FAQ | This is a LIVE service | Changelog

Skip to content

chore(deps): update all non-major dependencies

Ghost User requested to merge renovate/all-minor-patch into main

This MR contains the following updates:

Package Type Update Change
google (source) required_provider minor 5.28.0 -> 5.42.0
google-beta (source) required_provider minor 5.28.0 -> 5.42.0
random (source) required_provider patch 3.6.1 -> 3.6.2
uis/devops/continuous-delivery/ci-templates repository minor v4.4.0 -> v4.5.0

Release Notes

hashicorp/terraform-provider-google (google)

v5.42.0

Compare Source

DEPRECATIONS:

  • compute: setting google_compute_subnetwork.secondary_ip_range = [] to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Use send_secondary_ip_range_if_empty while removing secondary_ip_range from config instead. (#​19122)

FEATURES:

  • New Data Source: google_artifact_registry_locations (#​19047)
  • New Data Source: google_cloud_identity_transitive_group_memberships (#​19038)
  • New Resource: google_discovery_engine_schema (#​19124)
  • New Resource: google_scc_folder_notification_config (#​19057)
  • New Resource: google_scc_v2_folder_notification_config (#​19055)
  • New Resource: google_vertex_ai_index_endpoint_deployed_index (#​19061)

IMPROVEMENTS:

  • clouddeploy: added serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_label and serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_label fields to google_clouddeploy_delivery_pipeline resource (#​19100)
  • compute: added send_secondary_ip_range_if_empty to google_compute_subnetwork (#​19122)
  • discoveryengine: added skip_default_schema_creation field to google_data_store resource (#​19017)
  • dns: changed load_balancer_type field from required to optional in google_dns_record_set (#​19050)
  • firestore: added cmek_config field to google_firestore_database resource (#​19107)
  • servicenetworking: added update_on_creation_fail field to google_service_networking_connection resource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#​19035)
  • sql: added server_ca_mode field to google_sql_database_instance resource (#​18998)

BUG FIXES:

  • bigquery: made google_bigquery_dataset_iam_member non-authoritative. To remove a bigquery dataset iam member, use an authoritative resource like google_bigquery_dataset_iam_policy (#​19121)
  • cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the service_config.environment_variables field in google_cloudfunctions2_function resource (#​19024)
  • cloudfunctions2: fixed a permadiff on storage_source.generation in google_cloudfunctions2_function resource (#​19031)
  • compute: fixed issue where sub-resources managed by google_compute_forwarding_rule prevented resource deletion (#​19117)
  • logging: changed google_logging_project_bucket_config.enable_analytics behavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#​19126)
  • workbench: fixed a bug with google_workbench_instance metadata drifting when using custom containers. (#​19119)

v5.41.0

Compare Source

DEPRECATIONS:

  • resourcemanager: deprecated skip_delete field in the google_project resource. Use deletion_policy instead. (#​18867)

FEATURES:

  • New Data Source: google_logging_log_view_iam_policy (#​18990)
  • New Data Source: google_scc_v2_organization_source_iam_policy (#​19004)
  • New Resource: google_access_context_manager_service_perimeter_dry_run_egress_policy (#​18994)
  • New Resource: google_access_context_manager_service_perimeter_dry_run_ingress_policy (#​18994)
  • New Resource: google_scc_v2_folder_mute_config (#​18924)
  • New Resource: google_scc_v2_project_mute_config (#​18993)
  • New Resource: google_scc_v2_project_notification_config (#​19008)
  • New Resource: google_scc_v2_organization_source (#​19004)
  • New Resource: google_scc_v2_organization_source_iam_binding (#​19004)
  • New Resource: google_scc_v2_organization_source_iam_member (#​19004)
  • New Resource: google_scc_v2_organization_source_iam_policy (#​19004)
  • New Resource: google_logging_log_view_iam_binding (#​18990)
  • New Resource: google_logging_log_view_iam_member (#​18990)
  • New Resource: google_logging_log_view_iam_policy (#​18990)

IMPROVEMENTS:

  • clouddeploy: added gke.proxy_url field to google_clouddeploy_target (#​19016)
  • cloudrunv2: added field binary_authorization.policy to resource google_cloud_run_v2_job and resource google_cloud_run_v2_service to support named binary authorization policy. (#​18995)
  • compute: added source_regions field to google_compute_healthcheck resource (#​19006)
  • compute: added update-in-place support for the google_compute_target_https_proxy.server_tls_policy field (#​18996)
  • compute: added update-in-place support for the google_compute_region_target_https_proxy.server_tls_policy field (#​19007)
  • container: added auto_provisioning_locations field to google_container_cluster (#​18928)
  • dataform: added kms_key_name field to google_dataform_repository resource (#​18947)
  • discoveryengine: added skip_default_schema_creation field to google_discovery_engine_data_store resource (#​19017)
  • gkehub: added configmanagement.management and configmanagement.config_sync.enabled fields to google_gkehub_feature_membership (#​19016)
  • gkehub: added management field to google_gke_hub_feature.fleet_default_member_config.configmanagement (#​18963)
  • resourcemanager: added deletion_policy field to the google_project resource. Setting deletion_policy to PREVENT will protect the project against any destroy actions caused by a terraform apply or terraform destroy. Setting deletion_policy to ABANDON allows the resource to be abandoned rather than deleted and it behaves the same with skip_delete = true. Default value is DELETE. skip_delete = true takes precedence over deletion_policy = "DELETE".
  • storage: added force_destroy field to google_storage_managed_folder resource (#​18973)
  • storage: added generation field to google_storage_bucket_object resource (#​18971)

BUG FIXES:

  • compute: fixed google_compute_instance.alias_ip_range update behavior to avoid temporarily deleting unchanged alias IP ranges (#​19015)
  • compute: fixed the bug that creation of PSC forwarding rules fails in google_compute_forwarding_rule resource when provider default labels are set (#​18984)
  • sql: fixed a perma-diff in settings.insights_config in google_sql_database_instance (#​18962)

v5.40.0

Compare Source

IMPROVEMENTS:

  • bigquery: added support for value DELTA_LAKE to source_format in google_bigquery_table resource (#​18915)
  • compute: added access_mode field to google_compute_disk resource (#​18857)
  • compute: added stack_type, and gateway_ip_version fields to google_compute_router resource (#​18839)
  • container: added field ray_operator_config for resource_container_cluster (#​18825)
  • container: promoted additional_node_network_configs and additional_pod_network_configs fields to GA in the google_container_node_pool resource (#​18842)
  • container: promoted enable_multi_networking to GA in the google_container_cluster resource (#​18842)
  • monitoring: updated goal field to accept a max threshold of up to 0.9999 in google_monitoring_slo resource to 0.9999 (#​18845)
  • networkconnectivity: added export_psc field to google_network_connectivity_hub resource (#​18866)
  • sql: added enable_dataplex_integration field to google_sql_database_instance resource (#​18852)

BUG FIXES:

  • bigquery: fixed a permadiff when handling "assets" in params in the google_bigquery_data_transfer_config resource (#​18898)
  • bigquery: fixed an issue preventing certain keys in params from being assigned values in google_bigquery_data_transfer_config (#​18888)
  • compute: fixed perma-diff of advertised_ip_ranges field in google_compute_router resource (#​18869)
  • container: fixed perma-diff on node_config.guest_accelerator.gpu_driver_installation_config field in GKE 1.30+ in google_container_node_pool resource (#​18835)
  • sql: fixed a perma-diff in settings.insights_config in google_sql_database_instance (#​18962)

v5.39.1

Compare Source

BUG FIXES:

  • datastream: fixed a breaking change in 5.39.0 google_datastream_stream that made one of destination_config.bigquery_destination_config.merge or destination_config.bigquery_destination_config.append_only required (#​18903)

v5.39.0

Compare Source

NOTES:

  • networkconnectivity: migrated google_network_connectivity_hub from DCL to MMv1 (#​18724)
  • networkconnectivity: migrated google_network_connectivity_spoke from DCL to MMv1 (#​18779)

