terraform-example-foundation icon indicating copy to clipboard operation
terraform-example-foundation copied to clipboard

Published 20 hours ago verified publisher icon terraform-google-modules

feat(deps): Update Terraform Google Provider to v6 (major)

Open renovate[bot] opened this issue 1 year ago • 2 comments

This PR contains the following updates:

Package Type Update Change Pending
google (source) required_provider major >= 3.77, < 6 -> >= 3.77, < 7 6.8.0
google (source) required_provider major >= 4.3.0, < 6 -> >= 4.3.0, < 7 6.8.0
google (source) required_provider major >= 3.64, < 6 -> >= 3.64, < 7 6.8.0
google-beta (source) required_provider major >= 3.77, < 6 -> >= 3.77, < 7 6.8.0

Release Notes

hashicorp/terraform-provider-google (google)

v6.7.0

Compare Source

FEATURES:

  • New Resource: google_healthcare_pipeline_job (#​19717)
  • New Resource: google_secure_source_manager_branch_rule (#​19773)

IMPROVEMENTS:

  • container: google_container_cluster will now accept server-specified values for node_pool_auto_config.0.node_kubelet_config when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#​19817)
  • discoveryengine: added chat_engine_config.dialogflow_agent_to_link field to google_discovery_engine_chat_engine resource (#​19723)
  • networkconnectivity: added field migration to resource google_network_connectivity_internal_range (#​19757)
  • networkservices: added routing_mode field to google_network_services_gateway resource (#​19764)

BUG FIXES:

  • bigtable: fixed an error where BigTable IAM resources could be created with conditions but the condition was not stored in state (#​19725)
  • container: fixed issue which caused to not being able to disable enable_cilium_clusterwide_network_policy field on google_container_cluster. (#​19736)
  • container: fixed a diff triggered by a new API-side default value for node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled. Terraform will now accept server-specified values for node_config.0.kubelet_config when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#​19817)
  • dataproc: fixed a bug in google_dataproc_cluster that prevented creation of clusters with internal_ip_only set to false (#​19782)
  • iam: addressed google_service_account creation issues caused by the eventual consistency of the GCP IAM API by ignoring 403 errors returned on polling the service account after creation. (#​19727)
  • logging: fixed the whitespace permadiff on exclusions.filter field in google_logging_billing_account_sink, google_logging_folder_sink, google_logging_organization_sink and google_logging_project_sink resources (#​19744)
  • pubsub: fixed permadiff with configuring an empty retry_policy. (#​19784)
  • secretmanager: fixed the issue of unpopulated fields labels, annotations and version_destroy_ttl in the terraform state for the google_secret_manager_secrets datasource (#​19748)

v6.6.0

Compare Source

FEATURES:

  • New Resource: google_dataproc_batch (#​19686)
  • New Resource: google_healthcare_pipeline_job (#​19717)
  • New Resource: google_site_verification_owner (#​19641)

IMPROVEMENTS:

  • assuredworkloads: added HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS and HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS_WITH_US_SUPPORT enum values to compliance_regime in the google_assuredworkload_workload resource (#​19714)
  • compute: added bgp_best_path_selection_mode ,bgp_bps_always_compare_med and bgp_bps_inter_region_cost fields to google_compute_network resource (#​19708)
  • compute: added next_hop_origin ,next_hop_med and next_hop_inter_region_cost output fields to google_compute_route resource (#​19708)
  • compute: added enum STATEFUL_COOKIE_AFFINITY and strong_session_affinity_cookie field to google_compute_backend_service and google_compute_region_backend_service resource (#​19665)
  • compute: moved TDX instance option for confidential_instance_type in google_compute_instance from Beta to GA (#​19706)
  • containeraws: added kubelet_config field group to the google_container_aws_node_pool resource (#​19714)
  • pubsub: added GCS ingestion settings and platform log settings to google_pubsub_topic resource (#​19669)
  • sourcerepo: added create_ignore_already_exists field to google_sourcerepo_repository resource (#​19716)
  • sql: added in-place update support for settings.time_zone in google_sql_database_instance resource (#​19654)
  • tags: increased maximum accepted input length for the short_name field in google_tags_tag_key and google_tags_tag_value resources (#​19712)

