Terraform Google Provider v7.38.0 Adds New Resources and Enhancements
The Terraform Google Provider v7.38.0 introduces several new resources and data sources for managing various Google Cloud services. It also includes significant improvements to existing resources, particularly within GKE, for better performance and flexibility. These changes benefit engineers and architects managing GCP infrastructure with Terraform, offering more granular control and efficiency in resource management. This release focuses on expanding capabilities and refining user experience.
- →New Data Source: google_storage_control_project_intelligence_finding_revision
- →New Data Source: google_storage_control_project_intelligence_finding_revisions
- →New Resource: google_biglake_hive_catalog
- →New Resource: google_chronicle_feed
- →New Resource: google_chronicle_parser_extension
Features (21) ›
- google_storage_control_project_intelligence_finding_revision New Data Source: google_storage_control_project_intelligence_finding_revision
- google_storage_control_project_intelligence_finding_revisions New Data Source: google_storage_control_project_intelligence_finding_revisions
- google_biglake_hive_catalog New Resource: google_biglake_hive_catalog
- google_chronicle_feed New Resource: google_chronicle_feed
- google_chronicle_parser_extension New Resource: google_chronicle_parser_extension
- google_dataplex_metadata_feed New Resource: google_dataplex_metadata_feed
- google_network_services_agent_gateway New Resource: google_network_services_agent_gateway
- google_vertex_ai_schedule New Resource: google_vertex_ai_schedule
- google_vertex_ai_tensorboard_run New Resource: google_vertex_ai_tensorboard_run
- google_compute_address New List Resource: google_compute_address
- google_compute_cross_site_network New List Resource: google_compute_cross_site_network
- google_compute_https_health_check New List Resource: google_compute_https_health_check
- google_compute_node_template New List Resource: google_compute_node_template
- google_compute_packet_mirroring New List Resource: google_compute_packet_mirroring
- google_compute_region_autoscaler New List Resource: google_compute_region_autoscaler
- google_compute_region_composite_health_check New List Resource: google_compute_region_composite_health_check
- google_compute_region_health_aggregation_policy New List Resource: google_compute_region_health_aggregation_policy
- google_compute_region_health_source New List Resource: google_compute_region_health_source
- google_project_iam_member New List Resource: google_project_iam_member
- google_pubsub_topic New List Resource: google_pubsub_topic
- google_secret_manager_secret New List Resource: google_secret_manager_secret
Enhancements (18) ›
- apigee added consumer_key and consumer_secret fields to google_apigee_developer_app to allow specifying a static credential
- artifactregistry added update support for upstream_credentials to google_artifact_registry_repository
- biglakeiceberg
added CATALOG_TYPE_BIGLAKE enum to catalog_type field and added restricted_locations_config.restricted_locations field in google_biglake_iceberg_catalog resource
- biglakeiceberg added sort_order field to google_biglake_iceberg_table resource
- ces added timeout and tool_fake_config fields to google_ces_tool and google_ces_toolset resource
- compute added params.resource_manager_tags field to google_compute_snapshot resource
- compute
made network_endpoints.ip_address optional in google_compute_network_endpoints resource to support attaching endpoints to a network endpoint group of type GCE_VM_IP_DEDICATED_BACKEND
- container added dataplane_optimization_mode in google_container_cluster
- container
added ignore_node_count_changes field to google_container_cluster and google_container_node_pool resources. When set to true, the provider ignores drift via external node count changes and skips related IGM API queries, resolving long plan times on clusters with a large number of instance groups
- container
added skip_node_pool_refresh field to google_container_cluster resource. When set to true, the google_container_cluster skips refreshing and setting node_pools from the API, resolving long plan times on clusters with a large number of node pools. Note that this results in node_pools being set to an empty list in state
- container added taint_config block to google_container_cluster and google_container_node_pool
- container improved GKE node pool read performance by caching instance group metadata longer
- datastream added additional_options field to google_datastream_connection_profile resource
- iamworkforcepool write-only support for oidc.client_secret in google_iam_workforce_pool_provider
- kms added resource identity support for google_kms_crypto_key_version resource
- networkservices added dns_peering_config field to google_network_services_agent_gateway resource
- sql
added mode, dns_servers, admin_credential_secret_name, and organizational_unit fields to active_directory_config block in google_sql_database_instance resource for SQL Server instances
- storage added lifecycle_rule.condition.size_above_bytes and lifecycle_rule.condition.size_below_bytes fields to google_storage_bucket resource
Fixes (8) ›
- apigee
google_apigee_developer_app now updates api_products and scopes on the existing credential instead of creating a new credential (consumer key) on update
- biglake allow location to be set on google_biglake_iceberg_namespace
- biglake
fixed creation failure of google_biglake_iceberg_table resource when the referenced google_biglake_iceberg_catalog has credential_mode set to CREDENTIAL_MODE_VENDED_CREDENTIALS due to a missing X-Iceberg-Access-Delegation header
- compute fixed broken import of share_settings on google_compute_reservation
- datastream fixed a positional diff when adding objects to the salesforce_source_config.include_objects field in google_datastream_stream resource
- iamworkforcepool marked sensitive and ignore_read as true for security_token in google_iam_workforce_pool_provider_scim_token resource
- networkconnectivity fixed google_network_connectivity_regional_endpoint being recreated on every apply when address is set to a resource URI
- networkservices
fixed name field expansion for google_network_services_agent_gateway resources so that short names are automatically expanded to full resource names, preventing API validation errors on create and update
Notes (4) ›
- bigquery migrated google_bigquery_table resource to use direct HTTP rather than a client library
- compute migrated resource_compute_instance_template_test.go.tmpl resource to use direct HTTP rather than a client library
- compute migrated google_compute_resource_compute_instance to use direct HTTP rather than a client library
- compute migrated parts of google_compute_instance and shared instance functions to use direct HTTP
https://github.com/hashicorp/terraform-provider-google/releases/tag/v7.38.0