresource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#17991)
FEATURES:
-
New Resource:
google_bigtable_authorized_view(#18006) -
New Resource:
google_integration_connectors_managed_zone(#18029) -
New Resource:
google_network_connectivity_regional_endpoint(#18014) -
New Resource:
google_network_security_security_profile(#18025) -
New Resource:
google_network_security_security_profile_group(#18025) -
New Resource:
google_network_security_firewall_endpoint(#18025) -
New Resource:
google_network_security_firewall_endpoint_association(#18025)
IMPROVEMENTS:
- clouddeploy: added
custom_targetfield togoogle_clouddeploy_targetresource (#18000) - clouddeploy: added
google_cloud_build_repotocustom_target_typeresource (#18040) - compute: added
preconfigured_waf_configfield togoogle_compute_region_security_policy_ruleresource; (#18039) - compute: added
rate_limit_optionsfield togoogle_compute_region_security_policy_ruleresource; (#18039) - compute: added
security_profile_group,tls_inspecttogoogle_compute_firewall_policy_rule(#18000) - compute: added
security_profile_group,tls_inspecttogoogle_compute_network_firewall_policy_rule(#18000) - compute: added fields
reserved_internal_rangeandsecondary_ip_ranges.reserved_internal_rangetogoogle_compute_subnetworkresource (#18026) - container: added
dns_config.additive_vpc_scope_dns_domainfield togoogle_container_clusterresource (#18031) - container: added
enable_nested_virtualizationfield togoogle_container_node_poolandgoogle_container_clusterresource. (#18015) - iam: added
extra_attributes_oauth2_clientfield togoogle_iam_workforce_pool_providerresource (#18027) - privateca: added
maximum_lifetimefield togoogle_privateca_certificate_templateresource (#18000)
hashicorp/terraform-provider-google-beta (google-beta)
v5.42.0
DEPRECATIONS:
- compute: setting
google_compute_subnetwork.secondary_ip_range = []to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Usesend_secondary_ip_range_if_emptywhile removingsecondary_ip_rangefrom config instead. (#7961)
FEATURES:
-
New Data Source:
google_artifact_registry_locations(#7922) -
New Data Source:
google_cloud_identity_transitive_group_memberships(#7917) -
New Resource:
google_discovery_engine_schema(#7963) -
New Resource:
google_scc_folder_notification_config(#7928) -
New Resource:
google_scc_v2_folder_notification_config(#7927) -
New Resource:
google_vertex_ai_index_endpoint_deployed_index(#7931)
IMPROVEMENTS:
- clouddeploy: added
serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_labelandserial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_labelfields togoogle_clouddeploy_delivery_pipelineresource (#7945) - compute: added
TDXinstance option toconfidential_instance_typeinstance ingoogle_compute_instance(#7913) - compute: added
send_secondary_ip_range_if_emptytogoogle_compute_subnetwork(#7961) - discoveryengine: added
skip_default_schema_creationfield togoogle_data_storeresource (#7900) - dns: changed
load_balancer_typefield from required to optional ingoogle_dns_record_set(#7925) - parallelstore: added
file_stripe_level,directory_stripe_levelfields togoogle_parallelstore_instanceresource (#7942) - servicenetworking: added
update_on_creation_failfield togoogle_service_networking_connectionresource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#7915) - sql: added
server_ca_modefield togoogle_sql_database_instanceresource (#7886)
BUG FIXES:
- bigquery: made
google_bigquery_dataset_iam_membernon-authoritative. To remove a bigquery dataset iam member, use an authoritative resource likegoogle_bigquery_dataset_iam_policy(#7960) - cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the
service_config.environment_variablesfield ingoogle_cloudfunctions2_functionresource (#7905) - cloudfunctions2: fixed a permadiff on
storage_source.generationingoogle_cloudfunctions2_functionresource (#7912) - compute: fixed issue where sub-resources managed by
google_compute_forwarding_ruleprevented resource deletion (#7958) - logging: changed
google_logging_project_bucket_config.enable_analyticsbehavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#19126) - workbench: fixed a bug with
google_workbench_instancemetadata drifting when using custom containers. (#7959)
v5.41.0
DEPRECATIONS:
- resourcemanager: deprecated
skip_deletefield in thegoogle_projectresource. Usedeletion_policyinstead. (#7817)
FEATURES:
-
New Data Source:
google_scc_v2_organization_source_iam_policy(#7888) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_egress_policy(#7882) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_ingress_policy(#7882) -
New Resource:
google_scc_v2_folder_mute_config(#7846) -
New Resource:
google_scc_v2_project_mute_config(#7881) -
New Resource:
google_scc_v2_project_notification_config(#7892) -
New Resource:
google_scc_v2_organization_source(#7888) -
New Resource:
google_scc_v2_organization_source_iam_binding(#7888) -
New Resource:
google_scc_v2_organization_source_iam_member(#7888) -
New Resource:
google_scc_v2_organization_source_iam_policy(#7888)
IMPROVEMENTS:
- clouddeploy: added
gke.proxy_urlfield togoogle_clouddeploy_target(#7899) - cloudrunv2: added field
binary_authorization.policyto resourcegoogle_cloud_run_v2_joband resourcegoogle_cloud_run_v2_serviceto support named binary authorization policy. (#7883) - compute: added update-in-place support for the
google_compute_target_https_proxy.server_tls_policyfield (#7884) - compute: added update-in-place support for the
google_compute_region_target_https_proxy.server_tls_policyfield (#7891) - container: added
auto_provisioning_locationsfield togoogle_container_cluster(#7849) - dataform: added
kms_key_namefield togoogle_dataform_repositoryresource (#7855) - discoveryengine: added
skip_default_schema_creationfield togoogle_discovery_engine_data_storeresource (#7900) - gkehub: added
configmanagement.managementandconfigmanagement.config_sync.enabledfields togoogle_gkehub_feature_membership(#7899) - gkehub: added
managementfield togoogle_gke_hub_feature.fleet_default_member_config.configmanagement(#7862) - resourcemanager: added
deletion_policyfield to thegoogle_projectresource. Settingdeletion_policytoPREVENTwill protect the project against any destroy actions caused by a terraform apply or terraform destroy. Settingdeletion_policytoABANDONallows the resource to be abandoned rather than deleted and it behaves the same withskip_delete = true. Default value isDELETE.skip_delete = truetakes precedence overdeletion_policy = "DELETE". - storage: added
force_destroyfield togoogle_storage_managed_folderresource (#7867) - storage: added
generationfield togoogle_storage_bucket_objectresource (#7866)
BUG FIXES:
- compute: fixed
google_compute_instance.alias_ip_rangeupdate behavior to avoid temporarily deleting unchanged alias IP ranges (#7898) - compute: fixed the bug that creation of PSC forwarding rules fails in
google_compute_forwarding_ruleresource when provider default labels are set (#7873) - sql: fixed a perma-diff in
settings.insights_configingoogle_sql_database_instance(#7861)
v5.40.0
IMPROVEMENTS:
- bigquery: added support for value
DELTA_LAKEtosource_formatingoogle_bigquery_tableresource (#7841) - compute: added
access_modefield togoogle_compute_diskresource (#7813) - compute: added
stack_type, andgateway_ip_versionfields togoogle_compute_routerresource (#7801) - container: added field
ray_operator_configforresource_container_cluster(#7795) - monitoring: updated
goalfield to accept a max threshold of up to 0.9999 ingoogle_monitoring_sloresource to 0.9999 (#7807) - networkconnectivity: added
export_pscfield togoogle_network_connectivity_hubresource (#7816) - sql: added
enable_dataplex_integrationfield togoogle_sql_database_instanceresource (#7810)
BUG FIXES:
- bigquery: fixed a permadiff when handling "assets" in
paramsin thegoogle_bigquery_data_transfer_configresource (#7833) - bigquery: fixed an issue preventing certain keys in
paramsfrom being assigned values ingoogle_bigquery_data_transfer_config(#7828) - compute: fixed perma-diff in
google_compute_router(#7818) - container: fixed perma-diff on
node_config.guest_accelerator.gpu_driver_installation_configfield in GKE 1.30+ ingoogle_container_node_poolresource (#7799) - sql: fixed a perma-diff in
settings.insights_configingoogle_sql_database_instance(#7861)
v5.39.1
BUG FIXES:
- datastream: fixed a breaking change in 5.39.0
google_datastream_streamthat made one ofdestination_config.0.bigquery_destination_config.0.mergeordestination_config.0.bigquery_destination_config.0.append_onlyrequired (#7835)
