Releases: hashicorp/terraform-provider-google
Releases · hashicorp/terraform-provider-google
v5.29.0
NOTES:
- compute: added documentation for
md5_authentication_key
field ingoogle_compute_router_peer
resource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#17991)
FEATURES:
- New Resource:
google_bigtable_authorized_view
(#18006) - New Resource:
google_integration_connectors_managed_zone
(#18029) - New Resource:
google_network_connectivity_regional_endpoint
(#18014) - New Resource:
google_network_security_security_profile
(#18025) - New Resource:
google_network_security_security_profile_group
(#18025) - New Resource:
google_network_security_firewall_endpoint
(#18025) - New Resource:
google_network_security_firewall_endpoint_association
(#18025)
IMPROVEMENTS:
- clouddeploy: added
custom_target
field togoogle_clouddeploy_target
resource (#18000) - clouddeploy: added
google_cloud_build_repo
tocustom_target_type
resource (#18040) - compute: added
preconfigured_waf_config
field togoogle_compute_region_security_policy_rule
resource; (#18039) - compute: added
rate_limit_options
field togoogle_compute_region_security_policy_rule
resource; (#18039) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_firewall_policy_rule
(#18000) - compute: added
security_profile_group
,tls_inspect
togoogle_compute_network_firewall_policy_rule
(#18000) - compute: added fields
reserved_internal_range
andsecondary_ip_ranges.reserved_internal_range
togoogle_compute_subnetwork
resource (#18026) - container: added
dns_config.additive_vpc_scope_dns_domain
field togoogle_container_cluster
resource (#18031) - container: added
enable_nested_virtualization
field togoogle_container_node_pool
andgoogle_container_cluster
resource. (#18015) - iam: added
extra_attributes_oauth2_client
field togoogle_iam_workforce_pool_provider
resource (#18027) - privateca: added
maximum_lifetime
field togoogle_privateca_certificate_template
resource (#18000)
v5.28.0
DEPRECATIONS:
- integrations: deprecated
create_sample_workflows
andprovision_gmek
fields ingoogle_integrations_client
. (#17945)
FEATURES:
- New Data Source:
google_storage_buckets
(#17960) - New Resource:
google_compute_security_policy_rule
(#17937)
IMPROVEMENTS:
- alloydb: added
maintenance_update_policy
field togoogle_alloydb_cluster
resource (#17954) - bigquery: added
external_dataset_reference
field togoogle_bigquery_dataset
(#17944) - composer: enabled in-place update for
config.software_config.image_version
ingoogle_composer_environment
(#17986) - container: added
node_config.secondary_boot_disks
field togoogle_container_node_pool
(#17962) - integrations: added
create_sample_integrations
field togoogle_integrations_client
, replacing deprecated fieldcreate_sample_workflows
. (#17945) - redis: added
redis_configs
field togoogle_redis_cluster
resource (#17956)
BUG FIXES:
v5.27.0
FEATURES:
- New Data Source:
google_storage_bucket_objects
(#17920) - New Resource:
google_compute_security_policy_rule
(#17937) - New Resource:
google_data_loss_prevention_discovery_config
(#17887) - New Resource:
google_integrations_auth_config
(#17917) - New Resource:
google_network_connectivity_internal_range
(#17909)
IMPROVEMENTS:
- alloydb: added
network_config
field togoogle_alloydb_instance
resource (#17921) - alloydb: added
public_ip_address
field togoogle_alloydb_instance
resource (#17921) - apigee: added
forward_proxy_uri
field togoogle_apigee_environment
resource (#17902) - bigquerydatapolicy: added
data_masking_policy.routine
field togoogle_bigquery_data_policy
resource (#17885) - compute: added
server_tls_policy
field togoogle_compute_region_target_https_proxy
resource (#17934) - logging: added
intercept_children
field togoogle_logging_organization_sink
andgoogle_logging_folder_sink
resources (#17932) - monitoring: added
service_agent_authentication
field togoogle_monitoring_uptime_check_config
resource (#17929) - privateca: added
subject_key_id
field togoogle_privateca_certificate
