Add support for regional firewall policies in 2-networking stage (#3997)

fast/stages/2-networking/factory-firewall-policies.tf

@@ -46,11 +46,13 @@ module "firewall-policies" {
   attachments   = each.value.attachments
   name          = each.key
   parent_id     = each.value.parent
+  region        = try(each.value.region, null)
   egress_rules  = each.value.egress_rules
   ingress_rules = each.value.ingress_rules
   context = {
     folder_ids       = local.ctx_folders
     cidr_ranges_sets = local.ctx.cidr_ranges_sets
     tag_values       = local.ctx.tag_values
+    locations        = local.ctx.locations
   }
 }

fast/stages/2-networking/schemas/firewall-policy.schema.json

@@ -22,6 +22,10 @@
       "type": "string",
       "description": "The name of the firewall policy."
     },
+    "region": {
+      "type": "string",
+      "description": "The region of the firewall policy. Use 'global' for global network policy, or omit for hierarchical policy."
+    },
     "ingress_rules": {
       "$ref": "#/$defs/rules",
       "description": "A map of ingress firewall rules."

fast/stages/2-networking/schemas/firewall-policy.schema.md

@@ -11,6 +11,7 @@
   <br>*additional properties: false*
   - **`^[a-z0-9-]+$`**: *string*
 - **name**: *string*
+- **region**: *string*
 - **ingress_rules**: *reference([rules](#refs-rules))*
 - **egress_rules**: *reference([rules](#refs-rules))*