v5.39.0
NOTES:
- networkconnectivity: migrated
google_network_connectivity_hubfrom DCL to MMv1 (#7724) - networkconnectivity: migrated
google_network_connectivity_spokefrom DCL to MMv1 (#7762)
DEPRECATIONS:
- bigquery: deprecated
allow_resource_tags_on_deletioningoogle_bigquery_table. (#7782) - bigqueryreservation: deprecated
multi_region_auxiliaryongoogle_bigquery_reservation. (#7778) - datastore: deprecated the resource
google_datastore_index. Use thegoogle_firestore_indexresource instead. (#7764)
FEATURES:
-
New Resource:
google_apigee_environment_keyvaluemaps_entries(#7717) -
New Resource:
google_apigee_environment_keyvaluemaps(#7717) -
New Resource:
google_compute_resize_request(#7725) -
New Resource:
google_compute_router_route_policy(#7748) -
New Resource:
google_scc_v2_organization_mute_config(#7744)
IMPROVEMENTS:
- alloydb: added
observability_configfield togoogle_alloydb_instanceresource (#7737) - bigquery: added
resource_tagsfield togoogle_bigquery_tableresource (#7735) - bigtable: added
data_boost_isolation_read_onlyanddata_boost_isolation_read_only.compute_billing_ownerfields togoogle_bigtable_app_profileresource (#7789) - cloudfunctions: added
build_service_accountfield togoogle_cloudfunctions_functionresource (#7713) - compute: added
aws_v4_authenticationfield togoogle_compute_backend_serviceresource (#7775) - compute: added
custom_learned_ip_rangesandcustom_learned_route_priorityfields togoogle_compute_router_peerresource (#7727) - compute: added
export_policiesandimport_policiesfields togoogle_compute_router_peerresource (#7748) - compute: added
shared_secretfield togoogle_compute_public_advertised_prefixresource (#7767) - compute: added
storage_poolunderboot_disk.initialize_paramstogoogle_compute_instanceresource (#7787) - compute: changed
target_servicefield on thegoogle_compute_service_attachmentresource to accept aForwardingRuleorGatewayURL. (#7736) - container: added field
ray_operator_configforgoogle_container_cluster(#7795) - datastream: added
mergeandappend_onlyfields togoogle_datastream_streamresource (#7726) - dlp: added
cloud_storage_targetfield togoogle_data_loss_prevention_discovery_configresource (#7734) - resourcemanager: added
check_if_service_has_usage_on_destroyfield togoogle_project_serviceresource (#7745) - resourcemanager: added the
memberproperty togoogle_project_service_identity(#7708) - vmwareengine: added
deletion_delay_hoursfield togoogle_vmwareengine_private_cloudresource (#7710) - vmwareengine: supported type change from
TIME_LIMITEDtoSTANDARDfor multi-nodegoogle_vmwareengine_private_cloudresource (#7710) - workbench: added
access_configstogoogle_workbench_instanceresource (#7732)
BUG FIXES:
- compute: fixed perma-diff for
interconnect_typebeingDEDICATEDingoogle_compute_interconnectresource (#7750) - dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating
google_dialogflow_cx_security_settingsresources (#7772) - firestore: fixed missing import of
fieldforgoogle_firestore_field. (#7757) - firestore: fixed bug where fields
database,collection,document_id, andfieldcould not be updated ongoogle_firestore_documentandgoogle_firestore_fieldresources. (#7791) - netapp: made the
smb_settingsfield on thegoogle_netapp_volumeresource default to the value returned from the API. This solves permadiffs when the field is unset. (#7770) - networksecurity: added recreate functionality on update for
client_validation_modeandclient_validation_trust_configingoogle_network_security_server_tls_policy(#7756)
v5.38.0
FEATURES:
-
New Data Source:
google_gke_hub_membership_binding(#7696) -
New Data Source:
google_site_verification_token(#7704) -
New Resource:
google_scc_project_notification_config(#7698)
IMPROVEMENTS:
- cloudkms: added
key_access_justifications_policyfield togoogle_kms_crypto_keyresource (#7693) - compute: made the
google_compute_resource_policyresource updatable in-place (#7692) - vertexai: added
project_numberfield togoogle_vertex_ai_feature_online_store_featureviewresource (#7680)
BUG FIXES:
- cloudfunctions2: fixed permadiffs on
service_config.environment_variablesfield ingoogle_cloudfunctions2_functionresource (#7684) - networksecurity: fixed permadiffs on
