feat(deps): Update Terraform Google Provider to v5 (major) - autoclosed #8
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
>= 3.50, < 5.0->>= 3.50, < 5.325.32.0>= 3.50, < 5.0->>= 3.50, < 5.325.32.0Release Notes
hashicorp/terraform-provider-google (google)
v5.31.1Compare Source
BUG FIXES:
google_service_accountto reduce eventual consistency errors. See https://github.com/hashicorp/terraform-provider-google/issues/18024 for more details (#18261)v5.31.0Compare Source
FEATURES:
google_compute_subnetworks(#18159)google_dataplex_aspect_type(#18201)google_dataplex_entry_group(#18188)google_kms_autokey_config(#18179)google_kms_key_handle(#18179)google_network_services_lb_route_extension(#18195)IMPROVEMENTS:
instance_ip_modeto resourcegoogle_app_engine_flexible_app_versionresource (beta) (#18168)external_data_configuration.bigtable_optionstogoogle_bigquery_table(#18181)google_composer_user_workloads_secretvia the "{{environment}}/{{name}}" format. (#7390)google_composer_user_workloads_secret. (#7390)TLS_JA3_FINGERPRINTandUSER_IPoptions in fieldrate_limit_options.enforce_on_keytogoogle_compute_security_policyresource (#18167)google_compute_region_ssl_policy'sregionfield to optional and allow to be inferred from environment (#18178)subnet_lengthfield togoogle_compute_interconnect_attachmentresource (#18187)containerd_configfield and subfields togoogle_container_clusterandgoogle_container_node_poolresources, to allow those resources to access private image registries. (#18160)enable_autopilotandworkload_identity_configto be set ingoogle_container_clusterresource. (#18166)create_without_validationfield togoogle_datastream_connection_profile,google_datastream_private_connectionandgoogle_datastream_streamresources (#18176)trust_config,min_tls_version,tls_feature_profileandcustom_tls_featuresfields togoogle_network_security_tls_inspection_policyresource (#18139)load_balancing_schemeimmutable in resourcegoogle_network_services_lb_traffic_extension, as in-place updating is always failing (#18195)extension_chains.extensions.authorityandextension_chains.extensions.timeoutoptional in resourcegoogle_network_services_lb_traffic_extension(#18195)LOAD_BALANCING_SCHEME_UNSPECIFIEDfrom the fieldload_balancing_schemein resourcegoogle_network_services_lb_traffic_extension(#18195)cloud_storage_config.filename_datetime_formatfield togoogle_pubsub_subscriptionresource (#18180)typeofaccelerator_configtogoogle_tpu_v2_vmresource (#18148)BUG FIXES:
monitored_resource.labelsproperty in thegoogle_monitoring_uptime_check_configresource (#18174)autoclassblock is generating permadiff whenever the block is removed from the config ingoogle_storage_bucketresource (#18197)transfer_spec.0.aws_s3_data_source.0.aws_access_keyresource_storage_transfer_job(#18190)v5.30.0Compare Source
v5.29.1Compare Source
5.29.1 (May 14, 2024)
BREAKING CHANGES:
secondary_ip_range.reserved_internal_rangefield fromgoogle_compute_subnetwork(18133)v5.29.0Compare Source
NOTES:
md5_authentication_keyfield ingoogle_compute_router_peerresource. The field was introduced in v5.12.0, but documentation was unintentionally omitted at that time. (#17991)FEATURES:
google_bigtable_authorized_view(#18006)google_integration_connectors_managed_zone(#18029)google_network_connectivity_regional_endpoint(#18014)google_network_security_security_profile(#18025)google_network_security_security_profile_group(#18025)google_network_security_firewall_endpoint(#18025)google_network_security_firewall_endpoint_association(#18025)IMPROVEMENTS:
custom_targetfield togoogle_clouddeploy_targetresource (#18000)google_cloud_build_repotocustom_target_typeresource (#18040)preconfigured_waf_configfield togoogle_compute_region_security_policy_ruleresource; (#18039)rate_limit_optionsfield togoogle_compute_region_security_policy_ruleresource; (#18039)security_profile_group,tls_inspecttogoogle_compute_firewall_policy_rule(#18000)security_profile_group,tls_inspecttogoogle_compute_network_firewall_policy_rule(#18000)reserved_internal_rangeandsecondary_ip_ranges.reserved_internal_rangetogoogle_compute_subnetworkresource (#18026)dns_config.additive_vpc_scope_dns_domainfield togoogle_container_clusterresource (#18031)enable_nested_virtualizationfield togoogle_container_node_poolandgoogle_container_clusterresource. (#18015)extra_attributes_oauth2_clientfield togoogle_iam_workforce_pool_providerresource (#18027)maximum_lifetimefield togoogle_privateca_certificate_templateresource (#18000)v5.28.0Compare Source
DEPRECATIONS:
create_sample_workflowsandprovision_gmekfields ingoogle_integrations_client. (#17945)FEATURES:
google_storage_buckets(#17960)google_compute_security_policy_rule(#17937)IMPROVEMENTS:
maintenance_update_policyfield togoogle_alloydb_clusterresource (#17954)external_dataset_referenceingoogle_bigquery_datasetto GA (#17944)config.software_config.image_versionin-place update to GA in resourcegoogle_composer_environment(#17986)node_config.secondary_boot_disksfield togoogle_container_node_pool(#17962)create_sample_integrationsfield togoogle_integrations_client, replacing deprecated fieldcreate_sample_workflows. (#17945)redis_configsfield togoogle_redis_clusterresource (#17956)BUG FIXES:
google_dns_managed_zoneresources was blocked by any associated SOA-typegoogle_dns_record_setresources (#17989)google_storage_bucket_objectandgoogle_storage_bucket_objectsdata sources would ignore custom endpoints (#17952)v5.27.0Compare Source
FEATURES:
google_storage_bucket_objects(#17920)google_compute_security_policy_rule(#17937)google_data_loss_prevention_discovery_config(#17887)google_integrations_auth_config(#17917)google_network_connectivity_internal_range(#17909)IMPROVEMENTS:
network_configfield togoogle_alloydb_instanceresource (#17921)public_ip_addressfield togoogle_alloydb_instanceresource (#17921)forward_proxy_urifield togoogle_apigee_environmentresource (#17902)data_masking_policy.routinefield togoogle_bigquery_data_policyresource (#17885)server_tls_policyfield togoogle_compute_region_target_https_proxyresource (#17934)intercept_childrenfield togoogle_logging_organization_sinkandgoogle_logging_folder_sinkresources (#17932)service_agent_authenticationfield togoogle_monitoring_uptime_check_configresource (#17929)subject_key_idfield togoogle_privateca_certificateandgoogle_privateca_certificate_authorityresources (#17923)version_destroy_ttlfield togoogle_secret_manager_secretresource (#17888)BUG FIXES:
google_app_engine_standard_app_version.automatic_scalingwhen the block is unset in configuration (#17905)enable_google_ml_integrationfield ingoogle_sql_database_instanceresource (#17878)v5.26.0Compare Source
FEATURES:
google_project_iam_member_remove(#17871)IMPROVEMENTS:
api_consumer_data_location,api_consumer_data_encryption_key_name, andcontrol_plane_encryption_key_nameingoogle_apigee_organization(#17874)remote_repository_config.<facade>_repository.custom_repository.urifield togoogle_artifact_registry_repositoryresource. (#17840)resource_tagsfield togoogle_bigquery_tableresource (#17876)ownership_scopefield togoogle_billing_budgetresource (#17868)build_config.service_accountfield togoogle_cloudfunctions2_functionresource (#17841)api_methodto datasourcegoogle_active_folderso you can use eitherSEARCHorLISTto find your folder (#17877)google_storage_bucketresource (#17806)BUG FIXES:
google_apigee_organization.properties.property. (#17850)metadata.0.labelsandmetadata.0.annotationsfields don't appear in terraform plan when creating resourcegoogle_cloud_run_serviceandgoogle_cloud_run_domain_mapping(#17815)dnsdata sources (#17847)create_ignore_already_existson existing resources ingoogle_service_account. (#17856)enable_google_ml_integrationfield ingoogle_sql_database_instanceresource (#17878)namefield ingoogle_storage_bucketresource (#17858)google_vmwareengine_private_cloud(#17875)v5.25.0Compare Source
FEATURES:
google_tags_tag_keys(#17782)google_tags_tag_values(#17782)IMPROVEMENTS:
google_bigquery_tableresource (#17777)endpoint_typesfield togoogle_compute_router_natresource (#17771)google_compute_security_policyresource (#17793)google_compute_instance_settingsto GA (#17781)stateful_ha_configfield togoogle_container_clusterresource (#17796)vector_configfield togoogle_firestore_indexresource (#17758)backup_schedule.rpo_configfield togoogle_gke_backup_backup_planresource (#17805)disabledfield togoogle_network_security_firewall_endpoint_associationresource; (#17762)enable_google_ml_integrationfield togoogle_sql_database_instanceresource (#17798)google_storage_bucketresource (#17806)preferred_zoneandsecondary_zonefields togoogle_vmwareengine_private_cloudresource (#17803)BUG FIXES:
google_network_security_firewall_endpoint_associationresources could not be created due to a bad parameter (#17762)google_privateca_certificate_authorityresource (#17783)v5.24.0Compare Source
IMPROVEMENTS:
enable_cilium_clusterwide_network_policyfield togoogle_container_clusterresource (#17738)node_pool_auto_config.resource_manager_tagsfield togoogle_container_clusterresource (#17715)disable_bundled_ingressfield togoogle_gkeonprem_vmware_clusterresource (#17718)node_typeandprecise_size_gbfields togoogle_redis_cluster(#17742)project_numberattribute togoogle_storage_bucketresource and data source (#17719)projectargument togoogle_storage_bucketdata source. This will not impact reading the resource's data, instead this helps users avoid calls to the Compute API within the data source. (#17719)BUG FIXES:
google_app_engine_flexible_app_versiondue to thedeploymentfield not being returned by the API (#17744)google_bigquery_tablehad aprimary_key.columnsentry set to""(#17721)google_compute_region_target_https_proxyandgoogle_compute_target_https_proxyresources. (#17733)v5.23.0Compare Source
NOTES:
DEPRECATIONS:
attestation.external_protection_level_optionsin favor ofexternal_protection_level_optionsingoogle_kms_crypto_key_version(#17704)FEATURES:
google_apphub_application(#17679)google_cloud_quotas_quota_preference(#17637)google_vertex_ai_deployment_resource_pool(#17707)google_integrations_client(#17640)IMPROVEMENTS:
dataGovernanceTypetogoogle_bigquery_routineresource (#17689)external_data_configuration.json_extensiontogoogle_bigquery_table(#17663)cloud_router_ipv6_address,customer_router_ipv6_addressfields togoogle_compute_interconnect_attachmentresource (#17692)generated_idfield togoogle_compute_region_backend_serviceresource (#17639)google_integrations_clientresource (#17678)crypto_key_backendfield togoogle_kms_crypto_keyresource (#17704)scheduled_backupfield togoogle_dataproc_metastore_serviceresource (#17673)name_from_idfor retrieving the short-form name of a resource from its self link or id (#17694)project_from_idfor retrieving the project id from a resource's self link or id (#17694)region_from_zonefor deriving a region from a zone's name (#17694)location_from_id,region_from_id, andzone_from_idfor retrieving the location/region/zone names from a resource's self link or id (#17694)BUG FIXES:
google_cloud_run_v2_jobcreation fails (#17711)google_cloud_run_v2_servicecreation fails (#17711)google_container_clusterpermadiff whenmaster_ipv4_cidr_blockis set for a private flexible cluster (#17687)enableStreamingEngineis set as aparametervalue ingoogle_dataflow_flex_template_job(#17712)external_protection_level_optionsfield ingoogle_kms_crypto_key_versionresource (#17704)v5.22.0Compare Source
