* refactor(net-lb-app-ext): improve configurability and resource references
- Allow overriding names for backend buckets and instance groups
- Add optional per-group description with default value
- Use self_link for instance group backend references
- Fix HTTP proxy name to use http_proxy_config
* reverted the instance group reference in backend service back to id instead of self link
* updated all the lb modules for unmanaged instance groups to have flexible names and proper refactorization of http_proxy_cofig in each module
* removed the description variable
* updated the readme.md for the net-lb-app-ext-regional module
* fixed the linting error for the change in versions.tf
---------
Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* feat(logging-bucket): support locked parameter for project parent types
- Add locked parameter to project bucket resources with default value of false.
* fixed the linting error, added the validation for project level bucket only and removed the nullable constraint
A persistent diff was occurring for Docker artifact registries where `immutable_tags` was set to `false`. On every `terraform plan`, Terraform would propose changing `immutable_tags` from `false` to `null`.
This was caused by the `for_each` condition in the `docker_config` dynamic block, which only created the block if `immutable_tags` was explicitly set to `true`.
The condition has been updated to check if `immutable_tags` is not null (`!= null`) instead of checking if it is true (`== true`). This ensures the `docker_config` block is correctly generated for both `true` and `false` values, aligning the configuration with the resource's state and eliminating the persistent diff.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* fixed bug where label field is ignored for policy based routes
* Fix example and inventory
* Add missing schema
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* feat: Implement target secure tags for hierarchical firewall policies by integrating tag values and refining tag purpose data.
* docs: update variable
* Fix workforce identity federation provider configuration
Remove redundant 'organizations/' prefix from parent parameter as
var.organization_id already contains the full organization path.
* Update test to match corrected parent parameter
The test expected the redundant 'organizations/' prefix, but the fix
correctly removes this duplication.
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* fix(compute-vm): prevent instance recreation for key_revocation_action_type
The `key_revocation_action_type` attribute in the `google_compute_instance`
resource defaults to `NONE` on the provider side.
When this optional attribute was not explicitly set in the module's
`options` variable, it resolved to `null` in the Terraform configuration.
This caused Terraform to detect a change from `null` to `NONE` on every
plan, leading to unnecessary instance recreation.
This change applies `coalesce` to
`var.options.key_revocation_action_type` in the resource definition so
that it defaults to `NONE` when unset, aligning the configuration with
provider behavior and preventing a permadiff.
* updated the regional compute template too with the key_revocation_action_type
* fixed the formatting
* update alloydb automated backup with multiple times per day
* Revert "update alloydb automated backup with multiple times per day"
This reverts commit ea42ba7ba1b63492f812e6614cf4d4d558078069.
* update alloydb automated backup with multiple times per day
* remove unnecessary toset
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* add support for pubsub to project factory
* remove duplicate data access log definitions from folders
* tfdoc
* schemas
* fix example
* add pubsub topics context to org in stage 0
