chore(deps): update all non-major dependencies
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
google (source) | required_provider | minor |
5.28.0 -> 5.42.0
|
google-beta (source) | required_provider | minor |
5.28.0 -> 5.42.0
|
random (source) | required_provider | patch |
3.6.1 -> 3.6.2
|
uis/devops/continuous-delivery/ci-templates | repository | minor |
v4.4.0 -> v4.5.0
|
Release Notes
hashicorp/terraform-provider-google (google)
v5.42.0
DEPRECATIONS:
- compute: setting
google_compute_subnetwork.secondary_ip_range = []
to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Usesend_secondary_ip_range_if_empty
while removingsecondary_ip_range
from config instead. (#19122)
FEATURES:
-
New Data Source:
google_artifact_registry_locations
(#19047) -
New Data Source:
google_cloud_identity_transitive_group_memberships
(#19038) -
New Resource:
google_discovery_engine_schema
(#19124) -
New Resource:
google_scc_folder_notification_config
(#19057) -
New Resource:
google_scc_v2_folder_notification_config
(#19055) -
New Resource:
google_vertex_ai_index_endpoint_deployed_index
(#19061)
IMPROVEMENTS:
- clouddeploy: added
serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_label
andserial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_label
fields togoogle_clouddeploy_delivery_pipeline
resource (#19100) - compute: added
send_secondary_ip_range_if_empty
togoogle_compute_subnetwork
(#19122) - discoveryengine: added
skip_default_schema_creation
field togoogle_data_store
resource (#19017) - dns: changed
load_balancer_type
field from required to optional ingoogle_dns_record_set
(#19050) - firestore: added
cmek_config
field togoogle_firestore_database
resource (#19107) - servicenetworking: added
update_on_creation_fail
field togoogle_service_networking_connection
resource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#19035) - sql: added
server_ca_mode
field togoogle_sql_database_instance
resource (#18998)
BUG FIXES:
- bigquery: made
google_bigquery_dataset_iam_member
non-authoritative. To remove a bigquery dataset iam member, use an authoritative resource likegoogle_bigquery_dataset_iam_policy
(#19121) - cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the
service_config.environment_variables
field ingoogle_cloudfunctions2_function
resource (#19024) - cloudfunctions2: fixed a permadiff on
storage_source.generation
ingoogle_cloudfunctions2_function
resource (#19031) - compute: fixed issue where sub-resources managed by
google_compute_forwarding_rule
prevented resource deletion (#19117) - logging: changed
google_logging_project_bucket_config.enable_analytics
behavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#19126) - workbench: fixed a bug with
google_workbench_instance
metadata drifting when using custom containers. (#19119)
v5.41.0
DEPRECATIONS:
- resourcemanager: deprecated
skip_delete
field in thegoogle_project
resource. Usedeletion_policy
instead. (#18867)
FEATURES:
-
New Data Source:
google_logging_log_view_iam_policy
(#18990) -
New Data Source:
google_scc_v2_organization_source_iam_policy
(#19004) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_egress_policy
(#18994) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_ingress_policy
(#18994) -
New Resource:
google_scc_v2_folder_mute_config
(#18924) -
New Resource:
google_scc_v2_project_mute_config
(#18993) -
New Resource:
google_scc_v2_project_notification_config
(#19008) -
New Resource:
google_scc_v2_organization_source
(#19004) -
New Resource:
google_scc_v2_organization_source_iam_binding
(#19004) -
New Resource:
google_scc_v2_organization_source_iam_member
(#19004) -
New Resource:
google_scc_v2_organization_source_iam_policy
(#19004) -
New Resource:
google_logging_log_view_iam_binding
(#18990) -
New Resource:
google_logging_log_view_iam_member
(#18990) -
New Resource:
google_logging_log_view_iam_policy
(#18990)
IMPROVEMENTS:
- clouddeploy: added
gke.proxy_url
field togoogle_clouddeploy_target
(#19016) - cloudrunv2: added field
binary_authorization.policy
to resourcegoogle_cloud_run_v2_job
and resourcegoogle_cloud_run_v2_service
to support named binary authorization policy. (#18995) - compute: added
source_regions
field togoogle_compute_healthcheck
resource (#19006) - compute: added update-in-place support for the
google_compute_target_https_proxy.server_tls_policy
field (#18996) - compute: added update-in-place support for the
google_compute_region_target_https_proxy.server_tls_policy
field (#19007) - container: added
auto_provisioning_locations
field togoogle_container_cluster
(#18928) - dataform: added
kms_key_name
field togoogle_dataform_repository
resource (#18947) - discoveryengine: added
skip_default_schema_creation
field togoogle_discovery_engine_data_store
resource (#19017) - gkehub: added
configmanagement.management
andconfigmanagement.config_sync.enabled
fields togoogle_gkehub_feature_membership
(#19016) - gkehub: added
management
field togoogle_gke_hub_feature.fleet_default_member_config.configmanagement
(#18963) - resourcemanager: added
deletion_policy
field to thegoogle_project
resource. Settingdeletion_policy
toPREVENT
will protect the project against any destroy actions caused by a terraform apply or terraform destroy. Settingdeletion_policy
toABANDON
allows the resource to be abandoned rather than deleted and it behaves the same withskip_delete = true
. Default value isDELETE
.skip_delete = true
takes precedence overdeletion_policy = "DELETE"
. - storage: added
force_destroy
field togoogle_storage_managed_folder
resource (#18973) - storage: added
generation
field togoogle_storage_bucket_object
resource (#18971)
BUG FIXES:
- compute: fixed
google_compute_instance.alias_ip_range
update behavior to avoid temporarily deleting unchanged alias IP ranges (#19015) - compute: fixed the bug that creation of PSC forwarding rules fails in
google_compute_forwarding_rule
resource when provider default labels are set (#18984) - sql: fixed a perma-diff in
settings.insights_config
ingoogle_sql_database_instance
(#18962)
v5.40.0
IMPROVEMENTS:
- bigquery: added support for value
DELTA_LAKE
tosource_format
ingoogle_bigquery_table
resource (#18915) - compute: added
access_mode
field togoogle_compute_disk
resource (#18857) - compute: added
stack_type
, andgateway_ip_version
fields togoogle_compute_router
resource (#18839) - container: added field
ray_operator_config
forresource_container_cluster
(#18825) - container: promoted
additional_node_network_configs
andadditional_pod_network_configs
fields to GA in thegoogle_container_node_pool
resource (#18842) - container: promoted
enable_multi_networking
to GA in thegoogle_container_cluster
resource (#18842) - monitoring: updated
goal
field to accept a max threshold of up to 0.9999 ingoogle_monitoring_slo
resource to 0.9999 (#18845) - networkconnectivity: added
export_psc
field togoogle_network_connectivity_hub
resource (#18866) - sql: added
enable_dataplex_integration
field togoogle_sql_database_instance
resource (#18852)
BUG FIXES:
- bigquery: fixed a permadiff when handling "assets" in
params
in thegoogle_bigquery_data_transfer_config
resource (#18898) - bigquery: fixed an issue preventing certain keys in
params
from being assigned values ingoogle_bigquery_data_transfer_config
(#18888) - compute: fixed perma-diff of
advertised_ip_ranges
field ingoogle_compute_router
resource (#18869) - container: fixed perma-diff on
node_config.guest_accelerator.gpu_driver_installation_config
field in GKE 1.30+ ingoogle_container_node_pool
resource (#18835) - sql: fixed a perma-diff in
settings.insights_config
ingoogle_sql_database_instance
(#18962)
v5.39.1
BUG FIXES:
- datastream: fixed a breaking change in 5.39.0
google_datastream_stream
that made one ofdestination_config.bigquery_destination_config.merge
ordestination_config.bigquery_destination_config.append_only
required (#18903)
v5.39.0
NOTES:
- networkconnectivity: migrated
google_network_connectivity_hub
from DCL to MMv1 (#18724) - networkconnectivity: migrated
google_network_connectivity_spoke
from DCL to MMv1 (#18779)
DEPRECATIONS:
- bigquery: deprecated
allow_resource_tags_on_deletion
ingoogle_bigquery_table
. (#18811) - bigqueryreservation: deprecated
multi_region_auxiliary
ongoogle_bigquery_reservation
