v6.37.0

FEATURES:

• New Data Source: google_bigquery_table (#22973)
• New Data Source: google_gke_hub_membership (#22972)
• New Resource: google_apigee_security_monitoring_condition (#22953)
• New Resource: google_beyondcorp_security_gateway_application (#22938)
• New Resource: google_cloud_run_v2_worker_pool (#22933)
• New Resource: google_compute_future_reservation (#22860)
• New Resource: google_dataplex_glossary_category (#22835)
• New Resource: google_dataplex_glossary_term (#22835)
• New Resource: google_iam_workforce_pool_provider_key (#22960)
• New Resource: google_managed_kafka_acl (#22957)

IMPROVEMENTS:

• alloydb: added activation_policy field to google_alloydb_instance resource (#22818)
• compute: added in-place update support for mtu field in google_compute_network (#22956)
• compute: promoted google_compute_region_network_firewall_policy_with_rules, google_compute_network_firewall_policy_with_rules, and compute_firewall_policy_with_rules resources to GA (#22958)
• container: added in-place update support for ip_allocation_policy.stack_type field in google_container_cluster resource (#22915)
• container: added in-place update support for enable_multi_networking in google_container_cluster resource (#22924)
• databasemigrationservice: added create_without_validation field to google_database_migration_service_private_connection resource (#22925)
• dataflow: added additional_pipeline_options field to google_dataflow_flex_template_job resource (#22919)
• memorystore: added field desired_auto_created_endpoints for google_memorystore_instance resource (#22871)
• netapp: added hybrid_peering_details and hybrid_replication_type fields to google_netapp_volume_replication resource (#22975)
• netapp: added hybrid_replication_parameters fields to google_netapp_volume resource (#22975)
• netblock: added restricted-googleapis-with-directconnectivity and private-googleapis-with-directconnectivity range_types to google_netblock_ip_ranges data source (#22930)
• netblock: added ipv6 ranges for restricted-googleapis and private-googleapis range_types to google_netblock_ip_ranges data source (#22930)
• privateca: added name_constraints field for google_privateca_certificate_template resource (#22981)
• spanner: added field instance_type to the google_spanner_instance resource (#22916)
• storage: added ip_filter to google_storage_bucket resource. (#22976)

BUG FIXES:

• compute: fixed forced instance recreation when adding a attached_disk with force_attach being false to google_compute_instance (#22954)
• gemini: fixed permadiff on product field in google_gemini_logging_setting_binding resource (#22819)
• gemini: fixed permadiff on product field in google_gemini_release_channel_setting_binding resource (#22929)
• networkservices: fixed validation error when modifying the cache_mode field in edge_cache_service (#22932)
• privateca: fixed issue preventing setting 0 and null values for basic constraints in the google_privateca_certificate_template resource via the addition of null_ca and zero_max_issuer_path_length fields (#22981)
• vpcaccess: fixed an issue where Terraform config validation conditions could have erroneously invalidated existing google_vpc_access_connector resources (#22837)

v6.36.1

BUG FIXES:

• compute: fixed forced instance recreation when adding a attached_disk with unset force_attach to google_compute_instance (#22954)

v6.36.0

DEPRECATIONS:

• beyondcorp: deprecated google_beyondcorp_application (#22754)
• firestore: deprecated deletion_policy field of google_firestore_database resource (#22764)

FEATURES:

• New Data Source: google_beyondcorp_security_gateway (#22793)
• New Data Source: google_lustre_instance (#22766)
• New Resource: google_bigquery_row_access_policy (#22806)
• New Resource: google_dataplex_glossary (#22794)
• New Resource: google_firebase_app_hosting_default_domain (#22748)
• New Resource: google_firebase_app_hosting_domain (#22748)
• New Resource: google_firebase_app_hosting_traffic (#22748)
• New Resource: google_network_security_intercept_deployment (#22790)
• New Resource: google_network_security_intercept_deployment_group (#22790)
• New Resource: google_network_security_intercept_endpoint_group (#22790)
• New Resource: google_network_security_intercept_endpoint_group_association (#22790)

