Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
4.75.0
->6.14.1
Release Notes
hashicorp/terraform-provider-google (google)
v6.14.1
Compare Source
BUG FIXES:
google_compute_firewall_policy_rule
was incorrectly removed from the Terraform state (#20733)v6.14.0
Compare Source
v6.13.0
Compare Source
NOTES:
google_service_account_access_token
,google_service_account_id_token
,google_service_account_jwt
,google_service_account_key
now support ephemeral values.google_iam_principal_access_boundary_policy
,google_iam_organizations_policy_binding
,google_iam_folders_policy_binding
andgoogle_iam_projects_policy_binding
to GA (#20475)DEPRECATIONS:
configmanagement.config_sync.metrics_gcp_service_account_email
ingoogle_gke_hub_feature_membership
resource (#20561)FEATURES:
google_service_account_access_token
(#20542)google_service_account_id_token
(#20542)google_service_account_jwt
(#20542)google_service_account_key
(#20542)google_backup_dr_backup_vault
(#20468)google_composer_user_workloads_config_map
(GA) (#20478)google_composer_user_workloads_secret
(GA) (#20478)google_composer_user_workloads_config_map
(GA) (#20478)google_composer_user_workloads_secret
(GA) (#20478)google_gemini_code_repository_index
(#20474)google_network_security_mirroring_deployment
(#20489)google_network_security_mirroring_deployment_group
(#20489)google_network_security_mirroring_endpoint_group_association
(#20489)google_network_security_mirroring_endpoint_group
(#20489)IMPROVEMENTS:
etag
togoogle_access_context_manager_service_perimeter
andgoogle_access_context_manager_service_perimeters
(#20455)google_alloydb_cluster
to 120m from 30m (#20547)row_affinity
field togoogle_bigtable_app_profile
resource (#20435)private_service_connect
field togoogle_cloudbuild_worker_pool
resource (#20561)associated_entities
field togoogle_clouddeploy_target
resource (#20561)serial_pipeline.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.route_destinations
field togoogle_clouddeploy_delivery_pipeline
resource (#20561)google_composer_environment
(GA) (#20478)google_compute_instance
,google_compute_instance_template
,google_compute_region_instance_template
now supportsadvanced_machine_features.enable_uefi_networking
field (#20531)numeric_id
to thegoogle_compute_network
data source (#20548)threshold_configs
field togoogle_compute_security_policy
resource (#20545)forwarding_rule_id
togoogle_compute_global_forwarding_rule
(#20404)health_check_id
togoogle_region_health_check
(#20404)instance_group_manager_id
togoogle_instance_group_manager
(#20404)instance_group_manager_id
togoogle_region_instance_group_manager
(#20404)network_endpoint_id
togoogle_region_network_endpoint
(#20404)subnetwork_id
togoogle_subnetwork
(#20404)psc_data
field to thegoogle_compute_region_network_endpoint_group
resource (#20454)enterprise_config
field togoogle_container_cluster
resource (#20534)node_pool_autoconfig.linux_node_config.cgroup_mode
field togoogle_container_cluster
resource (#20460)autotuning_config
andcohort
fields togoogle_dataproc_batch
(#20410)cluster_config.preemptible_worker_config.instance_flexibility_policy.provisioning_model_mix
field togoogle_dataproc_cluster
resource (#20396)confidential_instance_config
field togoogle_dataproc_cluster
resource (#20488)HEALTHCARE_FHIR
toindustry_vertical
field ingoogle_discovery_engine_search_engine
(#20471)configmanagement.config_sync.stop_syncing
field togoogle_gke_hub_feature_membership
resource (#20561)disable_metric_validation
field togoogle_monitoring_alert_policy
resource (#20544)deletion_protection
field togoogle_oracle_database_autonomous_database
(#20484)deletion_protection
field togoogle_oracle_database_cloud_exadata_infrastructure
(#20485)deletion_protection
field togoogle_oracle_database_cloud_vm_cluster
(#20392)deployment_type
togoogle_parallelstore_instance
(#20457)google_service_account
email
andmember