andgoogle_privateca_certificate_authority
resources (#17923) - secretmanager: added
version_destroy_ttl
field togoogle_secret_manager_secret
resource (#17888)
BUG FIXES:
v5.26.0
FEATURES:
- New Resource:
google_project_iam_member_remove
(#17871)
IMPROVEMENTS:
- apigee: added support for
api_consumer_data_location
,api_consumer_data_encryption_key_name
, andcontrol_plane_encryption_key_name
ingoogle_apigee_organization
(#17874) - artifactregistry: added
remote_repository_config.<facade>_repository.custom_repository.uri
field togoogle_artifact_registry_repository
resource. (#17840) - bigquery: added
resource_tags
field togoogle_bigquery_table
resource (#17876) - billing: added
ownership_scope
field togoogle_billing_budget
resource (#17868) - cloudfunctions2: added
build_config.service_account
field togoogle_cloudfunctions2_function
resource (#17841) - resourcemanager: added the field
api_method
to datasourcegoogle_active_folder
so you can use eitherSEARCH
orLIST
to find your folder (#17877) - storage: added labels validation to
google_storage_bucket
resource (#17806)
BUG FIXES:
- apigee: fixed permadiff in ordering of
google_apigee_organization.properties.property
. (#17850) - cloudrun: fixed the bug that computed
metadata.0.labels
andmetadata.0.annotations
fields don't appear in terraform plan when creating resourcegoogle_cloud_run_service
andgoogle_cloud_run_domain_mapping
(#17815) - dns: fixed bug where some methods of authentication didn't work when using
dns
data sources (#17847) - iam: fixed a bug that prevented setting
create_ignore_already_exists
on existing resources ingoogle_service_account
. (#17856) - sql: fixed issues with updating the
enable_google_ml_integration
field ingoogle_sql_database_instance
resource (#17878) - storage: added validation to
name
field ingoogle_storage_bucket
resource (#17858) - vmwareengine: fixed stretched cluster creation in
google_vmwareengine_private_cloud
(#17875)
v5.25.0
FEATURES:
IMPROVEMENTS:
- bigquery: added in-place schema column drop support for
google_bigquery_table
resource (#17777) - compute: added
endpoint_types
field togoogle_compute_router_nat
resource (#17771) - compute: increased timeouts from 8 minutes to 20 minutes for
google_compute_security_policy
resource (#17793) - compute: promoted
google_compute_instance_settings
to GA (#17781) - container: added
stateful_ha_config
field togoogle_container_cluster
resource (#17796) - firestore: added
vector_config
field togoogle_firestore_index
resource (#17758) - gkebackup: added
backup_schedule.rpo_config
field togoogle_gke_backup_backup_plan
resource (#17805) - networksecurity: added
disabled
field togoogle_network_security_firewall_endpoint_association
resource; (#17762) - sql: added
enable_google_ml_integration
field togoogle_sql_database_instance
resource (#17798) - storage: added labels validation to
google_storage_bucket
resource (#17806) - vmwareengine: added
preferred_zone
andsecondary_zone
fields togoogle_vmwareengine_private_cloud
resource (#17803)
BUG FIXES:
- networksecurity: fixed an issue where
google_network_security_firewall_endpoint_association
resources could not be created due to a bad parameter (#17762) - privateca: fixed permission issue by specifying signer certs chain when activating a sub-CA across regions for
google_privateca_certificate_authority
resource (#17783)
v5.24.0
IMPROVEMENTS:
- container: added
enable_cilium_clusterwide_network_policy
field togoogle_container_cluster
resource (#17738) - container: added
node_pool_auto_config.resource_manager_tags
field togoogle_container_cluster
resource (#17715) - gkeonprem: added
disable_bundled_ingress
field togoogle_gkeonprem_vmware_cluster
resource (#17718) - redis: added
node_type
andprecise_size_gb
fields togoogle_redis_cluster
(#17742) - storage: added
project_number
attribute togoogle_storage_bucket
resource and data source (#17719) - storage: added ability to provide
project
argument togoogle_storage_bucket