IMPROVEMENTS:

• beyondcorp: increased default timeouts on google_beyondcorp_app_gateway operations from 20m to 40m (#22805)
• bigtable: added deletion_protection field to google_bigtable_logical_view resource (#22755)
• compute: added 'H2C' as a supported value for protocol in google_compute_backend_service and google_compute_region_backend_service (#22791)
• compute: added external_managed_backend_bucket_migration_state and external_managed_backend_bucket_migration_testing_percentage to google_compute_global_forwarding_rule resource. (#22781)
• compute: added external_managed_migration_state and external_managed_migration_testing_percentage to google_compute_backend_service resource. (#22781)
• compute: added force_attach field to boot_disk and attached_disk of google_compute_instance resource (#22801)
• compute: added numeric_id to google_compute_instance_template resource (#22763)
• compute: added the numeric id as generated_id attribute to the google_compute_network_endpoint_group (#22780)
• compute: added update support for load_balancing_scheme in google_compute_backend_service and google_compute_global_forwarding_rule resources to allow migrating between classic and global external ALB (#22781)
• container: added in_transit_encryption_config field in google_container_cluster resource (#22758)
• container: allowed in-place update node_config.windows_node_config field in google_container_cluster and google_container_node_pool resource (#22782)
• container: allowed in-place update for node_config.storage_pools field in google_container_cluster and google_container_node_pool resource (#22753)
• dialogflowcx: added event_handlers.trigger_fulfillment.enable_generative_fallback field to google_dialogflow_cx_flow resource (#22671)
• dialogflowcx: added gen_app_builder_settings field to google_dialogflow_cx_agent resource (#22757)
• netapp: added custom_performance_enabled, total_throughput_mibps, and total_iops fields to google_netapp_storage_pool resource (#22778)
• vmwareengine: increased google_cloud_vmwareengine_private_cloud timeout to 6 hours. (#22762)

BUG FIXES:

• compute: added global retry for "resourceNotReady for Networks" 400 errors (#22756)
• dialogflowcx: fixed an issue where dialogflow_cx_custom_endpoint is not correctedly handled (#22792)
• iamoauthclient: marked google_iam_oauth_client_credential.client_secret as sensitive (#22789)
• resourcemanager: fixed an issue in google_projects data source where the provider universe_domain did not overwrite the list URL (#22747)

v6.35.0

BREAKING CHANGES:

• metastore: removed non-functioning tags field from google_dataproc_metastore_service. It was introduced in v6.31.0 but the feature was not yet GA. (#22636)
• redis: removed non-functioning tags field from google_redis_instance . It was introduced in v6.31.0 but the feature was not yet GA. (#22637)

FEATURES:

• New Resource: google_compute_cross_site_network (#22632)

IMPROVEMENTS:

• alloydb: added psc_auto_connections field to google_alloydb_instance resource (#22630)
• apigee: added s_sl_info.enforce field in google_apigee_target_server resource (#22594)
• bigquery: added security_mode option for google_bigquery_routine resource (#22643)
• bigtable: added support for explicit disable automated backup on create for google_bigtable_table (#22635)
• compute: added guest_os_features and architecture to google_compute_instance_template and google_compute_region_instance_template (#22644)
• compute: allowed in-place updates for subnetworks, description, producer_accept_lists, and producer_reject_lists on google_compute_network_attachment (#22611)
• dialogflowcx: added knowledge_connector_settings field to google_dialogflow_cx_flow and google_dialogflow_cx_page resources (#22631)
• netapp: added backup_vault_type, backup_region, source_region, source_backup_vault, and destination_backup_vault fields to google_netapp_backup_vault (#22625)
• netapp: added volume_region and backup_region fields to google_netapp_backup (#22625)
• networkconnectivity: added immutability field to google_network_connectivity_internal_range resource (#22623)
• networkservices: added flex_shielding field to google_network_services_edge_cache_origin resource (#22645)
• spanner: added field default_time_zone to google_spanner_database resource (#22628)
• storage: added new field content_hexsha512 and content_base64sha512 in data source google_storage_bucket_object_content (#22592)