fields available during plan (#20510)BUG FIXES:
google_apigee_organization
wait for deletion operation to complete. (#20504)vpc_connector_egress_settings
field forgoogle_cloudfunctions_function
resource. (#20437)google_dataproc_job
. (#20453)INSTALLATION_UNSPECIFIED
intemplate_library.installation
(#20567)ENTERPRISE_PLUS
instance with data cache enabled. (#20393)v6.12.0
Compare Source
FEATURES:
google_access_context_manager_access_policy
(#20295)google_dataproc_gdc_spark_application
(#20242)google_managed_kafka_cluster
andgoogle_managed_kafka_topic
(#20237)IMPROVEMENTS:
common_repository
field togoogle_artifact_registry_repository
resource (#20305)urls
output field togoogle_cloud_run_v2_service
resource (#20313)IDPF
as a possible value for thenetwork_interface.nic_type
field ingoogle_compute_instance
resource (#20250)IDPF
as a possible value for theguest_os_features.type
field ingoogle_compute_image
resource (#20250)replica_names
field tosql_database_instance
resource (#20202)performance_config
field togoogle_filestore_instance
(#20218)persistence_config
togoogle_redis_cluster
. (#20212)workforce_identity_federation_config
field togoogle_secure_source_manager_instance
resource (#20290)default_backup_schedule_type
field togoogle_spanner_instance
(#20213)psc_auto_connections
fields togoogle_sql_database_instance
resource (#20307)BUG FIXES:
google_access_context_manager_service_perimeter_ingress_policy
andgoogle_access_context_manager_service_perimeter_egress_policy
resources when there are duplicate resources in the rules (#20294)identity_type
iningress_from
andegress_from
when theIDENTITY_TYPE_UNSPECIFIED
is set (#20221)type
field updates ingoogle_computer_security_policy
, updating this field will now force recreation of the resource (#20316)sign_in.anonymous.enabled
field ingoogle_identity_platform_config
(#20244)v6.11.2
Compare Source
BUG FIXES:
v6.11.1
Compare Source
BUG FIXES:
google_container_cluster.user_managed_keys_config
field for resources that had not set it. (#20314)google_container_cluster.user_managed_keys_config
as immutable because it can't be updated in place. (#20314)v6.11.0
Compare Source
NOTES:
google_compute_firewall_policy_rule
from DCL engine to MMv1 engine. (#20160)BREAKING CHANGES:
oauth_config
a required field ingoogle_looker_instance
, as creating this resource without that field always triggers an API error (#20196)FEATURES:
google_spanner_database
(#20114)google_apigee_api
(#20113)google_dataproc_gdc_application_environment
(#20165)google_dataproc_gdc_service_instance
(#20147)google_memorystore_instance
(#20108)IMPROVEMENTS:
google_apigee_env_references
(#20182)google_apigee_environment
resource (#20189)empty_dir
field togoogle_cloud_run_service
(#20185)empty_dir
field togoogle_cloud_run_v2_service
andgoogle_cloud_run_v2_job
(#20185)disks
field togoogle_compute_node_template
resource (#20180)preconfigured_waf_config
field togoogle_compute_security_policy
resource (#20183)replica_names
field tosql_database_instance
resource (#20202)instance_flexibility_policy
field togoogle_compute_region_instance_group_manager
resource (#20132)google_compute_security_policy
timeouts from 20 minutes to 30 minutes (#20145)control_plane_endpoints_config
field togoogle_container_cluster
resource. (#20193)parallelstore_csi_driver_config
field togoogle_container_cluster
resource. (#20163)user_managed_keys_config
field togoogle_container_cluster
resource. (#20105)__name__ DESC
indexes ingoogle_firestore_index
resources (#20124)google_privateca_certificate_authority
with type = "SUBORDINATE" to be activated into "STAGED" state (#20103)default_backup_schedule_type
field togoogle_spanner_instance
(#20213)traffic_split
,private_service_connect_config
,predict_request_response_logging_config
,dedicated_endpoint_enabled
, anddedicated_endpoint_dns
fields togoogle_vertex_ai_endpoint
