Releases: hashicorp/terraform-provider-google
Releases · hashicorp/terraform-provider-google
v5.23.0
NOTES:
- provider: introduced support for provider-defined functions. This feature is in Terraform v1.8.0+. (#17694)
DEPRECATIONS:
- kms: deprecated
attestation.external_protection_level_options
in favor ofexternal_protection_level_options
ingoogle_kms_crypto_key_version
(#17704)
FEATURES:
- New Data Source:
google_apphub_application
(#17679) - New Resource:
google_cloud_quotas_quota_preference
(#17637) - New Resource:
google_vertex_ai_deployment_resource_pool
(#17707) - New Resource:
google_integrations_client
(#17640)
IMPROVEMENTS:
- bigquery: added
dataGovernanceType
togoogle_bigquery_routine
resource (#17689) - bigquery: added support for
external_data_configuration.json_extension
togoogle_bigquery_table
(#17663) - compute: added
cloud_router_ipv6_address
,customer_router_ipv6_address
fields togoogle_compute_interconnect_attachment
resource (#17692) - compute: added
generated_id
field togoogle_compute_region_backend_service
resource (#17639) - integrations: added deletion support for
google_integrations_client
resource (#17678) - kms: added
crypto_key_backend
field togoogle_kms_crypto_key
resource (#17704) - metastore: added
scheduled_backup
field togoogle_dataproc_metastore_service
resource (#17673) - provider: added provider-defined function
name_from_id
for retrieving the short-form name of a resource from its self link or id (#17694) - provider: added provider-defined function
project_from_id
for retrieving the project id from a resource's self link or id (#17694) - provider: added provider-defined function
region_from_zone
for deriving a region from a zone's name (#17694) - provider: added provider-defined functions
location_from_id
,region_from_id
, andzone_from_id
for retrieving the location/region/zone names from a resource's self link or id (#17694)
BUG FIXES:
- cloudrunv2: fixed Terraform state inconsistency when resource
google_cloud_run_v2_job
creation fails (#17711) - cloudrunv2: fixed Terraform state inconsistency when resource
google_cloud_run_v2_service
creation fails (#17711) - container: fixed
google_container_cluster
permadiff whenmaster_ipv4_cidr_block
is set for a private flexible cluster (#17687) - dataflow: fixed an issue where the provider would crash when
enableStreamingEngine
is set as aparameter
value ingoogle_dataflow_flex_template_job
(#17712) - kms: added top-level
external_protection_level_options
field ingoogle_kms_crypto_key_version
resource (#17704)
v5.22.0
BREAKING CHANGES:
- networksecurity: added required field
billing_project_id
togoogle_network_security_firewall_endpoint
resource. Any configuration withoutbilling_project_id
specified will cause resource creation fail (beta) (#17630)
FEATURES:
- New Data Source:
google_cloud_quotas_quota_info
(#17564) - New Data Source:
google_cloud_quotas_quota_infos
(#17617) - New Resource:
google_access_context_manager_service_perimeter_dry_run_resource
(#17614)
IMPROVEMENTS:
- accesscontextmanager: supported managing service perimeter dry run resources outside the perimeter via new resource
google_access_context_manager_service_perimeter_dry_run_resource
(#17614) - cloudrunv2: added plan-time validation to restrict number of ports to 1 in
google_cloud_run_v2_service
(#17594) - composer: added field
count
to validate number of DAG processors ingoogle_composer_environment
(#17625) - compute: added enumeration value
SEV_LIVE_MIGRATABLE_V2
for theguest_os_features
ofgoogle_compute_disk
(#17629) - compute: added
status.all_instances_config.revision
field togoogle_compute_instance_group_manager
andgoogle_compute_region_instance_group_manager
(#17595) - compute: added field
path_template_match
to resourcegoogle_compute_region_url_map
(#17571) - compute: added field
path_template_rewrite
to resourcegoogle_compute_region_url_map
(#17571) - pubsub: added
ingestion_data_source_settings
field togoogle_pubsub_topic
resource (#17604) - storage: added 'soft_delete_policy' to 'google_storage_bucket' resource (#17624)
BUG FIXES:
- accesscontextmanager: fixed an issue with
