v3.65.0

FEATURES:

• New Resource: google_eventarc_trigger (#8895)

IMPROVEMENTS:

• compute: added the ability to specify google_compute_forwarding_rule.ip_address by a reference in addition to raw IP address (#8877)
• compute: enabled fields advertiseMode, advertisedGroups, peerAsn, and peerIpAddress to be updatable on resource google_compute_router_peer (#8862)

BUG FIXES:

• cloud_identity: fixed google_cloud_identity_group_membership import/update (#8867)
• compute: fixed an issue in google_compute_instance where min_node_cpus could not be set (#8865)
• compute: removed minimum for scopes field on google_compute_instance resource (#8893)
• iam: fixed issue with principle and principleSet members not retaining their casing (#8860)
• workflows: fixed a bug in google_workflows_workflow that could cause inconsistent final plan errors when using the name field in other resources (#8869)

v3.64.0

FEATURES:

• New Resource: google_tags_tag_key_iam_binding (#8844)
• New Resource: google_tags_tag_key_iam_member (#8844)
• New Resource: google_tags_tag_key_iam_policy (#8844)
• New Resource: google_tags_tag_value_iam_binding (#8844)
• New Resource: google_tags_tag_value_iam_member (#8844)
• New Resource: google_tags_tag_value_iam_policy (#8844)
• New Resource: google_apigee_envgroup_attachment (#8853)
• New Resource: google_tags_tag_binding (#8854)
• New Resource: google_tags_tag_key (#8854)
• New Resource: google_tags_tag_value (#8854)

IMPROVEMENTS:

• bigquery: added require_partition_filter field to google_bigquery_table when provisioning hive_partitioning_options (#8775)
• compute: added field maintenance_window.start_time to google_compute_node_group (#8847)
• compute: added gVNIC support for google_compute_instance_template (#8842)
• datacatalog: added description field to google_data_catalog_tag_template resource (#8851)
• iam: added support for third party identities via the principle and principleSet IAM members (#8860)
• tags: promoted google_tags_tag_key to GA (#8854)
• tags: promoted google_tags_tag_value to GA (#8854)

BUG FIXES:

• compute: reverted datatype change for mtu in google_compute_interconnect_attachment as it was incompatible with existing state representation (#8829)
• iam: fixed issue with principle and principleSet members not retaining their casing (#8860)
• storage: fixed intermittent Provider produced inconsistent result after apply error when creating google_storage_hmac_key (#8817)

v3.63.0

FEATURES:

• New Data Source: google_monitoring_istio_canonical_service (#8789)
• New Resource: google_apigee_instance_attachment (#8795)

IMPROVEMENTS:

• added support for Apple silicon chip (updated to go 1.16) (#8693)
• container:
  • added support for GKE Autopilot in google_container_cluster(#8805)
  • promoted networking_mode to GA in google_container_cluster (#8805)
  • added private_ipv6_google_access field to google_container_cluster (#8798)
• sql: changed the default timeout of google_sql_database_instance to 30m from 20m (#8802)

BUG FIXES:

• bigquery: fixed issue where you couldn't extend an existing schema with additional columns in google_bigquery_table (#8803)
• cloudidentity: modified google_cloud_identity_groups and google_cloud_identity_group_memberships to respect the user_project_override and billing_project configurations and send the appropriate headers to establish a quota project (#8762)
• compute: added minimum for scopes field to google_compute_instance resource (#8801)
• notebooks: fixed permadiff on labels for google_notebook_instance (#8799)
• secretmanager: set required on secrest_data in google_secret_manager_secret_version (#8797)

v3.62.0

FEATURES:

• New Data Source: google_compute_health_check (#8725)
• New Data Source: google_kms_secret_asymmetric (#8745)
• New Resource: google_data_catalog_tag_template_iam_* (#8730)

IMPROVEMENTS:

• accesscontextmanager: added support for ingress and egress policies to google_access_context_manager_service_perimeter (#8723)
• compute: added proxy_bind to google_compute_target_tcp_proxy, google_compute_target_http_proxy and google_compute_target_https_proxy (#8706)

BUG FIXES:

• compute: fixed an issue where exceeding the operation rate limit would fail without retrying (#8746)
• compute: corrected underlying type to integer for field mtu in google_compute_interconnect_attachment (#8744)

v3.61.0

IMPROVEMENTS:

• provider: The provider now supports Workload Identity Federation. The federated json credentials must be loaded through the GOOGLE_APPLICATION_CREDENTIALS environment variable. (#8671)
• compute: added proxy_bind to google_compute_target_tcp_proxy, google_compute_target_http_proxy and google_compute_target_https_proxy (#8706)
• compute: changed google_compute_subnetwork to accept more values in the purpose field (#8647)
• compute: promoted field compute_instance.scheduling.min_node_cpus and related fields to ga (#8697)
• dataflow: added enable_streaming_engine argument to google_dataflow_job (#8670)
• healthcare: promoted google_healthcare_consent_store* to GA support (#8681)

BUG FIXES:

• container: Fixed updates on export_custom_routes and import_custom_routes in google_compute_network_peering (#8650)

v3.60.0

NOTES: From this release onwards google_compute_shared_vpc_service_project will not recognise the Shared VPC Admin role when assigned at the folder level in the GA provider, as that functionality is not enabled in the GA API. If you have folder-level IAM configured for Shared VPC permissions, use the google-beta provider instead.