resource (#20179)deletion_protection
field togoogle_workflows_workflow
resource (#20106)BUG FIXES:
match.src_address_groups
andmatch.dest_address_groups
ingoogle_compute_network_firewall_policy_rule
(#20148)preconfigured_waf_config
field forgoogle_compute_security_policy
resource (#20183)node_config.containerd_config
ingoogle_container_cluster
andgoogle_container_node_pool
(#20112)v6.10.0
Compare Source
FEATURES:
google_compute_instance_guest_attributes
(#20095)google_service_accounts
(#20062)google_iap_settings
(#20085)IMPROVEMENTS:
GLOBAL
enum value toscope.type
field ingoogle_apphub_application
resource (#20015)workload_options
field togoogle_assured_workloads_workload
resource (#19985)external_catalog_dataset_options
fields togoogle_bigquery_dataset
resource (beta) (#20097)google_bigquery_job
destination table configuration (#20077)desired_status
on google_compute_instance can now be set toTERMINATED
orSUSPENDED
on instance creation (#20031)header_action
andredirect_options
fields togoogle_compute_security_policy_rule
resource (#20079)interface.ipv6-address
field ingoogle_compute_external_vpn_gateway
resource (#20091)propagated_connection_limit
andconnected_endpoints.propagated_connection_count
fields togoogle_compute_service_attachment
resource (#20016)name
ongoogle_compute_instance
(#20036)advanced_machine_features.turbo_mode
togoogle_compute_instance
,google_compute_instance_template
, andgoogle_compute_region_instance_template
(#20090)labels
,resource_manager_tags
andworkload_metadata_config
ingoogle_container_cluster.node_config
(#20038)protocol
property to resourcegoogle_filestore_instance
(#19982)mode
flag togoogle_memorystore_instance
(#19988)zone
andreplica_zone
fields togoogle_netapp_storage_pool
resource (#19980)zone
andreplica_zone
fields togoogle_netapp_volume
resource (#19980)tls_inspection_policy
field togoogle_network_security_gateway_security_policy
(#19986)disabled
togoogle_service_account
datasource (#20034)asymmetric_autoscaling_options
field togoogle_spanner_instance
(#20014)ENTERPRISE
foredition
ingoogle_sql_database_instance
so thatedition
is determined by the API when unset. This will cause new instances to useENTERPRISE_PLUS
as the default for POSTGRES_16. (#19977)autoscaling_settings
togoogle_vmwareengine_private_cloud
resource (#20057)BUG FIXES:
google_compute_security_policy_rule
that prevented updating the default rule (#20066)google_container_cluster.node_config
subfields (#20038)v6.9.0
Compare Source
DEPRECATIONS:
security_posture_config
field ingoogle_container_attached_cluster
resource (#19912)FEATURES:
google_oracle_database_autonomous_database
(#19903)google_oracle_database_autonomous_databases
(#19901)google_oracle_database_cloud_exadata_infrastructures
(#19884)google_oracle_database_cloud_vm_clusters
(#19900)google_apigee_app_group
(#19921)google_apigee_developer
(#19911)google_network_connectivity_group
(#19902)IMPROVEMENTS:
google_compute_network_firewall_policy_association
now uses MMv1 engine instead of DCL. (#19976)google_compute_region_network_firewall_policy_association
now uses MMv1 engine instead of DCL. (#19976)creation_timestamp
field togoogle_compute_instance
,google_compute_instance_template
,google_compute_region_instance_template
(#19906)key_revocation_action_type
togoogle_compute_instance
and related resources (#19952)deletion_policy
togoogle_looker_instance
to allow force-destroying instances with nested resources by settingdeletion_policy = FORCE
(#19924)alert_strategy.notification_prompts
field togoogle_monitoring_alert_policy
(#19928)hierarchical_namespace
togoogle_storage_bucket
resource (#19882)ENTERPRISE
foredition
ingoogle_sql_database_instance
so thatedition
is determined by the API when unset. This will cause new instances to useENTERPRISE_PLUS
as the default for POSTGRES_16. (#19977)autoscaling_settings
togoogle_vmwareengine_cluster