DEPRECATIONS:

  • bigquery: deprecated allow_resource_tags_on_deletion in google_bigquery_table. (#​18811)
  • bigqueryreservation: deprecated multi_region_auxiliary on google_bigquery_reservation. (#​18803)
  • datastore: deprecated the resource google_datastore_index. Use the google_firestore_index resource instead. (#​18781)

FEATURES:

  • New Resource: google_apigee_environment_keyvaluemaps_entries (#​18707)
  • New Resource: google_apigee_environment_keyvaluemaps (#​18707)
  • New Resource: google_compute_resize_request (#​18725)
  • New Resource: google_compute_router_route_policy (#​18759)
  • New Resource: google_scc_v2_organization_mute_config (#​18752)

IMPROVEMENTS:

  • alloydb: added observability_config field to google_alloydb_instance resource (#​18743)
  • bigquery: added resource_tags field to google_bigquery_dataset resource (ga) (#​18711)
  • bigquery: added resource_tags field to google_bigquery_table resource (#​18741)
  • bigtable: added data_boost_isolation_read_only and data_boost_isolation_read_only.compute_billing_owner fields to google_bigtable_app_profile resource (#​18819)
  • cloudfunctions: added build_service_account field to google_cloudfunctions_function resource (#​18702)
  • compute: added aws_v4_authentication fields to google_compute_backend_service resource (#​18796)
  • compute: added custom_learned_ip_ranges and custom_learned_route_priority fields to google_compute_router_peer resource (#​18727)
  • compute: added export_policies and import_policies fields to google_compute_router_peer resource (#​18759)
  • compute: added shared_secret field to google_compute_public_advertised_prefix resource (#​18786)
  • compute: added storage_pool under boot_disk.initialize_params to google_compute_instance resource (#​18817)
  • compute: changed target_service field on the google_compute_service_attachment resource to accept a ForwardingRule or Gateway URL. (#​18742)
  • container: added field ray_operator_config for google_container_cluster (#​18825)
  • datastream: added merge and append_only fields to google_datastream_stream resource (#​18726)
  • datastream: promoted source_config.sql_server_source_config and backfill_all.sql_server_excluded_objects fields in google_datastream_stream resource from beta to GA (#​18732)
  • datastream: promoted sql_server_profile field in google_datastream_connection_profile resource from beta to GA (#​18732)
  • dlp: added cloud_storage_target field to google_data_loss_prevention_discovery_config resource (#​18740)
  • resourcemanager: added check_if_service_has_usage_on_destroy field to google_project_service resource (#​18753)
  • resourcemanager: added the member property to google_project_service_identity (#​18695)
  • vmwareengine: added deletion_delay_hours field to google_vmwareengine_private_cloud resource (#​18698)
  • vmwareengine: supported type change from TIME_LIMITED to STANDARD for multi-node google_vmwareengine_private_cloud resource (#​18698)
  • workbench: added access_configs to google_workbench_instance resource (#​18737)

BUG FIXES:

  • compute: fixed perma-diff for interconnect_type being DEDICATED in google_compute_interconnect resource (#​18761)
  • dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating google_dialogflow_cx_security_settings resources (#​18792)
  • firestore: fixed missing import of field for google_firestore_field. (#​18771)
  • firestore: fixed bug where fields database, collection, document_id, and field could not be updated on google_firestore_document and google_firestore_field resources. (#​18821)
  • netapp: made the smb_settings field on the google_netapp_volume resource default to the value returned from the API. This solves permadiffs when the field is unset. (#​18790)
  • networksecurity: added recreate functionality on update for client_validation_mode and client_validation_trust_config in google_network_security_server_tls_policy (#​18769)

v5.38.0

Compare Source

FEATURES:

  • New Data Source: google_gke_hub_membership_binding (#​18680)
  • New Data Source: google_site_verification_token (#​18688)
  • New Resource: google_scc_project_notification_config (#​18682)

IMPROVEMENTS:

  • compute: promoted labels field on google_compute_global_address resource from beta to GA (#​18646)
  • compute: made the google_compute_resource_policy resource updatable in-place (#​18673)
  • privilegedaccessmanager: promoted google_privileged_access_manager_entitlement resource from beta to GA (#​18686)
  • vertexai: added project_number field to google_vertex_ai_feature_online_store_featureview resource (#​18637)

BUG FIXES:

  • cloudfunctions2: fixed permadiffs on service_config.environment_variables field in google_cloudfunctions2_function resource (#​18651)

v5.37.0

Compare Source

FEATURES:

  • New Data Source: google_kms_crypto_keys (#​18605)
  • New Data Source: google_kms_key_rings (#​18611)
  • New Resource: google_scc_v2_organization_notification_config (#​18594)
  • New Resource: google_secure_source_manager_repository (#​18576)
  • New Resource: google_storage_managed_folder_iam (#​18555)
  • New Resource: google_storage_managed_folder (#​18555)

IMPROVEMENTS:

  • certificatemanager: added allowlisted_certificates field to google_certificate_manager_trust_config resource (#​18587)
  • compute: added max_run_duration and on_instance_stop_action fields to google_compute_instance, google_compute_instance_template, and google_compute_instance_from_machine_image resources (#​18623)
  • dataplex: added sql_assertion field to google_dataplex_datascan resource (#​18559)
  • gkehub: added fleet_default_member_config.configmanagement.config_sync.enabled field to google_gke_hub_feature resource (#​18582)
  • netapp: added zone and replica_zone field to google_netapp_storage_pool resource (#​18609)
  • vertexai: added project_number field to google_vertex_ai_feature_online_store_featureview resource (#​18637)
  • workstations: added host.gce_instance.vm_tags field to google_workstations_workstation_config resource (#​18588)

BUG FIXES:

  • compute: fixed a bug preventing the creation of google_compute_autoscaler and google_compute_region_autoscaler resources if both autoscaling_policy.max_replicas and autoscaling_policy.min_replicas were configured as zero. (#​18607)
  • resourcemanager: mitigated eventual consistency issues by adding a 10s wait after google_service_account_key resource creation (#​18566)
  • vertexai: fixed issue where updating "metadata" field could fail in google_vertex_ai_index resource (#​18632)

v5.36.0

Compare Source

FEATURES:

  • New Resource: google_storage_managed_folder_iam (#​18555)
  • New Resource: google_storage_managed_folder (#​18555)

IMPROVEMENTS:

  • bigtable: added ignore_warnings field to google_bigtable_gc_policy resource (#​18492)
  • cloudfunctions2: added build_config.automatic_update_policy and build_config.on_deploy_update_policy fields to google_cloudfunctions2_function resource (#​18540)
  • compute: added confidential_instance_config.confidential_instance_type field to google_compute_instance, google_compute_instance_template, and google_compute_region_instance_template resources (#​18554)
  • compute: added custom_error_response_policy and default_custom_error_response_policy fields to google_compute_url_map resource (#​18511)
  • compute: added tls_early_data field to google_compute_target_https_proxy resource (#​18512)
  • compute: promoted google_compute_network_attachment resource from beta to GA (#​18494)
  • datafusion: added connection_type and private_service_connect_config fields to google_data_fusion_instance resource (#​18525)
  • healthcare: added encryption_spec field to google_healthcare_dataset resource (#​18528)
  • monitoring: added links field to google_monitoring_alert_policy resource (#​18549)
  • vertexai: added update support for big_query.entity_id_columns field on google_vertex_ai_feature_group resource (#​18493)
  • vertexai: promoted dedicated_serving_endpoint field on google_vertex_ai_feature_online_store resource from beta to GA (#​18513)

BUG FIXES:

  • accesscontextmanager: fixed perma-diff caused by ordering of service_perimeters in google_access_context_manager_service_perimeters resource (#​18520)
  • compute: fixed a crash in google_compute_reservation resource when share_settings field has changes (#​18498)
  • compute: fixed issue in google_compute_instance resource where service_account is not set when specifying service_account.email and no service_account.scopes (#​18521)
  • gkehub2: fixed google_gke_hub_feature resource to allow fleet_default_member_config field to be unset (#​18487)
  • identityplatform: fixed perma-diff on google_identity_platform_config resource when sms_region_config is not set (#​18537)
  • logging: fixed perma-diff on index_configs in google_logging_organization_bucket_config resource (#​18501)

v5.35.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_docker_image (#​18446)
  • New Resource: google_service_networking_vpc_service_controls (#​18448)

