Add support for PSC network attachments and interfaces in modules (#2125)

* support network attachments in net-vpc module * support network attachments in net-address module * fix examples * fix examples * add support for psc interfaces to compute-vm module
2024-03-04 10:12:11 +01:00
parent ef19524b0b
commit da68d3cfc4
13 changed files with 341 additions and 42 deletions
--- a/modules/net-address/main.tf
+++ b/modules/net-address/main.tf
@@ -14,6 +14,20 @@
 * limitations under the License.
 */

+locals {
+  network_attachments = {
+    for k, v in var.network_attachments : k => merge(v, {
+      region = regex("regions/([^/]+)", v.subnet_self_link)[0]
+      # not using the full self link generates a permadiff
+      subnet_self_link = (
+        startswith(v.subnet_self_link, "https://")
+        ? v.subnet_self_link
+        : "https://www.googleapis.com/compute/v1/${v.subnet_self_link}"
+      )
+    })
+  }
+}
+
 resource "google_compute_global_address" "global" {
  for_each    = var.global_addresses
  project     = var.project_id
@@ -89,3 +103,18 @@ resource "google_compute_address" "ipsec_interconnect" {
  prefix_length = each.value.prefix_length
  purpose       = "IPSEC_INTERCONNECT"
 }
+
+resource "google_compute_network_attachment" "default" {
+  provider    = google-beta
+  for_each    = local.network_attachments
+  project     = var.project_id
+  region      = each.value.region
+  name        = each.key
+  description = each.value.description
+  connection_preference = (
+    each.value.automatic_connection ? "ACCEPT_AUTOMATIC" : "ACCEPT_MANUAL"
+  )
+  subnetworks           = [each.value.subnet_self_link]
+  producer_accept_lists = each.value.producer_accept_lists
+  producer_reject_lists = each.value.producer_reject_lists
+}