resource (#19962)max_usable_workstations
field togoogle_workstations_workstation_config
resource. (#19872)BUG FIXES:
distribution_zones
was incorrectly sent to the API when updatingdistribution_policy_target_shape
ingoogle_compute_region_instance_group_manager
resource (#19949)google_container_node_pool
caused by an occasional nil pointer (#19922)google_essential_contacts_contact
import to include required parent field. (#19877)google_sql_database_instance.0.settings.0.data_cache_config
accept server-side changes when unset. When unset, no diffs will be created when instances change inedition
and the feature is enabled or disabled as a result. (#19972)google_storage_bucket
, preventing hanging when refreshing deleted buckets (#19964)v6.8.0
Compare Source
FEATURES:
google_oracle_database_cloud_exadata_infrastructure
(#19856)google_oracle_database_cloud_vm_cluster
(#19859)google_oracle_database_db_nodes
(#19871)google_oracle_database_db_servers
(#19823)google_oracle_database_autonomous_database
(#19860)google_oracle_database_cloud_exadata_infrastructure
(#19798)google_oracle_database_cloud_vm_cluster
(#19837)google_transcoder_job_template
(#19854)google_transcoder_job
(#19854)IMPROVEMENTS:
google_cloudfunctions_function
resource (#19799)invoker_iam_disabled
field togoogle_cloud_run_v2_service
(#19833)google_compute_network_firewall_policy_rule
use MMv1 engine instead of DCL. (#19862)google_compute_region_network_firewall_policy_rule
use MMv1 engine instead of DCL. (#19862)ip_address_selection_policy
field togoogle_compute_backend_service
andgoogle_compute_region_backend_service
. (#19863)provisioned_throughput
field togoogle_compute_instance_template
resource (#19852)provisioned_throughput
field togoogle_compute_region_instance_template
resource (#19852)KCP_CONNECTION
, andKCP_SSHD
ingoogle_container_cluster.logging_config
(#19812)advanced_settings.logging_settings
andadvanced_settings.speech_settings
togoogle_dialogflow_cx_agent
andgoogle_dialogflow_cx_flow
(#19801)linked_producer_vpc_network
field togoogle_network_connectivity_spoke
resource (#19806)is_secret_data_base64
field togoogle_secret_manager_secret_version
andgoogle_secret_manager_secret_version_access
datasources (#19831)is_secret_data_base64
field togoogle_secret_manager_regional_secret_version
andgoogle_secret_manager_regional_secret_version_access
datasources (#19831)kms_key_names
toencryption_config
ingoogle_spanner_database
(#19846)max_usable_workstations
field togoogle_workstations_workstation_config
resource (#19872)allowed_ports
togoogle_workstations_workstation_config
(#19845)BUG FIXES:
google_bigquery_dataset_iam_*
resources to attempt to set deleted IAM members, thereby triggering an API error (#19857)google_compute_backend_service
andgoogle_compute_region_backend_service
to allow sendingfalse
foriap.enabled
(#19795)node_config.linux_node_config
,node_config.workload_metadata_config
andnode_config.kubelet_config
will now successfully send empty messages to the API whenterraform plan
indicates they are being removed, rather than null, which caused an error. The sole reliable case isnode_config.linux_node_config
when the block is removed, where there will still be a permadiff, but the update request that's triggered will no longer error and other changes displayed in the plan should go through. (#19842)v6.7.0
Compare Source
FEATURES:
google_healthcare_pipeline_job
(#19717)google_secure_source_manager_branch_rule
(#19773)IMPROVEMENTS:
google_container_cluster
will now accept server-specified values fornode_pool_auto_config.0.node_kubelet_config
when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#19817)chat_engine_config.dialogflow_agent_to_link
field togoogle_discovery_engine_chat_engine
resource (#19723)migration
to resourcegoogle_network_connectivity_internal_range
(#19757)routing_mode
field togoogle_network_services_gateway