access_context_manager_service_perimeter_ingress_policy
andaccess_context_manager_service_perimeter_egress_policy
where updates could not be applied after initial creation. Any updates applied to these resources will now involve their recreation. To ensure that new policies are added before old ones are removed, add alifecycle
block withcreate_before_destroy = true
to your resource configuration alongside other updates. (#17596) - firebase: made the
google_firebase_android_app
resource'spackage_name
field required and immutable. This prevents API errors encountered by users who attempted to update or leave that field unset in their configurations. (#17585) - spanner: removed validation function for the field
version_retention_period
in the resourcegoogle_spanner_database
and directly returned error from backend (#17621)
v5.21.0
FEATURES:
- New Data Source:
google_apphub_discovered_service
(#17548) - New Data Source:
google_apphub_discovered_workload
(#17553) - New Data Source:
google_cloud_quotas_quota_info
(#17564) - New Resource:
google_apphub_workload
(#17561) - New Resource:
google_firebase_app_check_device_check_config
(#17517) - New Resource:
google_iap_tunnel_dest_group
(#17533) - New Resource:
google_kms_ekm_connection
(#17512) - New Resource:
google_apphub_application
(#17499) - New Resource:
google_apphub_service
(#17562) - New Resource:
google_apphub_service_project_attachment
(#17536) - New Resource:
google_network_security_firewall_endpoint_association
(#17540)
IMPROVEMENTS:
- cloudrunv2: added support for
scaling.min_instance_count
ingoogle_cloud_run_v2_service
. (#17501) - compute: added
metric.single_instance_assignment
andmetric.filter
togoogle_compute_region_autoscaler
(#17519) - container: added
queued_provisioning
togoogle_container_node_pool
(#17549) - gkeonprem: allowed
vcenter_network
to be set ingoogle_gkeonprem_vmware_cluster
, previously it was output-only (#17505) - workstations: added support for
ephemeral_directories
ingoogle_workstations_workstation_config
(#17515)
BUG FIXES:
- compute: allowed sending empty values for
SERVERLESS
ingoogle_compute_region_network_endpoint_group
resource (#17500) - notebooks: fixed an issue where default tags would cause a diff recreating
google_notebooks_instance
resources (#17559) - storage: fixed an issue where two or more lifecycle rules with different values of
no_age
field always generates change ingoogle_storage_bucket
resource. (#17513)
v5.20.0
FEATURES:
- New Resource:
google_clouddeploy_custom_target_type_iam_*
(#17445)
IMPROVEMENTS:
- certificatemanager: added
type
field togoogle_certificate_manager_dns_authorization
resource (#17459) - compute: added the
network_url
attribute to theconsumer_accept_list
-block of thegoogle_compute_service_attachment
resource (#17492) - gkehub: added support for
policycontroller.policy_controller_hub_config.policy_content.bundles
and
policycontroller.policy_controller_hub_config.deployment_configs
fields togoogle_gke_hub_feature_membership
(#17483)
BUG FIXES:
- artifactregistry: fixed permadiff when
google_artifact_repository.docker_config
field is unset (#17484) - bigquery: corrected plan-time validation on
google_bigquery_dataset.dataset_id
(#17449) - kms: fixed issue where
google_kms_crypto_key_version.attestation.cert_chains
properties were incorrectly set to type string (#17486)
v5.19.0
FEATURES:
- New Resource:
google_clouddeploy_automation
(#17427) - New Resource:
google_clouddeploy_target_iam_*
(#17368)
IMPROVEMENTS:
- bigquery: added
remote_function_options
field togoogle_bigquery_routine
resource (#17382) - certificatemanager: added
location
field togoogle_certificate_manager_dns_authorization
resource (#17358) - composer: added validations for composer 2/3 only fields in
google_composer_environment
(#17361) - compute: added
certificate_manager_certificates
field togoogle_compute_region_target_https_proxy
resource (#17365) - compute: promoted
all_instances_config
field in resourcesgoogle_compute_instance_group_manager
andgoogle_compute_region_instance_group_manager
to GA (#17414) - container: promoted
