Added mesh_certificates setting in GKE cluster.

modules/gke-cluster/main.tf

@@ -262,6 +262,13 @@ resource "google_container_cluster" "cluster" {
     }
   }
 
+  dynamic "mesh_certificates" {
+    for_each = var.enable_features.mesh_certificates != null ? [""] : []
+    content {
+      enable_certificates = var.enable_features.mesh_certificates
+    }
+  }
+
   dynamic "monitoring_config" {
     for_each = var.monitoring_config != null && !var.enable_features.autopilot ? [""] : []
     content {

modules/gke-cluster/variables.tf

@@ -84,6 +84,7 @@ variable "enable_features" {
     groups_for_rbac      = optional(string)
     intranode_visibility = optional(bool, false)
     l4_ilb_subsetting    = optional(bool, false)
+    mesh_certificates    = optional(bool)
     pod_security_policy  = optional(bool, false)
     resource_usage_export = optional(object({
       dataset                              = string
@@ -232,4 +233,4 @@ variable "vpc_config" {
     master_authorized_ranges = optional(map(string))
   })
   nullable = false
-}
+}