resource (#19764)BUG FIXES:
enable_cilium_clusterwide_network_policy
field ongoogle_container_cluster
. (#19736)node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled
. Terraform will now accept server-specified values fornode_config.0.kubelet_config
when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. (#19817)google_dataproc_cluster
that prevented creation of clusters withinternal_ip_only
set to false (#19782)google_service_account
creation issues caused by the eventual consistency of the GCP IAM API by ignoring 403 errors returned on polling the service account after creation. (#19727)exclusions.filter
field ingoogle_logging_billing_account_sink
,google_logging_folder_sink
,google_logging_organization_sink
andgoogle_logging_project_sink
resources (#19744)retry_policy
ingoogle_pubsub_subscription
. This will result inminimum_backoff
andmaximum_backoff
using server-side defaults. To use "immedate retry", do not specify aretry_policy
block at all. (#19784)labels
,annotations
andversion_destroy_ttl
in the terraform state for thegoogle_secret_manager_secrets
datasource (#19748)v6.6.0
Compare Source
FEATURES:
google_dataproc_batch
(#19686)google_healthcare_pipeline_job
(#19717)google_site_verification_owner
(#19641)IMPROVEMENTS:
HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS
andHEALTHCARE_AND_LIFE_SCIENCES_CONTROLS_WITH_US_SUPPORT
enum values tocompliance_regime
in thegoogle_assuredworkload_workload
resource (#19714)bgp_best_path_selection_mode
,bgp_bps_always_compare_med
andbgp_bps_inter_region_cost
fields togoogle_compute_network
resource (#19708)next_hop_origin
,next_hop_med
andnext_hop_inter_region_cost
output fields togoogle_compute_route
resource (#19708)STATEFUL_COOKIE_AFFINITY
andstrong_session_affinity_cookie
field togoogle_compute_backend_service
andgoogle_compute_region_backend_service
resource (#19665)TDX
instance option forconfidential_instance_type
ingoogle_compute_instance
from Beta to GA (#19706)kubelet_config
field group to thegoogle_container_aws_node_pool
resource (#19714)google_pubsub_topic
resource (#19669)create_ignore_already_exists
field togoogle_sourcerepo_repository
resource (#19716)settings.time_zone
ingoogle_sql_database_instance
resource (#19654)short_name
field ingoogle_tags_tag_key
andgoogle_tags_tag_value
resources (#19712)BUG FIXES:
google_bigquery_dataset_iam_member
to be able to delete itself and overwrite the existing iam members for bigquery dataset keeping the authorized datasets as they are. (#19682)google_bigquery_dataset_access
(#19705)boot_disk.initialize_params.resource_policies
field ingoogle_compute_instance
forced a resource recreation when used in combination withgoogle_compute_disk_resource_policy_attachment
(#19692)labels
is not set when creating the resourcegoogle_compute_interconnect
(#19632)google_tags_location_tag_binding
resource from the Terraform state when its parent resource has been removed outside of Terraform (#19693)google_workbench_instance
resource where the removal oflabels
was not functioning as expected. (#19620)v6.5.0
Compare Source
DEPRECATIONS:
macsec.pre_shared_keys.fail_open
field ingoogle_compute_interconnect
resource. Use the newmacsec.fail_open
field instead (#19572)FEATURES:
google_compute_region_instance_group_manager
(#19589)google_privileged_access_manager_entitlement
(#19580)google_secret_manager_regional_secret_version_access
(#19538)google_secret_manager_regional_secret_version
(#19514)google_secret_manager_regional_secrets
(#19532)google_compute_router_nat_address
(#19550)google_logging_log_scope
(#19559)IMPROVEMENTS:
activate
field togoogle_apigee_nat_address
resource (#19591)biglake_configuration
field togoogle_bigquery_table
resource to support BigLake Managed Tables (#19541)scaling
field ingoogle_cloud_run_v2_service
resource to GA (#19588)config.workloads_config.cloud_data_lineage_integration