data source. This will not impact reading the resource's data, instead this helps users avoid calls to the Compute API within the data source. (#17719)
BUG FIXES:
- appengine: fixed a crash in
google_app_engine_flexible_app_version
due to thedeployment
field not being returned by the API (#17744) - bigquery: fixed a crash when
google_bigquery_table
had aprimary_key.columns
entry set to""
(#17721) - compute: fixed update scenarios on
google_compute_region_target_https_proxy
andgoogle_compute_target_https_proxy
resources. (#17733)
v5.23.0
NOTES:
- provider: introduced support for provider-defined functions. This feature is in Terraform v1.8.0+. (#17694)
DEPRECATIONS:
- kms: deprecated
attestation.external_protection_level_options
in favor ofexternal_protection_level_options
ingoogle_kms_crypto_key_version
(#17704)
FEATURES:
- New Data Source:
google_apphub_application
(#17679) - New Resource:
google_cloud_quotas_quota_preference
(#17637) - New Resource:
google_vertex_ai_deployment_resource_pool
(#17707) - New Resource:
google_integrations_client
(#17640)
IMPROVEMENTS:
- bigquery: added
dataGovernanceType
togoogle_bigquery_routine
resource (#17689) - bigquery: added support for
external_data_configuration.json_extension
togoogle_bigquery_table
(#17663) - compute: added
cloud_router_ipv6_address
,customer_router_ipv6_address
fields togoogle_compute_interconnect_attachment
resource (#17692) - compute: added
generated_id
field togoogle_compute_region_backend_service
resource (#17639) - integrations: added deletion support for
google_integrations_client
resource (#17678) - kms: added
crypto_key_backend
field togoogle_kms_crypto_key
resource (#17704) - metastore: added
scheduled_backup
field togoogle_dataproc_metastore_service
resource (#17673) - provider: added provider-defined function
name_from_id
for retrieving the short-form name of a resource from its self link or id (#17694) - provider: added provider-defined function
project_from_id
for retrieving the project id from a resource's self link or id (#17694) - provider: added provider-defined function
region_from_zone
for deriving a region from a zone's name (#17694) - provider: added provider-defined functions
location_from_id
,region_from_id
, andzone_from_id
for retrieving the location/region/zone names from a resource's self link or id (#17694)
BUG FIXES:
- cloudrunv2: fixed Terraform state inconsistency when resource
google_cloud_run_v2_job
creation fails (#17711) - cloudrunv2: fixed Terraform state inconsistency when resource
google_cloud_run_v2_service
creation fails (#17711) - container: fixed
google_container_cluster
permadiff whenmaster_ipv4_cidr_block
is set for a private flexible cluster (#17687) - dataflow: fixed an issue where the provider would crash when
enableStreamingEngine
is set as aparameter
value ingoogle_dataflow_flex_template_job
(#17712) - kms: added top-level
external_protection_level_options
field ingoogle_kms_crypto_key_version
resource (#17704)
v5.22.0
BREAKING CHANGES:
- networksecurity: added required field
billing_project_id
togoogle_network_security_firewall_endpoint
resource. Any configuration withoutbilling_project_id
specified will cause resource creation fail (beta) (#17630)
FEATURES:
- New Data Source:
google_cloud_quotas_quota_info
(#17564) - New Data Source:
google_cloud_quotas_quota_infos
(#17617) - New Resource:
google_access_context_manager_service_perimeter_dry_run_resource
(#17614)
IMPROVEMENTS:
- accesscontextmanager: supported managing service perimeter dry run resources outside the perimeter via new resource
google_access_context_manager_service_perimeter_dry_run_resource
(#17614) - cloudrunv2: added plan-time validation to restrict number of ports to 1 in
google_cloud_run_v2_service
(#17594) - composer: added field
count
to validate number of DAG processors ingoogle_composer_environment
(#17625) - compute: added enumeration value
SEV_LIVE_MIGRATABLE_V2
for theguest_os_features