purposefield ingoogle_network_security_address_groupresource (#7687)
v5.37.0
FEATURES:
-
New Data Source:
google_kms_crypto_keys(#7656) -
New Data Source:
google_kms_key_rings(#7662) -
New Resource:
google_scc_v2_organization_notification_config(#7649) -
New Resource:
google_secure_source_manager_repository(#7634) -
New Resource:
google_storage_managed_folder_iam(#7620) -
New Resource:
google_storage_managed_folder(#7620)
IMPROVEMENTS:
- certificatemanager: added
allowlisted_certificatesfield togoogle_certificate_manager_trust_configresource (#7643) - compute: added
source_regionsfield togoogle_compute_healthcheckresource (#7647) - dataplex: added
sql_assertionfield togoogle_dataplex_datascanresource (#7623) - gkehub: added
fleet_default_member_config.configmanagement.config_sync.enabledfield togoogle_gke_hub_featureresource (#7639) - netapp: added
zoneandreplica_zonefield togoogle_netapp_storage_poolresource (#7660) - networksecurity: added
purposefield togoogle_network_security_address_groupresource (#7677) - vertexai: added
project_numberfield togoogle_vertex_ai_feature_online_store_featureviewresource (#7680) - workstations: added
host.gce_instance.vm_tagsfield togoogle_workstations_workstation_configresource (#7644)
BUG FIXES:
- compute: fixed a bug preventing the creation of
google_compute_autoscalerandgoogle_compute_region_autoscalerresources if bothautoscaling_policy.max_replicasandautoscaling_policy.min_replicaswere configured as zero. (#7658) - resourcemanager: mitigated eventual consistency issues by adding a 10s wait after
google_service_account_keyresource creation (#7629) - vertexai: fixed issue where updating "metadata" field could fail in
google_vertex_ai_indexresource (#7675)
v5.36.0
FEATURES:
-
New Resource:
google_storage_managed_folder_iam(#7620) -
New Resource:
google_storage_managed_folder(#7620)
IMPROVEMENTS:
- bigtable: added
ignore_warningsfield togoogle_bigtable_gc_policyresource (#7571) - cloudfunctions2: added
build_config.automatic_update_policyandbuild_config.on_deploy_update_policytogoogle_cloudfunctions2_functionresource (#7608) - compute: added
tls_early_datafield togoogle_compute_target_https_proxyresource (#7588) - compute: added
custom_error_response_policyanddefault_custom_error_response_policyfields togoogle_compute_url_mapresource (#7587) - datafusion: added
connection_typeandprivate_service_connect_configfields togoogle_data_fusion_instanceresource (#7598) - firebasehosting: added support for
google_firebase_hosting_siteresource to be used for an existing site without using import (#7594) - healthcare: added
encryption_specfield togoogle_healthcare_datasetresource (#7601) - monitoring: added
linksfield togoogle_monitoring_alert_policyresource (#7616) - vertexai: added update support for
big_query.entity_id_columnsfield ongoogle_vertex_ai_feature_groupresource (#7572)
BUG FIXES:
- accesscontextmanager: fixed perma-diff caused by ordering of
service_perimetersingoogle_access_context_manager_service_perimetersresource (#7595) - compute: fixed a crash in
google_compute_reservationresource whenshare_settingsfield has changes (#7577) - compute: fixed issue in
google_compute_instanceresource whereservice_accountis not set when specifyingservice_account.emailand noservice_account.scopes(#7596) - gkehub2: fixed
google_gke_hub_featureresource to allowfleet_default_member_configfield to be unset (#7568) - identityplatform: fixed perma-diff on
google_identity_platform_configresource whensms_region_configis not set (#7607) - logging: fixed perma-diff on
index_configsingoogle_logging_organization_bucket_configresource (#7579)
v5.35.0
FEATURES:
-
New Data Source:
google_artifact_registry_docker_image(#7544) -
New Data Source:
google_composer_user_workloads_config_map(#7519) -
New Resource:
google_service_networking_vpc_service_controls(#7545)
IMPROVEMENTS:
- bigquery: added
resource_tagsfield togoogle_bigquery_datasetresource (#7549) - billingbudget: added
enable_project_level_recipientsfield togoogle_billing_budgetresource (#7539) - cloudrunv2: added fields
start_execution_tokenandrun_execution_tokento resourcegoogle_cloud_run_v2_job(#7525) - compute: added