BUG FIXES:

  • bigquery: fixed google_bigquery_dataset_iam_member to be able to delete itself and overwrite the existing iam members for bigquery dataset keeping the authorized datasets as they are. (#​19682)
  • bigquery: fixed an error which could occur with service account field values containing non-lower-case characters in google_bigquery_dataset_access (#​19705)
  • compute: fixed an issue where the boot_disk.initialize_params.resource_policies field in google_compute_instance forced a resource recreation when used in combination with google_compute_disk_resource_policy_attachment (#​19692)
  • compute: fixed the issue that labels is not set when creating the resource google_compute_interconnect (#​19632)
  • tags: removed google_tags_location_tag_binding resource from the Terraform state when its parent resource has been removed outside of Terraform (#​19693)
  • workbench: fixed a bug in the google_workbench_instance resource where the removal of labels was not functioning as expected. (#​19620)

v6.5.0

Compare Source

DEPRECATIONS:

  • compute: deprecated macsec.pre_shared_keys.fail_open field in google_compute_interconnect resource. Use the new macsec.fail_open field instead (#​19572)

FEATURES:

  • New Data Source: google_compute_region_instance_group_manager (#​19589)
  • New Data Source: google_privileged_access_manager_entitlement (#​19580)
  • New Data Source: google_secret_manager_regional_secret_version_access (#​19538)
  • New Data Source: google_secret_manager_regional_secret_version (#​19514)
  • New Data Source: google_secret_manager_regional_secrets (#​19532)
  • New Resource: google_compute_router_nat_address (#​19550)
  • New Resource: google_logging_log_scope (#​19559)

IMPROVEMENTS:

  • apigee: added activate field to google_apigee_nat_address resource (#​19591)
  • bigquery: added biglake_configuration field to google_bigquery_table resource to support BigLake Managed Tables (#​19541)
  • cloudrunv2: promoted scaling field in google_cloud_run_v2_service resource to GA (#​19588)
  • composer: promoted config.workloads_config.cloud_data_lineage_integration field in google_composer_environment resource to GA (#​19612)
  • compute: added existing_reservations field to google_compute_region_commitment resource (#​19585)
  • compute: added hostname field to google_compute_instance data source (#​19607)
  • compute: added initial_nat_ip field to google_compute_router_nat resource (#​19550)
  • compute: added macsec.fail_open field to google_compute_interconnect resource (#​19572)
  • compute: added SUSPENDED as a possible value to desired_state field in google_compute_instance resource (#​19586)
  • compute: added import support for projects/{{project}}/meta-data/{{key}} format for google_compute_project_metadata_item resource (#​19613)
  • compute: marked customer_name and location fields as optional in google_compute_interconnect resource to support cross cloud interconnect (#​19619)
  • container: added linux_node_config.hugepages_config field to google_container_node_pool resource (#​19521)
  • container: promoted gcfs_config field in google_container_cluster resource to GA (#​19617)
  • looker: added psc_enabled and psc_config fields to google_looker_instance resource (#​19523)
  • networkconnectivity: added include_import_ranges field to google_network_connectivity_spoke resource for linked_vpn_tunnels, linked_interconnect_attachments and linked_router_appliance_instances (#​19530)
  • secretmanagerregional: added version_aliases field to google_secret_manager_regional_secret resource (#​19514)
  • workbench: increased create timeout to 20 minutes for google_workbench_instance resource (#​19551)

BUG FIXES:

  • bigquery: fixed in-place update of google_bigquery_table resource when external_data_configuration.schema field is set (#​19558)
  • bigquerydatapolicy: fixed permadiff on policy_tag field in google_bigquery_datapolicy_data_policy resource (#​19563)
  • composer: fixed storage_config.bucket field to support a bucket name with or without "gs://" prefix (#​19552)
  • container: added support for setting addons_config.gcp_filestore_csi_driver_config and enable_autopilot in the same google_container_cluster (#​19590)
  • container: fixed node_config.kubelet_config updates in google_container_cluster resource (#​19562)
  • container: fixed a bug where specifying node_pool_defaults.node_config_defaults with enable_autopilot = true would cause google_container_cluster resource creation failure (#​19543)
  • workbench: fixed a bug in the google_workbench_instance resource where the removal of labels was not functioning as expected (#​19620)

v6.4.0

Compare Source

DEPRECATIONS:

  • securitycenterv2: deprecated google_scc_v2_organization_scc_big_query_exports. Use google_scc_v2_organization_scc_big_query_export instead. (#​19457)

FEATURES:

  • New Data Source: google_secret_manager_regional_secret_version (#​19514)
  • New Data Source: google_secret_manager_regional_secret (#​19491)
  • New Resource: google_database_migration_service_migration_job (#​19488)
  • New Resource: google_discovery_engine_target_site (#​19469)
  • New Resource: google_healthcare_workspace (#​19476)
  • New Resource: google_scc_folder_scc_big_query_export (#​19480)
  • New Resource: google_scc_organization_scc_big_query_export (#​19465)
  • New Resource: google_scc_project_scc_big_query_export (#​19466)
  • New Resource: google_scc_v2_organization_scc_big_query_export (#​19457)
  • New Resource: google_secret_manager_regional_secret_version (#​19504)
  • New Resource: google_secret_manager_regional_secret (#​19461)
  • New Resource: google_site_verification_web_resource (#​19477)
  • New Resource: google_spanner_backup_schedule (#​19449)

IMPROVEMENTS:

  • alloydb: added enable_outbound_public_ip field to google_alloydb_instance resource (#​19444)
  • apigee: added in-place update for consumer_accept_list field in google_apigee_instance resource (#​19442)
  • compute: added interface field to google_compute_attached_disk resource (#​19440)
  • compute: added in-place update in google_compute_interconnect resource, except for remote_location and requested_features fields (#​19508)
  • filestore: added deletion_protection_enabled and deletion_protection_reason fields to google_filestore_instance resource (#​19446)
  • looker: added fips_enabled field to google_looker_instance resource (#​19511)
  • metastore: added deletion_protection field to google_dataproc_metastore_service resource (#​19505)
  • netapp: added allow_auto_tiering field to google_netapp_storage_pool resource (#​19454)
  • netapp: added tiering_policy field to google_netapp_volume resource (#​19454)
  • secretmanagerregional: added version_aliases field to google_secret_manager_regional_secret resource (#​19514)
  • spanner: added edition field to google_spanner_instance resource (#​19449)

BUG FIXES:

  • compute: fixed a permadiff on iap field in google_compute_backend and google_compute_region_backend resources (#​19509)
  • container: fixed a bug where specifying node_pool_defaults.node_config_defaults with enable_autopilot = true will cause google_container_cluster resource creation failure (#​19543)
  • container: fixed a permadiff on node_config.gcfs_config field in google_container_cluster and google_container_node_pool resources (#​19512)
  • container: fixed the in-place update for node_config.gcfs_config field in google_container_cluster and google_container_node_pool resources (#​19512)
  • container: made node_config.kubelet_config.cpu_manager_policy field optional to fix its update in google_container_cluster resource (#​19464)
  • dns: fixed a permadiff on dnssec_config field in google_dns_managed_zone resource (#​19456)
  • pubsub: allowed filter field to contain line breaks in google_pubsub_subscription resource (#​19451)

v6.3.0

Compare Source

FEATURES:

  • New Data Source: google_bigquery_tables (#​19402)
  • New Resource: google_developer_connect_connection (#​19431)
  • New Resource: google_developer_connect_git_repository_link (#​19431)
  • New Resource: google_memorystore_instance (#​19398)

IMPROVEMENTS:

  • compute: added connected_endpoints.consumer_network and connected_endpoints.psc_connection_id fields to google_compute_service_attachment resource (#​19426)
  • compute: added field http_keep_alive_timeout_sec to google_region_compute_target_https_proxy and google_region_compute_target_http_proxy resources (#​19432)
  • compute: added support for boot_disk.initialize_params.resource_policies in google_compute_instance and google_instance_template (#​19407)
  • container: added storage_pools to node_config in google_container_cluster and google_container_node_pool (#​19423)
  • containerattached: added security_posture_config field to google_container_attached_cluster resource (#​19411)
  • netapp: added large_capacity and multiple_endpoints to google_netapp_volume resource (#​19384)
  • resourcemanager: added tags field to google_folder to allow setting tags for folders at creation time (#​19380)

BUG FIXES:

  • compute: setting network_ip to "" will no longer cause diff and will be treated the same as null (#​19400)
  • dataproc: updated google_dataproc_cluster to protect against handling nil kerberos_config values (#​19401)
  • dns: added a mutex to google_dns_record_set to prevent conflicts when multiple resources attempt to operate on the same record set (#​19416)
  • managedkafka: added 5 second wait post google_managed_kafka_topic creation to fix eventual consistency errors (#​19429)

v6.2.0

Compare Source

FEATURES:

  • New Data Source: google_certificate_manager_certificates (#​19361)
  • New Resource: google_network_security_server_tls_policy (#​19314)
  • New Resource: google_scc_v2_folder_scc_big_query_export (#​19327)
  • New Resource: google_scc_v2_project_scc_big_query_export (#​19311)

IMPROVEMENTS:

  • assuredworkload: added field partner_service_billing_account to google_assured_workloads_workload (#​19358)
  • bigtable: added support for column_family.type in google_bigtable_table (#​19302)
  • cloudrun: promoted support for nfs and csi volumes (for Cloud Storage FUSE) for google_cloud_run_service to GA (#​19359)
  • cloudrunv2: promoted support for nfs and gcs volumes for google_cloud_run_v2_job to GA (#​19359)
  • compute: added boot_disk.interface field to google_compute_instance resource (#​19319)
  • container: added node_pool_auto_config.node_kublet_config.insecure_kubelet_readonly_port_enabled field to google_container_cluster. (#​19320)
  • container: added insecure_kubelet_readonly_port_enabled to node_pool.node_config.kubelet_config and node_config.kubelet_config in google_container_node_pool resource. (#​19312)
  • container: added insecure_kubelet_readonly_port_enabled to node_pool_defaults.node_config_defaults, node_pool.node_config.kubelet_config, and node_config.kubelet_config in google_container_cluster resource. (#​19312)
  • container: added support for in-place updates for google_compute_node_pool.node_config.gcfs_config and google_container_cluster.node_config.gcfs_cluster and google_container_cluster.node_pool.node_config.gcfs_cluster (#​19365)
  • container: promoted the additive_vpc_scope_dns_domain field on the google_container_cluster resource to GA (#​19313)
  • iambeta: added x509 field to google_iam_workload_identity_pool_provider resource (#​19375)
  • networkconnectivity: added include_export_ranges to google_network_connectivity_spoke (#​19346)
  • pubsub: added cloud_storage_config.max_messages and cloud_storage_config.avro_config.use_topic_schema fields to google_pubsub_subscription resource (#​19338)
  • redis: added the maintenance_policy field to the google_redis_cluster resource (#​19341)
  • resourcemanager: added tags field to google_project to allow setting tags for projects at creation time (#​19351)
  • securitycenter: added support for empty streaming_config.filter values in google_scc_notification_config resources (#​19369)

BUG FIXES:

  • compute: fixed google_compute_interconnect to support correct available_features option of IF_MACSEC (#​19330)
  • compute: fixed a bug where advertised_route_priority was accidentally set to 0 during updates in google_compute_router_peer (#​19366)
  • compute: fixed a permadiff caused by setting start_time in an incorrect H:mm format in google_compute_resource_policies resources (#​19297)
  • compute: fixed network_interface.subnetwork_project validation to match with the project in network_interface.subnetwork field when network_interface.subnetwork has full self_link in google_compute_instance resource (#​19348)
  • container: removed unnecessary force replacement in node pool gcfs_config (#​19365
  • kms: updated the google_kms_autokey_config resource's folder field to accept values that are either full resource names (folders/{folder_id}) or just the folder id ({folder_id} only) (#​19364))
  • storage: added retry support for 429 errors in google_storage_bucket resource (#​19353)

v6.1.0

Compare Source

FEATURES:

  • New Data Source: google_kms_crypto_key_latest_version (#​19249)
  • New Data Source: google_kms_crypto_key_versions (#​19241)

IMPROVEMENTS:

  • databasemigrationservice: added support in google_database_migration_service_connection_profile for creating DMS connection profiles that link to existing Cloud SQL instances/AlloyDB clusters. (#​19291)
  • alloydb: added subscription_type and trial_metadata field to google_alloydb_cluster resource (#​19262)
  • bigquery: added encryption_configuration field to google_bigquery_data_transfer_config resource (#​19267)
  • bigqueryanalyticshub: added selected_resources, and restrict_direct_table_access to google_bigquery_analytics_hub_listing resource (#​19244)
  • bigqueryanalyticshub: added sharing_environment_config to google_bigquery_analytics_hub_data_exchange resource (#​19244)
  • cloudtasks: added http_target field to google_cloud_tasks_queue resource (#​19253)
  • compute: added accelerators field to google_compute_node_template resource (#​19292)
  • compute: allowed disabling server_tls_policy during update in google_compute_target_https_proxy resources (#​19233)
  • container: added secret_manager_config field to google_container_cluster resource (#​19288)
  • datastream: added transaction_logs and change_tables to the datastream_stream resource (#​19248)
  • discoveryengine: added chunking_config and layout_parsing_config fields to google_discovery_engine_data_store resource (#​19274)
  • dlp: added inspect_template_modified_cadence field to big_query_target and cloud_sql_target in google_data_loss_prevention_discovery_config resource (#​19282)
  • dlp: added tag_resources field to google_data_loss_prevention_discovery_config resource (#​19282)
  • networksecurity: promoted google_network_security_client_tls_policy to GA (#​19293)

BUG FIXES:

  • bigquery: fixed an error which could occur with email field values containing non-lower-case characters in google_bigquery_dataset_access resource (#​19259)
  • bigqueryanalyticshub: made bigquery_dataset immutable in google_bigquery_analytics_hub_listing as it was not updatable in the API. Now modifying the field in Terraform will correctly recreate the resource rather than causing Terraform to report it would attempt an invalid update. (#​19244)
  • container: fixed update inconsistency in google_container_cluster resource (#​19247)
  • pubsub: fixed a validation bug that didn't allow empty filter definitions for google_pubsub_subscription resources (#​19284)
  • resourcemanager: fixed a bug where data.google_client_config failed silently when inadequate credentials were used to configure the provider (#​19286)
  • sql: fixed importing google_sql_user where host is an IPv4 CIDR (#​19243)
  • sql: fixed overwriting of name field for IAM Group user in google_sql_user resource (#​19234)

v6.0.1

Compare Source

BREAKING CHANGES:

  • sql: removed settings.ip_configuration.require_ssl from google_sql_database_instance in favor of settings.ip_configuration.ssl_mode. This field was intended to be removed in 6.0.0. (#​19263)

v6.0.0

Compare Source

Terraform Google Provider 6.0.0 Upgrade Guide

BREAKING CHANGES:

  • provider: changed provider labels to add the goog-terraform-provisioned: true label by default. (#​19190)
  • activedirectory: added deletion_protection field to google_active_directory_domain resource. This field defaults to true, preventing accidental deletions. To delete the resource, you must first set deletion_protection = false before destroying the resource. (#​18906)
  • alloydb: removed network in google_alloy_db_cluster. Use network_config.network instead. (#​19181)
  • bigquery: added client-side validation to prevent table view creation if schema contains required fields for google_bigquery_table resource (#​18767)
  • bigquery: removed allow_resource_tags_on_deletion from google_bigquery_table. Resource tags are now always allowed on table deletion. (#​19077)
  • bigqueryreservation: removed multi_region_auxiliary from google_bigquery_reservation (#​18922)
  • billing: revised the format of id for google_billing_project_info (#​18823)
  • cloudrunv2: added deletion_protection field to google_cloudrunv2_service. This field defaults to true, preventing accidental deletions. To delete the resource, you must first set deletion_protection = false before destroying the resource.(#​19019)
  • cloudrunv2: changed liveness_probe to no longer infer a default value from api on google_cloud_run_v2_service. Removing this field and applying the change will now remove liveness probe from the Cloud Run service. (#​18764)
  • cloudrunv2: retyped containers.env to SET from ARRAY for google_cloud_run_v2_service and google_cloud_run_v2_job. (#​18855)
  • composer: ip_allocation_policy = [] in google_composer_environment is no longer valid configuration. Removing the field from configuration should not produce a diff. (#​19207)
  • compute: added new required field enabled in google_compute_backend_service and google_compute_region_backend_service (#​18772)
  • compute: changed certifcate_id in google_compute_managed_ssl_certificate to correctly be output only. (#​19069)
  • compute: revised and in some cases removed default values of connection_draining_timeout_sec, balancing_mode and outlier_detection in google_compute_region_backend_service and google_compute_backend_service. (#​18720)
  • compute: revised the format of id for compute_network_endpoints (#​18844)
  • compute: guest_accelerator = [] is no longer valid configuration in google_compute_instance. To explicitly set an empty list of objects, set guest_accelerator.count = 0. (#​19207)
  • compute: google_compute_instance_from_template and google_compute_instance_from_machine_image network_interface.alias_ip_range, network_interface.access_config, attached_disk, guest_accelerator, service_account, scratch_disk can no longer be set to an empty block []. Removing the fields from configuration should not produce a diff. (#​19207)
  • compute: secondary_ip_ranges = [] in google_compute_subnetwork is no longer valid configuration. To set an explicitly empty list, use send_secondary_ip_range_if_empty and completely remove secondary_ip_range from config. (#​19207)
  • container: made advanced_datapath_observability_config.enable_relay required in google_container_cluster (#​19060)
  • container: removed deprecated field advanced_datapath_observability_config.relay_mode from google_container_cluster resource. Users are expected to use enable_relay field instead. (#​19060)
  • container: three label-related fields are now in google_container_cluster resource. resource_labels field is non-authoritative and only manages the labels defined by the users on the resource through Terraform. The new output-only terraform_labels field merges the labels defined by the users on the resource through Terraform and the default labels configured on the provider. The new output-only effective_labels field lists all of labels present on the resource in GCP, including the labels configured through Terraform, the system, and other clients. (#​19062)
