* AlloyDB read poll support and various usability fixes
* Added support for read poll instances.
* Added support for public (outbound) IPs.
* Added new arguments: `machine_type`, `skip_await_major_version_upgrade`, and `subscription_type`.
* Added outputs for key cluster attributes, including ID and name.
* Improved input variable validations and simplified configurations.
* Fixed bug where AlloyDB user accounts always had null passwords.
* Resolved Terraform state drift issues for `network_config` and `psc_config`.
* Fixed `continuous_backup_config` always being implicitly or explicitly enabled.
* Fixed `automated_backup_policy` and `maintenance_update_policy`, which do not support non-zero minutes, seconds and nanos.
* Fixed various typos.
* Aligned the format of test examples.
* Fixed invalid condition: authorized external networks require enabled public IP, however enabled public IP can have empty authorized external networks
* Formatting
* Fix PSA block
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* Add deletion_policy to project-factory module
* Use project deletion_policy in object normalization
* Replicate changes in net-vpc-factory
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* Added recipe HA VPN between AWS and GCP
* Fix typo
* Update providers to work without credentials
* Add AWS resource to tools/lockfile/main.tf
* Fixed error in recipe docs
---------
Co-authored-by: Julio Castillo <jccb@google.com>
Load balancers can be configured with IAP-enabled backends.
They can either be configured to use external Identity Providers (IdP)
or to use Cloud Identity. The latter is the default and is used when
the OAuth2 parameters are not specified.
The iap_config parameter in the backend_service_configs variable
already supported the external IdP option, but did not support the
default one.
This pull request introduces the `net-vpc-factory` module. This new factory handles:
* Project setup (most of what's supported by the `project` module)
* VPC setup
* Routing
* Subnets
* Connectivity options
* NCC (hub, VPC spokes and VPN hybrid spokes)
* Peerings
* VPN (GCP-to-onprem and GCP-to-GCP)
* NAT (everything supported by the `net-cloudnat` module)
* DNS (everything supported by the `dns` module)
* Firewall (everything supported by the `net-vpc-firewall` module)
* Added variable for activating nat and implementation in google_apigee_net_address resource
* Regenerated readme
* Added tests for nat & activation
* Removed unnecessary coalesce
* Fixed test params
* Added test to confirm activate is working
* Remove service account key upload. Add create_ignore_already_exists
* Add tag bindings to service accounts
* Add description to create_ignore_already_exists
* Remove broken links