action_token_site_keysandsession_token_site_keysfields togoogle_compute_security_policyandgoogle_compute_security_policy_ruleresources (#7520) - dataprocmetastore: added
autoscaling_configfield togoogle_dataproc_metastore_serviceresource (#7528) - gkehub2: added
ENTERPRISEoption tosecurity_posture_configfield ongoogle_gke_hub_fleetresource (#7541) - pubsub: added
bigquery_config.service_account_emailfield togoogle_pubsub_subscriptionresource (#7543) - redis: added
maintenance_versionfield togoogle_redis_instance(#7527) - storage: changed update behavior in
google_storage_bucket_objectto no longer delete to avoid object deletion on content update (#7564) - sql: added support for more MySQL values in
typefield ofgoogle_sql_userresource (#7548) - sql: increased timeouts on
google_sql_database_instanceto 90m to account for longer-running actions such as creation through cloning (#7553) - workbench: added update support to
gce_setup.boot_diskandgce_setup.data_disksfields ingoogle_workbench_instanceresource (#7566)
BUG FIXES:
- compute: updated
google_compute_instanceto force reboot ifmin_node_cpusis updated (#7524) - compute: fixed
descriptionfield ingoogle_compute_firewallto support empty/null values on update (#7563) - compute: fixed perma-diff on
google_compute_diskfor Ubuntu amd64 canonical LTS images (#7522) - storage: fixed lowercased
custom_placement_configvalues ingoogle_storage_bucketcausing perma-destroy (#7551) - workbench: fixed issue where instance was not starting after an update in
google_workbench_instanceresource (#7557) - workbench: fixed perma-diff caused by empty
accelerator_configsingoogle_workbench_instanceresource (#7557)
v5.34.0
NOTES:
- compute: Updated field description of
connection_draining_timeout_sec,balancing_modeandoutlier_detectioningoogle_compute_region_backend_serviceandgoogle_compute_backend_serviceto inform that default values will be changed in 6.0.0 (#7513)
DEPRECATIONS:
- vertexai: deprecated beta field
embedding_managementforgoogle_vertex_ai_feature_online_storeresource (#7473)
FEATURES:
-
New Data Source:
google_composer_user_workloads_config_map(beta) (#7519) -
New Data Source:
google_composer_user_workloads_secret(beta) (#7474) -
New Resource:
google_composer_user_workloads_config_map(beta) (#7497) -
New Resource:
google_managed_kafka_cluster(beta) (#7477) -
New Resource:
google_managed_kafka_topic(beta) (#7503) -
New Resource:
google_netapp_backup(#7479) -
New Resource:
google_network_services_service_lb_policies(#7463) -
New Resource:
google_scc_management_folder_security_health_analytics_custom_module(#7483) -
New Resource:
google_scc_management_organization_project_security_health_analytics_custom_module(#7489) -
New Resource:
google_scc_management_organization_security_health_analytics_custom_module(#7493)
IMPROVEMENTS:
- alloydb: changed the resource
google_alloydb_instanceto be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#7469) - bigtable: added
automated_backup_configurationfield togoogle_bigtable_tableresource (#7468) - cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the
bitbucket_data_center_configandbitbucket_cloud_configfields ingoogle_cloudbuildv2_connection(#7494) - compute: added support for Port Mapping NEG and endpoint. New NEG type is a regional type of
GCE_VM_IP_PORTMAPthat requires endpoints withinstance,portandclient_destination_port(beta) (#7471) - compute: added update support to
ssl_policyfield ingoogle_compute_region_target_https_proxyresource (#7484) - compute: removed enum validation on
guest_os_features.typeingoogle_compute_diskto allow for new features to be used without provider update (#7465) - compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#7481)
- container: added support for
security_posture_config.modevalue "ENTERPRISE" inresource_container_cluster(#7467) - discoveryengine: added
document_processing_configfield togoogle_discovery_engine_data_storeresource (#7475) - edgecontainer: added
maintenance_exclusionsfield togoogle_edgecontainer_clusterresource (#7490) - gkehub: added
prevent_driftfield to ConfigManagementfleet_default_member_config(#7464) - netapp: added
administratorsfield togoogle_netapp_active_directoryresource (#7466) - vertexai: promoted
optimizedfield to GA forgoogle_vertex_ai_feature_online_storeresource (#7473) - workbench: updated the metadata keys managed by the backend. (#7488)