enable_confidential_storage
fromnode_config
ingoogle_container_cluster
andgoogle_container_node_pool
to GA (#17367) - gkehub2: added
namespace_labels
field togoogle_gke_hub_scope
resource (#17421)
BUG FIXES:
- resourcemanager: added a retry to deleting the default network when
auto_create_network
is false ingoogle_project
(#17419)
v5.18.0
BREAKING CHANGES:
- securityposture: marked
policy_sets
andpolicy_sets.policies
required ingoogle_securityposture_posture
. API validation already enforced this, so no resources could be provisioned without these (#17303)
FEATURES:
- New Data Source:
google_compute_forwarding_rules
(#17342) - New Resource:
google_firebase_app_check_app_attest_config
(#17279) - New Resource:
google_firebase_app_check_play_integrity_config
(#17279) - New Resource:
google_firebase_app_check_recaptcha_enterprise_config
(#17327) - New Resource:
google_firebase_app_check_recaptcha_v3_config
(#17327) - New Resource:
google_migration_center_preference_set
(#17291) - New Resource:
google_netapp_volume_replication
(#17348)
IMPROVEMENTS:
- cloudfunctions: added output-only
version_id
field ongoogle_cloudfunctions_function
(#17273) - composer: supported patch versions of airflow on
google_composer_environment
(#17345) - compute: supported updating
network_interface.stack_type
field ongoogle_compute_instance
resource. (#17295) - container: added
node_config.resource_manager_tags
field togoogle_container_cluster
resource (#17346) - container: added
node_config.resource_manager_tags
field togoogle_container_node_pool
resource (#17346) - container: added output-only fields
membership_id
andmembership_location
underfleet
ingoogle_container_cluster
resource (#17305) - looker: added
custom_domain
field togoogle_looker_instance
resource (#17301) - netapp: added field
restore_parameters
and output-only fieldsstate
,state_details
andcreate_time
togoogle_netapp_volume
resource (#17293) - workbench: added
container_image
field togoogle_workbench_instance
resource (#17326) - workbench: added
shielded_instance_config
field togoogle_workbench_instance
resource (#17306)
BUG FIXES:
- bigquery: allowed users to set permissions for
principal
/principalSets
(iamMember
) ingoogle_bigquery_dataset_iam_member
. (#17292) - cloudfunctions2: fixed an issue where not specifying
event_config.trigger_region
ingoogle_cloudfunctions2_function
resulted in a permanent diff. The field now pulls a default value from the API when unset. (#17328) - compute: fixed issue where changes only in
stateful_(internal|external)_ip
would not trigger an update forgoogle_compute_(region_)instance_group_manager
(#17297) - compute: fixed perma-diff on
min_ports_per_vm
ingoogle_compute_router_nat
when the field is unset by making the field default to the API-set value (#17337) - dataflow: fixed crash in
google_dataflox_job
to return an error instead if a job's Environment field is nil when reading job information (#17344) - notebooks: changed
tag
field to default to the API's value if not specified ingoogle_notebooks_instance
(#17323)
v5.17.0
NOTES:
- cloudbuildv2: changed underlying actuation engine for
google_cloudbuildv2_connection
, there should be no user-facing impact (#17222)
DEPRECATIONS:
- container: deprecated support for
relay_mode
field ingoogle_container_cluster.monitoring_config.advanced_datapath_observability_config
in favor ofenable_relay
field,relay_mode
field will be removed in a future major release (#17262)
FEATURES:
- New Resource:
google_firebase_app_check_debug_token
(#17242) - New Resource:
google_clouddeploy_custom_target_type
(#17254)
IMPROVEMENTS:
- cloudasset: allowed overriding the billing project for the
google_cloud_asset_resources_search_all
datasource - clouddeploy: added support for
canary_revision_tags
,prior_revision_tags
,stable_revision_tags
, andstable_cutback_duration
togoogle_clouddeploy_delivery_pipeline
- cloudfunctions: expose
version_id
ongoogle_cloudfunctions_function
(#17273) - compute: promoted
user_ip_request_headers
field ongoogle_compute_security_policy
resource to GA (#17271) - container: added support for
enable_relay