  • container: made three fields resource_labels, terraform_labels, and effective_labels be present in google_container_cluster datasources. All three fields will have all of labels present on the resource in GCP including the labels configured through Terraform, the system, and other clients, equivalent to effective_labels on the resource. (#​19062)
  • container: guest_accelerator = [] is no longer valid configuration in google_container_cluster and google_container_node_pool. To explicitly set an empty list of objects, set guest_accelerator.count = 0. (#​19207)
  • container: guest_accelerator.gpu_driver_installation_config = [] and guest_accelerator.gpu_sharing_config = [] are no longer valid configuration in google_container_cluster and google_container_node_pool. Removing the fields from configuration should not produce a diff. (#​19207)
  • datastore: removed google_datastore_index in favor of google_firestore_index (#​19160)
  • edgenetwork: three label-related fields are now in google_edgenetwork_network and google_edgenetwork_subnet resources. labels field is non-authoritative and only manages the labels defined by the users on the resource through Terraform. The new output-only terraform_labels field merges the labels defined by the users on the resource through Terraform and the default labels configured on the provider. The new output-only effective_labels field lists all of labels present on the resource in GCP, including the labels configured through Terraform, the system, and other clients. (#​19062)
  • identityplatform: removed resource google_identity_platform_project_default_config in favor of google_identity_platform_project_config (#​18992)
  • pubsub: allowed schema_settings in google_pubsub_topic to be removed (#​18631)
  • integrations: removed create_sample_workflows and provision_gmek from google_integrations_client (#​19148)
  • redis: added a deletion_protection_enabled field to the google_redis_cluster resource. This field defaults to true, preventing accidental deletions. To delete the resource, you must first set deletion_protection_enabled = false before destroying the resource. (#​19173)
  • resourcemanager: added deletion_protection field to google_folder to make deleting them require an explicit intent. Folder resources now cannot be destroyed unless deletion_protection = false is set for the resource. (#​19021)
  • resourcemanager: made deletion_policy in google_project 'PREVENT' by default. This makes deleting them require an explicit intent. google_project resources cannot be destroyed unless deletion_policy is set to 'ABANDON' or 'DELETE' for the resource. (#​19114)
  • sql: removed settings.ip_configuration.require_ssl in google_sql_database_instance. Please use settings.ip_configuration.ssl_mode instead. (#​18843)
  • storage: removed no_age field from lifecycle_rule.condition in the google_storage_bucket resource (#​19048)
  • vpcaccess: removed default values for min_throughput and min_instances fields on google_vpc_access_connector and made them default to values returned from the API when not provided by users (#​18697)
  • vpcaccess: added a conflicting fields restriction between min_throughput and min_instances fields on google_vpc_access_connector (#​18697)
  • vpcaccess: added a conflicting fields restriction between max_throughput and max_instances fields on google_vpc_access_connector (#​18697)
  • workstation: defaulted host.gce_instance.disable_ssh to true for google_workstations_workstation_config (#​19101) IMPROVEMENTS:
  • compute: added fields reserved_internal_range and secondary_ip_ranges[].reserved_internal_range to google_compute_subnetwork resource (#​19151)
  • compute: changed the behavior of name_prefix in multiple Compute resources to allow for a longer max length of 54 characters. See the upgrade guide and resource documentation for more details. (#​19152) BUG FIXES:
  • compute: fixed an issue regarding sending enabled field by default for null iap message in google_compute_backend_service and google_compute_region_backend_service (#​18772)
hashicorp/terraform-provider-google-beta (google-beta)

