Skip to content

chore(deps): update terraform-provider-google to v6.49.2

Runway Renovate Robotrequested to merge
renovate/terraform-provider-google into main

This MR contains the following updates:

Package Type Update Change
google (source) required_provider minor 6.37.0 -> 6.49.2
google-beta (source) required_provider minor 6.37.0 -> 6.49.2

View the Renovate pipeline for this MR

Release Notes

hashicorp/terraform-provider-google (google)

v6.49.2

Compare Source

BUG FIXES:

  • container: fixed issue where a failed creation on google_container_node_pool would result in an unrecoverable tainted state (#​10586)

v6.49.1

Compare Source

BUG FIXES:

  • secretmanager: fixed issue where upgrading to 6.49.0 would cause all google_secret_manager_secret_version resources to be recreated unless secret_data_wo_version was set (#​24061)

v6.49.0

Compare Source

DEPRECATIONS:

  • beyondcorp: google_beyondcorp_application_iam_binding, google_beyondcorp_application_iam_member and google_beyondcorp_application_iam_policy IAM resources, and the google_beyondcorp_application_iam_policy datasource have been deprecated and will be removed in the upcoming major release (#​23995)
  • tpu: deprecated google_tpu_tensorflow_versions data source. Use google_tpu_v2_runtime_versions instead. (#​23958)

BREAKING CHANGES:

  • vertexai: made the metadata field required in google_vertex_ai_index (#​23953)

FEATURES:

  • New Data Source: google_artifact_registry_tag (#​23994)
  • New Data Source: google_artifact_registry_tags (#​23969)
  • New Resource: google_dialogflow_convesation_profile (#​23996)

IMPROVEMENTS:

  • apikeys: added service_account_email to google_apikeys_key (#​24001)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​23914)
  • container: added eviction_soft, eviction_soft_grace_period, eviction_minimum_reclaim, eviction_max_pod_grace_period_seconds, max_parallel_image_pulls, transparent_hugepage_enabled, transparent_hugepage_defrag and min_node_cpus fields to node_config block of google_container_node_pool and google_container_cluster resources (#​23973)
  • networkmanagement: added subnet and network fields to the google_network_management_vpc_flow_logs_config resource (beta) (#​23945)
  • networkmanagement: added output-only field target_resource_state to the google_network_management_vpc_flow_logs_config resource (#​23945)
  • resourcemanager: added management_project and configured_capabilities fields to the google_folder resource. (#​23983)

BUG FIXES:

  • cloud_tasks: set name field set to required in google_cloud_tasks_queue resource (#​23997)
  • clouddeploy: allowed sending weekly_windows.start_time as an empty object in order to use default values in thegoogle_clouddeploy_deploy_policy resource (#​23993)
  • kms: skip_initial_version_creation field is no longer immutable in google_kms_crypto_key, but is still only settable at-creation (#​23984)
  • netapp: fixed bug where google_netapp_volume.large_capacity was not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#​24004)
  • networkconnectivity: added update support for linked_vpc_network in google_network_connectivity_spoke (#​23949)

v6.48.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_package (#​23901)
  • New Data Source: google_artifact_registry_repositories (#​23906)
  • New Data Source: google_artifact_registry_version (#​23868)
  • New Resource: google_dialogflow_cx_playbook (initial basic support, full features to follow in a later release) (#​23895)
  • New Resource: google_vertexai_rag_engine_config (#​23889)

IMPROVEMENTS:

  • backupdr: added log_retention_days field to google_backup_dr_backup_plan resource (#​23846)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​23914)
  • compute: added ha_policy field to google_compute_region_backend_service resource (#​23905)
  • compute: added the ability to use global target forwarding rule for target_service field in google_compute_service_attachment resource (#​23892)
  • container: added boot_disk to node_config in google_container_cluster and google_container_node_pool resources (#​23840)
  • container: added node_config.kubelet_config.single_process_oom_kill field to google_container_node_pool and google_container_cluster resources (#​23844)
  • container: added in-place update support for user_managed_keys_config field in google_container_cluster resource (#​23883)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​23830)
  • gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_admin_cluster resource (#​23908)
  • memorystore: added allow_fewer_zones_deployment field to google_memorystore_instance resource (#​23845)
  • sql: added field psa_write_endpoint flag to google_sql_database_instance resource (#​23867)
  • sql: added network_attachment_uri field to google_sql_database_instance resource (#​23894)
  • sql: added node_count field to sql_database_instance resource, and added new value READ_POOL_INSTANCE enum to the instance_type field of sql_database_instance resource (#​23897)
  • storagetransfer: added federated_identity_config field to google_storage_transfer_job resource (#​23900)
  • storagetransfer: added transfer_spec.aws_s3_data_source.cloudfront_domain field to google_storage_transfer_job resource (#​23887)

BUG FIXES:

  • accesscontextmanager: made scopes field as immutable for access_context_manager_access_policy resource. (#​23886)
  • bigquery: fixed handling of non-legacy roles for access block inside google_bigquery_dataset (#​23898)
  • container: fixed an issue causing errors during updates to node_config to be suppressed in google_container_cluster and google_container_node_pool (#​23842)

v6.47.0

Compare Source

DEPRECATIONS:

  • compute: deprecated network_self_link field in google_compute_subnetworks data source. Use network_name instead. (#​23753)
  • resourcemanager: deprecated project field in google_service_account_key data source. The field is non functional and can safely be removed from your configuration. (#​23813)

FEATURES:

  • New Data Source: google_artifact_registry_docker_images (#​23751)
  • New Resource: google_apigee_security_action (#​23721)
  • New Resource: google_developer_connect_insights_config (#​23789)
  • New Resource: google_discovery_engine_cmek_config (#​23745)
  • New Resource: google_iam_workforce_pool_iam_binding (#​23784)
  • New Resource: google_iam_workforce_pool_iam_member (#​23784)
  • New Resource: google_iam_workforce_pool_iam_policy (#​23784)

IMPROVEMENTS:

  • backupdr: added backup_retention_inheritance field to google_backup_dr_backup_vault resource (#​23817)
  • bigqueryanalyticshub: added commercial_info and delete_commercial fields in google_bigquery_analytics_hub_listing resource (#​23731)
  • bigqueryanalyticshub: added discovery_type field to google_bigquery_analytics_hub_data_exchange resource (#​23801)
  • bigqueryanalyticshub: added state, discovery_type, and allow_only_metadata_sharing fields to google_bigquery_analytics_hub_listing resource (#​23801)
  • cloudfunction: added automatic_update_policy and on_deploy_update_policy to google_cloudfunctions_function resource (#​23819)
  • cloudrunv2: added gpu_zonal_redundancy_disabled field to google_cloud_run_v2_job resource. (#​23811)
  • compute: added labels field to google_compute_storage_pool resource (#​23783)
  • compute: added network_name field to google_compute_subnetworks data source (#​23753)
  • container: added ip_allocation_policy.additional_ip_ranges_config field to google_container_cluster resource (#​23828)
  • container: added network_config.additional_node_network_configs.subnetwork field to google_container_node_pool resource (#​23828)
  • container: added addons_config.lustre_csi_driver_config field to google_container_cluster resource (#​23729)
  • container: added support for rbac_binding_config in google_container_cluster (#​23812)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​23830)
  • looker: added LOOKER_CORE_TRIAL_STANDARD, LOOKER_CORE_TRIAL_ENTERPRISE, and LOOKER_CORE_TRIAL_EMBED editions to google_looker_instance resource. (#​23785)
  • managedkafka: added tls_config field to google_managed_kafka_cluster resource (#​23749)
  • memorystore: added allow_fewer_zones_deployment field to google_redis_cluster resource (#​23800)
  • storage: added deletion_policy field to google_storage_bucket_object resource (#​23816)
  • vertexai: added custom_delete field to google_vertex_ai_endpoint_with_model_garden_deployment resource (#​23788)

