You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: README.md
+4-2
Original file line number
Diff line number
Diff line change
@@ -132,6 +132,7 @@ determining that location is as follows:
132
132
| budget\_display\_name | The display name of the budget. If not set defaults to `Budget For <projects[0]|All Projects>` |`string`|`null`| no |
133
133
| budget\_labels | A single label and value pair specifying that usage from only this set of labeled resources should be included in the budget. |`map(string)`|`{}`| no |
134
134
| budget\_monitoring\_notification\_channels | A list of monitoring notification channels in the form `[projects/{project_id}/notificationChannels/{channel_id}]`. A maximum of 5 channels are allowed. |`list(string)`|`[]`| no |
135
+
| cloud\_armor\_tier | Managed protection tier to be set. Possible values are: CA\_STANDARD, CA\_ENTERPRISE\_PAYGO. If not set, then project will be set to default Standard protection |`string`|`null`| no |
135
136
| consumer\_quotas | The quotas configuration you want to override for the project. | <pre>list(object({<br> service = string,<br> metric = string,<br> dimensions = map(string),<br> limit = string,<br> value = string,<br> }))</pre> |`[]`| no |
136
137
| create\_project\_sa | Whether the default service account for the project shall be created |`bool`|`true`| no |
137
138
| default\_network\_tier | Default Network Service Tier for resources created in this project. If unset, the value will not be modified. See https://cloud.google.com/network-tiers/docs/using-network-service-tiers and https://cloud.google.com/network-tiers.|`string`|`""`| no |
@@ -173,6 +174,7 @@ determining that location is as follows:
173
174
| api\_s\_account | API service account email |
174
175
| api\_s\_account\_fmt | API service account email formatted for terraform use |
175
176
| budget\_name | The name of the budget if created |
177
+
| cloud\_armor\_tier | Managed protection tier to be set. If not set, then project will be set to default Standard protection |
176
178
| domain | The organization's domain |
177
179
| enabled\_api\_identities | Enabled API identities in the project |
178
180
| enabled\_apis | Enabled APIs in the project |
@@ -199,8 +201,8 @@ determining that location is as follows:
The v16.0 release of Project Factory is a backwards incompatible release.
4
+
5
+
### Google Cloud Platform Provider upgrade
6
+
7
+
The Project Factory module now requires version `5.33` or higher of the Google Cloud Platform Provider and `5.33` or higher of the Google Cloud Platform Beta Provider.
This module uses the [`google_compute_project_cloud_armor_tier`](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_project_cloud_armor_tier)
4
+
resource to set the Cloud Armor tier of the project.
5
+
6
+
## Prerequisites
7
+
8
+
1. Service account used to run Terraform has permission to To enroll a project into the Cloud Armor Enterprise subscription
9
+
[`resourcemanager.projects.createBillingAssignment` and `resourcemanager.projects.update`](https://cloud.google.com/armor/docs/armor-enterprise-using#required_permissions).
10
+
2. The target project has the compute engine API enabled `compute.googleapis.com `
description="Managed protection tier to be set. Possible values are: CA_STANDARD, CA_ENTERPRISE_PAYGO. If not set, then project will be set to default Standard protection"
0 commit comments