. (#18803) - datastore: deprecated the resource
google_datastore_index
. Use thegoogle_firestore_index
resource instead. (#18781)
FEATURES:
-
New Resource:
google_apigee_environment_keyvaluemaps_entries
(#18707) -
New Resource:
google_apigee_environment_keyvaluemaps
(#18707) -
New Resource:
google_compute_resize_request
(#18725) -
New Resource:
google_compute_router_route_policy
(#18759) -
New Resource:
google_scc_v2_organization_mute_config
(#18752)
IMPROVEMENTS:
- alloydb: added
observability_config
field togoogle_alloydb_instance
resource (#18743) - bigquery: added
resource_tags
field togoogle_bigquery_dataset
resource (ga) (#18711) - bigquery: added
resource_tags
field togoogle_bigquery_table
resource (#18741) - bigtable: added
data_boost_isolation_read_only
anddata_boost_isolation_read_only.compute_billing_owner
fields togoogle_bigtable_app_profile
resource (#18819) - cloudfunctions: added
build_service_account
field togoogle_cloudfunctions_function
resource (#18702) - compute: added
aws_v4_authentication
fields togoogle_compute_backend_service
resource (#18796) - compute: added
custom_learned_ip_ranges
andcustom_learned_route_priority
fields togoogle_compute_router_peer
resource (#18727) - compute: added
export_policies
andimport_policies
fields togoogle_compute_router_peer
resource (#18759) - compute: added
shared_secret
field togoogle_compute_public_advertised_prefix
resource (#18786) - compute: added
storage_pool
underboot_disk.initialize_params
togoogle_compute_instance
resource (#18817) - compute: changed
target_service
field on thegoogle_compute_service_attachment
resource to accept aForwardingRule
orGateway
URL. (#18742) - container: added field
ray_operator_config
forgoogle_container_cluster
(#18825) - datastream: added
merge
andappend_only
fields togoogle_datastream_stream
resource (#18726) - datastream: promoted
source_config.sql_server_source_config
andbackfill_all.sql_server_excluded_objects
fields ingoogle_datastream_stream
resource from beta to GA (#18732) - datastream: promoted
sql_server_profile
field ingoogle_datastream_connection_profile
resource from beta to GA (#18732) - dlp: added
cloud_storage_target
field togoogle_data_loss_prevention_discovery_config
resource (#18740) - resourcemanager: added
check_if_service_has_usage_on_destroy
field togoogle_project_service
resource (#18753) - resourcemanager: added the
member
property togoogle_project_service_identity
(#18695) - vmwareengine: added
deletion_delay_hours
field togoogle_vmwareengine_private_cloud
resource (#18698) - vmwareengine: supported type change from
TIME_LIMITED
toSTANDARD
for multi-nodegoogle_vmwareengine_private_cloud
resource (#18698) - workbench: added
access_configs
togoogle_workbench_instance
resource (#18737)
BUG FIXES:
- compute: fixed perma-diff for
interconnect_type
beingDEDICATED
ingoogle_compute_interconnect
resource (#18761) - dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating
google_dialogflow_cx_security_settings
resources (#18792) - firestore: fixed missing import of
field
forgoogle_firestore_field
. (#18771) - firestore: fixed bug where fields
database
,collection
,document_id
, andfield
could not be updated ongoogle_firestore_document
andgoogle_firestore_field
resources. (#18821) - netapp: made the
smb_settings
field on thegoogle_netapp_volume
resource default to the value returned from the API. This solves permadiffs when the field is unset. (#18790) - networksecurity: added recreate functionality on update for
client_validation_mode
andclient_validation_trust_config
ingoogle_network_security_server_tls_policy
(#18769)
v5.38.0
FEATURES:
-
New Data Source:
google_gke_hub_membership_binding
(#18680) -
New Data Source:
google_site_verification_token
(#18688) -
New Resource:
google_scc_project_notification_config
(#18682)
IMPROVEMENTS:
- compute: promoted
labels
field ongoogle_compute_global_address
resource from beta to GA (#18646) - compute: made the
google_compute_resource_policy
resource updatable in-place (#18673) - privilegedaccessmanager: promoted
google_privileged_access_manager_entitlement
resource from beta to GA (#18686) - vertexai: added
project_number
field togoogle_vertex_ai_feature_online_store_featureview
resource (#18637)
BUG FIXES:
- cloudfunctions2: fixed permadiffs on
service_config.environment_variables
field ingoogle_cloudfunctions2_function
resource (#18651)
v5.37.0
FEATURES:
-
New Data Source:
google_kms_crypto_keys
(#18605) -
New Data Source:
google_kms_key_rings
(#18611) -
New Resource:
google_scc_v2_organization_notification_config
(#18594) -
New Resource:
google_secure_source_manager_repository
(#18576) -
New Resource:
google_storage_managed_folder_iam
(#18555) -
New Resource:
google_storage_managed_folder
(#18555)
IMPROVEMENTS:
- certificatemanager: added
allowlisted_certificates
field togoogle_certificate_manager_trust_config
resource (#18587) - compute: added
max_run_duration
andon_instance_stop_action
fields togoogle_compute_instance
,google_compute_instance_template
, andgoogle_compute_instance_from_machine_image
resources (#18623) - dataplex: added
sql_assertion
field togoogle_dataplex_datascan
resource (#18559) - gkehub: added
fleet_default_member_config.configmanagement.config_sync.enabled
field togoogle_gke_hub_feature
resource (#18582) - netapp: added
zone
andreplica_zone
field togoogle_netapp_storage_pool
resource (#18609) - vertexai: added
project_number
field togoogle_vertex_ai_feature_online_store_featureview
resource (#18637) - workstations: added
host.gce_instance.vm_tags
field togoogle_workstations_workstation_config
resource (#18588)
BUG FIXES:
- compute: fixed a bug preventing the creation of
google_compute_autoscaler
andgoogle_compute_region_autoscaler
resources if bothautoscaling_policy.max_replicas
andautoscaling_policy.min_replicas
were configured as zero. (#18607) - resourcemanager: mitigated eventual consistency issues by adding a 10s wait after
google_service_account_key
resource creation (#18566) - vertexai: fixed issue where updating "metadata" field could fail in
google_vertex_ai_index
resource (#18632)
v5.36.0
FEATURES:
-
New Resource:
google_storage_managed_folder_iam
(#18555) -
New Resource:
google_storage_managed_folder
(#18555)
IMPROVEMENTS:
- bigtable: added
ignore_warnings
field togoogle_bigtable_gc_policy
resource (#18492) - cloudfunctions2: added
build_config.automatic_update_policy
andbuild_config.on_deploy_update_policy
fields togoogle_cloudfunctions2_function
resource (#18540) - compute: added
confidential_instance_config.confidential_instance_type
field togoogle_compute_instance
,google_compute_instance_template
, andgoogle_compute_region_instance_template
resources (#18554) - compute: added
custom_error_response_policy
anddefault_custom_error_response_policy
fields togoogle_compute_url_map
resource (#18511) - compute: added
tls_early_data
field togoogle_compute_target_https_proxy
resource (#18512) - compute: promoted
google_compute_network_attachment
resource from beta to GA (#18494) - datafusion: added
connection_type
andprivate_service_connect_config
fields togoogle_data_fusion_instance
resource (#18525) - healthcare: added
encryption_spec
field togoogle_healthcare_dataset
resource (#18528) - monitoring: added
links
field togoogle_monitoring_alert_policy
resource (#18549) - vertexai: added update support for
big_query.entity_id_columns
field ongoogle_vertex_ai_feature_group
resource (#18493) - vertexai: promoted
dedicated_serving_endpoint
field ongoogle_vertex_ai_feature_online_store
resource from beta to GA (#18513)
BUG FIXES:
- accesscontextmanager: fixed perma-diff caused by ordering of
service_perimeters
ingoogle_access_context_manager_service_perimeters
resource (#18520) - compute: fixed a crash in
google_compute_reservation
resource whenshare_settings
field has changes (#18498) - compute: fixed issue in
google_compute_instance
resource whereservice_account
is not set when specifyingservice_account.email
and noservice_account.scopes
(#18521) - gkehub2: fixed
google_gke_hub_feature
resource to allowfleet_default_member_config
field to be unset (#18487) - identityplatform: fixed perma-diff on
google_identity_platform_config
resource whensms_region_config