field ingoogle_composer_environment
resource to GA (#19612)existing_reservations
field togoogle_compute_region_commitment
resource (#19585)hostname
field togoogle_compute_instance
data source (#19607)initial_nat_ip
field togoogle_compute_router_nat
resource (#19550)macsec.fail_open
field togoogle_compute_interconnect
resource (#19572)SUSPENDED
as a possible value todesired_state
field ingoogle_compute_instance
resource (#19586)projects/{{project}}/meta-data/{{key}}
format forgoogle_compute_project_metadata_item
resource (#19613)customer_name
andlocation
fields as optional ingoogle_compute_interconnect
resource to support cross cloud interconnect (#19619)linux_node_config.hugepages_config
field togoogle_container_node_pool
resource (#19521)gcfs_config
field ingoogle_container_cluster
resource to GA (#19617)psc_enabled
andpsc_config
fields togoogle_looker_instance
resource (#19523)include_import_ranges
field togoogle_network_connectivity_spoke
resource forlinked_vpn_tunnels
,linked_interconnect_attachments
andlinked_router_appliance_instances
(#19530)version_aliases
field togoogle_secret_manager_regional_secret
resource (#19514)google_workbench_instance
resource (#19551)BUG FIXES:
google_bigquery_table
resource whenexternal_data_configuration.schema
field is set (#19558)policy_tag
field ingoogle_bigquery_datapolicy_data_policy
resource (#19563)storage_config.bucket
field to support a bucket name with or without "gs://" prefix (#19552)addons_config.gcp_filestore_csi_driver_config
andenable_autopilot
in the samegoogle_container_cluster
(#19590)node_config.kubelet_config
updates ingoogle_container_cluster
resource (#19562)node_pool_defaults.node_config_defaults
withenable_autopilot = true
would causegoogle_container_cluster
resource creation failure (#19543)google_workbench_instance
resource where the removal oflabels
was not functioning as expected (#19620)v6.4.0
Compare Source
DEPRECATIONS:
google_scc_v2_organization_scc_big_query_exports
. Usegoogle_scc_v2_organization_scc_big_query_export
instead. (#19457)FEATURES:
google_secret_manager_regional_secret_version
(#19514)google_secret_manager_regional_secret
(#19491)google_database_migration_service_migration_job
(#19488)google_discovery_engine_target_site
(#19469)google_healthcare_workspace
(#19476)google_scc_folder_scc_big_query_export
(#19480)google_scc_organization_scc_big_query_export
(#19465)google_scc_project_scc_big_query_export
(#19466)google_scc_v2_organization_scc_big_query_export
(#19457)google_secret_manager_regional_secret_version
(#19504)google_secret_manager_regional_secret
(#19461)google_site_verification_web_resource
(#19477)google_spanner_backup_schedule
(#19449)IMPROVEMENTS:
enable_outbound_public_ip
field togoogle_alloydb_instance
resource (#19444)consumer_accept_list
field ingoogle_apigee_instance
resource (#19442)interface
field togoogle_compute_attached_disk
resource (#19440)google_compute_interconnect
resource, except forremote_location
andrequested_features
fields (#19508)deletion_protection_enabled
anddeletion_protection_reason
fields togoogle_filestore_instance
resource (#19446)fips_enabled
field togoogle_looker_instance
resource (#19511)deletion_protection
field togoogle_dataproc_metastore_service
resource (#19505)allow_auto_tiering
field togoogle_netapp_storage_pool
resource (#19454)tiering_policy
field togoogle_netapp_volume
resource (#19454)version_aliases
field togoogle_secret_manager_regional_secret
resource (#19514)edition
field togoogle_spanner_instance
resource (#19449)BUG FIXES:
iap
field ingoogle_compute_backend
andgoogle_compute_region_backend
resources (#19509)node_pool_defaults.node_config_defaults
withenable_autopilot = true
will causegoogle_container_cluster
resource creation failure ([#19543](https://Configuration
📅 Schedule: Branch creation - "* 0-3 * * 1" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.