BUG FIXES:
- compute: fixed an issue where
google_compute_instance_group_managerwith a pending operation was incorrectly removed due to the operation no longer being present in the backend (#7498) - compute: fixed issue where users could not create
google_compute_security_policyresources withlayer_7_ddos_defense_configexplicitly disabled (#7470) - workbench: fixed a bug in the
google_workbench_instanceresource where specifying a network in some scenarios would cause instance creation to fail (#7518)
v5.33.0
DEPRECATIONS:
- healthcare: deprecated
notification_configdeprecatednotification_configingoogle_healthcare_fhir_storeresource. Usenotification_configsinstead. (#7450)
FEATURES:
-
New Data Source:
google_compute_security_policy(#7453) -
New Resource:
google_compute_project_cloud_armor_tier(#7456) -
New Resource:
google_network_services_service_lb_policies(#7463) -
New Resource:
google_scc_management_organization_event_threat_detection_custom_module(#7454) -
New Resource:
google_spanner_instance_config(#7459)
IMPROVEMENTS:
- appengine: added
flexible_runtime_settingsfield togoogle_app_engine_flexible_app_versionresource (#7462) - bigtable: added
force_destroyfield togoogle_bigtable_instanceresource. This will force delete any backups present in the instance and allow the instance to be deleted. (#7441) - clouddeploy: added
execution_configs.verbosefield togoogle_clouddeploy_targetresource (#7442) - compute: added
partner_metadatafield togoogle_compute_instance_templateresource (#7449) - compute: added
partner_metadatafield togoogle_compute_instanceresource (#7449) - compute: added
partner_metadatafield togoogle_compute_regional_instance_templateresource (#7449) - compute: added
standby_policy,target_suspended_sizeandtarget_stopped_sizefields togoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_managerresources (#7436) - compute: added
storage_poolfield togoogle_compute_diskresource (#7434) - container: added
secret_manager_configfield togoogle_container_clusterresource (#7448) - dlp: added
secrets_discovery_target,cloud_sql_target.filter.database_resource_reference, andbig_query_target.filter.table_referencefields togoogle_data_loss_prevention_discovery_configresource (#7461) - gkebackup: added
backup_schedule.backup_config.permissive_modefield togoogle_gke_backup_backup_planresource (#7430) - gkebackup: added
restore_config.restore_orderfield togoogle_gke_backup_restore_planresource (#7430) - gkebackup: added
restore_config.volume_data_restore_policy_bindingsfield togoogle_gke_backup_restore_planresource (#7430) - gkebackup: added new enum values
MERGE_SKIP_ON_CONFLICT,MERGE_REPLACE_VOLUME_ON_CONFLICTandMERGE_REPLACE_ON_CONFLICTto fieldrestore_config.namespaced_resource_restore_modeingoogle_gke_backup_restore_planresource (#7430) - healthcare: added
notification_config.send_for_bulk_importfield togoogle_healthcare_dicom_store(#7457) - integrationconnectors: added
endpoint_global_accessfield togoogle_integration_connectors_endpoint_attachmentresource (#7443) - netapp: added
backup_configfield togoogle_netapp_volumeresource (#7439) - redis: added
zone_distribution_configfield togoogle_redis_clusterresource (#7451) - resourcemanager: added support for
range_type = "default-domains-netblocks"ingoogle_netblock_ip_rangesdata source (#7440) - secretmanager: added support for IAM conditions in
google_secret_manager_secret_iam_*resources (#7444) - workstations: added
boot_disk_size_gb,enable_nested_virtualization, andpool_sizetohost.gce_instance.boost_configsingoogle_workstations_workstation_configresource (#7452)
BUG FIXES:
- container: fixed
google_container_node_poolcrash ifnode_config.secondary_boot_disks.modeis not set (#7460) - dlp: removed
requiredoninspect_config.limits.max_findings_per_info_type.info_typefield to allow the use of default limit by not setting this field ingoogle_data_loss_prevention_inspect_templateresource (#7438) - provider: fixed application default credential and access token authorization when
universe_domainis set (#7433)
v5.32.0
NOTES:
- privateca: converted
google_privateca_certificate_templateto now use the MMv1 engine instead of DCL (#7409)
FEATURES:
-
New Resource:
google_dataplex_entry_type(#7412) -
New Resource:
google_logging_log_view_iam_binding(#7420) -
New Resource:
google_logging_log_view_iam_member(#7420) -
New Resource:
google_logging_log_view_iam_policy(#7420)
IMPROVEMENTS:
- alloydb: added
psc_configfield togoogle_alloydb_clusterresource (#7429) - alloydb: added
psc_instance_configfield togoogle_alloydb_instanceresource (#7429) - cloudrunv2: added
default_uri_disabledfield togoogle_cloud_run_v2_serviceresourceto (#7422) - compute: added
NONEto acceptable options forupdate_policy.minimal_actionfield ingoogle_compute_instance_group_managerresource (#7417) - sql: updated support for a new value
week5in fieldsetting.maintenance_window.update_trackingoogle_sql_database_instanceresource (#7408)
BUG FIXES:
- cloudrunv2: added validation for
timeoutfield togoogle_cloud_run_v2_job,google_cloud_run_v2_serviceresources (#7426) - compute: fixed permadiff in ordering of
advertised_ip_ranges.rangefield ongoogle_compute_routerresource (#7411) - iam: added a 10 second sleep when creating
google_service_accountresource (#7427) - storage: fixed
google_storage_bucket.lifecycle_rule.conditionblock fieldsdays_since_noncurrent_timeanddays_since_custom_timeandnum_newer_versionswere not working for 0 value. (#7414)
v5.31.1
BUG FIXES:
- iam: added a 10 second sleep when creating a
google_service_accountto reduce eventual consistency errors. See https://github.com/hashicorp/terraform-provider-google/issues/18024 for more details (#7427)
v5.31.0
FEATURES:
-
New Data Source:
google_compute_subnetworks(#7371) -
New Resource:
google_dataplex_aspect_type(#7397) -
New Resource:
google_dataplex_entry_group(#7389) -
New Resource:
google_kms_autokey_config(#7385) -
New Resource:
google_kms_key_handle(#7385) -
New Resource:
google_network_services_lb_route_extension(#7394)
IMPROVEMENTS:
- appengine: added field
instance_ip_modeto resourcegoogle_app_engine_flexible_app_versionresource (beta) (#7377) - bigquery: added
external_data_configuration.bigtable_optionstogoogle_bigquery_table(#7387) - cloudrun: added support for
nfstogoogle_cloudrun_service(beta). (#7381) - composer: added support for importing
google_composer_user_workloads_secretvia the "{{environment}}/{{name}}" format. (#7390) - composer: improved timeouts for
google_composer_user_workloads_secret. (#7390) - compute: added
TLS_JA3_FINGERPRINTandUSER_IPoptions in fieldrate_limit_options.enforce_on_keytogoogle_compute_security_policyresource (#7376) - compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#7376)
- compute: changed
google_compute_region_ssl_policy'sregionfield to optional and allow to be inferred from environment (#7384) - compute: added
on_instance_stop_actionfield togoogle_compute_instance,google_compute_instance_template, andgoogle_compute_instance_from_machine_imageresources (beta) (#7392) - compute: added
subnet_lengthfield togoogle_compute_interconnect_attachmentresource (#7388) - container: added
containerd_configfield and subfields togoogle_container_clusterandgoogle_container_node_poolresources, to allow those resources to access private image registries. (#7372) - container: allowed both
enable_autopilotandworkload_identity_configto be set ingoogle_container_clusterresource. (#7375) - datastream: added
create_without_validationfield togoogle_datastream_connection_profile,google_datastream_private_connectionandgoogle_datastream_streamresources (#7382) - network-security: added
trust_config,min_tls_version,tls_feature_profileandcustom_tls_featuresfields togoogle_network_security_tls_inspection_policyresource (#7368) - networkservices: made field
load_balancing_schemeimmutable in resourcegoogle_network_services_lb_traffic_extension, as in-place updating is always failing (#7394) - networkservices: made required fields
extension_chains.extensions.authorityandextension_chains.extensions.timeoutoptional in resourcegoogle_network_services_lb_traffic_extension(#7394) - networkservices: removed unsupported load balancing scheme
LOAD_BALANCING_SCHEME_UNSPECIFIEDfrom the fieldload_balancing_schemein resourcegoogle_network_services_lb_traffic_extension(#7394) - pubsub: added
cloud_storage_config.filename_datetime_formatfield togoogle_pubsub_subscriptionresource (#7386) - tpu: added