is not set (#18537) - logging: fixed perma-diff on
index_configs
ingoogle_logging_organization_bucket_config
resource (#18501)
v5.35.0
FEATURES:
-
New Data Source:
google_artifact_registry_docker_image
(#18446) -
New Resource:
google_service_networking_vpc_service_controls
(#18448)
IMPROVEMENTS:
- billingbudget: added
enable_project_level_recipients
field togoogle_billing_budget
resource (#18437) - compute: added
action_token_site_keys
andsession_token_site_keys
fields togoogle_compute_security_policy
andgoogle_compute_security_policy_rule
resources (#18414) - gkehub2: added
ENTERPRISE
option tosecurity_posture_config
field ongoogle_gke_hub_fleet
resource (#18440) - pubsub: added
bigquery_config.service_account_email
field togoogle_pubsub_subscription
resource (#18444) - redis: added
maintenance_version
field togoogle_redis_instance
resource (#18424) - storage: changed update behavior in
google_storage_bucket_object
to no longer delete to avoid object deletion on content update (#18479) - sql: added support for more MySQL values in
type
field ofgoogle_sql_user
resource (#18452) - sql: increased timeouts on
google_sql_database_instance
to 90m to account for longer-running actions such as creation through cloning (#18458) - workbench: added update support to
gce_setup.boot_disk
andgce_setup.data_disks
fields ingoogle_workbench_instance
resource (#18482)
BUG FIXES:
- compute: updated
google_compute_instance
to force reboot ifmin_node_cpus
is updated (#18420) - compute: fixed
description
field ingoogle_compute_firewall
to support empty/null values on update (#18478) - compute: fixed perma-diff on
google_compute_disk
for Ubuntu amd64 canonical LTS images (#18418) - storage: fixed lowercased
custom_placement_config
values ingoogle_storage_bucket
causing perma-destroy (#18456) - workbench: fixed issue where instance was not starting after an update in
google_workbench_instance
resource (#18464) - workbench: fixed perma-diff caused by empty
accelerator_configs
ingoogle_workbench_instance
resource (#18464)
v5.34.0
NOTES:
- compute: Updated field description of
connection_draining_timeout_sec
,balancing_mode
andoutlier_detection
ingoogle_compute_region_backend_service
andgoogle_compute_backend_service
to inform that default values will be changed in 6.0.0 (#18399)
FEATURES:
-
New Resource:
google_netapp_backup
(#18357) -
New Resource:
google_network_services_service_lb_policies
(#18326) -
New Resource:
google_scc_management_folder_security_health_analytics_custom_module
(#18360) -
New Resource:
google_scc_management_organization_project_security_health_analytics_custom_module
(#18369) -
New Resource:
google_scc_management_organization_security_health_analytics_custom_module
(#18374)
IMPROVEMENTS:
- alloydb: changed the resource
google_alloydb_instance
to be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#18344) - bigtable: added
automated_backup_configuration
field togoogle_bigtable_table
resource (#18335) - cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the
bitbucket_data_center_config
andbitbucket_cloud_config
fields ingoogle_cloudbuildv2_connection
(#18375) - compute: added update support to
ssl_policy
field ingoogle_compute_region_target_https_proxy
resource (#18361) - compute: removed enum validation on
guest_os_features.type
ingoogle_compute_disk
to allow for new features to be used without provider update (#18331) - compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#18358)
- container: added support for
security_posture_config.mode
value "ENTERPRISE" inresource_container_cluster
(#18334) - discoveryengine: added
document_processing_config
field togoogle_discovery_engine_data_store
resource (#18350) - edgecontainer: added 'maintenance_exclusions' field to 'google_edgecontainer_cluster' resource (#18370)
- gkehub: added
prevent_drift
field to ConfigManagementfleet_default_member_config
(#18330) - netapp: added
administrators
field togoogle_netapp_active_directory
resource (#18333) - vertexai: promoted
optimized
field to GA forgoogle_vertex_ai_feature_online_store
resource (#18348) - workbench: updated the metadata keys managed by the backend. (#18367)
BUG FIXES:
- compute: fixed an issue where
google_compute_instance_group_manager
with a pending operation was incorrectly removed due to the operation no longer being present in the backend (#18380) - compute: fixed issue where users could not create
google_compute_security_policy
resources withlayer_7_ddos_defense_config
explicitly disabled (#18345) - workbench: fixed a bug in the
google_workbench_instance
resource where specifying a network in some scenarios would cause instance creation to fail (#18404
v5.33.0
DEPRECATIONS:
- healthcare: deprecated
notification_config
ingoogle_healthcare_fhir_store
resource. Usenotification_configs
instead. (#18306)
FEATURES:
-
New Data Source:
google_compute_security_policy
(#18316) -
New Resource:
google_compute_project_cloud_armor_tier
(#18319) -
New Resource:
google_network_services_service_lb_policies
(#18326) -
New Resource:
google_scc_management_organization_event_threat_detection_custom_module
(#18317) -
New Resource:
google_spanner_instance_config
(#18322)
IMPROVEMENTS:
- appengine: added
flexible_runtime_settings
field togoogle_app_engine_flexible_app_version
resource (#18325) - bigtable: added
force_destroy
field togoogle_bigtable_instance
resource. This will force delete any backups present in the instance and allow the instance to be deleted. (#18291) - clouddeploy: added
execution_configs.verbose
field togoogle_clouddeploy_target
resource (#18292) - compute: added
storage_pool
field togoogle_compute_disk
resource (#18273) - dlp: added
secrets_discovery_target
,cloud_sql_target.filter.database_resource_reference
, andbig_query_target.filter.table_reference
fields togoogle_data_loss_prevention_discovery_config
resource (#18324) - gkebackup: added
backup_schedule.backup_config.permissive_mode
field togoogle_gke_backup_backup_plan
resource (#18266) - gkebackup: added
restore_config.restore_order
field togoogle_gke_backup_restore_plan
resource (#18266) - gkebackup: added
restore_config.volume_data_restore_policy_bindings
field togoogle_gke_backup_restore_plan
resource (#18266) - gkebackup: added new enum values
MERGE_SKIP_ON_CONFLICT
,MERGE_REPLACE_VOLUME_ON_CONFLICT
andMERGE_REPLACE_ON_CONFLICT
to fieldrestore_config.namespaced_resource_restore_mode
ingoogle_gke_backup_restore_plan
resource (#18266) - healthcare: added
notification_config.send_for_bulk_import
field togoogle_healthcare_dicom_store
resource (#18320) - healthcare: added
notification_configs
field togoogle_healthcare_fhir_store
resource (#18306) - integrationconnectors: added
endpoint_global_access
field togoogle_integration_connectors_endpoint_attachment
resource (#18293) - netapp: added
backup_config
field togoogle_netapp_volume
resource (#18286) - redis: added
zone_distribution_config
field togoogle_redis_cluster
resource (#18307) - resourcemanager: added support for
range_type = "default-domains-netblocks"
ingoogle_netblock_ip_ranges
data source (#18290) - secretmanager: added support for IAM conditions in
google_secret_manager_secret_iam_*
resources (#18294) - workstations: added
boot_disk_size_gb
,enable_nested_virtualization
, andpool_size
tohost.gce_instance.boost_configs
ingoogle_workstations_workstation_config
resource (#18310)
BUG FIXES:
- container: fixed
google_container_node_pool
crash ifnode_config.secondary_boot_disks.mode
is not set (#18323) - dlp: removed
required
oninspect_config.limits.max_findings_per_info_type.info_type
field to allow the use of default limit by not setting this field ingoogle_data_loss_prevention_inspect_template
resource (#18285) - provider: fixed application default credential and access token authorization when
universe_domain
is set (#18272)
v5.32.0
NOTES:
- privateca: converted
google_privateca_certificate_template
to now use the MMv1 engine instead of DCL (#18224)
FEATURES:
-
New Resource:
google_dataplex_entry_type
(#18229) -
New Resource:
google_logging_log_view_iam_binding
(#18243) -
New Resource:
google_logging_log_view_iam_member
(#18243) -
New Resource:
google_logging_log_view_iam_policy
(#18243)
IMPROVEMENTS:
- alloydb: added
psc_config
field togoogle_alloydb_cluster