BUG FIXES:

  • bigquery: fixed a crash in google_bigquery_table when configured as an external table with parquet_options (#​23808)
  • cloudrunv2: fixed an issue where manual_instance_count was unable to set to 0 in google_cloud_run_v2_worker_pool. (#​23798)
  • composer: fixed updates failing for recovery_config with explicitly disabled scheduled snapshots (#​23715)
  • iap: fixed an issue where deleting google_iap_settings without setting GOOGLE_PROJECT incorrectly failed (#​23724)
  • storage: removed client-side GCS name validations for google_storage_bucket (#​23719)

v6.46.0

Compare Source

FEATURES:

  • New Data Source: google_storage_insights_dataset_config (#​23709)
  • New Resource: google_apigee_api_product (#​23648)
  • New Resource: google_discovery_engine_recommendation_engine (#​23692)
  • New Resource: google_oracle_database_odb_network (#​23675)
  • New Resource: google_oracle_database_odb_subnet (#​23694)
  • New Resource: google_storage_insights_dataset_config (#​23707)

IMPROVEMENTS:

  • compute: added params.resourceManagerTags field to the google_compute_router (#​23690)
  • compute: added in-place update support for provisioned_iops, provisioned_throughput, and access_mode fields in google_compute_region_disk resource (#​23697)
  • dataproc: added authentication_config field to google_dataproc_batch and google_dataproc_session_template resource (#​23644)
  • dataproc: added idle_ttl field to google_dataproc_session_template resource (#​23680)
  • networkconnectivity: added field allocation_options to resource google_network_connectivity_internal_range (#​23687)
  • oracledatabase: added odb_network and odb_subnet fields, and made network and cidr fields optional in google_oracle_database_autonomous_database resource (#​23686)
  • oracledatabase: added odb_network, odb_subnet and backup_odb_subnet fields, and made network, cidr and backup_subnet_cidr fields optional in google_oracle_database_cloud_vm_cluster resource (#​23688)
  • secretmanager: added tags field to google_secret_manager_regional_secret to allow setting tags for regional_secrets at creation time (#​23706)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_repository resource (#​23693)
  • workbench: added enable_managed_euc field to google_workbench_instance resource. (#​23682)
  • workbench: added reservation_affinity field to google_workbench_instance resource. (#​23676)

BUG FIXES:

  • composer: fixed updates failing for google_composer_environment recovery_config with explicitly disabled scheduled snapshots (#​23715)
  • datastore: fixed a permadiff with google_datastream_connection_profile's create_without_validation field (#​23711)
  • memorystore: fixed bug to allow google_memorystore_instance to be used with no provider default region or with a location that doesn't match the provider default region. (#​23666)
  • networkconnectivity: fixed instances[].ip_address & instances[].virtual_machine fields in linked_router_appliance_instances block being incorrectly treated as immutable for google_network_connectivity_spoke resource (#​23705)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​23639)
  • sql: fixed a provider crash when importing google_sql_database resource (#​23643)

v6.45.0

Compare Source

DEPRECATIONS:

  • gemini: deprecated the disable_web_grounding field in the google_gemini_gemini_gcp_enablement_setting resource (#​23581)

FEATURES:

  • New Resource: google_bigtable_schema_bundle (#​23585)
  • New Resource: google_compute_preview_feature (#​23631)
  • New Resource: google_dialogflow_cx_generator (#​23605)
  • New Resource: google_model_armor_floorsetting (#​23621)
  • New Resource: google_vertex_ai_endpoint_with_model_garden_deployment (#​23632)

IMPROVEMENTS:

  • accesscontextmanager: added name to google_access_context_manager_gcp_user_access_binding resource (#​23638)
  • apigee: marked the field access_logging_config immutable in google_apigee_instance resource (#​23571)
  • bigquery: added ignore_auto_generated_schema virtual field to google_bigquery_table resource to ignore server-added columns in the schema field (#​23633)
  • cloudrunv2: added field node_selector in google_cloud_run_v2_job (#​23586)
  • compute: added params.resourceManagerTags field to the google_compute_subnetwork (#​23618)
  • compute: added rule.match.src_secure_tags, rule.target_secure_tags, predefined_rules.match.src_secure_tags and predefined_rules.target_secure_tags fields to google_compute_firewall_policy_with_rules resource (#​23635)
  • dataproc: added cluster_config.security_config.identity_config field to google_dataproc_cluster resource (#​23613)
  • dataproc: updated cluster_config.gce_cluster_config.metadata field to be computed in google_dataproc_cluster resource (#​23613)
  • dialogflowcx: added flexible support to google_dialogflow_cx_webhook resource. (#​23582)
  • gemini: added web_grounding_type field to google_gemini_gemini_gcp_enablement_setting resource (#​23581)
  • netapp: added in-place update support for allow_auto_tiering field in google_netapp_storage_pool resource (#​23614)
  • secretmanager: added tags field to google_secret_manager_secret to allow setting tags for secrets at creation time (#​23625)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_instance resource (#​23606)
  • sql: added network_attachment_uri field to google_sql_database_instance (#​23615)
  • vmwareengine: added GOOGLE_CLOUD_NETAPP_VOLUMES peering type to resource google_vmwareengine_network_peering (#​23628)

BUG FIXES:

  • modelarmor: fixed conflicting field validation for filter_config.sdp_settings on google_model_armor_template (#​23626)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​23639)

v6.44.0

Compare Source

FEATURES:

  • New Data Source: google_compute_network_attachment (#​23570)
  • New Data Source: google_firestore_document (#​23553)
  • New Resource: google_backup_dr_service_config (#​23552)
  • New Resource: google_bigquery_analytics_hub_data_exchange_subscription (#​23560)
  • New Resource: google_gkeonprem_vmware_admin_cluster (#​23554)
  • New Resource: google_network_security_backend_authentication_config (#​23555)

IMPROVEMENTS:

  • alloydb: added machine_config.machine_type field to google_alloydb_instance resource (#​23562)
  • apigee: added access_logging_config field to google_apigee_instance resource (#​23522)
  • apigee: marked access_logging_config field immutable in google_apigee_instance resource (#​23571)
  • backupdr: added in-place update support for google_backup_dr_backup_plan resource (#​23537)
  • compute: added params.resource_manager_tags field to google_compute_firewall resource (#​23524)
  • compute: added application_aware_interconnect and aai_enabled fields to google_compute_interconnect resource (#​23567)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​23499)
  • compute: added provisioned_iops and provisioned_throughput fields to google_compute_region_disk resource (#​23551)
  • compute: added specific_reservation.source_instance_template, delete_at_time, delete_after_duration.seconds, delete_after_duration.nanos and reservation_sharing_policy.service_share_type fields to google_compute_reservation resource (#​23561)
  • firestore: added tags field to google_firestore_database resource (#​23569)
  • securesourcemanager: added in-place update support for description field in google_secure_source_manager_repository resource (#​23557)
  • storage: added force_empty_content_type field to google_storage_bucket_object resource (#​23568)

BUG FIXES:

  • artifactregistry: fixed an issue where changes to cleanup_policies were not being applied correctly in google_artifact_registry_repository resource (#​23556)
  • iambeta: fixed perma-diff for jwks_json field when GCP normalizes JSON formatting in google_iam_workload_identity_pool_provider resource (#​23526)

v6.43.0

Compare Source

DEPRECATIONS:

  • iap: deprecated google_iap_client and google_iap_brand (#​23431)

FEATURES:

  • New Data Source: google_kms_autokey_config (#​23490)
  • New Data Source: google_kms_key_handle (#​23490)
  • New Data Source: google_kms_key_handles (#​23490)
  • New Data Source: google_network_management_connectivity_test_run (#​23497)
  • New Data Source: google_redis_cluster (#​23436)
  • New Resource: google_contact_center_insights_analysis_rule (#​23435)
  • New Resource: google_kms_autokey_config (#​23490)
  • New Resource: google_kms_key_handle (#​23490)
  • New Resource: google_model_armor_template (#​23432)

IMPROVEMENTS:

  • bigquery: added ignore_schema_changes virtual field to google_bigquery_table resource. Only dataPolicies field is supported in ignore_schema_changes for now. (#​23495)
  • billing: added currency_code to google_billing_account data source (#​23474)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​23421)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​23499)
  • compute: added params.resource_manager_tags field to google_compute_route resource (#​23489)
  • container: added anonymous_authentication_config field to google_container_cluster resource (#​23491)
  • dataplex: added suspended field to google_dataplex_datascan resource (#​23456)
  • discoveryengine: added enable_table_annotation, enable_image_annotation, structured_content_types, exclude_html_elements, exclude_html_classes and exclude_html_ids fields to layout_parsing_config of google_discovery_engine_data_store resource (#​23478)
  • discoveryengine: added kms_key_name field to google_discovery_engine_data_store resource (#​23469)
  • memorystore: added managed_server_ca field to google_memorystore_instance resource (#​23430)
  • secretmanager: added deletion_protection field to google_secret_manager_secret resource to optionally make deleting them require an explicit intent (#​23480)
  • secretmanager: added fetch_secret_data field to google_secret_manager_secret_version to optionally skip fetching the secret data (#​23471)

BUG FIXES:

  • compute: fixed match field in google_compute_router_route_policy resource to be marked as required (#​23494)
  • compute: fixed an issue with bgp_always_compare_med in google_compute_network where it was unable to be set from true to false (#​23477)
  • compute: made no replication status in google_compute_disk_async_replication a retryable error (#​23492)
  • gkeonprem: fixed type of load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assign in google_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#​23472)
  • integrationconnectors: removed validation from auth configs in google_integration_connectors_connection resource (#​23429)

v6.42.0

Compare Source

FEATURES:

  • New Resource: google_apihub_plugin_instance (#​23346)
  • New Resource: google_apihub_plugin (#​23407)
  • New Resource: google_dialogflow_cx_generative_settings (#​23394)

IMPROVEMENTS:

  • cloudidentity: added create_ignore_already_exists field to google_cloud_identity_group_membership resource (#​23376)
  • compute: added access_mode field to google_compute_region_disk resource (#​23409)
  • compute: added match.src_secure_tags and target_secure_tags fields to google_compute_firewall_policy_rule resource (#​23414)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​23421)
  • compute: added resource_policies.workload_policy field to google_compute_instance_group_manager resource (#​23420)
  • container: added confidential_nodes.confidential_instance_type field to google_container_cluster resource (#​23410)
  • container: added gke_auto_upgrade_config field to google_container_cluster resource (#​23411)
  • container: added node_config.confidential_nodes.confidential_instance_type field to google_container_node_pool resource (#​23410)
  • firestore: revoked deprecation of deletion_policy field in google_firestore_database resource (#​23403)
  • memorystore: added kms_key field to google_memorystore_instance resource (#​23396)
  • redis: added effective_reserved_ip_range field to google_redis_instance resource (#​23384)
  • secretmanager: added deletion_protection field to google_secret_manager_regional_secret resource (#​23398)
  • spanner: added encryption_config.kms_key_name field to google_spanner_backup_schedule resource (#​23378)
  • storage: added allow_cross_org_vpcs and allow_all_service_agent_access fields to google_storage_bucket resource (#​23405)

BUG FIXES:

  • alloydb: removed machine_config.machine_type field from google_alloydb_instance resource because it is not yet supported in GA (#​23415)
  • bigqueryanalyticshub: supported in-place update for log_linked_dataset_query_user_email in google_bigquery_analytics_hub_listing and google_bigquery_analytics_hub_data_exchange resources. Once enabled, this feature cannot be disabled. (#​23391)
  • bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using secret_access_key on google_bigquery_data_transfer_config (#​23417)
  • memorystore: added the ability to set the replica_count field in google_memorystore_instance resource to 0 (#​23412)
  • monitoring: made description and displayName optional and mutable in google_monitoring_metric_descriptor resource (#​23381)
  • redis: fixed reserved_ip_range field not being populated for google_redis_instance data source (#​23384)
  • secretmanager: stopped surfacing persistent warnings recommending write-only field when using secret_data on google_secret_manager_secret_version (#​23417)
  • sql: stopped surfacing persistent warnings recommending write-only field when using password on google_sql_user (#​23417)
  • workbench: added support for setting serial-port-logging-enable key in metadata field in google_workbench_instance resource (#​23406)

v6.41.0

Compare Source

BREAKING CHANGES:

  • lustre: added per_unit_storage_throughput as a required field to google_lustre_instance resource in response to a change in the API surface (#​23319)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​23255)
  • New Resource: google_apihub_plugin_instance (#​23346)
  • New Resource: google_contact_center_insights_view (#​23263)
  • New Resource: google_dataproc_session_template (#​23288)
  • New Resource: google_dialogflow_encryption_spec (#​23335)

IMPROVEMENTS:

  • alloydb: added network_config.allocated_ip_range_override field to google_alloydb_instance resource (#​23330)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_data_exchange resource (#​23271)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing_subscription resource (#​23286)
  • bigqueryanalyticshub: added pubsub_topic field to google_bigquery_analytics_hub_listing resource (#​23334)
  • bigtable: added row_key_schema to google_bigtable_table resource (#​23337)
  • cloudasset: added support for universe domain handling for google_cloud_asset_resources_search_all datasource (#​23318)
  • cloudquotas: added inherited and inherited_from fields to google_cloud_quotas_quota_adjuster_settings resource (#​23339)
  • compute: added CROSS_SITE_NETWORK enum option to requested_features field in google_compute_interconnect resource (#​23316)
  • compute: added TLS_JA4_FINGERPRINT option to enforce_on_key field in google_compute_region_security_policy, google_compute_security_policy, and google_compute_security_policy_rule resources (#​23270)
  • compute: added send_propagated_connection_limit_if_zero to google_compute_service_attachment to resolve an issue where propagated_connection_limit were not working for 0 value previously. Now setting send_propagated_connection_limit_if_zero = true will send propagated_connection_limit = 0 when it's unset or set to 0. (#​23325)
  • compute: promoted default_custom_error_response_policy to GA in google_compute_url_map (#​23268)
  • container: added performance_monitoring_unit in node_config/advanced_machine_features to 'google_container_cluster' resource (#​23260)
  • container: added release_channel_upgrade_target_version to google_container_engine_versions data source (#​23336)
  • dataplex: added support for discovery scan in google_dataplex_datascan resource (#​23291)
  • dns: added target_name_servers.domain_name field to google_dns_managed_zone resource (#​23265)
  • provider: added support for adc impersonation in different universes (#​23320)
  • storage: added source_md5hash field in google_storage_bucket_object (#​23267)

BUG FIXES:

  • compute: fixed google_compute_firewall_policy_rule staying disabled after apply with disabled = false (#​23329)
  • compute: marked name in google_compute_node_group, google_compute_node_template as required as it was impossible to create successfully without a value (#​23345)
  • sql: fixed an error in updating connection_pool_config in google_sql_database_instance (#​23332)
  • tags: fixed perma-diff for parent field in google_tags_location_tag_binding resource (#​23331)

v6.40.0

Compare Source

DEPRECATIONS:

  • notebook: google_notebook_runtime is deprecated and will be removed in a future major release. Use google_workbench_instance instead. (#​23251)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​23255)
  • New Resource: google_dialogflow_cx_tool (#​23192)

IMPROVEMENTS:

  • backupdr: added support for updating in-place to the google_backup_dr_backup_plan_association resource (#​23237)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing resource (#​23238)
  • compute: added cipher_suite block with phase1 and phase2 encryption configurations to google_compute_vpn_tunnel resource. (#​23253)
  • compute: added fingerprint field in google_compute_target_http_proxy and google_compute_target_https_proxy resources. (#​23231)
  • compute: added headers, expected_output_url, and expected_redirect_response_code fields to test in google_compute_url_map resource and made service field optional (#​23199)
  • compute: added path_matcher.default_route_action fields to google_compute_region_url_map resource (#​23226)
  • compute: added workload_policy and group_placement_policy.gpu_topology fields to google_compute_resource_policy resource (ga) (#​23229)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​23183)
  • integrationconnectors: added support for log_config.level for google_integration_connectors_connection (#​23224)
  • networkconnectivity: added psc_config.producer_instance_location and psc_config.allowed_google_producers_resource_hierarchy_level fields to google_network_connectivity_service_connection_policy (#​23240)
  • redis: added managed_server_ca to google_redis_cluster resource (#​23223)
  • resourcemanager: allowed dataproc-control.googleapis.com and stackdriverprovisioning.googleapis.com services in google_project_service resource (#​23230)
  • storage: removed the hardcoded 80m timeout used during google_storage_bucket deletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#​23198)
  • vertexai: added region in google_vertex_ai_index_endpoint_deployed_index (#​23247)

BUG FIXES:

  • beyondcorp: fixed the issue where hubs.internet_gateway.assigned_ips was not populated correctly in the google_beyondcorp_security_gateway resource (#​23244)
  • compute: fixed google_compute_router_nat where changes to auto_network_tier are always shown after initial apply (#​23190)
  • compute: fixed validation for target_service field in google_compute_service_attachment resource causing issues when targeting a google_network_services_gateway resource (#​23239)
  • dataflow: fields network, subnetwork, num_workers, max_num_workers and machine_type will no longer cause permadiff on dataflow_flex_template_job (#​23222)
  • dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for google_dataproc_cluster (#​23207)
  • networksecurity: marked google_network_security_address_group capacity as immutable because it can't be updated in place. (#​23209)

v6.39.0

Compare Source

FEATURES:

  • New Resource: google_apihub_curation (#​23144)
  • New Resource: google_compute_interconnect_attachment_group (#​23159)
  • New Resource: google_compute_interconnect_group (#​23159)
  • New Resource: google_compute_snapshot_settings (#​23151)

IMPROVEMENTS:

  • apigee: added client_ip_resolution_config field to google_apigee_environment resource (#​23172)
  • beyondcorp: added delegating_service_account field to google_beyondcorp_security_gateway resource (#​23094)
  • bigquery: added data_source_id to update requests through google_bigquery_data_transfer_config (#​23134)
  • cloudrunv2: added google_cloud_run_v2_job support for depends_on and startup_probe properties (#​23179)
  • container: added network_performance_config field to google_container_cluster resource (#​23098)
  • container: promoted flex_start in google_container_cluster to GA (#​23093)
  • dataplex: added catalog_publishing_enabled field to google_dataplex_datascan resource (#​23165)
  • datastream: added network_attachment support via psc_interface_config attribute in google_datastream_private_connection (#​23091)
  • eventarc: made network_attachment field optional in google_eventarc_pipeline (#​23133)
  • gemini: added disable_web_grounding field to google_gemini_gemini_gcp_enablement_setting resource (#​23096)
  • gemini: added enable_data_sharing field to google_gemini_data_sharing_with_google_setting resource (#​23173)
  • gkehub2: added spec.rbacrolebindingactuation field to resource google_gke_hub_feature (#​23102)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​23183)
  • iambeta: enforced workload_identity_pool_managed_identity_id field validation per the documented specifications (#​23149)
  • pubsub: added message_transform field to google_pubsub_topic resource (#​23161)
  • pubsub: added message_transforms field to google_pubsub_subscription resource (#​23162)

BUG FIXES:

  • bigquery: modified google_bigquery_dataset_iam_member to no longer remove authorized views and routines (#​23177)
  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value. (#​23137)
  • colab: fixed perma-diff in google_colab_runtime_template caused by empty blocks. (#​23163)
  • compute: fixed a permadiff in network_profile field of google_compute_network related to specifying partial self-links (#​23164)
  • compute: fixed an issue where google_compute_firewall_policy_with_rules.target_resources could see a diff between the beta and v1 API in the resource's self-link (#​23170)
  • container: fixed nodepool secondary range validation to allow the use of netmasks. (#​23142)
  • gemini: removed overly restrictive product validation on google_gemini_gemini_gcp_enablement_setting_binding, google_gemini_data_sharing_with_google_setting_binding. New values like GOOGLE_CLOUD_ASSIST will now be accepted. (#​23178)

v6.38.0

Compare Source

DEPRECATIONS:

  • colab: deprecated post_startup_script_config field in google_colab_runtime_template resource (#​23075)

FEATURES:

  • New Data Source: google_bigquery_datasets (#​23059)
  • New Resource: google_dataplex_entry (#​23000)

IMPROVEMENTS:

  • compute: added numeric_id field to google_compute_region_instance_template resource (#​23065)
  • compute: added source_subnetwork_ip_ranges_to_nat64 and nat64_subnetwork fields to google_compute_router_nat resource (#​23078)
  • container: promoted pod_autoscaling field in google_container_cluster resource to GA (#​23002)
  • datastream: added psc_interface_config field in google_datastream_private_connection resource (#​23091)
  • dns: added dns64_config field to google_dns_policy resource (#​23078)
  • filestore: added effective_replication.role and effective_replication.replicas.peer_instance fields to google_filestore_instance resource (#​23001)
  • netapp: added backup_retention_policy.backup_minimum_enforced_retention_days, backup_retention_policy.daily_backup_immutable, backup_retention_policy.weekly_backup_immutable, backup_retention_policy.monthly_backup_immutable, and backup_retention_policy.manual_backup_immutable fields to google_netapp_backup_vault (#​23087)
  • networkconnectivity: added IPV6 enum to protocol_version field in google_network_connectivity_policy_based_route resource (#​23069)
  • privateca: added support for setting default values for basic constraints for google_privateca_certificate_template via the null_ca and zero_max_issuer_path_length fields (#​22981)
  • privateca: added name_constraints field for google_privateca_certificate_template resource (#​22981)
  • provider: supported service account impersonation in different universes through credential file (#​23063)

BUG FIXES:

  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value (#​23137)
  • compute: fixed an issue where rules ordering in google_compute_region_security_policy caused a diff after apply (#​23076)
  • filestore: fixed bug where google_filestore_instance.initial_replication field could not be set (#​23001)
hashicorp/terraform-provider-google-beta (google-beta)

v6.49.2

Compare Source

BUG FIXES:

  • container: fixed issue where a failed creation on google_container_node_pool would result in an unrecoverable tainted state (#​24077)

v6.49.1

Compare Source

BUG FIXES:

  • secretmanager: fixed issue where upgrading to 6.49.0 would cause all google_secret_manager_secret_version resources to be recreated unless secret_data_wo_version was set (#​10574)

v6.49.0

Compare Source

DEPRECATIONS:

  • beyondcorp: google_beyondcorp_application_iam_binding, google_beyondcorp_application_iam_member and google_beyondcorp_application_iam_policy IAM resources, and the google_beyondcorp_application_iam_policy datasource have been deprecated and will be removed in the upcoming major release (#​10532)
  • tpu: deprecated google_tpu_tensorflow_versions data source. Use google_tpu_v2_runtime_versions instead. (#​10514)

FEATURES:

  • New Data Source: google_artifact_registry_tag (#​10531)
  • New Data Source: google_artifact_registry_tags (#​10518)
  • New Resource: google_dialogflow_convesation_profile (#​10533)

IMPROVEMENTS:

  • apikeys: added service_account_email to google_apikeys_key (#​10538)
  • bigqueryreservation: added support for scaling_mode and max_slots properties on google_bigquery_reservation (beta) (#​10509)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​10498)
  • container: added eviction_soft, eviction_soft_grace_period, eviction_minimum_reclaim, eviction_max_pod_grace_period_seconds, max_parallel_image_pulls, transparent_hugepage_enabled, transparent_hugepage_defrag and min_node_cpus fields to node_config block of google_container_node_pool and google_container_cluster resources (#​10522)
  • networkmanagement: added subnet and network fields to the google_network_management_vpc_flow_logs_config resource (beta) (#​10506)
  • networkmanagement: added output-only field target_resource_state to the google_network_management_vpc_flow_logs_config resource (#​10506)
  • resourcemanager: Added management_project and configured_capabilities fields to the google_folder resource. (#​10525)

BUG FIXES:

  • cloud_tasks: correctly set name field to be required in google_cloud_tasks_queue resource (#​10534)
  • clouddeploy: allowed sending start_time with default values in weekly_windows in google_clouddeploy_deploy_policy resource. start_time 00:00 means the policy will start at midnight. (#​10530)
  • kms: skip_initial_version_creation field is no longer immutable in google_kms_crypto_key, but is still only settable at-creation (#​10526)
  • netapp: fixed bug where google_netapp_volume.large_capacity was not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#​10541)
  • networkconnectivity: added update support for linked_vpc_network in google_network_connectivity_spoke (#​10507)

v6.48.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_package (#​10490)
  • New Data Source: google_artifact_registry_repositories (#​10494)
  • New Data Source: google_artifact_registry_version (#​10468)
  • New Resource: google_dialogflow_cx_playbook (initial basic support, full features to follow in a later release) (#​10485)
  • New Resource: google_vertexai_rag_engine_config (#​10481)

IMPROVEMENTS:

  • backupdr: added log_retention_days field to google_backup_dr_backup_plan resource (#​10463)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​10498)
  • compute: added ha_policy field to google_compute_region_backend_service resource (#​10493)
  • compute: added the ability to use global target forwarding rule for target_service field in google_compute_service_attachment resource (#​10483)
  • container: added boot_disk to node_config in google_container_cluster and google_container_node_pool resources (#​10457)
  • container: added node_config.kubelet_config.single_process_oom_kill field to google_container_node_pool and google_container_cluster resources (#​10461)
  • container: added in-place update support for user_managed_keys_config field in google_container_cluster resource (#​10475)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​10453)
  • gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_admin_cluster resource (#​10496)
  • memorystore: added allow_fewer_zones_deployment field to google_memorystore_instance resource (#​10462)
  • sql: added field psa_write_endpoint flag to google_sql_database_instance resource (#​10467)
  • sql: added network_attachment_uri field to google_sql_database_instance resource (#​10484)
  • sql: added node_count field to sql_database_instance resource, and added new value READ_POOL_INSTANCE enum to instance_type field of sql_database_instance resource (#​10487)
  • storagetransfer: added federated_identity_config to google_storage_transfer_job resource (#​10489)
  • storagetransfer: added transfer_spec.aws_s3_data_source.cloudfront_domain field to google_storage_transfer_job resource (#​10479)

BUG FIXES:

  • accesscontextmanager: made scopes field as immutable for access_context_manager_access_policy resource (#​10478)
  • bigquery: fixed handling of non-legacy roles for access block inside google_bigquery_dataset resource (#​10488)
  • container: fixed an issue causing errors during updates to node_config to be suppressed in google_container_cluster and google_container_node_pool resources (#​10459)

v6.47.0

Compare Source

DEPRECATIONS:

  • compute: deprecated network_self_link field in google_compute_subnetworks data source. Use network_name instead. (#​10423)
  • resourcemanager: deprecated project field in google_service_account_key data source. The field is non functional and can safely be removed from your configuration. (#​10442)

FEATURES:

  • New Data Source: google_artifact_registry_docker_images (#​10422)
  • New Resource: google_apigee_security_action (#​10407)
  • New Resource: google_developer_connect_insights_config (#​10431)
  • New Resource: google_discovery_engine_cmek_config (#​10416)
  • New Resource: google_iam_workforce_pool_iam_binding (#​10426)
  • New Resource: google_iam_workforce_pool_iam_member (#​10426)
  • New Resource: google_iam_workforce_pool_iam_policy (#​10426)

IMPROVEMENTS:

  • backupdr: added backup_retention_inheritance field to google_backup_dr_backup_vault resource (#​10446)
  • bigqueryanalyticshub: added commercial_info and delete_commercial fields in google_bigquery_analytics_hub_listing resource (#​10415)
  • bigqueryanalyticshub: added discovery_type field to google_bigquery_analytics_hub_data_exchange resource (#​10435)
  • bigqueryanalyticshub: added state, discovery_type, and allow_only_metadata_sharing fields to google_bigquery_analytics_hub_listing resource (#​10435)
  • cloudfunction: added automatic_update_policy and on_deploy_update_policy to google_cloudfunctions_function resource (#​10448)
  • cloudrunv2: added gpu_zonal_redundancy_disabled field to google_cloud_run_v2_job resource. (#​10440)
  • compute: added labels field to google_compute_storage_pool resource (#​10425)
  • compute: added network_name field to google_compute_subnetworks data source (#​10423)
  • container: added ip_allocation_policy.additional_ip_ranges_config field to google_container_cluster resource (#​10451)
  • container: added network_config.additional_node_network_configs.subnetwork field to google_container_node_pool resource (#​10451)
  • container: added addons_config.lustre_csi_driver_config field to google_container_cluster resource (#​10413)
  • container: added support for rbac_binding_config in google_container_cluster (#​10441)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​10453)
  • looker: added LOOKER_CORE_TRIAL_STANDARD, LOOKER_CORE_TRIAL_ENTERPRISE, and LOOKER_CORE_TRIAL_EMBED editions to google_looker_instance resource. (#​10427)
  • managedkafka: added tls_config field to google_managed_kafka_cluster resource (#​10420)
  • memorystore: added allow_fewer_zones_deployment field to google_redis_cluster resource (#​10434)
  • storage: added deletion_policy field to google_storage_bucket_object resource (#​10445)
  • vertexai: added custom_delete field to google_vertex_ai_endpoint_with_model_garden_deployment resource (#​10430)

BUG FIXES:

  • bigquery: fixed a crash in google_bigquery_table when configured as an external table with parquet_options (#​10438)
  • cloudrunv2: fixed an issue where manual_instance_count was unable to set to 0 in google_cloud_run_v2_worker_pool. (#​10433)
  • composer: fixed updates failing for recovery_config with explicitly disabled scheduled snapshots (#​10405)
  • iap: fixed an issue where deleting google_iap_settings without setting GOOGLE_PROJECT incorrectly failed (#​10410)
  • storage: removed client-side GCS name validations for google_storage_bucket (#​10406)

v6.46.0

Compare Source

FEATURES:

  • New Data Source: google_storage_insights_dataset_config (#​10402)
  • New Resource: google_apigee_api_product (#​10378)
  • New Resource: google_discovery_engine_recommendation_engine (#​10394)
  • New Resource: google_oracle_database_odb_network (#​10383)
  • New Resource: google_oracle_database_odb_subnet (#​10396)
  • New Resource: google_storage_insights_dataset_config (#​10401)

IMPROVEMENTS:

  • compute: added params.resourceManagerTags field to the google_compute_router (#​10392)
  • compute: added in-place update support for provisioned_iops, provisioned_throughput, and access_mode fields in google_compute_region_disk resource (#​10397)
  • dataproc: added authentication_config field to google_dataproc_batch and google_dataproc_session_template resource (#​10375)
  • dataproc: added idle_ttl field to google_dataproc_session_template resource (#​10386)
  • networkconnectivity: added field allocation_options to resource google_network_connectivity_internal_range (#​10390)
  • oracledatabase: added odb_network and odb_subnet fields, and made network and cidr fields optional in google_oracle_database_autonomous_database resource (#​10389)
  • oracledatabase: added odb_network, odb_subnet and backup_odb_subnet fields, and made network, cidr and backup_subnet_cidr fields optional in google_oracle_database_cloud_vm_cluster resource (#​10391)
  • secretmanager: added tags field to google_secret_manager_regional_secret to allow setting tags for regional_secrets at creation time (#​10400)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_repository resource (#​10395)
  • workbench: added enable_managed_euc field to google_workbench_instance resource. (#​10388)
  • workbench: added reservation_affinity field to google_workbench_instance resource. (#​10384)

BUG FIXES:

  • composer: fixed updates failing for google_composer_environment recovery_config with explicitly disabled scheduled snapshots (#​10405)
  • datastore: fixed a permadiff with google_datastream_connection_profile's create_without_validation field (#​10403)
  • memorystore: fixed bug to allow google_memorystore_instance to be used with no provider default region or with a location that doesn't match the provider default region. (#​10380)
  • networkconnectivity: fixed instances[].ip_address & instances[].virtual_machine fields in linked_router_appliance_instances block being incorrectly treated as immutable for google_network_connectivity_spoke resource (#​10399)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​10371)
  • sql: fixed a provider crash when importing google_sql_database resource (#​10374)

v6.45.0

Compare Source

DEPRECATIONS:

  • gemini: deprecated the disable_web_grounding field in the google_gemini_gemini_gcp_enablement_setting resource (#​10338)

FEATURES:

  • New Resource: google_bigtable_schema_bundle (#​10342)
  • New Resource: google_compute_preview_feature (#​10364)
  • New Resource: google_dialogflow_cx_generator (#​10348)
  • New Resource: google_model_armor_floorsetting (#​10359)
  • New Resource: google_vertex_ai_endpoint_with_model_garden_deployment (#​10365)

IMPROVEMENTS:

  • accesscontextmanager: added name to google_access_context_manager_gcp_user_access_binding resource (#​10370)
  • bigquery: added ignore_auto_generated_schema virtual field to google_bigquery_table resource to ignore server-added columns in the schema field (#​10366)
  • compute: added params.resourceManagerTags field to the google_compute_subnetwork (#​10357)
  • compute: added mirrorPercent field to requestMirrorPolicy in defaultRouteAction, pathMatchers[].defaultRouteAction, pathMatchers[].pathRules[].routeAction, and pathMatchers[].routeRules[].routeAction to google_compute_region_url_map resource (#​10351)
  • compute: added rule.match.src_secure_tags, rule.target_secure_tags, predefined_rules.match.src_secure_tags and predefined_rules.target_secure_tags fields to google_compute_firewall_policy_with_rules resource (#​10367)
  • dataproc: added cluster_config.security_config.identity_config field to google_dataproc_cluster resource (#​10352)
  • dataproc: updated cluster_config.gce_cluster_config.metadata field to be computed in google_dataproc_cluster resource (#​10352)
  • dialogflowcx: added flexible support to google_dialogflow_cx_webhook resource. (#​10339)
  • gemini: added web_grounding_type field to google_gemini_gemini_gcp_enablement_setting resource (#​10338)
  • netapp: added in-place update support for allow_auto_tiering field in google_netapp_storage_pool resource (#​10353)
  • secretmanager: added tags field to google_secret_manager_secret to allow setting tags for secrets at creation time (#​10360)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_instance resource (#​10349)
  • sql: added network_attachment_uri field to google_sql_database_instance (#​10354)
  • vmwareengine: added GOOGLE_CLOUD_NETAPP_VOLUMES peering type to resource google_vmwareengine_network_peering (#​10363)

BUG FIXES:

  • modelarmor: fixed conflicting field validation for filter_config.sdp_settings on google_model_armor_template (#​10361)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​10371)

v6.44.0

Compare Source

FEATURES:

  • New Data Source: google_compute_network_attachment (#​10336)
  • New Data Source: google_firestore_document (#​10321)
  • New Resource: google_backup_dr_service_config (#​10320)
  • New Resource: google_bigquery_analytics_hub_data_exchange_subscription (#​10328)

IMPROVEMENTS:

  • apigee: added access_logging_config field to google_apigee_instance resource (#​10303)
  • apigee: marked access_logging_config field immutable in google_apigee_instance resource (#​10337)
  • backupdr: added in-place update support for google_backup_dr_backup_plan resource (#​10312)
  • bigqueryanalyticshub: added routine field to google_bigquery_analytics_hub_listing resource (#​10327)
  • compute: added params.resource_manager_tags field to google_compute_firewall resource (#​10304)
  • compute: added aggregate_reservation.vm_family, aggregate_reservation.reserved_resources.accelerator.accelerator_count, aggregate_reservation.reserved_resources.accelerator.accelerator_type and aggregate_reservation.workload_type fields to google_future_reservation resource (#​10317)
  • compute: added application_aware_interconnect and aai_enabled fields to google_compute_interconnect resource (#​10333)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​10301)
  • compute: added provisioned_iops and provisioned_throughput fields to google_compute_region_disk resource (#​10319)
  • compute: added request_body_inspection_size field to google_compute_security_policy resource (#​10318)
  • compute: added specific_reservation.instance_properties.maintenance_interval, share_settings.projects and enable_emergent_maintenance fields to google_compute_reservation resource (#​10329)
  • firestore: added tags field to google_firestore_database resource (#​10335)
  • securesourcemanager: added in-place update support for description field in google_secure_source_manager_repository resource (#​10325)
  • storage: added force_empty_content_type field to google_storage_bucket_object resource (#​10334)

BUG FIXES:

  • artifactregistry: fixed an issue where changes to cleanup_policies were not being applied correctly in google_artifact_registry_repository resource (#​10324)
  • firebasehosting: skipped deletion of google_firebase_hosting_site resource of type DEFAULT_SITE (#​10305)
  • iambeta: fixed perma-diff for jwks_json field when GCP normalizes JSON formatting in google_iam_workload_identity_pool_provider resource (#​10306)

v6.43.0

Compare Source

DEPRECATIONS:

  • iap: deprecated google_iap_client and google_iap_brand (#​10269)

FEATURES:

  • New Data Source: google_network_management_connectivity_test_run (#​10300)
  • New Data Source: google_redis_cluster (#​10273)
  • New Resource: google_contact_center_insights_analysis_rule (#​10272)
  • New Resource: google_model_armor_template (#​10270)

IMPROVEMENTS:

  • bigquery: added ignore_schema_changes virtual field to google_bigquery_table resource. Only dataPolicies field is supported in ignore_schema_changes for now. (#​10299)
  • billing: added currency_code to google_billing_account data source (#​10284)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​10266)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​10301)
  • compute: added params.resource_manager_tags field to google_compute_route resource (#​10293)
  • compute: added update_strategy field to google_compute_network_peering resource (#​10275)
  • container: added secret_manager_config.rotation_config field to google_container_cluster resource (#​10291)
  • container: added anonymous_authentication_config field to google_container_cluster resource (#​10295)
  • dataplex: added suspended field to google_dataplex_datascan resource (#​10276)
  • discoveryengine: added enable_table_annotation, enable_image_annotation, structured_content_types, exclude_html_elements, exclude_html_classes and exclude_html_ids fields to layout_parsing_config of google_discovery_engine_data_store resource (#​10288)
  • discoveryengine: added kms_key_name field to google_discovery_engine_data_store resource (#​10281)
  • memorystore: added managed_server_ca field to google_memorystore_instance resource (#​10268)
  • secretmanager: added deletion_protection field to google_secret_manager_secret resource to optionally make deleting them require an explicit intent (#​10289)
  • secretmanager: added fetch_secret_data to google_secret_manager_secret_version to optionally skip fetching the secret data (#​10282)

BUG FIXES:

  • compute: fixed match field in google_compute_router_route_policy resource to be marked as required (#​10298)
  • compute: fixed an issue with bgp_always_compare_med in google_compute_network where it was unable to be set from true to false (#​10286)
  • compute: made no replication status in google_compute_disk_async_replication a retryable error (#​10296)
  • gkeonprem: fixed type of load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assign in google_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#​10283)
  • integrationconnectors: removed validation from auth configs in google_integration_connectors_connection resource (#​10267)

v6.42.0

Compare Source

FEATURES:

  • New Resource: google_apihub_plugin_instance (#​10225)
  • New Resource: google_apihub_plugin (#​10254)
  • New Resource: google_compute_wire_group (#​10255)
  • New Resource: google_dialogflow_cx_generative_settings (#​10244)

IMPROVEMENTS:

  • cloudidentity: added create_ignore_already_exists field to google_cloud_identity_group_membership resource (#​10229)
  • cloudkms: added etag field to google_kms_autokey_config resource (#​10227)
  • cloudrunv2: added node_selector field to google_cloud_run_v2_job resource (#​10234)
  • compute: added access_mode field to google_compute_region_disk resource (#​10256)
  • compute: added match.src_secure_tags and target_secure_tags fields to google_compute_firewall_policy_rule resource (#​10261)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​10266)
  • compute: added policy_type field to google_compute_network_firewall_policy, google_compute_network_firewall_policy_with_rules, google_compute_region_network_firewall_policy, and google_compute_region_network_firewall_policy_with_rules resources (#​10239)
  • compute: added resource_policies.workload_policy field to google_compute_instance_group_manager resource (#​10265)
  • container: added confidential_nodes.confidential_instance_type field to google_container_cluster resource (#​10257)
  • container: added gke_auto_upgrade_config field to google_container_cluster resource (#​10258)
  • container: added node_config.confidential_nodes.confidential_instance_type field to google_container_node_pool resource (#​10257)
  • firestore: revoked deprecation of deletion_policy field in google_firestore_database resource (#​10251)
  • iam_beta: added attestation_rules field to google_iam_workload_identity_pool_managed_identity resource (#​10250)
  • memorystore: added kms_key field to google_memorystore_instance resource (#​10246)
  • redis: added effective_reserved_ip_range field to google_redis_instance resource (#​10235)
  • secretmanager: added deletion_protection field to google_secret_manager_regional_secret resource (#​10247)
  • spanner: added encryption_config.kms_key_name field to google_spanner_backup_schedule resource (#​10230)
  • storage: added allow_cross_org_vpcs and allow_all_service_agent_access fields to google_storage_bucket resource (#​10252)

BUG FIXES:

  • bigqueryanalyticshub: supported in-place update for log_linked_dataset_query_user_email in google_bigquery_analytics_hub_listing and google_bigquery_analytics_hub_data_exchange resources. Once enabled, this feature cannot be disabled. (#​10241)
  • bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using secret_access_key on google_bigquery_data_transfer_config (#​10263)
  • memorystore: added the ability to set the replica_count field in google_memorystore_instance resource to 0 (#​10259)
  • monitoring: made description and displayName optional and mutable in google_monitoring_metric_descriptor resource (#​10233)
  • redis: fixed reserved_ip_range field not being populated for google_redis_instance data source (#​10235)
  • secretmanager: stopped surfacing persistent warnings recommending write-only field when using secret_data on google_secret_manager_secret_version (#​10263)
  • sql: stopped surfacing persistent warnings recommending write-only field when using password on google_sql_user (#​10263)
  • workbench: added support for setting serial-port-logging-enable key in metadata field in google_workbench_instance resource (#​10253)

v6.41.0

Compare Source

BREAKING CHANGES:

  • lustre: added per_unit_storage_throughput as a required field to google_lustre_instance resource in response to a change in the API surface (#​10211)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​10189)
  • New Resource: google_apihub_plugin_instance (#​10225)
  • New Resource: google_contact_center_insights_view (#​10192)
  • New Resource: google_dataproc_session_template (#​10204)
  • New Resource: google_dialogflow_encryption_spec (#​10220)

IMPROVEMENTS:

  • alloydb: added network_config.allocated_ip_range_override field to google_alloydb_instance resource (#​10216)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_data_exchange resource (#​10200)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing_subscription resource (#​10202)
  • bigqueryanalyticshub: added pubsub_topic field to google_bigquery_analytics_hub_listing resource (#​10219)
  • bigtable: added row_key_schema to google_bigtable_table resource (#​10222)
  • cloudasset: added support for universe domain handling for google_cloud_asset_resources_search_all datasource. (#​10210)
  • cloudquotas: added inherited and inherited_from fields to google_cloud_quotas_quota_adjuster_settings resource (#​10223)
  • compute: added CROSS_SITE_NETWORK option to requested_features field in google_compute_interconnect resource (#​10207)
  • compute: added TLS_JA4_FINGERPRINT option to enforce_on_key field in google_compute_region_security_policy, google_compute_security_policy, and google_compute_security_policy_rule resources (#​10199)
  • compute: added send_propagated_connection_limit_if_zero to google_compute_service_attachment to resolve an issue where propagated_connection_limit were not working for 0 value previously. Now setting send_propagated_connection_limit_if_zero = true will send propagated_connection_limit = 0 when it's unset or set to 0. (#​10213)
  • compute: added wire_groups field to google_compute_interconnect resource (#​10207)
  • container: added performance_monitoring_unit in node_config/advanced_machine_features to 'google_container_cluster' resource (#​10191)
  • container: added release_channel_upgrade_target_version to google_container_engine_versions data source (#​10221)
  • dataplex: added support for discovery scan in google_dataplex_datascan resource (#​10205)
  • provider: added support for adc impersonation in different universes (#​10212)
  • storage: added source_md5hash field in google_storage_bucket_object (#​10196)

BUG FIXES:

  • compute: fixed google_compute_firewall_policy_rule staying disabled after apply with disabled = false (#​10215)
  • compute: marked name in google_compute_node_group, google_compute_node_template as required as it was impossible to create successfully without a value (#​10224)
  • sql: fixed an error in updating connection_pool_config in google_sql_database_instance (#​10218)
  • tags: fixed perma-diff for parent field in google_tags_location_tag_binding resource (#​10217)

v6.40.0

Compare Source

DEPRECATIONS:

  • notebook: google_notebook_runtime is deprecated and will be removed in a future major release. Use google_workbench_instance instead. (#​10186)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​10189)
  • New Resource: google_dialogflow_cx_tool (#​10154)

IMPROVEMENTS:

  • backupdr: added 'supported_resource_types' field to google_backup_dr_backup_plan resource (#​10155)
  • backupdr: added support for updating in-place to the google_backup_dr_backup_plan_association resource (#​10176)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing resource (#​10177)
  • compute: added cipher_suite block with phase1 and phase2 encryption configurations to google_compute_vpn_tunnel resource. (#​10188)
  • compute: added fingerprint field in google_compute_target_http_proxy and google_compute_target_https_proxy resources. (#​10175)
  • compute: added headers, expected_output_url, and expected_redirect_response_code fields to test in google_compute_url_map resource and made service field optional (#​10161)
  • compute: added path_matcher.default_route_action fields to google_compute_region_url_map resource (#​10171)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​10151)
  • integrationconnectors: added support for log_config.level for google_integration_connectors_connection (#​10170)
  • netapp: added enable_hot_tier_auto_resize and hot_tier_size_gib fields to google_netapp_storage_pool resource (#​10153)
  • netapp: added tiering_policy.hot_tier_bypass_mode_enabled field to google_netapp_volume resource (#​10153)
  • networkconnectivity: added psc_config.producer_instance_location and psc_config.allowed_google_producers_resource_hierarchy_level fields to google_network_connectivity_service_connection_policy (#​10179)
  • redis: added managed_server_ca to google_redis_cluster resource (#​10169)
  • resourcemanager: allowed dataproc-control.googleapis.com and stackdriverprovisioning.googleapis.com services in google_project_service resource (#​10174)
  • storage: removed the hardcoded 80m timeout used during google_storage_bucket deletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#​10160)
  • vertexai: added region to google_vertex_ai_index_endpoint_deployed_index (#​10184)

BUG FIXES:

  • beyondcorp: fixed the issue where hubs.internet_gateway.assigned_ips was not populated correctly in the google_beyondcorp_security_gateway resource (#​10182)
  • compute: fixed google_compute_router_nat where changes to auto_network_tier are always showed after initial apply (#​10152)
  • compute: fixed validation for target_service field in google_compute_service_attachment resource causing issues when targeting a google_network_services_gateway resource (#​10178)
  • dataflow: fields network, subnetwork, num_workers, max_num_workers and machine_type will no longer cause permadiff on dataflow_flex_template_job (#​10168)
  • dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for google_dataproc_cluster (#​10163)
  • networksecurity: marked google_network_security_address_group capacity as immutable because it can't be updated in place. (#​10165)

v6.39.0

Compare Source

FEATURES:

  • New Resource: google_apihub_curation (#​10130)
  • New Resource: google_compute_interconnect_attachment_group (#​10136)
  • New Resource: google_compute_interconnect_group (#​10136)
  • New Resource: google_compute_snapshot_settings (#​10133)

IMPROVEMENTS:

  • apigee: added client_ip_resolution_config field to google_apigee_environment resource (#​10143)
  • beyondcorp: added delegating_service_account field to google_beyondcorp_security_gateway resource (#​10114)
  • bigquery: added data_source_id to update requests through google_bigquery_data_transfer_config (#​10126)
  • cloudrunv2: added google_cloud_run_v2_job support for depends_on and startup_probe properties (#​10147)
  • container: added network_performance_config field to google_container_cluster resource (#​10117)
  • dataplex: added catalog_publishing_enabled field to google_dataplex_datascan resource (#​10141)
  • datastream: added network_attachment support via psc_interface_config attribute in google_datastream_private_connection (#​10112)
  • eventarc: made network_attachment optional in google_eventarc_pipeline (#​10125)
  • gemini: added disable_web_grounding field to google_gemini_gemini_gcp_enablement_setting resource (#​10115)
  • gemini: added enable_data_sharing field to google_gemini_data_sharing_with_google_setting resource (#​10144)
  • gkehub2: added spec.rbacrolebindingactuation field to resource google_gke_hub_feature (#​10121)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​10151)
  • gkeonprem: added private_registry_config field to google_gkeonprem_vmware_admin_cluster resource (#​10150)
  • iambeta: enforced workload_identity_pool_managed_identity_id field validation per the documented specifications (#​10132)
  • pubsub: added message_transform field to google_pubsub_topic resource (#​10137)
  • pubsub: added message_transforms field to google_pubsub_subscription resource (#​10138)

BUG FIXES:

  • bigquery: modified google_bigquery_dataset_iam_member to no longer remove authorized views and routines (#​10145)
  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value. (#​10127)
  • colab: fixed perma-diff in google_colab_runtime_template caused by empty blocks. (#​10139)
  • compute: fixed a permadiff in network_profile field of google_compute_network related to specifying partial self-links (#​10140)
  • compute: fixed an issue where google_compute_firewall_policy_with_rules.target_resources could see a diff between the beta and v1 API in the resource's self-link (#​10142)
  • container: fixed nodepool secondary range validation to allow the use of netmasks. (#​10128)
  • gemini: removed overly restrictive product validation on google_gemini_gemini_gcp_enablement_setting_binding, google_gemini_data_sharing_with_google_setting_binding. New values like GOOGLE_CLOUD_ASSIST will now be accepted. (#​10146)

v6.38.0

Compare Source

DEPRECATIONS:

  • colab: deprecated post_startup_script_config field in google_colab_runtime_template resource (#​10104)

FEATURES:

  • New Data Source: google_bigquery_datasets (#​10095)
  • New Resource: google_dataplex_entry (#​10086)

IMPROVEMENTS:

  • compute: added candidate_cloud_router_ip_address, candidate_customer_router_ip_address, candidate_cloud_router_ipv6_address, and candidate_customer_router_ipv6_address fields to google_compute_interconnect_attachment resource (#​10092)
  • compute: added httpFilterConfigs and httpFilterMetadata fields in google_compute_url_map resource (#​10101)
  • compute: added numeric_id to google_compute_region_instance_template resource (#​10098)
  • compute: added source_subnetwork_ip_ranges_to_nat64 and nat64_subnetwork fields in google_compute_router_nat resource (#​10106)
  • datastream: added psc_interface_config field in google_datastream_private_connection resource (#​23091)
  • dns: added dns64_config field to google_dns_policy resource (#​10106)
  • filestore: added effective_replication.role and effective_replication.replicas.peer_instance fields to google_filestore_instance resource (#​10087)
  • networkconnectivity: added IPV6 enum to protocol_version field in google_network_connectivity_policy_based_route resource (#​10099)
  • netapp: added backup_retention_policy.backup_minimum_enforced_retention_days, backup_retention_policy.daily_backup_immutable, backup_retention_policy.weekly_backup_immutable, backup_retention_policy.monthly_backup_immutable, and backup_retention_policy.manual_backup_immutable fields to google_netapp_backup_vault (#​10110)
  • privateca: added support for setting default values for basic constraints for google_privateca_certificate_template via the null_ca and zero_max_issuer_path_length fields (#​22981)
  • privateca: added name_constraints field for google_privateca_certificate_template resource (#​22981)
  • provider: supported service account impersonation in different universes through credential file (#​10097)

BUG FIXES:

  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value (#​10127)
  • compute: fixed an issue where rules ordering in google_compute_region_security_policy caused a diff after apply (#​10105)
  • filestore: fixed bug where google_filestore_instance.initial_replication field could not be set (#​10087)

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻️ Rebasing: Whenever MR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about these updates again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by Runway Renovate Robot

Merge request reports