| audit_data_users |
G Suite or Cloud Identity group that have access to audit logs. |
string |
n/a |
yes |
| audit_logs_table_delete_contents_on_destroy |
(Optional) If set to true, delete all the tables in the dataset when destroying the resource; otherwise, destroying the resource will fail if tables are present. |
bool |
false |
no |
| audit_logs_table_expiration_days |
Period before tables expire for all audit logs in milliseconds. Default is 30 days. |
number |
30 |
no |
| billing_account |
The ID of the billing account to associate this project with |
string |
n/a |
yes |
| billing_data_users |
G Suite or Cloud Identity group that have access to billing data set. |
string |
n/a |
yes |
| create_access_context_manager_access_policy |
Whether to create access context manager access policy |
bool |
true |
no |
| data_access_logs_enabled |
Enable Data Access logs of types DATA_READ, DATA_WRITE and ADMIN_READ for all GCP services. Enabling Data Access logs might result in your organization being charged for the additional logs usage. See https://cloud.google.com/logging/docs/audit#data-access |
bool |
true |
no |
| default_region |
Default region for BigQuery resources. |
string |
n/a |
yes |
| dns_hub_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the DNS hub project. |
string |
null |
no |
| dns_hub_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the DNS hub project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| dns_hub_project_budget_amount |
The amount to use as the budget for the DNS hub project. |
number |
1000 |
no |
| domains_to_allow |
The list of domains to allow users from in IAM. |
list(string) |
n/a |
yes |
| interconnect_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the interconnect project. |
string |
null |
no |
| interconnect_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the interconnect project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| interconnect_project_budget_amount |
The amount to use as the budget for the interconnect project. |
number |
1000 |
no |
| log_export_storage_force_destroy |
(Optional) If set to true, delete all contents when destroying the resource; otherwise, destroying the resource will fail if contents are present. |
bool |
false |
no |
| log_export_storage_location |
The location of the storage bucket used to export logs. |
string |
"US" |
no |
| log_export_storage_retention_policy |
Configuration of the bucket's data retention policy for how long objects in the bucket should be retained. |
object({
is_locked = bool
retention_period_days = number
}) |
null |
no |
| org_audit_logs_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the org audit logs project. |
string |
null |
no |
| org_audit_logs_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the org audit logs project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| org_audit_logs_project_budget_amount |
The amount to use as the budget for the org audit logs project. |
number |
1000 |
no |
| org_billing_logs_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the org billing logs project. |
string |
null |
no |
| org_billing_logs_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the org billing logs project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| org_billing_logs_project_budget_amount |
The amount to use as the budget for the org billing logs project. |
number |
1000 |
no |
| org_id |
The organization id for the associated services |
string |
n/a |
yes |
| org_secrets_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the org secrets project. |
string |
null |
no |
| org_secrets_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the org secrets project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| org_secrets_project_budget_amount |
The amount to use as the budget for the org secrets project. |
number |
1000 |
no |
| parent_folder |
Optional - if using a folder for testing. |
string |
"" |
no |
| scc_notification_filter |
Filter used to SCC Notification, you can see more details how to create filters in https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications#create-filter |
string |
"state=\\\"ACTIVE\\\"" |
no |
| scc_notification_name |
Name of SCC Notification |
string |
n/a |
yes |
| scc_notifications_project_alert_pubsub_topic |
The name of the Cloud Pub/Sub topic where budget related messages will be published, in the form of projects/{project_id}/topics/{topic_id} for the SCC notifications project. |
string |
null |
no |
| scc_notifications_project_alert_spent_percents |
A list of percentages of the budget to alert on when threshold is exceeded for the SCC notifications project. |
list(number) |
[
0.5,
0.75,
0.9,
0.95
] |
no |
| scc_notifications_project_budget_amount |
The amount to use as the budget for the SCC notifications project. |
number |
1000 |
no |
| skip_gcloud_download |
Whether to skip downloading gcloud (assumes gcloud is already available outside the module. If set to true you, must ensure that Gcloud Alpha module is installed.) |
bool |
true |
no |
| terraform_service_account |
Service account email of the account to impersonate to run Terraform. |
string |
n/a |
yes |