resource (#18263) - alloydb: added
psc_instance_config
field togoogle_alloydb_instance
resource (#18263) - cloudrunv2: added
default_uri_disabled
field to resourcegoogle_cloud_run_v2_service
resource (#18246) - compute: added
NONE
to acceptable options forupdate_policy.minimal_action
field ingoogle_compute_instance_group_manager
resource (#18236) - looker: increased validation length of
name
togoogle_looker_instance
resource (#18244) - sql: updated support for a new value
week5
in fieldsetting.maintenance_window.update_track
ingoogle_sql_database_instance
resource (#18223)
BUG FIXES:
- cloudrunv2: added validation for
timeout
field togoogle_cloud_run_v2_job
andgoogle_cloud_run_v2_service
resources (#18260) - compute: fixed permadiff in ordering of
advertised_ip_ranges.range
field ongoogle_compute_router
resource (#18228) - iam: added a 10 second sleep when creating a 'google_service_account' resource to reduce eventual consistency errors(#18261)
- storage: fixed
google_storage_bucket.lifecycle_rule.condition
block fieldsdays_since_noncurrent_time
anddays_since_custom_time
andnum_newer_versions
were not working for 0 value (#18231)
v5.31.1
BUG FIXES:
- iam: added a 10 second sleep when creating a
google_service_account
to reduce eventual consistency errors. See https://github.com/hashicorp/terraform-provider-google/issues/18024 for more details (#18261)
v5.31.0
FEATURES:
-
New Data Source:
google_compute_subnetworks
(#18159) -
New Resource:
google_dataplex_aspect_type
(#18201) -
New Resource:
google_dataplex_entry_group
(#18188) -
New Resource:
google_kms_autokey_config
(#18179) -
New Resource:
google_kms_key_handle
(#18179) -
New Resource:
google_network_services_lb_route_extension
(#18195)
IMPROVEMENTS:
- appengine: added field
instance_ip_mode
to resourcegoogle_app_engine_flexible_app_version
resource (beta) (#18168) - bigquery: added
external_data_configuration.bigtable_options
togoogle_bigquery_table
(#18181) - composer: added support for importing
google_composer_user_workloads_secret
via the "{{environment}}/{{name}}" format. (#7390) - composer: improved timeouts for
google_composer_user_workloads_secret
. (#7390) - compute: added
TLS_JA3_FINGERPRINT
andUSER_IP
options in fieldrate_limit_options.enforce_on_key
togoogle_compute_security_policy
resource (#18167) - compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#18167)
- compute: changed
google_compute_region_ssl_policy
'sregion
field to optional and allow to be inferred from environment (#18178) - compute: added
subnet_length
field togoogle_compute_interconnect_attachment
resource (#18187) - container: added
containerd_config
field and subfields togoogle_container_cluster
andgoogle_container_node_pool
resources, to allow those resources to access private image registries. (#18160) - container: allowed both
enable_autopilot
andworkload_identity_config
to be set ingoogle_container_cluster
resource. (#18166) - datastream: added
create_without_validation
field togoogle_datastream_connection_profile
,google_datastream_private_connection
andgoogle_datastream_stream
resources (#18176) - network-security: added
trust_config
,min_tls_version
,tls_feature_profile
andcustom_tls_features
fields togoogle_network_security_tls_inspection_policy
resource (#18139) - networkservices: made field
load_balancing_scheme
immutable in resourcegoogle_network_services_lb_traffic_extension
, as in-place updating is always failing (#18195) - networkservices: made required fields
extension_chains.extensions.authority
andextension_chains.extensions.timeout
optional in resourcegoogle_network_services_lb_traffic_extension
(#18195) - networkservices: removed unsupported load balancing scheme
LOAD_BALANCING_SCHEME_UNSPECIFIED
from the fieldload_balancing_scheme
in resourcegoogle_network_services_lb_traffic_extension
(#18195) - pubsub: added
cloud_storage_config.filename_datetime_format
field togoogle_pubsub_subscription
resource (#18180) - tpu: added
type
ofaccelerator_config
togoogle_tpu_v2_vm
resource (#18148)
BUG FIXES:
- monitoring: fixed a permadiff with
monitored_resource.labels
property in thegoogle_monitoring_uptime_check_config
resource (#18174) - storage: fixed a bug where field
autoclass
block is generating permadiff whenever the block is removed from the config ingoogle_storage_bucket
resource (#18197) - storagetransfer: fixed a permadiff with
transfer_spec.0.aws_s3_data_source.0.aws_access_key
resource_storage_transfer_job
(#18190)
v5.30.0
FEATURES:
-
New Data Source:
google_cloud_asset_resources_search_all
(#18129) -
New Resource:
google_compute_interconnect
(#18064) -
New Resource:
google_network_services_lb_traffic_extension
(#18138)
IMPROVEMENTS:
- compute: added
kms_key_name
field togoogle_bigquery_connection
resource (#18057) - compute: added
auto_network_tier
field togoogle_compute_router_nat
resource (#18055) - compute: promoted
enable_ipv4
,ipv4_nexthop_address
andpeer_ipv4_nexthop_address
fields ingoogle_compute_router_peer
resource to GA (#18056) - compute: promoted
identifier_range
field ingoogle_compute_router
resource to GA (#18056) - compute: promoted
ip_version
field ingoogle_compute_router_interface
resource to GA (#18056) - container: added
KUBELET
andCADVISOR
options tomonitoring_config.enable_components
ingoogle_container_cluster
resource (#18090) - dataproc: added
local_ssd_interface
togoogle_dataproc_cluster
resource (#18137) - dataprocmetastore: promoted
google_dataproc_metastore_federation
to GA (#18084) - dlp: added
cloud_sql_target
field togoogle_data_loss_prevention_discovery_config
resource (#18063) - netapp: added
FLEX
value to fieldservice_level
ingoogle_netapp_storage_pool
resource (#18088) - networksecurity: added
trust_config
,min_tls_version
,tls_feature_profile
andcustom_tls_features
fields togoogle_network_security_tls_inspection_policy
resource (#18139) - networkservices: supported in-place update for
gateway_security_policy
andcertificate_urls
fields ingoogle_network_services_gateway
resource (#18082)
BUG FIXES:
- compute: fixed a perma-diff on
machine_type
field ingoogle_compute_instance
resource (#18071) - compute: fixed a perma-diff on
type
field ingoogle_compute_disk
resource (#18071) - storage: fixed update issue for
lifecycle_rule.condition.custom_time_before
andlifecycle_rule.condition.noncurrent_time_before
ingoogle_storage_bucket
resource (#18127)
v5.29.1
BREAKING CHANGES:
- compute: removed
secondary_ip_range.reserved_internal_range
field fromgoogle_compute_subnetwork
(18133)
v5.29.0
NOTES:
- compute: added documentation for
md5_authentication_key
field ingoogle_compute_router_peer
resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#17991)
FEATURES:
-
New Resource:
google_bigtable_authorized_view
(#18006) -
New Resource:
google_integration_connectors_managed_zone
(#18029) -
New Resource:
google_network_connectivity_regional_endpoint
(#18014) -
New Resource:
google_network_security_security_profile
(#18025) -
New Resource:
google_network_security_security_profile_group
(#18025) -
New Resource:
google_network_security_firewall_endpoint
(#18025) -
New Resource:
google_network_security_firewall_endpoint_association
(#18025)
IMPROVEMENTS:
- clouddeploy: added
custom_target
field togoogle_clouddeploy_target
resource (#18000) - clouddeploy: added
google_cloud_build_repo
tocustom_target_type
resource (#18040) - compute: added
preconfigured_waf_config
field togoogle_compute_region_security_policy_rule
resource; (#18039) - compute: added
rate_limit_options
field togoogle_compute_region_security_policy_rule
resource; (#18039) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_firewall_policy_rule
(#18000) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_network_firewall_policy_rule
(#18000) - compute: added fields
reserved_internal_range
andsecondary_ip_ranges.reserved_internal_range
togoogle_compute_subnetwork
resource (#18026) - container: added
dns_config.additive_vpc_scope_dns_domain
field togoogle_container_cluster
resource (#18031) - container: added
enable_nested_virtualization
field togoogle_container_node_pool
andgoogle_container_cluster
resource. (#18015) - iam: added
extra_attributes_oauth2_client
field togoogle_iam_workforce_pool_provider
