7bd6e5d57b
* fix serverless connector plugin outputs * add internal and lb to allowed ingress org policy * add validation condition on cloud run ingress settings * tfdoc * plugin tfdoc * allow disabling googleapis routes with a single instruction in net-vpc * fix variable def * fix variable description * fix cr variable validation * fix usage of create_googleapis_routes in examples and stages
VPC Serverless Connector
This FAST plugin adds centralized Serverless VPC Access Connectors to network stages.
This plugin does not manage
- IAM bindings for the connectors, which should be added via the stage project-level variables
- firewall rules for the connectors, which should be added via the stage factory
The plugin only requires a specific configuration if the defaults it uses need to be changed:
- the connector-specific subnets default to the
10.255.255.0range - the machine type, number of instances and thoughput use the API defaults
To enable the plugin, simply copy or link its files in the networking stage.
Files
| name | description | modules | resources |
|---|---|---|---|
| local-serverless-connector-outputs.tf | Serverless Connector outputs. | google_storage_bucket_object · local_file |
|
| local-serverless-connector-variables.tf | Serverless Connector variables. | ||
| local-serverless-connector.tf | Serverless Connector resources. | net-vpc |
google_vpc_access_connector |
Variables
| name | description | type | required | default | producer |
|---|---|---|---|---|---|
| serverless_connector_config | VPC Access Serverless Connectors configuration. | object({…}) |
{…} |
Outputs
| name | description | sensitive | consumers |
|---|---|---|---|
| plugin_sc_connectors | VPC Access Connectors. |