typeofaccelerator_configtogoogle_tpu_v2_vmresource (#7369)
BUG FIXES:
- monitoring: fixed a permadiff with
monitored_resource.labelsproperty in thegoogle_monitoring_uptime_check_configresource (#7380) - storage: fixed a bug where field
autoclassblock is generating permadiff whenever the block is removed from the config ingoogle_storage_bucketresource (#7395) - storagetransfer: fixed a permadiff with
transfer_spec.0.aws_s3_data_source.0.aws_access_keyresource_storage_transfer_job(#7391)
v5.30.0
FEATURES:
-
New Data Source:
google_cloud_asset_resources_search_all(#7361) -
New Resource:
google_compute_interconnect(#7338) -
New Resource:
google_network_services_lb_traffic_extension(#7367)
IMPROVEMENTS:
- compute: added
kms_key_namefield to thegoogle_bigquery_connectionresource (#7335) - compute: added
match.expr.expressionfield togoogle_compute_region_security_policy_ruleresource (#7330) - compute: added
auto_network_tierfield togoogle_compute_router_natresource (#7333) - container: added
KUBELETandCADVISORoptions tomonitoring_config.enable_componentsingoogle_container_clusterresource (#7351) - dataproc: added
local_ssd_interfacetogoogle_dataproc_clusterresource (#7366) - datastream: added
sql_server_profiletogoogle_datastream_connection_profileresource (#7339) - dlp: added
cloud_sql_targetfield togoogle_data_loss_prevention_discovery_configresource (#7337) - netapp: added
FLEXvalue to fieldservice_levelingoogle_netapp_storage_poolresource (#7350) - networksecurity: added
trust_config,min_tls_version,tls_feature_profileandcustom_tls_featuresfields togoogle_network_security_tls_inspection_policyresource (#7368) - networkservices: supported in-place update for
gateway_security_policyandcertificate_urlsfields ingoogle_network_services_gatewayresource (#7348)
BUG FIXES:
- compute: fixed a perma-diff on
machine_typefield ingoogle_compute_instanceresource (#7345) - compute: fixed a perma-diff on
typefield ingoogle_compute_diskresource (#7345) - storage: fixed update issue for
lifecycle_rule.condition.custom_time_beforeandlifecycle_rule.condition.noncurrent_time_beforeingoogle_storage_bucketresource (#7360)
v5.29.1
BREAKING CHANGES:
- compute: removed
secondary_ip_range.reserved_internal_rangefield fromgoogle_compute_subnetwork(7363)
v5.29.0
NOTES:
- compute: added documentation for md5_authentication_key field in google_compute_router_peer resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#7306)
FEATURES:
-
New Resource:
google_bigtable_authorized_view(#7310) -
New Resource:
google_integration_connectors_managed_zone(#7320) -
New Resource:
google_network_connectivity_regional_endpoint(#7313)
IMPROVEMENTS:
- clouddeploy: added
custom_targetfield togoogle_clouddeploy_targetresource (#7309) - clouddeploy: added
google_cloud_build_repotocustom_target_typeresource (#7325) - compute: added
preconfigured_waf_configfield togoogle_compute_region_security_policy_ruleresource; (#7324) - compute: added
rate_limit_optionsfield to 'google_compute_region_security_policy_rule' resource; (#7324) - compute: added
security_profile_group,tls_inspecttogoogle_compute_firewall_policy_rule(#7309) - compute: added
security_profile_group,tls_inspecttogoogle_compute_network_firewall_policy_rule(#7309) - compute: added fields
reserved_internal_rangeandsecondary_ip_ranges.reserved_internal_rangetogoogle_compute_subnetworkresource (#7318) - container: added
dns_config.additive_vpc_scope_dns_domainfield togoogle_container_clusterresource (#7321) - container: added
enable_nested_virtualizationfield togoogle_container_node_poolandgoogle_container_clusterresource. (#7314) - iam: added
extra_attributes_oauth2_clientfield togoogle_iam_workforce_pool_providerresource (#7319) - privateca: added
maximum_lifetimefield togoogle_privateca_certificate_templateresource (#7309)
BUG FIXES:
- bigquery: added
allow_resource_tags_on_deletiontogoogle_bigquery_tableto allow deletion of table when it still has associated resource tags (#7327)
hashicorp/terraform-provider-random (random)
v3.6.2
NOTES:
- resource/random_pet: Results have been updated to the latest upstream petname data (#581)
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)
v4.5.0
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.