resource (#18027) - privateca: added
maximum_lifetime
field togoogle_privateca_certificate_template
resource (#18000)
hashicorp/terraform-provider-google-beta (google-beta)
v5.42.0
DEPRECATIONS:
- compute: setting
google_compute_subnetwork.secondary_ip_range = []
to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Usesend_secondary_ip_range_if_empty
while removingsecondary_ip_range
from config instead. (#7961)
FEATURES:
-
New Data Source:
google_artifact_registry_locations
(#7922) -
New Data Source:
google_cloud_identity_transitive_group_memberships
(#7917) -
New Resource:
google_discovery_engine_schema
(#7963) -
New Resource:
google_scc_folder_notification_config
(#7928) -
New Resource:
google_scc_v2_folder_notification_config
(#7927) -
New Resource:
google_vertex_ai_index_endpoint_deployed_index
(#7931)
IMPROVEMENTS:
- clouddeploy: added
serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_label
andserial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_label
fields togoogle_clouddeploy_delivery_pipeline
resource (#7945) - compute: added
TDX
instance option toconfidential_instance_type
instance ingoogle_compute_instance
(#7913) - compute: added
send_secondary_ip_range_if_empty
togoogle_compute_subnetwork
(#7961) - discoveryengine: added
skip_default_schema_creation
field togoogle_data_store
resource (#7900) - dns: changed
load_balancer_type
field from required to optional ingoogle_dns_record_set
(#7925) - parallelstore: added
file_stripe_level
,directory_stripe_level
fields togoogle_parallelstore_instance
resource (#7942) - servicenetworking: added
update_on_creation_fail
field togoogle_service_networking_connection
resource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#7915) - sql: added
server_ca_mode
field togoogle_sql_database_instance
resource (#7886)
BUG FIXES:
- bigquery: made
google_bigquery_dataset_iam_member
non-authoritative. To remove a bigquery dataset iam member, use an authoritative resource likegoogle_bigquery_dataset_iam_policy
(#7960) - cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the
service_config.environment_variables
field ingoogle_cloudfunctions2_function
resource (#7905) - cloudfunctions2: fixed a permadiff on
storage_source.generation
ingoogle_cloudfunctions2_function
resource (#7912) - compute: fixed issue where sub-resources managed by
google_compute_forwarding_rule
prevented resource deletion (#7958) - logging: changed
google_logging_project_bucket_config.enable_analytics
behavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#19126) - workbench: fixed a bug with
google_workbench_instance
metadata drifting when using custom containers. (#7959)
v5.41.0
DEPRECATIONS:
- resourcemanager: deprecated
skip_delete
field in thegoogle_project
resource. Usedeletion_policy
instead. (#7817)
FEATURES:
-
New Data Source:
google_scc_v2_organization_source_iam_policy
(#7888) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_egress_policy
(#7882) -
New Resource:
google_access_context_manager_service_perimeter_dry_run_ingress_policy
(#7882) -
New Resource:
google_scc_v2_folder_mute_config
(#7846) -
New Resource:
google_scc_v2_project_mute_config
(#7881) -
New Resource:
google_scc_v2_project_notification_config
(#7892) -
New Resource:
google_scc_v2_organization_source
(#7888) -
New Resource:
google_scc_v2_organization_source_iam_binding
(#7888) -
New Resource:
google_scc_v2_organization_source_iam_member
(#7888) -
New Resource:
google_scc_v2_organization_source_iam_policy
(#7888)
IMPROVEMENTS:
- clouddeploy: added
gke.proxy_url
field togoogle_clouddeploy_target
(#7899) - cloudrunv2: added field
binary_authorization.policy
to resourcegoogle_cloud_run_v2_job
and resourcegoogle_cloud_run_v2_service
to support named binary authorization policy. (#7883) - compute: added update-in-place support for the
google_compute_target_https_proxy.server_tls_policy
field (#7884) - compute: added update-in-place support for the
google_compute_region_target_https_proxy.server_tls_policy
field (#7891) - container: added
auto_provisioning_locations
field togoogle_container_cluster
(#7849) - dataform: added
kms_key_name
field togoogle_dataform_repository
resource (#7855) - discoveryengine: added
skip_default_schema_creation
field togoogle_discovery_engine_data_store
resource (#7900) - gkehub: added
configmanagement.management
andconfigmanagement.config_sync.enabled
fields togoogle_gkehub_feature_membership
(#7899) - gkehub: added
management
field togoogle_gke_hub_feature.fleet_default_member_config.configmanagement
(#7862) - resourcemanager: added
deletion_policy
field to thegoogle_project
resource. Settingdeletion_policy
toPREVENT
will protect the project against any destroy actions caused by a terraform apply or terraform destroy. Settingdeletion_policy
toABANDON
allows the resource to be abandoned rather than deleted and it behaves the same withskip_delete = true
. Default value isDELETE
.skip_delete = true
takes precedence overdeletion_policy = "DELETE"
. - storage: added
force_destroy
field togoogle_storage_managed_folder
resource (#7867) - storage: added
generation
field togoogle_storage_bucket_object
resource (#7866)
BUG FIXES:
- compute: fixed
google_compute_instance.alias_ip_range
update behavior to avoid temporarily deleting unchanged alias IP ranges (#7898) - compute: fixed the bug that creation of PSC forwarding rules fails in
google_compute_forwarding_rule
resource when provider default labels are set (#7873) - sql: fixed a perma-diff in
settings.insights_config
ingoogle_sql_database_instance
(#7861)
v5.40.0
IMPROVEMENTS:
- bigquery: added support for value
DELTA_LAKE
tosource_format
ingoogle_bigquery_table
resource (#7841) - compute: added
access_mode
field togoogle_compute_disk
resource (#7813) - compute: added
stack_type
, andgateway_ip_version
fields togoogle_compute_router
resource (#7801) - container: added field
ray_operator_config
forresource_container_cluster
(#7795) - monitoring: updated
goal
field to accept a max threshold of up to 0.9999 ingoogle_monitoring_slo
resource to 0.9999 (#7807) - networkconnectivity: added
export_psc
field togoogle_network_connectivity_hub
resource (#7816) - sql: added
enable_dataplex_integration
field togoogle_sql_database_instance
resource (#7810)
BUG FIXES:
- bigquery: fixed a permadiff when handling "assets" in
params
in thegoogle_bigquery_data_transfer_config
resource (#7833) - bigquery: fixed an issue preventing certain keys in
params
from being assigned values ingoogle_bigquery_data_transfer_config
(#7828) - compute: fixed perma-diff in
google_compute_router
(#7818) - container: fixed perma-diff on
node_config.guest_accelerator.gpu_driver_installation_config
field in GKE 1.30+ ingoogle_container_node_pool
resource (#7799) - sql: fixed a perma-diff in
settings.insights_config
ingoogle_sql_database_instance
(#7861)
v5.39.1
BUG FIXES:
- datastream: fixed a breaking change in 5.39.0
google_datastream_stream
that made one ofdestination_config.0.bigquery_destination_config.0.merge
ordestination_config.0.bigquery_destination_config.0.append_only
required (#7835)
v5.39.0
NOTES:
- networkconnectivity: migrated
google_network_connectivity_hub
from DCL to MMv1 (#7724) - networkconnectivity: migrated
google_network_connectivity_spoke
from DCL to MMv1 (#7762)
DEPRECATIONS:
- bigquery: deprecated
allow_resource_tags_on_deletion
ingoogle_bigquery_table
. (#7782) - bigqueryreservation: deprecated
multi_region_auxiliary
ongoogle_bigquery_reservation
. (#7778) - datastore: deprecated the resource
google_datastore_index
. Use thegoogle_firestore_index
resource instead. (#7764)
FEATURES:
-
New Resource:
google_apigee_environment_keyvaluemaps_entries
(#7717) -
New Resource:
google_apigee_environment_keyvaluemaps
(#7717) -
New Resource:
google_compute_resize_request
(#7725) -
New Resource:
google_compute_router_route_policy
(#7748) -
New Resource:
google_scc_v2_organization_mute_config
(#7744)
IMPROVEMENTS:
- alloydb: added
observability_config
field togoogle_alloydb_instance
resource (#7737) - bigquery: added
resource_tags
field togoogle_bigquery_table
resource (#7735) - bigtable: added
data_boost_isolation_read_only
anddata_boost_isolation_read_only.compute_billing_owner
fields togoogle_bigtable_app_profile