BREAKING CHANGES:
billing_project_idtogoogle_network_security_firewall_endpointresource. Any configuration withoutbilling_project_idspecified will cause resource creation fail (beta) (#17630)FEATURES:
google_cloud_quotas_quota_info(#17564)google_cloud_quotas_quota_infos(#17617)google_access_context_manager_service_perimeter_dry_run_resource(#17614)IMPROVEMENTS:
google_access_context_manager_service_perimeter_dry_run_resource(#17614)google_cloud_run_v2_service(#17594)countto validate number of DAG processors ingoogle_composer_environment(#17625)SEV_LIVE_MIGRATABLE_V2for theguest_os_featuresofgoogle_compute_disk(#17629)status.all_instances_config.revisionfield togoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_manager(#17595)path_template_matchto resourcegoogle_compute_region_url_map(#17571)path_template_rewriteto resourcegoogle_compute_region_url_map(#17571)ingestion_data_source_settingsfield togoogle_pubsub_topicresource (#17604)BUG FIXES:
access_context_manager_service_perimeter_ingress_policyandaccess_context_manager_service_perimeter_egress_policywhere updates could not be applied after initial creation. Any updates applied to these resources will now involve their recreation. To ensure that new policies are added before old ones are removed, add alifecycleblock withcreate_before_destroy = trueto your resource configuration alongside other updates. (#17596)google_firebase_android_appresource'spackage_namefield required and immutable. This prevents API errors encountered by users who attempted to update or leave that field unset in their configurations. (#17585)version_retention_periodin the resourcegoogle_spanner_databaseand directly returned error from backend (#17621)v5.21.0Compare Source
FEATURES:
google_apphub_discovered_service(#17548)google_apphub_discovered_workload(#17553)google_cloud_quotas_quota_info(#17564)google_apphub_workload(#17561)google_firebase_app_check_device_check_config(#17517)google_iap_tunnel_dest_group(#17533)google_kms_ekm_connection(#17512)google_apphub_application(#17499)google_apphub_service(#17562)google_apphub_service_project_attachment(#17536)google_network_security_firewall_endpoint_association(#17540)IMPROVEMENTS:
scaling.min_instance_countingoogle_cloud_run_v2_service. (#17501)metric.single_instance_assignmentandmetric.filtertogoogle_compute_region_autoscaler(#17519)queued_provisioningtogoogle_container_node_pool(#17549)vcenter_networkto be set ingoogle_gkeonprem_vmware_cluster, previously it was output-only (#17505)ephemeral_directoriesingoogle_workstations_workstation_config(#17515)BUG FIXES:
SERVERLESSingoogle_compute_region_network_endpoint_groupresource (#17500)google_notebooks_instanceresources (#17559)no_agefield always generates change ingoogle_storage_bucketresource. (#17513)v5.20.0Compare Source
FEATURES:
google_clouddeploy_custom_target_type_iam_*(#17445)IMPROVEMENTS:
typefield togoogle_certificate_manager_dns_authorizationresource (#17459)network_urlattribute to theconsumer_accept_list-block of thegoogle_compute_service_attachmentresource (#17492)policycontroller.policy_controller_hub_config.policy_content.bundlesandpolicycontroller.policy_controller_hub_config.deployment_configsfields togoogle_gke_hub_feature_membership(#17483)BUG FIXES:
google_artifact_repository.docker_configfield is unset (#17484)google_bigquery_dataset.dataset_id(#17449)google_kms_crypto_key_version.attestation.cert_chainsproperties were incorrectly set to type string (#17486)v5.19.0Compare Source
FEATURES:
google_clouddeploy_automation(#17427)google_clouddeploy_target_iam_*(#17368)IMPROVEMENTS:
remote_function_optionsfield togoogle_bigquery_routineresource (#17382)locationfield togoogle_certificate_manager_dns_authorizationresource (#17358)google_composer_environment(#17361)certificate_manager_certificatesfield togoogle_compute_region_target_https_proxyresource (#17365)all_instances_configfield in resourcesgoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_managerto GA (#17414)enable_confidential_storagefromnode_configingoogle_container_clusterandgoogle_container_node_poolto GA (#17367)namespace_labelsfield togoogle_gke_hub_scoperesource (#17421)BUG FIXES:
auto_create_networkis false ingoogle_project(#17419)v5.18.0Compare Source
BREAKING CHANGES:
policy_setsandpolicy_sets.policiesrequired ingoogle_securityposture_posture. API validation already enforced this, so no resources could be provisioned without these (#17303)FEATURES:
google_compute_forwarding_rules(#17342)google_firebase_app_check_app_attest_config(#17279)google_firebase_app_check_play_integrity_config(#17279)google_firebase_app_check_recaptcha_enterprise_config(#17327)google_firebase_app_check_recaptcha_v3_config(#17327)google_migration_center_preference_set(#17291)google_netapp_volume_replication(#17348)IMPROVEMENTS:
version_idfield ongoogle_cloudfunctions_function(#17273)google_composer_environment(#17345)network_interface.stack_typefield ongoogle_compute_instanceresource. (#17295)node_config.resource_manager_tagsfield togoogle_container_clusterresource (#17346)node_config.resource_manager_tagsfield togoogle_container_node_poolresource (#17346)membership_idandmembership_locationunderfleetingoogle_container_clusterresource (#17305)custom_domainfield togoogle_looker_instanceresource (#17301)restore_parametersand output-only fieldsstate,state_detailsandcreate_timetogoogle_netapp_volumeresource (#17293)container_imagefield togoogle_workbench_instanceresource (#17326)shielded_instance_configfield togoogle_workbench_instanceresource (#17306)BUG FIXES:
principal/principalSets(iamMember) ingoogle_bigquery_dataset_iam_member. (#17292)event_config.trigger_regioningoogle_cloudfunctions2_functionresulted in a permanent diff. The field now pulls a default value from the API when unset. (#17328)stateful_(internal|external)_ipwould not trigger an update forgoogle_compute_(region_)instance_group_manager(#17297)min_ports_per_vmingoogle_compute_router_natwhen the field is unset by making the field default to the API-set value (#17337)google_dataflox_jobto return an error instead if a job's Environment field is nil when reading job information (#17344)tagfield to default to the API's value if not specified ingoogle_notebooks_instance(#17323)v5.17.0Compare Source
NOTES:
google_cloudbuildv2_connection, there should be no user-facing impact (#17222)DEPRECATIONS:
relay_modefield ingoogle_container_cluster.monitoring_config.advanced_datapath_observability_configin favor ofenable_relayfield,relay_modefield will be removed in a future major release (#17262)FEATURES:
google_firebase_app_check_debug_token(#17242)google_clouddeploy_custom_target_type(#17254)IMPROVEMENTS:
google_cloud_asset_resources_search_alldatasourcecanary_revision_tags,prior_revision_tags,stable_revision_tags, andstable_cutback_durationtogoogle_clouddeploy_delivery_pipelineversion_idongoogle_cloudfunctions_function(#17273)user_ip_request_headersfield ongoogle_compute_security_policyresource to GA (#17271)enable_relayfield togoogle_container_cluster.monitoring_config.advanced_datapath_observability_config(#17262)http_endpoint.uriandnetwork_config.network_attachmenttogoogle_eventarc_trigger(#17237)reject_duplicate_messagefield togoogle_healthcare_hl7_v2_storeresource (#17267)client,permissions,monitoringandmfafields togoogle_identity_platform_config(#17225)desired_statefield togoogle_notebooks_instance(#17268)feature_registry_sourcefield togoogle_vertex_ai_feature_online_store_featureviewresource (#17264)desired_statefield togoogle_workbench_instanceresource (#17270)BUG FIXES:
resource_manager_tagsupdatable ongoogle_compute_instance_templateandgoogle_compute_region_instance_template(#17256)google_notebooks_instancewhenkms_keyorservice_account_scopesare changed server-side (#17232)v5.16.0Compare Source
FEATURES:
google_clouddeploy_delivery_pipeline_iam_*(#17180)google_compute_instance_group_membership(#17188)google_discovery_engine_search_engine(#17146)google_firebase_app_check_service_config(#17155)IMPROVEMENTS:
table_replication_infofield onresource_bigquery_tableresource to GA (#17181)google_network_security_address_group(#17183)goog-terraform-provisionedto identify resources that were created by Terraform when viewing/editing these resources in other tools. (#17170)v5.15.0Compare Source
FEATURES:
google_compute_machine_types(#17107)google_blockchain_node_engine_blockchain_nodes(#17096)google_compute_region_network_endpoint(#17137)google_discovery_engine_chat_engine(#17145)google_discovery_engine_search_engine(#17146)google_netapp_volume_snapshot(#17138)IMPROVEMENTS:
INTERNET_IP_PORTandINTERNET_FQDN_PORToptions for thegoogle_compute_region_network_endpoint_groupresource. (#17137)creation_timestamptogoogle_compute_instance_group_managerandgoogle_compute_region_instance_group_manager. (#17110)disk_idattribute togoogle_compute_diskresource (#17112)stack_typeattribute forgoogle_compute_interconnect_attachmentresource. (#17139)google_compute_security_policyresource'sjson_parsingfield to accept the valueSTANDARD_WITH_GRAPHQL(#17097)reserved_ip_range_idfield togoogle_memcache_instanceresource (#17101)deletion_policyfield togoogle_netapp_volumeresource (#17111)BUG FIXES:
database_flagsin secondarygoogle_alloydb_instanceresources would cause a diff, as they are copied from the primary (#17128)google_filestore_instance.source_backupfield configurable (#17099)google_vmwareengine_private_cloudresources when upgrading provider version from <5.10.0 (#17135v5.14.0Compare Source
FEATURES:
google_discovery_engine_data_store(#17084)google_securityposture_posture_deployment(#17085)google_securityposture_posture(#17079)IMPROVEMENTS:
cleanup_policiesandcleanup_policy_dry_runfields to GA forgoogle_artifactregistry_repositoryresource (#17074)data_retention_configfield togoogle_composer_environmentresource (#17050)google_logging_project_bucket_configresource to be created using the asynchronous create method (#17067)use_table_schemafield togoogle_pubsub_subscriptionresource (#17054)call_log_levelfield togoogle_workflows_workflowresource (#17051)BUG FIXES:
build_config.docker_repositoryfield is not specified ongoogle_cloudfunctions2_functionresource (#17072)iapfield is unset forgoogle_compute_region_backend_serviceresource (#17071)destination.cloud_functionfield ongoogle_eventarc_triggerresource by making it output-only (#17052)v5.13.0Compare Source
NOTES:
google_cloudbuildv2_repository, there should be no user-facing impact (#16969)labelsandterraform_labelsfields in immutable resources (#17016)FEATURES:
google_netapp_backup_policy(#16962)google_netapp_volume(#16990)google_network_security_address_group_iam_*(#17013)google_vertex_ai_feature_group_feature(#17015)IMPROVEMENTS:
database_versionas an input ongoogle_alloydb_clusterresource (#16967)spark_optionsfield togoogle_bigquery_routineresource (#17028)nfsandgcsfields togoogle_cloud_run_v2_service.template.volumes(#16972)tcp_socketfield togoogle_cloud_run_v2.template.containers.liveness_probe(#16972)enable_confidential_computefield togoogle_compute_instance.boot_disk.initialize_params(#16968)enable_confidential_computefield togoogle_compute_diskresource ([#16968](https://togithub.com/hashicorp/terraform-provider-google/pull/1696Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
This PR has been generated by Mend Renovate. View repository job log here.