IMPROVEMENTS:

  • billingbudget: added enable_project_level_recipients field to google_billing_budget resource (#​18437)
  • compute: added action_token_site_keys and session_token_site_keys fields to google_compute_security_policy and google_compute_security_policy_rule resources (#​18414)
  • gkehub2: added ENTERPRISE option to security_posture_config field on google_gke_hub_fleet resource (#​18440)
  • pubsub: added bigquery_config.service_account_email field to google_pubsub_subscription resource (#​18444)
  • redis: added maintenance_version field to google_redis_instance resource (#​18424)
  • storage: changed update behavior in google_storage_bucket_object to no longer delete to avoid object deletion on content update (#​18479)
  • sql: added support for more MySQL values in type field of google_sql_user resource (#​18452)
  • sql: increased timeouts on google_sql_database_instance to 90m to account for longer-running actions such as creation through cloning (#​18458)
  • workbench: added update support to gce_setup.boot_disk and gce_setup.data_disks fields in google_workbench_instance resource (#​18482)

BUG FIXES:

  • compute: updated google_compute_instance to force reboot if min_node_cpus is updated (#​18420)
  • compute: fixed description field in google_compute_firewall to support empty/null values on update (#​18478)
  • compute: fixed perma-diff on google_compute_disk for Ubuntu amd64 canonical LTS images (#​18418)
  • storage: fixed lowercased custom_placement_config values in google_storage_bucket causing perma-destroy (#​18456)
  • workbench: fixed issue where instance was not starting after an update in google_workbench_instance resource (#​18464)
  • workbench: fixed perma-diff caused by empty accelerator_configs in google_workbench_instance resource (#​18464)

v5.34.0

Compare Source

NOTES:

  • compute: Updated field description of connection_draining_timeout_sec, balancing_mode and outlier_detection in google_compute_region_backend_service and google_compute_backend_service to inform that default values will be changed in 6.0.0 (#​18399)

FEATURES:

  • New Resource: google_netapp_backup (#​18357)
  • New Resource: google_network_services_service_lb_policies (#​18326)
  • New Resource: google_scc_management_folder_security_health_analytics_custom_module (#​18360)
  • New Resource: google_scc_management_organization_project_security_health_analytics_custom_module (#​18369)
  • New Resource: google_scc_management_organization_security_health_analytics_custom_module (#​18374)

IMPROVEMENTS:

  • alloydb: changed the resource google_alloydb_instance to be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#​18344)
  • bigtable: added automated_backup_configuration field to google_bigtable_table resource (#​18335)
  • cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the bitbucket_data_center_config and bitbucket_cloud_config fields in google_cloudbuildv2_connection (#​18375)
  • compute: added update support to ssl_policy field in google_compute_region_target_https_proxy resource (#​18361)
  • compute: removed enum validation on guest_os_features.type in google_compute_disk to allow for new features to be used without provider update (#​18331)
  • compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#​18358)
  • container: added support for security_posture_config.mode value "ENTERPRISE" in resource_container_cluster (#​18334)
  • discoveryengine: added document_processing_config field to google_discovery_engine_data_store resource (#​18350)
  • edgecontainer: added 'maintenance_exclusions' field to 'google_edgecontainer_cluster' resource (#​18370)
  • gkehub: added prevent_drift field to ConfigManagement fleet_default_member_config (#​18330)
  • netapp: added administrators field to google_netapp_active_directory resource (#​18333)
  • vertexai: promoted optimized field to GA for google_vertex_ai_feature_online_store resource (#​18348)
  • workbench: updated the metadata keys managed by the backend. (#​18367)

BUG FIXES:

  • compute: fixed an issue where google_compute_instance_group_manager with a pending operation was incorrectly removed due to the operation no longer being present in the backend (#​18380)
  • compute: fixed issue where users could not create google_compute_security_policy resources with layer_7_ddos_defense_config explicitly disabled (#​18345)
  • workbench: fixed a bug in the google_workbench_instance resource where specifying a network in some scenarios would cause instance creation to fail (#​18404

v5.33.0

Compare Source

DEPRECATIONS:

  • healthcare: deprecated notification_config in google_healthcare_fhir_store resource. Use notification_configs instead. (#​18306)

FEATURES:

  • New Data Source: google_compute_security_policy (#​18316)
  • New Resource: google_compute_project_cloud_armor_tier (#​18319)
  • New Resource: google_network_services_service_lb_policies (#​18326)
  • New Resource: google_scc_management_organization_event_threat_detection_custom_module (#​18317)
  • New Resource: google_spanner_instance_config (#​18322)

IMPROVEMENTS:

  • appengine: added flexible_runtime_settings field to google_app_engine_flexible_app_version resource (#​18325)
  • bigtable: added force_destroy field to google_bigtable_instance resource. This will force delete any backups present in the instance and allow the instance to be deleted. (#​18291)
  • clouddeploy: added execution_configs.verbose field to google_clouddeploy_target resource (#​18292)
  • compute: added storage_pool field to google_compute_disk resource (#​18273)
  • dlp: added secrets_discovery_target, cloud_sql_target.filter.database_resource_reference, and big_query_target.filter.table_reference fields to google_data_loss_prevention_discovery_config resource (#​18324)
  • gkebackup: added backup_schedule.backup_config.permissive_mode field to google_gke_backup_backup_plan resource (#​18266)
  • gkebackup: added restore_config.restore_order field to google_gke_backup_restore_plan resource (#​18266)
  • gkebackup: added restore_config.volume_data_restore_policy_bindings field to google_gke_backup_restore_plan resource (#​18266)
  • gkebackup: added new enum values MERGE_SKIP_ON_CONFLICT, MERGE_REPLACE_VOLUME_ON_CONFLICT and MERGE_REPLACE_ON_CONFLICT to field restore_config.namespaced_resource_restore_mode in google_gke_backup_restore_plan resource (#​18266)
  • healthcare: added notification_config.send_for_bulk_import field to google_healthcare_dicom_store resource (#​18320)
  • healthcare: added notification_configs field to google_healthcare_fhir_store resource (#​18306)
  • integrationconnectors: added endpoint_global_access field to google_integration_connectors_endpoint_attachment resource (#​18293)
  • netapp: added backup_config field to google_netapp_volume resource (#​18286)
  • redis: added zone_distribution_config field to google_redis_cluster resource (#​18307)
  • resourcemanager: added support for range_type = "default-domains-netblocks" in google_netblock_ip_ranges data source (#​18290)
  • secretmanager: added support for IAM conditions in google_secret_manager_secret_iam_* resources (#​18294)
  • workstations: added boot_disk_size_gb, enable_nested_virtualization, and pool_size to host.gce_instance.boost_configs in google_workstations_workstation_config resource (#​18310)

BUG FIXES:

  • container: fixed google_container_node_pool crash if node_config.secondary_boot_disks.mode is not set (#​18323)
  • dlp: removed required on inspect_config.limits.max_findings_per_info_type.info_type field to allow the use of default limit by not setting this field in google_data_loss_prevention_inspect_template resource (#​18285)
  • provider: fixed application default credential and access token authorization when universe_domain is set (#​18272)

v5.32.0

Compare Source

NOTES:

  • privateca: converted google_privateca_certificate_template to now use the MMv1 engine instead of DCL (#​18224)

FEATURES:

  • New Resource: google_dataplex_entry_type (#​18229)
  • New Resource: google_logging_log_view_iam_binding (#​18243)
  • New Resource: google_logging_log_view_iam_member (#​18243)
  • New Resource: google_logging_log_view_iam_policy (#​18243)

IMPROVEMENTS:

  • alloydb: added psc_config field to google_alloydb_cluster resource (#​18263)
  • alloydb: added psc_instance_config field to google_alloydb_instance resource (#​18263)
  • cloudrunv2: added default_uri_disabled field to resource google_cloud_run_v2_service resource (#​18246)
  • compute: added NONE to acceptable options for update_policy.minimal_action field in google_compute_instance_group_manager resource (#​18236)
  • looker: increased validation length of name to google_looker_instance resource (#​18244)
  • sql: updated support for a new value week5 in field setting.maintenance_window.update_track in google_sql_database_instance resource (#​18223)

BUG FIXES:

  • cloudrunv2: added validation for timeout field to google_cloud_run_v2_job and google_cloud_run_v2_service resources (#​18260)
  • compute: fixed permadiff in ordering of advertised_ip_ranges.range field on google_compute_router resource (#​18228)
  • iam: added a 10 second sleep when creating a 'google_service_account' resource to reduce eventual consistency errors(#​18261)
  • storage: fixed google_storage_bucket.lifecycle_rule.condition block fields days_since_noncurrent_time and days_since_custom_time and num_newer_versions were not working for 0 value (#​18231)

v5.31.1

Compare Source

BUG FIXES:

v5.31.0

Compare Source

FEATURES:

  • New Data Source: google_compute_subnetworks (#​18159)
  • New Resource: google_dataplex_aspect_type (#​18201)
  • New Resource: google_dataplex_entry_group (#​18188)
  • New Resource: google_kms_autokey_config (#​18179)
  • New Resource: google_kms_key_handle (#​18179)
  • New Resource: google_network_services_lb_route_extension (#​18195)

IMPROVEMENTS:

  • appengine: added field instance_ip_mode to resource google_app_engine_flexible_app_version resource (beta) (#​18168)
  • bigquery: added external_data_configuration.bigtable_options to google_bigquery_table (#​18181)
  • composer: added support for importing google_composer_user_workloads_secret via the "{{environment}}/{{name}}" format. (#​7390)
  • composer: improved timeouts for google_composer_user_workloads_secret. (#​7390)
  • compute: added TLS_JA3_FINGERPRINT and USER_IP options in field rate_limit_options.enforce_on_key to google_compute_security_policy resource (#​18167)
  • compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#​18167)
  • compute: changed google_compute_region_ssl_policy's region field to optional and allow to be inferred from environment (#​18178)
  • compute: added subnet_length field to google_compute_interconnect_attachment resource (#​18187)
  • container: added containerd_config field and subfields to google_container_cluster and google_container_node_pool resources, to allow those resources to access private image registries. (#​18160)
  • container: allowed both enable_autopilot and workload_identity_config to be set in google_container_cluster resource. (#​18166)
  • datastream: added create_without_validation field to google_datastream_connection_profile, google_datastream_private_connection and google_datastream_stream resources (#​18176)
  • network-security: added trust_config, min_tls_version, tls_feature_profile and custom_tls_features fields to google_network_security_tls_inspection_policy resource (#​18139)
  • networkservices: made field load_balancing_scheme immutable in resource google_network_services_lb_traffic_extension, as in-place updating is always failing (#​18195)
  • networkservices: made required fields extension_chains.extensions.authority and extension_chains.extensions.timeout optional in resource google_network_services_lb_traffic_extension (#​18195)
  • networkservices: removed unsupported load balancing scheme LOAD_BALANCING_SCHEME_UNSPECIFIED from the field load_balancing_scheme in resource google_network_services_lb_traffic_extension (#​18195)
  • pubsub: added cloud_storage_config.filename_datetime_format field to google_pubsub_subscription resource (#​18180)
  • tpu: added type of accelerator_config to google_tpu_v2_vm resource (#​18148)

BUG FIXES:

  • monitoring: fixed a permadiff with monitored_resource.labels property in the google_monitoring_uptime_check_config resource (#​18174)
  • storage: fixed a bug where field autoclass block is generating permadiff whenever the block is removed from the config in google_storage_bucket resource (#​18197)
  • storagetransfer: fixed a permadiff with transfer_spec.0.aws_s3_data_source.0.aws_access_key resource_storage_transfer_job (#​18190)

v5.30.0

Compare Source

FEATURES:

  • New Data Source: google_cloud_asset_resources_search_all (#​18129)
  • New Resource: google_compute_interconnect (#​18064)
  • New Resource: google_network_services_lb_traffic_extension (#​18138)

IMPROVEMENTS:

  • compute: added kms_key_name field to google_bigquery_connection resource (#​18057)
  • compute: added auto_network_tier field to google_compute_router_nat resource (#​18055)
  • compute: promoted enable_ipv4, ipv4_nexthop_address and peer_ipv4_nexthop_address fields in google_compute_router_peer resource to GA (#​18056)
  • compute: promoted identifier_range field in google_compute_router resource to GA (#​18056)
  • compute: promoted ip_version field in google_compute_router_interface resource to GA (#​18056)
  • container: added KUBELET and CADVISOR options to monitoring_config.enable_components in google_container_cluster resource (#​18090)
  • dataproc: added local_ssd_interface to google_dataproc_cluster resource (#​18137)
  • dataprocmetastore: promoted google_dataproc_metastore_federation to GA (#​18084)
  • dlp: added cloud_sql_target field to google_data_loss_prevention_discovery_config resource (#​18063)
  • netapp: added FLEX value to field service_level in google_netapp_storage_pool resource (#​18088)
  • networksecurity: added trust_config, min_tls_version, tls_feature_profile and custom_tls_features fields to google_network_security_tls_inspection_policy resource (#​18139)
  • networkservices: supported in-place update for gateway_security_policy and certificate_urls fields in google_network_services_gateway resource (#​18082)

BUG FIXES:

  • compute: fixed a perma-diff on machine_type field in google_compute_instance resource (#​18071)
  • compute: fixed a perma-diff on type field in google_compute_disk resource (#​18071)
  • storage: fixed update issue for lifecycle_rule.condition.custom_time_before and lifecycle_rule.condition.noncurrent_time_before in google_storage_bucket resource (#​18127)

v5.29.1

Compare Source

BREAKING CHANGES:

  • compute: removed secondary_ip_range.reserved_internal_range field from google_compute_subnetwork (18133)

v5.29.0

Compare Source

NOTES:

  • compute: added documentation for md5_authentication_key field in google_compute_router_peer resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#​17991)

FEATURES:

  • New Resource: google_bigtable_authorized_view (#​18006)
  • New Resource: google_integration_connectors_managed_zone (#​18029)
  • New Resource: google_network_connectivity_regional_endpoint (#​18014)
  • New Resource: google_network_security_security_profile (#​18025)
  • New Resource: google_network_security_security_profile_group (#​18025)
  • New Resource: google_network_security_firewall_endpoint (#​18025)
  • New Resource: google_network_security_firewall_endpoint_association (#​18025)

IMPROVEMENTS:

  • clouddeploy: added custom_target field to google_clouddeploy_target resource (#​18000)
  • clouddeploy: added google_cloud_build_repo to custom_target_type resource (#​18040)
  • compute: added preconfigured_waf_config field to google_compute_region_security_policy_rule resource; (#​18039)
  • compute: added rate_limit_options field to google_compute_region_security_policy_rule resource; (#​18039)
  • compute: added security_profile_group, tls_inspect to google_compute_firewall_policy_rule (#​18000)
  • compute: added security_profile_group, tls_inspect to google_compute_network_firewall_policy_rule (#​18000)
  • compute: added fields reserved_internal_range and secondary_ip_ranges.reserved_internal_range to google_compute_subnetwork resource (#​18026)
  • container: added dns_config.additive_vpc_scope_dns_domain field to google_container_cluster resource (#​18031)
  • container: added enable_nested_virtualization field to google_container_node_pool and google_container_cluster resource. (#​18015)
  • iam: added extra_attributes_oauth2_client field to google_iam_workforce_pool_provider resource (#​18027)
  • privateca: added maximum_lifetime field to google_privateca_certificate_template resource (#​18000)
hashicorp/terraform-provider-google-beta (google-beta)

v5.42.0

Compare Source

DEPRECATIONS:

  • compute: setting google_compute_subnetwork.secondary_ip_range = [] to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Use send_secondary_ip_range_if_empty while removing secondary_ip_range from config instead. (#​7961)

FEATURES:

  • New Data Source: google_artifact_registry_locations (#​7922)
  • New Data Source: google_cloud_identity_transitive_group_memberships (#​7917)
  • New Resource: google_discovery_engine_schema (#​7963)
  • New Resource: google_scc_folder_notification_config (#​7928)
  • New Resource: google_scc_v2_folder_notification_config (#​7927)
  • New Resource: google_vertex_ai_index_endpoint_deployed_index (#​7931)

IMPROVEMENTS:

  • clouddeploy: added serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_label and serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_label fields to google_clouddeploy_delivery_pipeline resource (#​7945)
  • compute: added TDX instance option to confidential_instance_type instance in google_compute_instance (#​7913)
  • compute: added send_secondary_ip_range_if_empty to google_compute_subnetwork (#​7961)
  • discoveryengine: added skip_default_schema_creation field to google_data_store resource (#​7900)
  • dns: changed load_balancer_type field from required to optional in google_dns_record_set (#​7925)
  • parallelstore: added file_stripe_level, directory_stripe_level fields to google_parallelstore_instance resource (#​7942)
  • servicenetworking: added update_on_creation_fail field to google_service_networking_connection resource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. (#​7915)
  • sql: added server_ca_mode field to google_sql_database_instance resource (#​7886)

BUG FIXES:

  • bigquery: made google_bigquery_dataset_iam_member non-authoritative. To remove a bigquery dataset iam member, use an authoritative resource like google_bigquery_dataset_iam_policy (#​7960)
  • cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the service_config.environment_variables field in google_cloudfunctions2_function resource (#​7905)
  • cloudfunctions2: fixed a permadiff on storage_source.generation in google_cloudfunctions2_function resource (#​7912)
  • compute: fixed issue where sub-resources managed by google_compute_forwarding_rule prevented resource deletion (#​7958)
  • logging: changed google_logging_project_bucket_config.enable_analytics behavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. (#​19126)
  • workbench: fixed a bug with google_workbench_instance metadata drifting when using custom containers. (#​7959)

v5.41.0

Compare Source

DEPRECATIONS:

  • resourcemanager: deprecated skip_delete field in the google_project resource. Use deletion_policy instead. (#​7817)

FEATURES:

  • New Data Source: google_scc_v2_organization_source_iam_policy (#​7888)
  • New Resource: google_access_context_manager_service_perimeter_dry_run_egress_policy (#​7882)
  • New Resource: google_access_context_manager_service_perimeter_dry_run_ingress_policy (#​7882)
  • New Resource: google_scc_v2_folder_mute_config (#​7846)
  • New Resource: google_scc_v2_project_mute_config (#​7881)
  • New Resource: google_scc_v2_project_notification_config (#​7892)
  • New Resource: google_scc_v2_organization_source (#​7888)
  • New Resource: google_scc_v2_organization_source_iam_binding (#​7888)
  • New Resource: google_scc_v2_organization_source_iam_member (#​7888)
  • New Resource: google_scc_v2_organization_source_iam_policy (#​7888)

IMPROVEMENTS:

  • clouddeploy: added gke.proxy_url field to google_clouddeploy_target (#​7899)
  • cloudrunv2: added field binary_authorization.policy to resource google_cloud_run_v2_job and resource google_cloud_run_v2_service to support named binary authorization policy. (#​7883)
  • compute: added update-in-place support for the google_compute_target_https_proxy.server_tls_policy field (#​7884)
  • compute: added update-in-place support for the google_compute_region_target_https_proxy.server_tls_policy field (#​7891)
  • container: added auto_provisioning_locations field to google_container_cluster (#​7849)
  • dataform: added kms_key_name field to google_dataform_repository resource (#​7855)
  • discoveryengine: added skip_default_schema_creation field to google_discovery_engine_data_store resource (#​7900)
  • gkehub: added configmanagement.management and configmanagement.config_sync.enabled fields to google_gkehub_feature_membership (#​7899)
  • gkehub: added management field to google_gke_hub_feature.fleet_default_member_config.configmanagement (#​7862)
  • resourcemanager: added deletion_policy field to the google_project resource. Setting deletion_policy to PREVENT will protect the project against any destroy actions caused by a terraform apply or terraform destroy. Setting deletion_policy to ABANDON allows the resource to be abandoned rather than deleted and it behaves the same with skip_delete = true. Default value is DELETE. skip_delete = true takes precedence over deletion_policy = "DELETE".
  • storage: added force_destroy field to google_storage_managed_folder resource (#​7867)
  • storage: added generation field to google_storage_bucket_object resource (#​7866)

BUG FIXES:

  • compute: fixed google_compute_instance.alias_ip_range update behavior to avoid temporarily deleting unchanged alias IP ranges (#​7898)
  • compute: fixed the bug that creation of PSC forwarding rules fails in google_compute_forwarding_rule resource when provider default labels are set (#​7873)
  • sql: fixed a perma-diff in settings.insights_config in google_sql_database_instance (#​7861)

v5.40.0

Compare Source

IMPROVEMENTS:

  • bigquery: added support for value DELTA_LAKE to source_format in google_bigquery_table resource (#​7841)
  • compute: added access_mode field to google_compute_disk resource (#​7813)
  • compute: added stack_type, and gateway_ip_version fields to google_compute_router resource (#​7801)
  • container: added field ray_operator_config for resource_container_cluster (#​7795)
  • monitoring: updated goal field to accept a max threshold of up to 0.9999 in google_monitoring_slo resource to 0.9999 (#​7807)
  • networkconnectivity: added export_psc field to google_network_connectivity_hub resource (#​7816)
  • sql: added enable_dataplex_integration field to google_sql_database_instance resource (#​7810)

BUG FIXES:

  • bigquery: fixed a permadiff when handling "assets" in params in the google_bigquery_data_transfer_config resource (#​7833)
  • bigquery: fixed an issue preventing certain keys in params from being assigned values in google_bigquery_data_transfer_config (#​7828)
  • compute: fixed perma-diff in google_compute_router (#​7818)
  • container: fixed perma-diff on node_config.guest_accelerator.gpu_driver_installation_config field in GKE 1.30+ in google_container_node_pool resource (#​7799)
  • sql: fixed a perma-diff in settings.insights_config in google_sql_database_instance (#​7861)

v5.39.1

Compare Source

BUG FIXES:

  • datastream: fixed a breaking change in 5.39.0 google_datastream_stream that made one of destination_config.0.bigquery_destination_config.0.merge or destination_config.0.bigquery_destination_config.0.append_only required (#​7835)

v5.39.0

Compare Source

NOTES:

  • networkconnectivity: migrated google_network_connectivity_hub from DCL to MMv1 (#​7724)
  • networkconnectivity: migrated google_network_connectivity_spoke from DCL to MMv1 (#​7762)

DEPRECATIONS:

  • bigquery: deprecated allow_resource_tags_on_deletion in google_bigquery_table. (#​7782)
  • bigqueryreservation: deprecated multi_region_auxiliary on google_bigquery_reservation. (#​7778)
  • datastore: deprecated the resource google_datastore_index. Use the google_firestore_index resource instead. (#​7764)

FEATURES:

  • New Resource: google_apigee_environment_keyvaluemaps_entries (#​7717)
  • New Resource: google_apigee_environment_keyvaluemaps (#​7717)
  • New Resource: google_compute_resize_request (#​7725)
  • New Resource: google_compute_router_route_policy (#​7748)
  • New Resource: google_scc_v2_organization_mute_config (#​7744)

IMPROVEMENTS:

  • alloydb: added observability_config field to google_alloydb_instance resource (#​7737)
  • bigquery: added resource_tags field to google_bigquery_table resource (#​7735)
  • bigtable: added data_boost_isolation_read_only and data_boost_isolation_read_only.compute_billing_owner fields to google_bigtable_app_profile resource (#​7789)
  • cloudfunctions: added build_service_account field to google_cloudfunctions_function resource (#​7713)
  • compute: added aws_v4_authentication field to google_compute_backend_service resource (#​7775)
  • compute: added custom_learned_ip_ranges and custom_learned_route_priority fields to google_compute_router_peer resource (#​7727)
  • compute: added export_policies and import_policies fields to google_compute_router_peer resource (#​7748)
  • compute: added shared_secret field to google_compute_public_advertised_prefix resource (#​7767)
  • compute: added storage_pool under boot_disk.initialize_params to google_compute_instance resource (#​7787)
  • compute: changed target_service field on the google_compute_service_attachment resource to accept a ForwardingRule or Gateway URL. (#​7736)
  • container: added field ray_operator_config for google_container_cluster (#​7795)
  • datastream: added merge and append_only fields to google_datastream_stream resource (#​7726)
  • dlp: added cloud_storage_target field to google_data_loss_prevention_discovery_config resource (#​7734)
  • resourcemanager: added check_if_service_has_usage_on_destroy field to google_project_service resource (#​7745)
  • resourcemanager: added the member property to google_project_service_identity (#​7708)
  • vmwareengine: added deletion_delay_hours field to google_vmwareengine_private_cloud resource (#​7710)
  • vmwareengine: supported type change from TIME_LIMITED to STANDARD for multi-node google_vmwareengine_private_cloud resource (#​7710)
  • workbench: added access_configs to google_workbench_instance resource (#​7732)

BUG FIXES:

  • compute: fixed perma-diff for interconnect_type being DEDICATED in google_compute_interconnect resource (#​7750)
  • dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating google_dialogflow_cx_security_settings resources (#​7772)
  • firestore: fixed missing import of field for google_firestore_field. (#​7757)
  • firestore: fixed bug where fields database, collection, document_id, and field could not be updated on google_firestore_document and google_firestore_field resources. (#​7791)
  • netapp: made the smb_settings field on the google_netapp_volume resource default to the value returned from the API. This solves permadiffs when the field is unset. (#​7770)
  • networksecurity: added recreate functionality on update for client_validation_mode and client_validation_trust_config in google_network_security_server_tls_policy (#​7756)

v5.38.0

Compare Source

FEATURES:

  • New Data Source: google_gke_hub_membership_binding (#​7696)
  • New Data Source: google_site_verification_token (#​7704)
  • New Resource: google_scc_project_notification_config (#​7698)

IMPROVEMENTS:

  • cloudkms: added key_access_justifications_policy field to google_kms_crypto_key resource (#​7693)
  • compute: made the google_compute_resource_policy resource updatable in-place (#​7692)
  • vertexai: added project_number field to google_vertex_ai_feature_online_store_featureview resource (#​7680)

BUG FIXES:

  • cloudfunctions2: fixed permadiffs on service_config.environment_variables field in google_cloudfunctions2_function resource (#​7684)
  • networksecurity: fixed permadiffs on purpose field in google_network_security_address_group resource (#​7687)

v5.37.0

Compare Source

FEATURES:

  • New Data Source: google_kms_crypto_keys (#​7656)
  • New Data Source: google_kms_key_rings (#​7662)
  • New Resource: google_scc_v2_organization_notification_config (#​7649)
  • New Resource: google_secure_source_manager_repository (#​7634)
  • New Resource: google_storage_managed_folder_iam (#​7620)
  • New Resource: google_storage_managed_folder (#​7620)

IMPROVEMENTS:

  • certificatemanager: added allowlisted_certificates field to google_certificate_manager_trust_config resource (#​7643)
  • compute: added source_regions field to google_compute_healthcheck resource (#​7647)
  • dataplex: added sql_assertion field to google_dataplex_datascan resource (#​7623)
  • gkehub: added fleet_default_member_config.configmanagement.config_sync.enabled field to google_gke_hub_feature resource (#​7639)
  • netapp: added zone and replica_zone field to google_netapp_storage_pool resource (#​7660)
  • networksecurity: added purpose field to google_network_security_address_group resource (#​7677)
  • vertexai: added project_number field to google_vertex_ai_feature_online_store_featureview resource (#​7680)
  • workstations: added host.gce_instance.vm_tags field to google_workstations_workstation_config resource (#​7644)

BUG FIXES:

  • compute: fixed a bug preventing the creation of google_compute_autoscaler and google_compute_region_autoscaler resources if both autoscaling_policy.max_replicas and autoscaling_policy.min_replicas were configured as zero. (#​7658)
  • resourcemanager: mitigated eventual consistency issues by adding a 10s wait after google_service_account_key resource creation (#​7629)
  • vertexai: fixed issue where updating "metadata" field could fail in google_vertex_ai_index resource (#​7675)

v5.36.0

Compare Source

FEATURES:

  • New Resource: google_storage_managed_folder_iam (#​7620)
  • New Resource: google_storage_managed_folder (#​7620)

IMPROVEMENTS:

  • bigtable: added ignore_warnings field to google_bigtable_gc_policy resource (#​7571)
  • cloudfunctions2: added build_config.automatic_update_policy and build_config.on_deploy_update_policy to google_cloudfunctions2_function resource (#​7608)
  • compute: added tls_early_data field to google_compute_target_https_proxy resource (#​7588)
  • compute: added custom_error_response_policy and default_custom_error_response_policy fields to google_compute_url_map resource (#​7587)
  • datafusion: added connection_type and private_service_connect_config fields to google_data_fusion_instance resource (#​7598)
  • firebasehosting: added support for google_firebase_hosting_site resource to be used for an existing site without using import (#​7594)
  • healthcare: added encryption_spec field to google_healthcare_dataset resource (#​7601)
  • monitoring: added links field to google_monitoring_alert_policy resource (#​7616)
  • vertexai: added update support for big_query.entity_id_columns field on google_vertex_ai_feature_group resource (#​7572)

BUG FIXES:

  • accesscontextmanager: fixed perma-diff caused by ordering of service_perimeters in google_access_context_manager_service_perimeters resource (#​7595)
  • compute: fixed a crash in google_compute_reservation resource when share_settings field has changes (#​7577)
  • compute: fixed issue in google_compute_instance resource where service_account is not set when specifying service_account.email and no service_account.scopes (#​7596)
  • gkehub2: fixed google_gke_hub_feature resource to allow fleet_default_member_config field to be unset (#​7568)
  • identityplatform: fixed perma-diff on google_identity_platform_config resource when sms_region_config is not set (#​7607)
  • logging: fixed perma-diff on index_configs in google_logging_organization_bucket_config resource (#​7579)

v5.35.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_docker_image (#​7544)
  • New Data Source: google_composer_user_workloads_config_map (#​7519)
  • New Resource: google_service_networking_vpc_service_controls (#​7545)

IMPROVEMENTS:

  • bigquery: added resource_tags field to google_bigquery_dataset resource (#​7549)
  • billingbudget: added enable_project_level_recipients field to google_billing_budget resource (#​7539)
  • cloudrunv2: added fields start_execution_token and run_execution_token to resource google_cloud_run_v2_job (#​7525)
  • compute: added action_token_site_keys and session_token_site_keys fields to google_compute_security_policy and google_compute_security_policy_rule resources (#​7520)
  • dataprocmetastore: added autoscaling_config field to google_dataproc_metastore_service resource (#​7528)
  • gkehub2: added ENTERPRISE option to security_posture_config field on google_gke_hub_fleet resource (#​7541)
  • pubsub: added bigquery_config.service_account_email field to google_pubsub_subscription resource (#​7543)
  • redis: added maintenance_version field to google_redis_instance (#​7527)
  • storage: changed update behavior in google_storage_bucket_object to no longer delete to avoid object deletion on content update (#​7564)
  • sql: added support for more MySQL values in type field of google_sql_user resource (#​7548)
  • sql: increased timeouts on google_sql_database_instance to 90m to account for longer-running actions such as creation through cloning (#​7553)
  • workbench: added update support to gce_setup.boot_disk and gce_setup.data_disks fields in google_workbench_instance resource (#​7566)