v6.7.0

Compare Source

FEATURES:

  • New Resource: google_healthcare_pipeline_job (#​8330)
  • New Resource: google_secure_source_manager_branch_rule (#​8360)

IMPROVEMENTS:

  • container: google_container_cluster will now accept server-specified values for node_pool_auto_config.0.node_kubelet_config when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#​8385)
  • discoveryengine: added chat_engine_config.dialogflow_agent_to_link field to google_discovery_engine_chat_engine resource (#​8333)
  • networkconnectivity: added field migration to resource google_network_connectivity_internal_range (#​8350)
  • networkservices: added routing_mode field to google_network_services_gateway resource (#​8355)

BUG FIXES:

  • bigtable: fixed an error where BigTable IAM resources could be created with conditions but the condition was not stored in state (#​8334)
  • container: fixed issue which caused to not being able to disable enable_cilium_clusterwide_network_policy field on google_container_cluster. (#​8338)
  • container: fixed a diff triggered by a new API-side default value for node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled. Terraform will now accept server-specified values for node_config.0.kubelet_config when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#​8385)
  • dataproc: fixed a bug in google_dataproc_cluster that prevented creation of clusters with internal_ip_only set to false (#​8363)
  • iam: addressed google_service_account creation issues caused by the eventual consistency of the GCP IAM API by ignoring 403 errors returned on polling the service account after creation. (#​8336)
  • logging: fixed the whitespace permadiff on exclusions.filter field in google_logging_billing_account_sink, google_logging_folder_sink, google_logging_organization_sink and google_logging_project_sink resources (#​8343)
  • pubsub: fixed permadiff with configuring an empty retry_policy. (#​8365)
  • secretmanager: fixed the issue of unpopulated fields labels, annotations and version_destroy_ttl in the terraform state for the google_secret_manager_secrets datasource (#​8346)

v6.6.0

Compare Source

FEATURES:

  • New Resource: google_dataproc_batch (#​8306)
  • New Resource: google_healthcare_pipeline_job (#​8330)
  • New Resource: google_site_verification_owner (#​8287)

IMPROVEMENTS:

  • assuredworkloads: added HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS and HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS_WITH_US_SUPPORT enum values to compliance_regime in the google_assured_workloads_workload resource (#​8326)
  • compute: added bgp_best_path_selection_mode ,bgp_bps_always_compare_med and bgp_bps_inter_region_cost fields to google_compute_network resource (#​8321)
  • compute: added next_hop_origin ,next_hop_med and next_hop_inter_region_cost output fields to google_compute_route resource (#​8321)
  • compute: added enum STATEFUL_COOKIE_AFFINITY and strong_session_affinity_cookie field to google_compute_backend_service and google_compute_region_backend_service resource (#​8296)
  • compute: added TDX instance option for confidential_instance_type in google_compute_instance (#​8320)
  • containeraws: added kubelet_config field group to the google_container_aws_node_pool resource (#​8326)
  • dataproc: switched to the v1 API for google_dataproc_autoscaling_policy resource (#​8306)
  • pubsub: added GCS ingestion settings and platform log settings to google_pubsub_topic resource (#​8298)
  • sourcerepo: added create_ignore_already_exists field to google_sourcerepo_repository resource (#​8329)
  • sql: added in-place update support for settings.time_zone in google_sql_database_instance resource (#​8293)
  • tags: increased maximum accepted input length for the short_name field in google_tags_tag_key and google_tags_tag_value resources (#​8324)

BUG FIXES:

  • bigquery: fixed google_bigquery_dataset_iam_member to be able to delete itself and overwrite the existing iam members for bigquery dataset keeping the authorized datasets as they are. (#​8304)
  • bigquery: fixed an error which could occur with service account field values containing non-lower-case characters in google_bigquery_dataset_access (#​8319)
  • compute: fixed an issue where the boot_disk.initialize_params.resource_policies field in google_compute_instance forced a resource recreation when used in combination with google_compute_disk_resource_policy_attachment (#​8309)
  • compute: fixed the issue that labels was not set when creating the resource google_compute_interconnect (#​8284)
  • tags: removed google_tags_location_tag_binding resource from the Terraform state when its parent resource has been removed outside of Terraform (#​8310)
  • workbench: fixed a bug in the google_workbench_instance resource where the removal of labels was not functioning as expected. (#​8280)

v6.5.0

Compare Source

DEPRECATIONS:

  • compute: deprecated macsec.pre_shared_keys.fail_open field in google_compute_interconnect resource. Use the new macsec.fail_open field instead (#​8245)

FEATURES:

  • New Data Source: google_compute_region_instance_group_manager (#​8259)
  • New Data Source:

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Aug 27 '24 00:08 renovate[bot]

/gcbrun

dpebot avatar Aug 27 '24 00:08 dpebot

/gcbrun

dpebot avatar Aug 29 '24 16:08 dpebot