chore(deps): update terraform google to v2.20.3 #14
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
2.5.0->2.20.3Release Notes
hashicorp/terraform-provider-google
v2.20.3Compare Source
NOTES:
2.20.3is a backport release, and some changes will not appear in3.Xseries releases until3.12.0.To upgrade to
3.Xyou will need to perform a large jump in versions, and it is strongly advised that you attempt to upgrade to3.Xinstead of using this release.2.20.3is primarily a preventative fix, in anticipation of a change in API response messages adding a default value.BUG FIXES:
google_compute_instance_templateresources withnetwork_interface[*].nameset. (#5812)v2.20.2Compare Source
BUG FIXES:
v2.20.1Compare Source
Note: 2.20.1 is a backport release. The changes in it are unavailable in 3.0.0-beta.1 through 3.2.0.
BUG FIXES:
v2.20.0Compare Source
BREAKING CHANGES:
backend.groupfield is now required forgoogle_compute_region_backend_service. Configurations without this would not have worked, so this isn't considered an API break. (#4772)IMPROVEMENTS:
google_bigtable_table(#4849)load_balancing_schemeforgoogle_compute_forwarding_rulenow acceptsINTERNAL_MANAGEDas a value. (#4772)google_compute_region_backend_serviceto includebackend.balancing_mode,backend.capacity_scaler,backend.max_connections,backend.max_connections_per_endpoint,backend.max_connections_per_instance,backend.max_rate,backend.max_rate_per_endpoint,backend.max_rate_per_instance, andbackend.max_utilization(#4772)idfor many IAM resources to the reference resource long name. Updatedinstance_nameongoogle_compute_instance_iamandsubnetworkongoogle_compute_subnetworkto their respective long names in state (#4866)display_namefield togoogle_logging_metricresource (#4839)validate_ssltogoogle_monitoring_uptime_check_config(#4637)google_project_serviceread calls, so fewer API requests are made (#4854)notification_idfield togoogle_storage_notification(#4879)BUG FIXES:
min_replicasingoogle_compute_autoscalerandgoogle_compute_region_autoscalerwould set that field to its server-side default instead of 0. (#4851)networkblocks are defined withoutnetwork_urls (#4840)v2.19.0Compare Source
DEPRECATIONS:
compute: deprecatedenable_flow_logsongoogle_compute_subnetwork. The presence of thelog_configblock signals that flow logs are enabled for a subnetwork (#4791)compute: deprecatedinstance_templateforgoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_manager. Useversion.instance_templateinstead. (#4763)compute: deprecatedupdate_strategyforgoogle_compute_instance_group_manager. Useupdate_policyinstead. (#4763)container: deprecatedgoogle_container_clusterip_allocation_policy.create_subnetwork,ip_allocation_policy.subnetwork_name,ip_allocation_policy.node_ipv4_cidr_block. Define an explicitgoogle_compute_subnetworkand usesubnetworkinstead. (#4774)container: deprecatedgoogle_container_clusterip_allocation_policy.use_ip_aliases. If it's set to true, remove it from your config. If false, removeip_allocation_policyas a whole. (#4774)iam: Deprecatedpgp_keyongoogle_service_account_keyresource. See https://www.terraform.io/docs/extend/best-practices/sensitive-state.html for more information. (#4810)BREAKING CHANGES:
google_service_account_iam_*resources now support IAM Conditions. If any conditions had been created out of band before this release, take extra care to ensure they are present in your Terraform config so the provider doesn't try to create new bindings with no conditions. Terraform will show a diff that it is adding the condition to the resource, which is safe to apply. (#4541)FEATURES:
compute: addedgoogle_compute_routerdatasource (#4614)IMPROVEMENTS:
cloudbuild: added ability to specifynameforcloud_build_triggerto avoid name collisions when creating multiple triggers at once. (#4709)compute:log_configis now available in GA forgoogle_compute_subnetwork(#4791)compute: added support for multiple versions ofinstance_templateand granular control of the update policies forgoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_manager. (#4763)container: addedmaintenance_policy.recurring_windowsupport togoogle_container_cluster, significantly increasing expressive range. (#4736)container: addedtaintfield in GKE resources to the GAgoogleprovider (#4743)container: fix a diff created in the cloud console whenMaintenanceExclusionsare added. (#4764)compute: addedgoogle_compute_instancesupport for display device (Virtual Displays) (#4775)iam: added support for IAM Conditions to thegoogle_service_account_iam_*resources (beta provider only) (#4541)iam: addeddescriptiontogoogle_service_account. (#4734)BUG FIXES:
appengine: Resolved permadiff ingoogle_app_engine_domain_mapping.ssl_settings.certificate_id. (#4754)storage: Fixed error ingoogle_storage_bucketwhere locked retention policies would cause a bucket to report failure on all updates (even though updates were applied correctly). (#4761)v2.18.1Compare Source
BUGS:
resourcemanager: fixed deleting the default network ingoogle_project(#4748)v2.18.0Compare Source
KNOWN ISSUES:
resourcemanager:google_projectauto_create_networkis failing to delete networks when set tofalse. Use an earlier provider version to resolve.DEPRECATIONS:
container: Thekubernetes_dashboardaddon is deprecated forgoogle_container_cluster. (#4648)FEATURES:
google_app_engine_application_url_dispatch_rules(#4674)IMPROVEMENTS:
all: increased support for custom endpoints across the provider (#4641)appengine: added the ability to delete the parent service ofgoogle_app_engine_standard_app_version(#4596)container: Addedshielded_instance_configattribute tonode_config(#4554)dataflow: addedip_configurationoption tojob. (#4726)pubsub: Added fieldoidc_tokentogoogle_pubsub_subscription(#4679)sql: addedlocationfield tobackup_configurationblock ingoogle_sql_database_instance(#4681)BUGS:
all: fixed the custom endpoint version used by older legacy REST clients (#4695)bigquery: fix issue withgoogle_bigquery_data_transfer_configparamscrashing on boolean values (#4676)cloudrun: fixed the apiVersion sent ingoogle_cloud_run_domain_mappingrequests (#4657)compute: added support for updating multiple fields at once togoogle_compute_subnetwork(#4688)compute: fixed diffs ingoogle_compute_instance_group'snetworkfield when equivalent values were specified (#4728)compute: fixed issues updatinggoogle_compute_instance_group'sinstancesfield when config/state values didn't match (#4728)iam: fixed bug where IAM binding wouldn't replace members if they were deleted outside of terraform. (#4693)pubsub: Fixed permadiff due to interaction of organization policies andgoogle_pubsub_topic. (#4721)v2.17.0Compare Source
NOTES:
google_project_servicesusers of provider versions prior to2.17.0should update, as past versions of the provider will not handle an upcoming rename ofbigquery-json.googleapis.comtobigquery.googleapis.comwell. See https://github.com/terraform-providers/terraform-provider-google/issues/4590 for details. (#4616)DEPRECATIONS:
google_project_services(#4587)FEATURES:
google_bigtable_gc_policy(#4578)google_binary_authorization_attestor_iam_policy(#4517)google_compute_region_ssl_certificate(#4537)google_compute_region_target_http_proxy(#4537)google_compute_region_target_https_proxy(#4537)google_iap_app_engine_service_iam_*(#4566)google_iap_app_engine_version_iam_*(#4566)google_storage_bucket_access_control(#4531)IMPROVEMENTS:
monitoring-readscope available. (#4569)google_bigtable_instance(#4598)default_max_pods_per_nodeto ga. (#4621)google_containeranalysis_noteto ga (#4517)BUGS:
app_engine_http_target.app_engine_routingongoogle_cloud_scheduler_job(#4444)quic_overrideongoogle_compute_https_target_proxyto empty. (#4588)region_backend_service.backends.failoverwas not detected. (#4622)google_compute_router_peerto default if empty foradvertise_mode(#4503)google_compute_router_natwhen referencing subnetwork vianame(#4549)master_ipv4_cidr_blockingoogle_container_cluster(#4577)v2.16.0Compare Source
KNOWN ISSUES:
google_project_servicesresource may have seen thebigquery.googleapis.comservice added and thebigquery-json.googleapis.comservice removed, causing a diff. This was later reverted, causing another diff. This issue is being tracked as https://github.com/terraform-providers/terraform-provider-google/issues/4590.FEATURES:
google_compute_region_url_mapis now available. To support this, theprotocolforgoogle_compute_region_backend_servicecan now be set toHTTP,HTTPS,HTTP2, andSSL. (#4496)google_runtimeconfig_config_iam_*resources (#4454)google_compute_resource_policyandgoogle_compute_disk_resource_policy_attachmentto managegoogle_compute_diskresource policies as fine-grained resources (#4409)ENHANCEMENTS:
python_versionand ability to setimage_versioningoogle_composer_environmentin the GA provider (#4465)google_compute_global_forwarding_rulenow supportsmetadata_filters. (#4495)google_compute_backend_servicenow supportslocality_lb_policy,outlier_detection,consistent_hash, andcircuit_breakers. (#4412)guest_os_featuresto resourcegoogle_compute_image(#4483)google_compute_router_natnow supportsdrain_nat_ipsfield (#4480)google_container_node_poolnow supports node_locations to specify specific node zones. (#4478)google_netblock_ip_rangesdata source now has aprivate-googleapisfield, for the IP addresses used for Private Google Access for services that do not support VPC Service Controls API access. (#4367)google_project_iam_*Properly set theprojectfield in state (#4488)BUG FIXES:
subfolder_matcheswere not set ingoogle_cloudiot_registryevent_notification_configs(#4527)v2.15.0Compare Source
FEATURES:
google_iap_web_iam_binding/_member/_policyare now available for managing IAP web IAM permissions (#4253)google_iap_web_backend_service_binding/_member/_policyare now available for managing IAM permissions on IAP enabled backend services (#4253)google_iap_web_type_compute_iam_binding/_member/_policyare now available for managing IAM permissions on IAP enabled compute services (#4253)google_iap_web_type_app_engine_iam_binding/_member/_policyare now available for managing IAM permissions on IAP enabled App Engine applications (#4253)google_app_engine_domain_mapping(#4310)google_cloudfunctions_function_iam_policy,google_cloudfunctions_function_iam_binding, andgoogle_cloudfunctions_function_iam_memberhave been added (#4420)google_compute_reservationallows you to reserve instance capacity in GCE. (#4332)google_compute_region_health_checkis now available. This andgoogle_compute_health_checknow include additional support for HTTP2 health checks. (#4270)ENHANCEMENTS:
google_compute_router_peer(#4371)tunnel_idtogoogle_compute_vpn_tunnelandgateway_idtogoogle_compute_vpn_gateway(#4373)google_compute_subnetworknow includes thepurposeandrolefields. (#4261)purposefield togoogle_compute_address(#4400)modeoption togoogle_compute_instance.boot_disk(#4413)google_compute_firewalldoes not show a diff if allowed or denied rules are specified with uppercase protocol values (#4467)metric_descriptor.unittogoogle_logging_metricresource (#4407)BUG FIXES:
master_authorized_networks_configis removed from thegoogle_container_clusterconfiguration. (#4446)google_service_account_andgoogle_service_account_iam_*validation less restrictive to allow for more default service accounts (#4377)google_logging_metricexplicitbucket option can now be set (#4358)google_sql_database_instance(#4376)MISC:
v2.14.0Compare Source
DEPRECATIONS:
resource_cloudiot_registry'sevent_notification_configfield has been deprecated. (#4282)FEATURES:
google_bigtable_app_profileis now available. (#4126)google_ml_engine_model(#4053)google_dataproc_autoscaling_policy(#2220)google_kms_secret_ciphertext(#4204)ENHANCEMENTS:
num_nodescan now be updated ingoogle_bigtable_instance(#4026)resource_cloudiot_registrynow has fields pluralevent_notification_configsandlog_level, andevent_notification_confighas been deprecated. (#4282)google_compute_region_instance_group_manager.update_policynow supportsinstance_redistribution_type(#4301)oauth_tokenandoidc_tokenon resourcegoogle_cloud_scheduler_job(#4222)BUG FIXES:
google_project_iam_custom_rolenow sets the project properly on import. (#4343)google_sql_database. (#4279)v2.13.0Compare Source
KNOWN ISSUES:
bigtable:google_bigtable_instancemay cause a panic on Terraform0.11. This was resolved in2.17.0.FEATURES:
google_vpc_access_connectorresource and thevpc_connectoroption on thegoogle_cloudfunctions_functionresource. (#4189)google_scc_sourceresource for managing Cloud Security Command Center sources in Terraform (#4236)google_compute_network_endpoint_group(#4173)ENHANCEMENTS:
google_bigquery_data_transfer_config(which include scheduled queries). (#4102)google_bigtable_instancemax number ofclusterblocks is now 4 (#4156)globalPolicyEvaluationModetogoogle_binary_authorization_policy. (#4124)google_compute_router_natgoogle_netblock_ip_rangesto supportmultiple useful IP address ranges that have a special meaning on GCP. (#4121)google_project,google_folder, andgoogle_*_organization_policy(#4098)user_project_override, which allows billing, quota checks, and service enablement checks to occur against the project a resource is in instead of the project the credentials are from. (#4202)BUG FIXES:
v2.12.0Compare Source
FEATURES:
google_cloud_run_service- Set up a cloud run service (#3714)google_cloud_run_domain_mapping- Allows custom domains to map to a cloud run service (#3714)google_binary_authorization_attestorandgoogle_binary_authorization_policyare available in the GA provider (#3960)ENHANCEMENTS:
binary_authorization_attestor. (#4078)google_composer_environment(#3952)google_compute_health_check(#4001)google_compute_network_endpointand add location-only import formats (#4037)labelson resourcegoogle_dataflow_job(#4095)optional_componentsto resourceresource_dataproc_cluster(#4073)retention_policyto resourcegoogle_storage_bucket(#4044)BUG FIXES:
dataproc: Suppress diff for
google_dataproc_clustersoftware_config.0.image_versionto prevent permadiff when server uses more specific versions of config value (#4088)google_organization_iam_policy,google_folder_iam_policy) (#4084)google_storage_bucketSet website metadata during read (#3977)v2.11.0Compare Source
NOTES:
FEATURES:
google_bigtable_instance_iam_binding,google_bigtable_instance_iam_member, andgoogle_bigtable_instance_iam_policyare now available. (#3939)google_sourcerepo_repository_iam_*(#3961)ENHANCEMENTS:
external_data_configurationtogoogle_bigquery_table. (#3602)google_compute_instance_template(#4000)google_firestore_indexquery_scopecan haveCOLLECTION_GROUPspecified. (#3972)BUG FIXES:
google_backend_service(#3969)kms_key_self_linkas computed (#3802)google_container_clusterkeep clusters in state if they are created in an error state and don't get correctly cleaned up. (#3995)google_container_clusterwill now wait to act until the cluster can be operated on, respecting timeouts. (#3989)google_container_node_poolCorrectly set nodepool autoscaling in state when disabled in the API (#3997)google_monitoring_uptime_check_configon a deprecated field. (#4019)google_service_networking_connectioncorrectly delete the connection when the resource is destroyed. (#4003)google_storage_transfer_jobschedule_end_datecaused requests to fail if unset. (#4005)google_storage_object_aclPrevent panic when using interpolated object names. (#3970)v2.10.0Compare Source
DEPRECATIONS:
is_internalandinternal_checkersfromgoogle_monitoring_uptime_check_config. (#3919)FEATURES:
google_compute_project_default_network_tier(#3907)ENHANCEMENTS:
google_compute_backend_service, includingmax_connections_per_endpointandmax_rate_per_endpoint(#3863)google_compute_instance_group_managerandgoogle_compute_region_instance_group_manager(#3955)logging.googleapis.com/kubernetesandmonitoring.googleapis.com/kubernetesare now GA for cluster logging/monitoring servicegoogle_folderimprove error message on delete (#3902)google_*_iam_policyresources to get simpler diffs (#3855)google_kms_crypto_keynow supports labels. (#3910)google_pubsub_topicsupports KMS keys withkms_key_name. (#3925)BUG FIXES:
google_service_networking_connectionfix update (#3887)v2.9.1Compare Source
BUG FIXES:
google_kms_crypto_keyresources (#3893)google_storage_bucketfix for crash that occurs when running plan on old buckets (#3886)google_storage_bucketallow updatingbucket_policy_onlyto false (#3886)v2.9.0Compare Source
FEATURES:
google_compute_network_endpoint_group) and fine-grained resource endpoints (google_compute_network_endpoint) are now available. (#3832)google_service_networking_connectionis now available (previously beta-only)ENHANCEMENTS:
google_compute_instance,google_container_cluster,google_dataproc_cluster, andgoogle_sql_database_instance(#3872)google_compute_global_addresssupportsprefix_length,purpose, andnetwork(#3877)google_dns_record_set: allow importing dns record sets in any project (#3862)kms_crypto_keysupportspurpose(#3843)google_storage_bucketnow supports enablingbucket_policy_onlyaccess control. (#1878google_storage_bucket_iam_*) now all support import (#3830)google_pubsub_topicUpdates for labels are now supported (#3828)BUG FIXES:
google_bigquery_datasetRelax IAM role restrictions on BQ datasets (#3451)google_project_iamWhen importing resourcesprojectno longer needs to be set in the config post import (#3777)google_compute_instance_templateFixed issue so project can now be specified by interpolated varibles. (#3798)google_compute_instance_templateThrow error when using incompatible disk fields instead of continual plan diff (#3789)google_compute_instance_from_templateMake sure disk type is expanded to a URL (#3717)google_compute_instance_templateAttempt to put disks in state in the same order they were specified (#3717)google_container_clusterStop guest_accelerator from having a permadiff for accelerators withcount=0(#3860)google_container_clusterandgoogle_node_poolnow retry correctly when polling for status of an operation. (#3801)google_dns_record_setoverrides all existing record types on create, not just NS (#3859)google_monitoring_notification_channelAllow setting enabled to false (#3874)google_pubsub_subscriptionandgoogle_pubsub_topicresources can be created inside VPC service controls. (#3818)google_redis_instanceFall back to region fromlocation_idwhen region isn't specified (#3846)google_sql_userUser's can now be updated to change their password (#3785)google_sql_usernow correctly actually registers that the user was created and gives a slightly more understandable error/diff, instead of returning a generic "provider error" (#3857)v2.8.0Compare Source
DEPRECATIONS:
auto_create_routesfield ongoogle_compute_network_peeringhas been deprecated because it is not user configurable. (#3394)FEATURES:
google_compute_ssl_certificate(#3683)google_composer_image_versions(#3694)ENHANCEMENTS:
app_engine_applicationlocations. (#3674)google_composer_environmentimage version updateable. (#3681)google_compute_router_interfacenow supports specifying aninterconnect_attachment. (#3715)google_compute_router_natnow supports specifying alog_configblock (#3684)google_compute_router_natnow supports more import formats. (#3744)google_compute_network_peeringnow supports importing/exporting custom routes (#3699)google_compute_backend_service,google_compute_global_forwarding_rule. (#3719)services_ipv4_cidrforcontainer_cluster. (#3776)google_dns_managed_zonenow supports DNSSec. (#3677)google_dataflow_jobnow supports setting machine type (#1862)google_kms_key_ringis now autogenerated using Magic Modules (#3689)google_pubsub_subscriptionsupports setting anexpiration_policywith nottl. (#3742)BUG FIXES:
google_compute_region_backend_servicewas unable to perform a state migration. (#3731)google_compute_network. (#3741)google_container_clusterwill no longer diff unnecessarily onissue_client_certificate. (#3751)google_container_clustercan enable client certificates on GKE1.12+series releases. (#3751)google_container_clusternow retries the call to remove default node pools during cluster creation (#3769)v2.7.0Compare Source
NOTE:
google_compute_backend_bucket_signed_url_keyandgoogle_compute_backend_service_signed_url_keywere introduced in2.4.0.BACKWARDS INCOMPATIBILITIES:
google_cloudfunctions_function.runtimenow has an explicit default value ofnodejs6. Users who have a different value set in the API but the value undefined in their config will see a diff. (#3605)FEATURES:
google_compute_instance_iam_binding,google_compute_instance_iam_member, andgoogle_compute_instance_iam_policyare now available. (#3551)google_dataproc_job_iam_policy,google_dataproc_job_iam_member,google_dataproc_job_iam_binding,google_dataproc_cluster_iam_policy,google_dataproc_cluster_iam_member,google_dataproc_cluster_iam_binding) are now available. #3632ENHANCEMENTS:
google_client_configdatasource (#3262)google_compute_backend_servicenow supportsHTTP2protocol (beta-only feature, use with GA provider at own risk)#3631interconnect_attachmentMake vlanTag8021q computed for using PARTNER attachments (#3600)google_compute_organization_policies*Allow all organization policies to be removed/unset from a constraint. (#3611)google_compute_instancenow supportsshielded_instance_configfor verifiable integrity of your VM instances. (#3531)google_compute_instance_templatenow supportsshielded_instance_configfor verifiable integrity of your VM instances. (#3531)BUG FIXES:
google_cloudfunctions_function.runtimenow has an explicit default value ofnodejs6. (#3605)compute_backend_servicehash function (#3610)google_monitoring_alert_policyis more likely to succeed (#3587)google_kms_crypto_keynow (in addition to marking all crypto key versions fConfiguration
📅 Schedule: At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.