field togoogle_container_cluster.monitoring_config.advanced_datapath_observability_config
(#17262) - eventarc: added support for
http_endpoint.uri
andnetwork_config.network_attachment
togoogle_eventarc_trigger
(#17237) - healthcare: added
reject_duplicate_message
field togoogle_healthcare_hl7_v2_store
resource (#17267) - identityplatform: added
client
,permissions
,monitoring
andmfa
fields togoogle_identity_platform_config
(#17225) - notebooks: added
desired_state
field togoogle_notebooks_instance
(#17268) - vertexai: added
feature_registry_source
field togoogle_vertex_ai_feature_online_store_featureview
resource (#17264) - workbench: added
desired_state
field togoogle_workbench_instance
resource (#17270)
BUG FIXES:
v5.16.0
FEATURES:
- New Resource:
google_clouddeploy_delivery_pipeline_iam_*
(#17180) - New Resource:
google_compute_instance_group_membership
(#17188) - New Resource:
google_discovery_engine_search_engine
(#17146) - New Resource:
google_firebase_app_check_service_config
(#17155)
IMPROVEMENTS:
- bigquery: promoted
table_replication_info
field onresource_bigquery_table
resource to GA (#17181) - networksecurity: removed unused custom code from
google_network_security_address_group
(#17183) - provider: added an optional provider level label
goog-terraform-provisioned
to identify resources that were created by Terraform when viewing/editing these resources in other tools. (#17170)
v5.15.0
FEATURES:
- New Data Source:
google_compute_machine_types
(#17107) - New Resource:
google_blockchain_nodes
(#17096) - New Resource:
google_compute_region_network_endpoint
(#17137) - New Resource:
google_discovery_engine_chat_engine
(#17145) - New Resource:
google_discovery_engine_search_engine
(#17146) - New Resource:
google_netapp_volume_snapshot
(#17138)
IMPROVEMENTS:
- compute: added
INTERNET_IP_PORT
andINTERNET_FQDN_PORT
options for thegoogle_compute_region_network_endpoint_group
resource. (#17137) - compute: added
creation_timestamp
togoogle_compute_instance_group_manager
andgoogle_compute_region_instance_group_manager
. (#17110) - compute: added
disk_id
attribute togoogle_compute_disk
resource (#17112) - compute: added
stack_type
attribute forgoogle_compute_interconnect_attachment
resource. (#17139) - compute: updated the
google_compute_security_policy
resource'sjson_parsing
field to accept the valueSTANDARD_WITH_GRAPHQL
(#17097) - memcache: added
reserved_ip_range_id
field togoogle_memcache_instance
resource (#17101) - netapp: added
deletion_policy
field togoogle_netapp_volume
resource (#17111)
BUG FIXES:
- alloydb: fixed an issue where
database_flags
in secondarygoogle_alloydb_instance
resources would cause a diff, as they are copied from the primary (#17128) - filestore: made
google_filestore_instance.source_backup
field configurable (#17099) - vmwareengine: fixed a bug to prevent recreation of existing
google_vmwareengine_private_cloud
resources when upgrading provider version from <5.10.0 (#17135
v5.14.0
FEATURES:
- New Resource:
google_discovery_engine_data_store
(#17084) - New Resource:
google_securityposture_posture_deployment
(#17085) - New Resource:
google_securityposture_posture
(#17079)
IMPROVEMENTS:
- artifactregistry: promoted
cleanup_policies
andcleanup_policy_dry_run
fields to GA forgoogle_artifactregistry_repository
resource (#17074) - composer: added
data_retention_config
field togoogle_composer_environment
resource (#17050) - logging: updated the
google_logging_project_bucket_config
resource to be created using the asynchronous create method (#17067) - pubsub: added
use_table_schema
field togoogle_pubsub_subscription
resource (#17054) - workflows: added
call_log_level
field togoogle_workflows_workflow
resource (#17051)
BUG FIXES:
- cloudfunctions2: fixed permadiff when
build_config.docker_repository
field is not specified ongoogle_cloudfunctions2_function
resource (#17072) - compute: fixed error when
iap
field is unset forgoogle_compute_region_backend_service
resource (#17071) - eventarc: fixed error when setting
destination.cloud_function
field ongoogle_eventarc_trigger
resource by making it output-only (#17052)