resource (#7789) - cloudfunctions: added
build_service_account
field togoogle_cloudfunctions_function
resource (#7713) - compute: added
aws_v4_authentication
field togoogle_compute_backend_service
resource (#7775) - compute: added
custom_learned_ip_ranges
andcustom_learned_route_priority
fields togoogle_compute_router_peer
resource (#7727) - compute: added
export_policies
andimport_policies
fields togoogle_compute_router_peer
resource (#7748) - compute: added
shared_secret
field togoogle_compute_public_advertised_prefix
resource (#7767) - compute: added
storage_pool
underboot_disk.initialize_params
togoogle_compute_instance
resource (#7787) - compute: changed
target_service
field on thegoogle_compute_service_attachment
resource to accept aForwardingRule
orGateway
URL. (#7736) - container: added field
ray_operator_config
forgoogle_container_cluster
(#7795) - datastream: added
merge
andappend_only
fields togoogle_datastream_stream
resource (#7726) - dlp: added
cloud_storage_target
field togoogle_data_loss_prevention_discovery_config
resource (#7734) - resourcemanager: added
check_if_service_has_usage_on_destroy
field togoogle_project_service
resource (#7745) - resourcemanager: added the
member
property togoogle_project_service_identity
(#7708) - vmwareengine: added
deletion_delay_hours
field togoogle_vmwareengine_private_cloud
resource (#7710) - vmwareengine: supported type change from
TIME_LIMITED
toSTANDARD
for multi-nodegoogle_vmwareengine_private_cloud
resource (#7710) - workbench: added
access_configs
togoogle_workbench_instance
resource (#7732)
BUG FIXES:
- compute: fixed perma-diff for
interconnect_type
beingDEDICATED
ingoogle_compute_interconnect
resource (#7750) - dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating
google_dialogflow_cx_security_settings
resources (#7772) - firestore: fixed missing import of
field
forgoogle_firestore_field
. (#7757) - firestore: fixed bug where fields
database
,collection
,document_id
, andfield
could not be updated ongoogle_firestore_document
andgoogle_firestore_field
resources. (#7791) - netapp: made the
smb_settings
field on thegoogle_netapp_volume
resource default to the value returned from the API. This solves permadiffs when the field is unset. (#7770) - networksecurity: added recreate functionality on update for
client_validation_mode
andclient_validation_trust_config
ingoogle_network_security_server_tls_policy
(#7756)
v5.38.0
FEATURES:
-
New Data Source:
google_gke_hub_membership_binding
(#7696) -
New Data Source:
google_site_verification_token
(#7704) -
New Resource:
google_scc_project_notification_config
(#7698)
IMPROVEMENTS:
- cloudkms: added
key_access_justifications_policy
field togoogle_kms_crypto_key
resource (#7693) - compute: made the
google_compute_resource_policy
resource updatable in-place (#7692) - vertexai: added
project_number
field togoogle_vertex_ai_feature_online_store_featureview
resource (#7680)
BUG FIXES:
- cloudfunctions2: fixed permadiffs on
service_config.environment_variables
field ingoogle_cloudfunctions2_function
resource (#7684) - networksecurity: fixed permadiffs on
purpose
field ingoogle_network_security_address_group
resource (#7687)
v5.37.0
FEATURES:
-
New Data Source:
google_kms_crypto_keys
(#7656) -
New Data Source:
google_kms_key_rings
(#7662) -
New Resource:
google_scc_v2_organization_notification_config
(#7649) -
New Resource:
google_secure_source_manager_repository
(#7634) -
New Resource:
google_storage_managed_folder_iam
(#7620) -
New Resource:
google_storage_managed_folder
(#7620)
IMPROVEMENTS:
- certificatemanager: added
allowlisted_certificates
field togoogle_certificate_manager_trust_config
resource (#7643) - compute: added
source_regions
field togoogle_compute_healthcheck
resource (#7647) - dataplex: added
sql_assertion
field togoogle_dataplex_datascan
resource (#7623) - gkehub: added
fleet_default_member_config.configmanagement.config_sync.enabled
field togoogle_gke_hub_feature
resource (#7639) - netapp: added
zone
andreplica_zone
field togoogle_netapp_storage_pool
resource (#7660) - networksecurity: added
purpose
field togoogle_network_security_address_group
resource (#7677) - vertexai: added
project_number
field togoogle_vertex_ai_feature_online_store_featureview
resource (#7680) - workstations: added
host.gce_instance.vm_tags
field togoogle_workstations_workstation_config
resource (#7644)
BUG FIXES:
- compute: fixed a bug preventing the creation of
google_compute_autoscaler
andgoogle_compute_region_autoscaler
resources if bothautoscaling_policy.max_replicas
andautoscaling_policy.min_replicas
were configured as zero. (#7658) - resourcemanager: mitigated eventual consistency issues by adding a 10s wait after
google_service_account_key
resource creation (#7629) - vertexai: fixed issue where updating "metadata" field could fail in
google_vertex_ai_index
resource (#7675)
v5.36.0
FEATURES:
-
New Resource:
google_storage_managed_folder_iam
(#7620) -
New Resource:
google_storage_managed_folder
(#7620)
IMPROVEMENTS:
- bigtable: added
ignore_warnings
field togoogle_bigtable_gc_policy
resource (#7571) - cloudfunctions2: added
build_config.automatic_update_policy
andbuild_config.on_deploy_update_policy
togoogle_cloudfunctions2_function
resource (#7608) - compute: added
tls_early_data
field togoogle_compute_target_https_proxy
resource (#7588) - compute: added
custom_error_response_policy
anddefault_custom_error_response_policy
fields togoogle_compute_url_map
resource (#7587) - datafusion: added
connection_type
andprivate_service_connect_config
fields togoogle_data_fusion_instance
resource (#7598) - firebasehosting: added support for
google_firebase_hosting_site
resource to be used for an existing site without using import (#7594) - healthcare: added
encryption_spec
field togoogle_healthcare_dataset
resource (#7601) - monitoring: added
links
field togoogle_monitoring_alert_policy
resource (#7616) - vertexai: added update support for
big_query.entity_id_columns
field ongoogle_vertex_ai_feature_group
resource (#7572)
BUG FIXES:
- accesscontextmanager: fixed perma-diff caused by ordering of
service_perimeters
ingoogle_access_context_manager_service_perimeters
resource (#7595) - compute: fixed a crash in
google_compute_reservation
resource whenshare_settings
field has changes (#7577) - compute: fixed issue in
google_compute_instance
resource whereservice_account
is not set when specifyingservice_account.email
and noservice_account.scopes
(#7596) - gkehub2: fixed
google_gke_hub_feature
resource to allowfleet_default_member_config
field to be unset (#7568) - identityplatform: fixed perma-diff on
google_identity_platform_config
resource whensms_region_config
is not set (#7607) - logging: fixed perma-diff on
index_configs
ingoogle_logging_organization_bucket_config
resource (#7579)
v5.35.0
FEATURES:
-
New Data Source:
google_artifact_registry_docker_image
(#7544) -
New Data Source:
google_composer_user_workloads_config_map
(#7519) -
New Resource:
google_service_networking_vpc_service_controls
(#7545)
IMPROVEMENTS:
- bigquery: added
resource_tags
field togoogle_bigquery_dataset
resource (#7549) - billingbudget: added
enable_project_level_recipients
field togoogle_billing_budget
resource (#7539) - cloudrunv2: added fields
start_execution_token
andrun_execution_token
to resourcegoogle_cloud_run_v2_job
(#7525) - compute: added
action_token_site_keys
andsession_token_site_keys
fields togoogle_compute_security_policy
andgoogle_compute_security_policy_rule
resources (#7520) - dataprocmetastore: added
autoscaling_config
field togoogle_dataproc_metastore_service
resource (#7528) - gkehub2: added
ENTERPRISE
option tosecurity_posture_config
field ongoogle_gke_hub_fleet
resource (#7541) - pubsub: added
bigquery_config.service_account_email
field togoogle_pubsub_subscription
resource (#7543) - redis: added
maintenance_version
field togoogle_redis_instance
(#7527) - storage: changed update behavior in
google_storage_bucket_object
to no longer delete to avoid object deletion on content update (#7564) - sql: added support for more MySQL values in
type
field ofgoogle_sql_user
resource (#7548) - sql: increased timeouts on
google_sql_database_instance