BUG FIXES:

  • compute: updated google_compute_instance to force reboot if min_node_cpus is updated (#​7524)
  • compute: fixed description field in google_compute_firewall to support empty/null values on update (#​7563)
  • compute: fixed perma-diff on google_compute_disk for Ubuntu amd64 canonical LTS images (#​7522)
  • storage: fixed lowercased custom_placement_config values in google_storage_bucket causing perma-destroy (#​7551)
  • workbench: fixed issue where instance was not starting after an update in google_workbench_instance resource (#​7557)
  • workbench: fixed perma-diff caused by empty accelerator_configs in google_workbench_instance resource (#​7557)

v5.34.0

Compare Source

NOTES:

  • compute: Updated field description of connection_draining_timeout_sec, balancing_mode and outlier_detection in google_compute_region_backend_service and google_compute_backend_service to inform that default values will be changed in 6.0.0 (#​7513)

DEPRECATIONS:

  • vertexai: deprecated beta field embedding_management for google_vertex_ai_feature_online_store resource (#​7473)

FEATURES:

  • New Data Source: google_composer_user_workloads_config_map (beta) (#​7519)
  • New Data Source: google_composer_user_workloads_secret (beta) (#​7474)
  • New Resource: google_composer_user_workloads_config_map (beta) (#​7497)
  • New Resource: google_managed_kafka_cluster (beta) (#​7477)
  • New Resource: google_managed_kafka_topic (beta) (#​7503)
  • New Resource: google_netapp_backup (#​7479)
  • New Resource: google_network_services_service_lb_policies (#​7463)
  • New Resource: google_scc_management_folder_security_health_analytics_custom_module (#​7483)
  • New Resource: google_scc_management_organization_project_security_health_analytics_custom_module (#​7489)
  • New Resource: google_scc_management_organization_security_health_analytics_custom_module (#​7493)

IMPROVEMENTS:

  • alloydb: changed the resource google_alloydb_instance to be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it (#​7469)
  • bigtable: added automated_backup_configuration field to google_bigtable_table resource (#​7468)
  • cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the bitbucket_data_center_config and bitbucket_cloud_config fields in google_cloudbuildv2_connection (#​7494)
  • compute: added support for Port Mapping NEG and endpoint. New NEG type is a regional type of GCE_VM_IP_PORTMAP that requires endpoints with instance, port and client_destination_port (beta) (#​7471)
  • compute: added update support to ssl_policy field in google_compute_region_target_https_proxy resource (#​7484)
  • compute: removed enum validation on guest_os_features.type in google_compute_disk to allow for new features to be used without provider update (#​7465)
  • compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy (#​7481)
  • container: added support for security_posture_config.mode value "ENTERPRISE" in resource_container_cluster (#​7467)
  • discoveryengine: added document_processing_config field to google_discovery_engine_data_store resource (#​7475)
  • edgecontainer: added maintenance_exclusions field to google_edgecontainer_cluster resource (#​7490)
  • gkehub: added prevent_drift field to ConfigManagement fleet_default_member_config (#​7464)
  • netapp: added administrators field to google_netapp_active_directory resource (#​7466)
  • vertexai: promoted optimized field to GA for google_vertex_ai_feature_online_store resource (#​7473)
  • workbench: updated the metadata keys managed by the backend. (#​7488)

BUG FIXES:

  • compute: fixed an issue where google_compute_instance_group_manager with a pending operation was incorrectly removed due to the operation no longer being present in the backend (#​7498)
  • compute: fixed issue where users could not create google_compute_security_policy resources with layer_7_ddos_defense_config explicitly disabled (#​7470)
  • workbench: fixed a bug in the google_workbench_instance resource where specifying a network in some scenarios would cause instance creation to fail (#​7518)

v5.33.0

Compare Source

DEPRECATIONS:

  • healthcare: deprecated notification_config deprecated notification_config in google_healthcare_fhir_store resource. Use notification_configs instead. (#​7450)

FEATURES:

  • New Data Source: google_compute_security_policy (#​7453)
  • New Resource: google_compute_project_cloud_armor_tier (#​7456)
  • New Resource: google_network_services_service_lb_policies (#​7463)
  • New Resource: google_scc_management_organization_event_threat_detection_custom_module (#​7454)
  • New Resource: google_spanner_instance_config (#​7459)

IMPROVEMENTS:

  • appengine: added flexible_runtime_settings field to google_app_engine_flexible_app_version resource (#​7462)
  • bigtable: added force_destroy field to google_bigtable_instance resource. This will force delete any backups present in the instance and allow the instance to be deleted. (#​7441)
  • clouddeploy: added execution_configs.verbose field to google_clouddeploy_target resource (#​7442)
  • compute: added partner_metadata field to google_compute_instance_template resource (#​7449)
  • compute: added partner_metadata field to google_compute_instance resource (#​7449)
  • compute: added partner_metadata field to google_compute_regional_instance_template resource (#​7449)
  • compute: added standby_policy, target_suspended_size and target_stopped_size fields to google_compute_instance_group_manager and google_compute_region_instance_group_manager resources (#​7436)
  • compute: added storage_pool field to google_compute_disk resource (#​7434)
  • container: added secret_manager_config field to google_container_cluster resource (#​7448)
  • dlp: added secrets_discovery_target, cloud_sql_target.filter.database_resource_reference, and big_query_target.filter.table_reference fields to google_data_loss_prevention_discovery_config resource (#​7461)
  • gkebackup: added backup_schedule.backup_config.permissive_mode field to google_gke_backup_backup_plan resource (#​7430)
  • gkebackup: added restore_config.restore_order field to google_gke_backup_restore_plan resource (#​7430)
  • gkebackup: added restore_config.volume_data_restore_policy_bindings field to google_gke_backup_restore_plan resource (#​7430)
  • gkebackup: added new enum values MERGE_SKIP_ON_CONFLICT, MERGE_REPLACE_VOLUME_ON_CONFLICT and MERGE_REPLACE_ON_CONFLICT to field restore_config.namespaced_resource_restore_mode in google_gke_backup_restore_plan resource (#​7430)
  • healthcare: added notification_config.send_for_bulk_import field to google_healthcare_dicom_store (#​7457)
  • integrationconnectors: added endpoint_global_access field to google_integration_connectors_endpoint_attachment resource (#​7443)
  • netapp: added backup_config field to google_netapp_volume resource (#​7439)
  • redis: added zone_distribution_config field to google_redis_cluster resource (#​7451)
  • resourcemanager: added support for range_type = "default-domains-netblocks" in google_netblock_ip_ranges data source (#​7440)
  • secretmanager: added support for IAM conditions in google_secret_manager_secret_iam_* resources (#​7444)
  • workstations: added boot_disk_size_gb, enable_nested_virtualization, and pool_size to host.gce_instance.boost_configs in google_workstations_workstation_config resource (#​7452)

BUG FIXES:

  • container: fixed google_container_node_pool crash if node_config.secondary_boot_disks.mode is not set (#​7460)
  • dlp: removed required on inspect_config.limits.max_findings_per_info_type.info_type field to allow the use of default limit by not setting this field in google_data_loss_prevention_inspect_template resource (#​7438)
  • provider: fixed application default credential and access token authorization when universe_domain is set (#​7433)

v5.32.0

Compare Source

NOTES:

  • privateca: converted google_privateca_certificate_template to now use the MMv1 engine instead of DCL (#​7409)

FEATURES:

  • New Resource: google_dataplex_entry_type (#​7412)
  • New Resource: google_logging_log_view_iam_binding (#​7420)
  • New Resource: google_logging_log_view_iam_member (#​7420)
  • New Resource: google_logging_log_view_iam_policy (#​7420)

IMPROVEMENTS:

  • alloydb: added psc_config field to google_alloydb_cluster resource (#​7429)
  • alloydb: added psc_instance_config field to google_alloydb_instance resource (#​7429)
  • cloudrunv2: added default_uri_disabled field to google_cloud_run_v2_service resourceto (#​7422)
  • compute: added NONE to acceptable options for update_policy.minimal_action field in google_compute_instance_group_manager resource (#​7417)
  • sql: updated support for a new value week5 in field setting.maintenance_window.update_track in google_sql_database_instance resource (#​7408)

BUG FIXES:

  • cloudrunv2: added validation for timeout field to google_cloud_run_v2_job, google_cloud_run_v2_service resources (#​7426)
  • compute: fixed permadiff in ordering of advertised_ip_ranges.range field on google_compute_router resource (#​7411)
  • iam: added a 10 second sleep when creating google_service_account resource (#​7427)
  • storage: fixed google_storage_bucket.lifecycle_rule.condition block fields days_since_noncurrent_time and days_since_custom_time and num_newer_versions were not working for 0 value. (#​7414)

v5.31.1

Compare Source

BUG FIXES:

v5.31.0

Compare Source

FEATURES:

  • New Data Source: google_compute_subnetworks (#​7371)
  • New Resource: google_dataplex_aspect_type (#​7397)
  • New Resource: google_dataplex_entry_group (#​7389)
  • New Resource: google_kms_autokey_config (#​7385)
  • New Resource: google_kms_key_handle (#​7385)
  • New Resource: google_network_services_lb_route_extension (#​7394)

IMPROVEMENTS:

  • appengine: added field instance_ip_mode to resource google_app_engine_flexible_app_version resource (beta) (#​7377)
  • bigquery: added external_data_configuration.bigtable_options to google_bigquery_table (#​7387)
  • cloudrun: added support for nfs to google_cloudrun_service (beta). (#​7381)
  • composer: added support for importing google_composer_user_workloads_secret via the "{{environment}}/{{name}}" format. (#​7390)
  • composer: improved timeouts for google_composer_user_workloads_secret. (#​7390)
  • compute: added TLS_JA3_FINGERPRINT and USER_IP options in field rate_limit_options.enforce_on_key to google_compute_security_policy resource (#​7376)
  • compute: added 'rateLimitOptions' field to 'google_compute_security_policy_rule' resource (#​7376)
  • compute: changed google_compute_region_ssl_policy's region field to optional and allow to be inferred from environment (#​7384)
  • compute: added on_instance_stop_action field to google_compute_instance, google_compute_instance_template, and google_compute_instance_from_machine_image resources (beta) (#​7392)
  • compute: added subnet_length field to google_compute_interconnect_attachment resource (#​7388)
  • container: added containerd_config field and subfields to google_container_cluster and google_container_node_pool resources, to allow those resources to access private image registries. (#​7372)
  • container: allowed both enable_autopilot and workload_identity_config to be set in google_container_cluster resource. (#​7375)
  • datastream: added create_without_validation field to google_datastream_connection_profile, google_datastream_private_connection and google_datastream_stream resources (#​7382)
  • network-security: added trust_config, min_tls_version, tls_feature_profile and custom_tls_features fields to google_network_security_tls_inspection_policy resource (#​7368)
  • networkservices: made field load_balancing_scheme immutable in resource google_network_services_lb_traffic_extension, as in-place updating is always failing (#​7394)
  • networkservices: made required fields extension_chains.extensions.authority and extension_chains.extensions.timeout optional in resource google_network_services_lb_traffic_extension (#​7394)
  • networkservices: removed unsupported load balancing scheme LOAD_BALANCING_SCHEME_UNSPECIFIED from the field load_balancing_scheme in resource google_network_services_lb_traffic_extension (#​7394)
  • pubsub: added cloud_storage_config.filename_datetime_format field to google_pubsub_subscription resource (#​7386)
  • tpu: added type of accelerator_config to google_tpu_v2_vm resource (#​7369)

BUG FIXES:

  • monitoring: fixed a permadiff with monitored_resource.labels property in the google_monitoring_uptime_check_config resource (#​7380)
  • storage: fixed a bug where field autoclass block is generating permadiff whenever the block is removed from the config in google_storage_bucket resource (#​7395)
  • storagetransfer: fixed a permadiff with transfer_spec.0.aws_s3_data_source.0.aws_access_key resource_storage_transfer_job (#​7391)

v5.30.0

Compare Source

FEATURES:

  • New Data Source: google_cloud_asset_resources_search_all (#​7361)
  • New Resource: google_compute_interconnect (#​7338)
  • New Resource: google_network_services_lb_traffic_extension (#​7367)

IMPROVEMENTS:

  • compute: added kms_key_name field to the google_bigquery_connection resource (#​7335)
  • compute: added match.expr.expression field to google_compute_region_security_policy_rule resource (#​7330)
  • compute: added auto_network_tier field to google_compute_router_nat resource (#​7333)
  • container: added KUBELET and CADVISOR options to monitoring_config.enable_components in google_container_cluster resource (#​7351)
  • dataproc: added local_ssd_interface to google_dataproc_cluster resource (#​7366)
  • datastream: added sql_server_profile to google_datastream_connection_profile resource (#​7339)
  • dlp: added cloud_sql_target field to google_data_loss_prevention_discovery_config resource (#​7337)
  • netapp: added FLEX value to field service_level in google_netapp_storage_pool resource (#​7350)
  • networksecurity: added trust_config, min_tls_version, tls_feature_profile and custom_tls_features fields to google_network_security_tls_inspection_policy resource (#​7368)
  • networkservices: supported in-place update for gateway_security_policy and certificate_urls fields in google_network_services_gateway resource (#​7348)

BUG FIXES:

  • compute: fixed a perma-diff on machine_type field in google_compute_instance resource (#​7345)
  • compute: fixed a perma-diff on type field in google_compute_disk resource (#​7345)
  • storage: fixed update issue for lifecycle_rule.condition.custom_time_before and lifecycle_rule.condition.noncurrent_time_before in google_storage_bucket resource (#​7360)

v5.29.1

Compare Source

BREAKING CHANGES:

  • compute: removed secondary_ip_range.reserved_internal_range field from google_compute_subnetwork (7363)

v5.29.0

Compare Source

NOTES:

  • compute: added documentation for md5_authentication_key field in google_compute_router_peer resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#​7306)

FEATURES:

  • New Resource: google_bigtable_authorized_view (#​7310)
  • New Resource: google_integration_connectors_managed_zone (#​7320)
  • New Resource: google_network_connectivity_regional_endpoint (#​7313)

IMPROVEMENTS:

  • clouddeploy: added custom_target field to google_clouddeploy_target resource (#​7309)
  • clouddeploy: added google_cloud_build_repo to custom_target_type resource (#​7325)
  • compute: added preconfigured_waf_config field to google_compute_region_security_policy_rule resource; (#​7324)
  • compute: added rate_limit_options field to 'google_compute_region_security_policy_rule' resource; (#​7324)
  • compute: added security_profile_group, tls_inspect to google_compute_firewall_policy_rule (#​7309)
  • compute: added security_profile_group, tls_inspect to google_compute_network_firewall_policy_rule (#​7309)
  • compute: added fields reserved_internal_range and secondary_ip_ranges.reserved_internal_range to google_compute_subnetwork resource (#​7318)
  • container: added dns_config.additive_vpc_scope_dns_domain field to google_container_cluster resource (#​7321)
  • container: added enable_nested_virtualization field to google_container_node_pool and google_container_cluster resource. (#​7314)
  • iam: added extra_attributes_oauth2_client field to google_iam_workforce_pool_provider resource (#​7319)
  • privateca: added maximum_lifetime field to google_privateca_certificate_template resource (#​7309)

BUG FIXES:

  • bigquery: added allow_resource_tags_on_deletion to google_bigquery_table to allow deletion of table when it still has associated resource tags (#​7327)
hashicorp/terraform-provider-random (random)

v3.6.2

Compare Source

NOTES:

  • resource/random_pet: Results have been updated to the latest upstream petname data (#​581)
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)

v4.5.0

Compare Source


Configuration

📅 Schedule: Branch creation - "every weekday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Merge request reports

Loading