BUG FIXES:

• gemini: fixed bug on google_gemini_code_repository_index where force_destroy field did nothing (#22648)
• privateca: removed requirement to specify organization for google_privateca_certificate_authority resource (#22634)
• workbench: fixed some metadata changes not being reflected in google_workbench_instance (#22612)

v6.34.1

BUG FIXES:

• bigtable: fixed forced instance recreation due to addition of cluster.node_scaling_factor for google_bigtable_instance (#22674)

v6.34.0

DEPRECATIONS:

• tpu: deprecated google_tpu_node resource. google_tpu_node is deprecated and will be removed in a future major release. Use google_tpu_v2_vm instead. (#22552)

FEATURES:

• New Resource: google_apigee_security_profile_v2 (#22524)

IMPROVEMENTS:

• bigtable: added cluster.node_scaling_factor field to google_bigtable_instance resource (#22560)
• cloudrunv2: added scaling_mode and manual_instance_count fields to google_cloud_run_v2_service resource (#22561)
• networkconnectivity: added state_reason field to google_network_connectivity_spoke resource (#22525)
• sql: added connection_pool_config field to the google_sql_database_instance resource (#22583)
• vpcaccess: changed fields min_instances, max_instances, machine_type to allow update google_vpc_access_connector without recreation. (#22572)

BUG FIXES:

• compute: fixed the bug when validating the subnetwork project in google_compute_instance resource (#22571)
• workbench: fixed a permadiff on metadata of instance-region in google_workbench_instance resource (#22553)

v6.33.0

FEATURES:

• New Data Source: google_memcache_instance (#22477)
• New Resource: google_bigtable_logical_view (#22499)
• New Resource: google_bigtable_materialized_view (#22475)
• New Resource: google_compute_region_security_policy_rule (ga) (#22443)
• New Resource: google_compute_region_security_policy (ga) (#22443)
• New Resource: google_os_config_v2_policy_orchestrator_for_folder (#22441)

IMPROVEMENTS:

• beyondcorp: added upstreams fields to google_beyondcorp_application resource (#22514)
• compute: added fields like raw_key, rsa_encrypted_key, kms_key_service_account to all relevant resources on google_compute_instance_template and google_compute_region_instance_template (#22503)
• compute: added disk_id to google_compute_region_disk resource (#22462)
• compute: marked location field as required in google_compute_interconnect resource (#22480)
• container: added data_cache_count to ephemeral_storage_local_ssd_config for google_container_node_pool (#22456)
• container: added update for gvnic to google_container_node_pool (#22421)
• dataplex: added notification_report field to google_dataplex_datascan resource (#22464)
• gkehub: added configmanagement.config_sync.deployment_overrides field to google_gke_hub_feature_membership resource (#22403)
• identityplatform: added response_type field to google_identity_platform_oauth_idp_config (#22463)
• networkservices: added metadata field to google_networkservices_lbtrafficextension resource (#22454)
• sql: added output-only field dns_names to google_sql_database_instance resource (#22502)
• storage: added new fields time_created and updated in google_storage_bucket (#22500)
• storagetransfer: added transfer_spec.aws_s3_data_source.managed_private_network field to google_storage_transfer_job resource (#22509)

BUG FIXES:

• alloydb: stopped diffs when google_alloydb_instance.network_config is not specified as the API newly returns a value. Removing the field from config will no longer create a diff and will preserve the current value (#22504)
• clouddeploy: allowed sending empty block for rollback field in google_clouddeploy_automation resource. (#22501)
• compute: fixed an issue preventing terms.priority from being set to priority value 0 in google_compute_router_route_policy resource (#22417)
• securesourcemanager: increased default timeouts on google_secure_source_manager_instance operations to 120m from 60m. Operations could take longer than an hour. (#22483)
• sql: replaced the Terraform-based default value for settings.disk_type in google_sql_database_instance with a server-assigned default, allowing for compatibility with machine types that require HyperDisk_Balanced (#22485)
• workstations: increased default timeouts on google_workstations_workstation_cluster operations to 120m from 60m. Operations could take longer than an hour. (#22482)

v6.32.0

NOTES:

• 6.32.0 contains no changes from 6.31.1. This release is being made to ensure that the version numbers of the google and google-beta provider releases remain aligned, as google-beta's 6.32.0 release contains a beta-only change.

v6.31.1

BUG FIXES:

• storage: removed extra permission (storage.anywhereCaches.list) required for destroying a resource_storage_bucket (#22442)

v6.31.0

DEPRECATIONS:

• integrations: deprecated run_as_service_account field in google_integrations_client resource (#22312)

FEATURES:

• New Resource: google_compute_resource_policy_attachment (#22400)
• New Resource: google_compute_storage_pool (#22343)
• New Resource: google_gke_backup_backup_channel (#22393)
• New Resource: google_gke_backup_restore_channel (#22393)
• New Resource: google_iap_web_cloud_run_service_iam_binding (#22399)
• New Resource: google_iap_web_cloud_run_service_iam_member (#22399)
• New Resource: google_iap_web_cloud_run_service_iam_policy (#22399)
• New Resource: google_storage_batch_operations_job (#22333)

IMPROVEMENTS:

• accesscontextmanager: added scoped_access_settings field to gcp_user_access_binding resource (#22308)
• alloydb: added machine_type field to google_alloydb_instance resource (#22352)
• artifactregistry: added DEBIAN_SNAPSHOT enum value to repository_base in google_artifact_registry_repository (#22315)
• bigquery: added external_catalog_dataset_options fields to google_bigquery_dataset resource (#22377)
• compute: added log_config.optional_mode, log_config.optional_fields, backend.preference, max_stream_duration and cdn_policy.request_coalescing fields to google_compute_backend_service resource (#22391)
• container: added support for updating the confidential_nodes field in google_container_node_pool (#22363)
• discoveryengine: added allow_cross_region field to google_discovery_engine_chat_engine resource (#22336)
• gkehub: added configmanagement.config_sync.deployment_overrides field to google_gke_hub_feature_membership resource (#22403)
• kms: added new enum values for import_method field in google_kms_key_ring_import_job resource (#22314)
• metastore: added tags field to google_dataproc_metastore_service resource to allow setting tags for services at creation time (#22313)
• monitoring: added log_check_failures to google_monitoring_uptime_check_config (#22351)
• networkconnectivity: added IPv6 support to google_network_connectivity_internal_range resource (#22401)
• networkconnectivity: added exclude_cidr_ranges field to google_network_connectivity_internal_range resource (#22332)
• privateca: added backdate_duration field to the google_privateca_ca_pool resource to add support for backdating the not_before_time of certificates (#22380)
• redis: added tags field to google_redis_instance (#22337)
• sql: added custom_subject_alternative_names field to instances resource (#22357)
• sql: added data_disk_provisioned_iops and data_disk_provisioned_throughput fields to google_sql_database_instance resource (#22398)
• sql: added retain_backups_on_delete field to google_sql_database_instance resource (#22334)

BUG FIXES:

• colab: fixed perma-diff in google_colab_runtime_template caused by not returning default values. (#22338)
• discoveryengine: fixed google_discovery_engine_target_site operations to allow for enough time to index before timing out (#22358)
• compute: fixed perma-diff in google_compute_network_firewall_policy_rule when security_profile_group starts with // (#22402)
• healthcare: made google_healthcare_pipeline_job wait for creation and update operation to complete (#22339)
• identityplatform: fixed perma-diff in google_identity_platform_config when fields in blocking_functions.forward_inbound_credentials are set to false (#22384)
• sql: added diff suppression for some version changes togoogle_sql_database_instance. Diffs for database_version for MySQL 8.0 will be suppressed when the version is updated by auto version upgrade.(#22356)
• sql: fixed the issue of shortened version of failover_dr_replica_name causes unnecessary diff in google_sql_database_instance (#22319)