to 90m to account for longer-running actions such as creation through cloning (#7553) - workbench: added update support to
gce_setup.boot_disk
andgce_setup.data_disks
fields ingoogle_workbench_instance
resource (#7566)
BUG FIXES:
- compute: updated
google_compute_instance
to force reboot ifmin_node_cpus
is updated (#7524) - compute: fixed
description
field ingoogle_compute_firewall
to support empty/null values on update (#7563) - compute: fixed perma-diff on
google_compute_disk
for Ubuntu amd64 canonical LTS images (#7522) - storage: fixed lowercased
custom_placement_config
values ingoogle_storage_bucket
causing perma-destroy (#7551) - workbench: fixed issue where instance was not starting after an update in
google_workbench_instance
resource (#7557) - workbench: fixed perma-diff caused by empty
accelerator_configs
ingoogle_workbench_instance
resource (#7557)
v5.34.0
NOTES:
- compute: Updated field description of
connection_draining_timeout_sec
,balancing_mode
andoutlier_detection
ingoogle_compute_region_backend_service
andgoogle_compute_backend_service
to inform that default values will be changed in 6.0.0 (#7513)
DEPRECATIONS:
- vertexai: deprecated beta field
embedding_management
forgoogle_vertex_ai_feature_online_store
resource (#7473)
FEATURES:
-
New Data Source:
google_composer_user_workloads_config_map
(beta) (#7519) -
New Data Source:
google_composer_user_workloads_secret
(beta) (#7474) -
New Resource:
google_composer_user_workloads_config_map
(beta) (#7497) -
New Resource:
google_managed_kafka_cluster
(beta) (#7477) -
New Resource:
google_managed_kafka_topic
(beta) (#7503) -
New Resource:
google_netapp_backup
(#7479) -
New Resource:
google_network_services_service_lb_policies
(#7463) -
New Resource:
google_scc_management_folder_security_health_analytics_custom_module
(#7483) -
New Resource:
google_scc_management_organization_project_security_health_analytics_custom_module
(#7489) -
New Resource:
google_scc_management_organization_security_health_analytics_custom_module
(#7493)
IMPROVEMENTS:
- alloydb: changed the resource
google_alloydb_instance
to be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#7469) - bigtable: added
automated_backup_configuration
field togoogle_bigtable_table
resource (#7468) - cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the
bitbucket_data_center_config
andbitbucket_cloud_config
fields ingoogle_cloudbuildv2_connection
(#7494) - compute: added support for Port Mapping NEG and endpoint. New NEG type is a regional type of
GCE_VM_IP_PORTMAP
that requires endpoints withinstance
,port
andclient_destination_port
(beta) (#7471) - compute: added update support to
ssl_policy
field ingoogle_compute_region_target_https_proxy
resource (#7484) - compute: removed enum validation on
guest_os_features.type
ingoogle_compute_disk
to allow for new features to be used without provider update (#7465) - compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#7481)
- container: added support for
security_posture_config.mode
value "ENTERPRISE" inresource_container_cluster
(#7467) - discoveryengine: added
document_processing_config
field togoogle_discovery_engine_data_store
resource (#7475) - edgecontainer: added
maintenance_exclusions
field togoogle_edgecontainer_cluster
resource (#7490) - gkehub: added
prevent_drift
field to ConfigManagementfleet_default_member_config
(#7464) - netapp: added
administrators
field togoogle_netapp_active_directory
resource (#7466) - vertexai: promoted
optimized
field to GA forgoogle_vertex_ai_feature_online_store
resource (#7473) - workbench: updated the metadata keys managed by the backend. (#7488)
BUG FIXES:
- compute: fixed an issue where
google_compute_instance_group_manager
with a pending operation was incorrectly removed due to the operation no longer being present in the backend (#7498) - compute: fixed issue where users could not create
google_compute_security_policy
resources withlayer_7_ddos_defense_config
explicitly disabled (#7470) - workbench: fixed a bug in the
google_workbench_instance
resource where specifying a network in some scenarios would cause instance creation to fail (#7518)
v5.33.0
DEPRECATIONS:
- healthcare: deprecated
notification_config
deprecatednotification_config
ingoogle_healthcare_fhir_store
resource. Usenotification_configs
instead. (#7450)
FEATURES:
-
New Data Source:
google_compute_security_policy
(#7453) -
New Resource:
google_compute_project_cloud_armor_tier
(#7456) -
New Resource:
google_network_services_service_lb_policies
(#7463) -
New Resource:
google_scc_management_organization_event_threat_detection_custom_module
(#7454) -
New Resource:
google_spanner_instance_config
(#7459)
IMPROVEMENTS:
- appengine: added
flexible_runtime_settings
field togoogle_app_engine_flexible_app_version
resource (#7462) - bigtable: added
force_destroy
field togoogle_bigtable_instance
resource. This will force delete any backups present in the instance and allow the instance to be deleted. (#7441) - clouddeploy: added
execution_configs.verbose
field togoogle_clouddeploy_target
resource (#7442) - compute: added
partner_metadata
field togoogle_compute_instance_template
resource (#7449) - compute: added
partner_metadata
field togoogle_compute_instance
resource (#7449) - compute: added
partner_metadata
field togoogle_compute_regional_instance_template
resource (#7449) - compute: added
standby_policy
,target_suspended_size
andtarget_stopped_size
fields togoogle_compute_instance_group_manager
andgoogle_compute_region_instance_group_manager
resources (#7436) - compute: added
storage_pool
field togoogle_compute_disk
resource (#7434) - container: added
secret_manager_config
field togoogle_container_cluster
resource (#7448) - dlp: added
secrets_discovery_target
,cloud_sql_target.filter.database_resource_reference
, andbig_query_target.filter.table_reference
fields togoogle_data_loss_prevention_discovery_config
resource (#7461) - gkebackup: added
backup_schedule.backup_config.permissive_mode
field togoogle_gke_backup_backup_plan
resource (#7430) - gkebackup: added
restore_config.restore_order
field togoogle_gke_backup_restore_plan
resource (#7430) - gkebackup: added
restore_config.volume_data_restore_policy_bindings
field togoogle_gke_backup_restore_plan
resource (#7430) - gkebackup: added new enum values
MERGE_SKIP_ON_CONFLICT
,MERGE_REPLACE_VOLUME_ON_CONFLICT
andMERGE_REPLACE_ON_CONFLICT
to fieldrestore_config.namespaced_resource_restore_mode
ingoogle_gke_backup_restore_plan
resource (#7430) - healthcare: added
notification_config.send_for_bulk_import
field togoogle_healthcare_dicom_store
(#7457) - integrationconnectors: added
endpoint_global_access
field togoogle_integration_connectors_endpoint_attachment
resource (#7443) - netapp: added
backup_config
field togoogle_netapp_volume
resource (#7439) - redis: added
zone_distribution_config
field togoogle_redis_cluster
resource (#7451) - resourcemanager: added support for
range_type = "default-domains-netblocks"
ingoogle_netblock_ip_ranges
data source (#7440) - secretmanager: added support for IAM conditions in
google_secret_manager_secret_iam_*
resources (#7444) - workstations: added
boot_disk_size_gb
,enable_nested_virtualization
, andpool_size
tohost.gce_instance.boost_configs
ingoogle_workstations_workstation_config
resource (#7452)
BUG FIXES:
- container: fixed
google_container_node_pool
crash ifnode_config.secondary_boot_disks.mode
is not set (#7460) - dlp: removed
required
oninspect_config.limits.max_findings_per_info_type.info_type
field to allow the use of default limit by not setting this field ingoogle_data_loss_prevention_inspect_template
resource (#7438) - provider: fixed application default credential and access token authorization when
universe_domain
is set (#7433)
v5.32.0
NOTES:
- privateca: converted
google_privateca_certificate_template
to now use the MMv1 engine instead of DCL (#7409)
FEATURES:
-
New Resource:
google_dataplex_entry_type
(#7412) -
New Resource:
google_logging_log_view_iam_binding
(#7420) -
New Resource:
google_logging_log_view_iam_member
(#7420) -
New Resource:
google_logging_log_view_iam_policy
(#7420)
IMPROVEMENTS:
- alloydb: added
psc_config
field togoogle_alloydb_cluster
resource (#7429) - alloydb: added
psc_instance_config
field togoogle_alloydb_instance