ofgoogle_compute_disk
(#17629) - compute: added
status.all_instances_config.revision
field togoogle_compute_instance_group_manager
andgoogle_compute_region_instance_group_manager
(#17595) - compute: added field
path_template_match
to resourcegoogle_compute_region_url_map
(#17571) - compute: added field
path_template_rewrite
to resourcegoogle_compute_region_url_map
(#17571) - pubsub: added
ingestion_data_source_settings
field togoogle_pubsub_topic
resource (#17604) - storage: added 'soft_delete_policy' to 'google_storage_bucket' resource (#17624)
BUG FIXES:
- accesscontextmanager: fixed an issue with
access_context_manager_service_perimeter_ingress_policy
andaccess_context_manager_service_perimeter_egress_policy
where updates could not be applied after initial creation. Any updates applied to these resources will now involve their recreation. To ensure that new policies are added before old ones are removed, add alifecycle
block withcreate_before_destroy = true
to your resource configuration alongside other updates. (#17596) - firebase: made the
google_firebase_android_app
resource'spackage_name
field required and immutable. This prevents API errors encountered by users who attempted to update or leave that field unset in their configurations. (#17585) - spanner: removed validation function for the field
version_retention_period
in the resourcegoogle_spanner_database
and directly returned error from backend (#17621)
v5.21.0
FEATURES:
- New Data Source:
google_apphub_discovered_service
(#17548) - New Data Source:
google_apphub_discovered_workload
(#17553) - New Data Source:
google_cloud_quotas_quota_info
(#17564) - New Resource:
google_apphub_workload
(#17561) - New Resource:
google_firebase_app_check_device_check_config
(#17517) - New Resource:
google_iap_tunnel_dest_group
(#17533) - New Resource:
google_kms_ekm_connection
(#17512) - New Resource:
google_apphub_application
(#17499) - New Resource:
google_apphub_service
(#17562) - New Resource:
google_apphub_service_project_attachment
(#17536) - New Resource:
google_network_security_firewall_endpoint_association
(#17540)
IMPROVEMENTS:
- cloudrunv2: added support for
scaling.min_instance_count
ingoogle_cloud_run_v2_service
. (#17501) - compute: added
metric.single_instance_assignment
andmetric.filter
togoogle_compute_region_autoscaler
(#17519) - container: added
queued_provisioning
togoogle_container_node_pool
(#17549) - gkeonprem: allowed
vcenter_network
to be set ingoogle_gkeonprem_vmware_cluster
, previously it was output-only (#17505) - workstations: added support for
ephemeral_directories
ingoogle_workstations_workstation_config
(#17515)
BUG FIXES:
- compute: allowed sending empty values for
SERVERLESS
ingoogle_compute_region_network_endpoint_group
resource (#17500) - notebooks: fixed an issue where default tags would cause a diff recreating
google_notebooks_instance
resources (#17559) - storage: fixed an issue where two or more lifecycle rules with different values of
no_age
field always generates change ingoogle_storage_bucket
resource. (#17513)
v5.20.0
FEATURES:
- New Resource:
google_clouddeploy_custom_target_type_iam_*
(#17445)
IMPROVEMENTS:
- certificatemanager: added
type
field togoogle_certificate_manager_dns_authorization
resource (#17459) - compute: added the
network_url
attribute to theconsumer_accept_list
-block of thegoogle_compute_service_attachment
resource (#17492) - gkehub: added support for
policycontroller.policy_controller_hub_config.policy_content.bundles
and
policycontroller.policy_controller_hub_config.deployment_configs
fields togoogle_gke_hub_feature_membership
(#17483)
BUG FIXES:
- artifactregistry: fixed permadiff when
google_artifact_repository.docker_config
field is unset (#17484) - bigquery: corrected plan-time validation on
google_bigquery_dataset.dataset_id
(#17449) - kms: fixed issue where
google_kms_crypto_key_version.attestation.cert_chains
properties were incorrectly set to type string (#17486)