FEATURES:

• New Resource: google_apigee_envgroup (#8641)
• New Resource: google_apigee_environment (#8596)

IMPROVEMENTS:

• cloudrun: suppressed metadata.labels["cloud.googleapis.com/location"] value in google_cloud_run_service (#8574)
• compute: added mtu field to google_compute_interconnect_attachment (#8575)
• compute: added support for nic_type to google_compute_instance (GA only) (#8562)
• datafusion: added support for the DEVELOPER instance type to google_data_fusion_instance (#8590)
• monitoring: added windows based availability sli to the resource google_monitoring_slo (#8588)
• sql: added settings.0.backup_configuration.transaction_log_retention_days and settings.0.backup_configuration.transaction_log_retention_days fields to google_sql_database_instance (#8582)
• storage: added kms_key_name to google_storage_bucket_object resource (#8615)

BUG FIXES:

• bigquery: fixed materialized view to be recreated when query changes (#8628)
• bigtable: fixed bug where gc_policy would attempt to recreate the resource when switching from deprecated attribute but maintaining the same underlying value (#8639)
• bigtable: required resource recreation if any fields change on resource_bigtable_gc_policy (#8552)
• binaryauthorization: fixed permadiff in google_binary_authorization_attestor (#8636)
• cloudfunction: added retry logic for google_cloudfunctions_function updates (#8554)
• cloudidentity: fixed a bug where google_cloud_identity_group would periodically fail with a 403 (#8585)
• compute: fixed a perma-diff for nat_ips that were specified as short forms in google_compute_router_nat (#8576)
• compute: fixed perma-diff for cos-family disk images (#8602)
• compute: Fixed service account scope alias to be updated. (#8604)
• container: fixed container cluster not removed from the state when received 404 error on delete call for the resource google_container_cluster (#8594)
• container: Fixed failure in deleting maintenance_exclusion for google_container_cluster (#8589)
• container: fixed an issue where release channel UNSPECIFIED could not be set (#8595)
• essentialcontacts: made language_tag required for google_essential_contacts_contact (#8557)

v3.59.0

FEATURES:

• New Resource: google_workflows_workflow (#8549)
• New Resource: google_apigee_instance (#8546)

IMPROVEMENTS:

• compute: Added graceful termination to google_container_node_pool create calls so that partially created node pools will resume the original operation if the Terraform process is killed mid create. (#8492)
• compute: Promoted gVNIC support for google_compute_instance resource to GA (#8506)
• compute: added autoscaling_policy.cpu_utilization.predictive_method field to google_compute_autoscaler and google_compute_region_autoscaler (#8547)
• redis : marked auth_string on the resource_redis_instance resource as sensitive (#8513)

BUG FIXES:

• apigee: fixed IDs when importing google_apigee_organization resource (#8488)
• artifactregistry: fixed issue where updating google_artifact_registry_repository always failed (#8491)
• compute : fixed a bug where guest_flush could not be set to false for the resource google_compute_resource_policy (#8517)
• compute: fixed a panic on empty target_size in google_compute_region_instance_group_manager (#8528)
• redis: fixed invalid value error on auth_string in google_redis_instance (#8493)

v3.58.0

NOTES:

• google_bigquery_table resources now cannot be destroyed unless deletion_protection = false is set in state for the resource. (#8453)

FEATURES:

• New Data Source: google_iap_client (#8450)

IMPROVEMENTS:

• bigquery: added deletion_protection field to google_bigquery_table to make deleting them require an explicit intent. (#8453)
• cloudrun: updated retry logic to attempt to retry 409 errors from the Cloud Run API, which may be returned intermittently on create. (#8440)
• compute: removed max items limit from google_compute_target_ssl_proxy. The API currently allows upto 15 Certificates. (#8478)
• compute: added support for Private Services Connect for Google APIs in google_compute_global_address and google_compute_global_forwarding_rule(#8458)
• iam: added a retry condition that retries editing iam_binding and iam_member resources on policies that have frequently deleted service accounts (#8476)
• sql: added insights_config block to google_sql_database_instance resource (#8434)

BUG FIXES:

• compute: fixed an issue where the provider could return an error on a successful delete operation (#8463)
• dataproc : fixed an issue where max_failure_per_hour was not set correctly for google_dataproc_job (#8441)
• dlp : modified google_data_loss_prevention_stored_info_type regex.group_indexes field to trigger resource recreation on update (#8439)
• sql: fixed diffs based on case for charset in google_sql_database (#8462)

3.57.0

DEPRECATIONS:

• compute: deprecated source_disk_url field in google_compute_snapshot. (#8410)
• kms: deprecated self_link field in google_kms_keyring and google_kms_cryptokey resource as it is identical value to id field. (#8410)
• pubsub: deprecated path field in google_pubsub_subscription resource as it is identical value to id field. (#8410)

FEATURES:

• New Resource: google_essential_contacts_contact (#8426)

IMPROVEMENTS:

• bigquery: added status field to google_bigquery_job (#8377)
• compute: added disk.resource_policies field to resource google_compute_instance_template (#8393)
• pubsub: marked kms_key_name field in google_pubsub_topic as updatable (#8424)

BUG FIXES:

• appengine: added retry for P4SA propagation delay (#8409)
• compute: fixed overly-aggressive detection of changes to google_compute_security_policy rules (#8417)

v3.56.0

FEATURES:

• New Resource: google_privateca_certificate (#8371)

IMPROVEMENTS:

• all: added plan time validations for fields that expect base64 values. (#8304)
• sql: added support for point-in-time-recovery to google_sql_database_instance (#8367)
• monitoring : added availability sli metric support for the resource google_monitoring_slo (#8315)

BUG FIXES:

• bigquery: fixed bug where you could not reorder columns on schema for resource google_bigquery_table (#8321)
• cloudrun: suppressed run.googleapis.com/ingress-status annotation in google_cloud_run_service (#8361)
• serviceaccount: loosened restrictions on account_id for datasource google_service_account (#8344)