resource (#7429) - cloudrunv2: added
default_uri_disabled
field togoogle_cloud_run_v2_service
resourceto (#7422) - compute: added
NONE
to acceptable options forupdate_policy.minimal_action
field ingoogle_compute_instance_group_manager
resource (#7417) - sql: updated support for a new value
week5
in fieldsetting.maintenance_window.update_track
ingoogle_sql_database_instance
resource (#7408)
BUG FIXES:
- cloudrunv2: added validation for
timeout
field togoogle_cloud_run_v2_job
,google_cloud_run_v2_service
resources (#7426) - compute: fixed permadiff in ordering of
advertised_ip_ranges.range
field ongoogle_compute_router
resource (#7411) - iam: added a 10 second sleep when creating
google_service_account
resource (#7427) - storage: fixed
google_storage_bucket.lifecycle_rule.condition
block fieldsdays_since_noncurrent_time
anddays_since_custom_time
andnum_newer_versions
were not working for 0 value. (#7414)
v5.31.1
BUG FIXES:
- iam: added a 10 second sleep when creating a
google_service_account
to reduce eventual consistency errors. See https://github.com/hashicorp/terraform-provider-google/issues/18024 for more details (#7427)
v5.31.0
FEATURES:
-
New Data Source:
google_compute_subnetworks
(#7371) -
New Resource:
google_dataplex_aspect_type
(#7397) -
New Resource:
google_dataplex_entry_group
(#7389) -
New Resource:
google_kms_autokey_config
(#7385) -
New Resource:
google_kms_key_handle
(#7385) -
New Resource:
google_network_services_lb_route_extension
(#7394)
IMPROVEMENTS:
- appengine: added field
instance_ip_mode
to resourcegoogle_app_engine_flexible_app_version
resource (beta) (#7377) - bigquery: added
external_data_configuration.bigtable_options
togoogle_bigquery_table
(#7387) - cloudrun: added support for
nfs
togoogle_cloudrun_service
(beta). (#7381) - composer: added support for importing
google_composer_user_workloads_secret
via the "{{environment}}/{{name}}" format. (#7390) - composer: improved timeouts for
google_composer_user_workloads_secret
. (#7390) - compute: added
TLS_JA3_FINGERPRINT
andUSER_IP
options in fieldrate_limit_options.enforce_on_key
togoogle_compute_security_policy
resource (#7376) - compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#7376)
- compute: changed
google_compute_region_ssl_policy
'sregion
field to optional and allow to be inferred from environment (#7384) - compute: added
on_instance_stop_action
field togoogle_compute_instance
,google_compute_instance_template
, andgoogle_compute_instance_from_machine_image
resources (beta) (#7392) - compute: added
subnet_length
field togoogle_compute_interconnect_attachment
resource (#7388) - container: added
containerd_config
field and subfields togoogle_container_cluster
andgoogle_container_node_pool
resources, to allow those resources to access private image registries. (#7372) - container: allowed both
enable_autopilot
andworkload_identity_config
to be set ingoogle_container_cluster
resource. (#7375) - datastream: added
create_without_validation
field togoogle_datastream_connection_profile
,google_datastream_private_connection
andgoogle_datastream_stream
resources (#7382) - network-security: added
trust_config
,min_tls_version
,tls_feature_profile
andcustom_tls_features
fields togoogle_network_security_tls_inspection_policy
resource (#7368) - networkservices: made field
load_balancing_scheme
immutable in resourcegoogle_network_services_lb_traffic_extension
, as in-place updating is always failing (#7394) - networkservices: made required fields
extension_chains.extensions.authority
andextension_chains.extensions.timeout
optional in resourcegoogle_network_services_lb_traffic_extension
(#7394) - networkservices: removed unsupported load balancing scheme
LOAD_BALANCING_SCHEME_UNSPECIFIED
from the fieldload_balancing_scheme
in resourcegoogle_network_services_lb_traffic_extension
(#7394) - pubsub: added
cloud_storage_config.filename_datetime_format
field togoogle_pubsub_subscription
resource (#7386) - tpu: added
type
ofaccelerator_config
togoogle_tpu_v2_vm
resource (#7369)
BUG FIXES:
- monitoring: fixed a permadiff with
monitored_resource.labels
property in thegoogle_monitoring_uptime_check_config
resource (#7380) - storage: fixed a bug where field
autoclass
block is generating permadiff whenever the block is removed from the config ingoogle_storage_bucket
resource (#7395) - storagetransfer: fixed a permadiff with
transfer_spec.0.aws_s3_data_source.0.aws_access_key
resource_storage_transfer_job
(#7391)
v5.30.0
FEATURES:
-
New Data Source:
google_cloud_asset_resources_search_all
(#7361) -
New Resource:
google_compute_interconnect
(#7338) -
New Resource:
google_network_services_lb_traffic_extension
(#7367)
IMPROVEMENTS:
- compute: added
kms_key_name
field to thegoogle_bigquery_connection
resource (#7335) - compute: added
match.expr.expression
field togoogle_compute_region_security_policy_rule
resource (#7330) - compute: added
auto_network_tier
field togoogle_compute_router_nat
resource (#7333) - container: added
KUBELET
andCADVISOR
options tomonitoring_config.enable_components
ingoogle_container_cluster
resource (#7351) - dataproc: added
local_ssd_interface
togoogle_dataproc_cluster
resource (#7366) - datastream: added
sql_server_profile
togoogle_datastream_connection_profile
resource (#7339) - dlp: added
cloud_sql_target
field togoogle_data_loss_prevention_discovery_config
resource (#7337) - netapp: added
FLEX
value to fieldservice_level
ingoogle_netapp_storage_pool
resource (#7350) - networksecurity: added
trust_config
,min_tls_version
,tls_feature_profile
andcustom_tls_features
fields togoogle_network_security_tls_inspection_policy
resource (#7368) - networkservices: supported in-place update for
gateway_security_policy
andcertificate_urls
fields ingoogle_network_services_gateway
resource (#7348)
BUG FIXES:
- compute: fixed a perma-diff on
machine_type
field ingoogle_compute_instance
resource (#7345) - compute: fixed a perma-diff on
type
field ingoogle_compute_disk
resource (#7345) - storage: fixed update issue for
lifecycle_rule.condition.custom_time_before
andlifecycle_rule.condition.noncurrent_time_before
ingoogle_storage_bucket
resource (#7360)
v5.29.1
BREAKING CHANGES:
- compute: removed
secondary_ip_range.reserved_internal_range
field fromgoogle_compute_subnetwork
(7363)
v5.29.0
NOTES:
- compute: added documentation for md5_authentication_key field in google_compute_router_peer resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#7306)
FEATURES:
-
New Resource:
google_bigtable_authorized_view
(#7310) -
New Resource:
google_integration_connectors_managed_zone
(#7320) -
New Resource:
google_network_connectivity_regional_endpoint
(#7313)
IMPROVEMENTS:
- clouddeploy: added
custom_target
field togoogle_clouddeploy_target
resource (#7309) - clouddeploy: added
google_cloud_build_repo
tocustom_target_type
resource (#7325) - compute: added
preconfigured_waf_config
field togoogle_compute_region_security_policy_rule
resource; (#7324) - compute: added
rate_limit_options
field to 'google_compute_region_security_policy_rule' resource; (#7324) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_firewall_policy_rule
(#7309) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_network_firewall_policy_rule
(#7309) - compute: added fields
reserved_internal_range
andsecondary_ip_ranges.reserved_internal_range
togoogle_compute_subnetwork
resource (#7318) - container: added
dns_config.additive_vpc_scope_dns_domain
field togoogle_container_cluster
resource (#7321) - container: added
enable_nested_virtualization
field togoogle_container_node_pool
andgoogle_container_cluster
resource. (#7314) - iam: added
extra_attributes_oauth2_client
field togoogle_iam_workforce_pool_provider
resource (#7319) - privateca: added
maximum_lifetime
field togoogle_privateca_certificate_template
resource (#7309)
BUG FIXES:
- bigquery: added
allow_resource_tags_on_deletion
togoogle_bigquery_table
to allow deletion of table when it still has associated resource tags (#7327)
hashicorp/terraform-provider-random (random)
v3.6.2
NOTES:
- resource/random_pet: Results have been updated to the latest upstream petname data (#581)
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)
v4.5.0
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.