cloud-foundation-fabric/modules/dataproc/variables.tf

/**
 * Copyright 2023 Google LLC
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

variable "dataproc_config" {
  description = "Dataproc cluster config."
  type = object({
    graceful_decommission_timeout = optional(string)
    cluster_config = optional(object({
      staging_bucket = optional(string)
      temp_bucket    = optional(string)
      gce_cluster_config = optional(object({
        zone                   = optional(string)
        network                = optional(string)
        subnetwork             = optional(string)
        service_account        = optional(string)
        service_account_scopes = optional(list(string))
        tags                   = optional(list(string), [])
        internal_ip_only       = optional(bool)
        metadata               = optional(map(string), {})
        reservation_affinity = optional(object({
          consume_reservation_type = string
          key                      = string
          values                   = string
        }))
        node_group_affinity = optional(object({
          node_group_uri = string
        }))

        shielded_instance_config = optional(object({
          enable_secure_boot          = bool
          enable_vtpm                 = bool
          enable_integrity_monitoring = bool
        }))
      }))
      master_config = optional(object({
        num_instances    = number
        machine_type     = string
        min_cpu_platform = string
        image_uri        = string
        disk_config = optional(object({
          boot_disk_type    = string
          boot_disk_size_gb = number
          num_local_ssds    = number
        }))
        accelerators = optional(object({
          accelerator_type  = string
          accelerator_count = number
        }))
      }))
      worker_config = optional(object({
        num_instances    = number
        machine_type     = string
        min_cpu_platform = string
        disk_config = optional(object({
          boot_disk_type    = string
          boot_disk_size_gb = number
          num_local_ssds    = number
        }))
        image_uri = string
        accelerators = optional(object({
          accelerator_type  = string
          accelerator_count = number
        }))
      }))
      preemptible_worker_config = optional(object({
        num_instances  = number
        preemptibility = string
        disk_config = optional(object({
          boot_disk_type    = string
          boot_disk_size_gb = number
          num_local_ssds    = number
        }))
      }))
      software_config = optional(object({
        image_version       = optional(string)
        override_properties = map(string)
        optional_components = optional(list(string))
      }))
      security_config = optional(object({
        kerberos_config = object({
          cross_realm_trust_admin_server        = optional(string)
          cross_realm_trust_kdc                 = optional(string)
          cross_realm_trust_realm               = optional(string)
          cross_realm_trust_shared_password_uri = optional(string)
          enable_kerberos                       = optional(string)
          kdc_db_key_uri                        = optional(string)
          key_password_uri                      = optional(string)
          keystore_uri                          = optional(string)
          keystore_password_uri                 = optional(string)
          kms_key_uri                           = string
          realm                                 = optional(string)
          root_principal_password_uri           = string
          tgt_lifetime_hours                    = optional(string)
          truststore_password_uri               = optional(string)
          truststore_uri                        = optional(string)
        })
      }))
      autoscaling_config = optional(object({
        policy_uri = string
      }))
      initialization_action = optional(object({
        script      = string
        timeout_sec = optional(string)
      }))
      encryption_config = optional(object({
        kms_key_name = string
      }))
      lifecycle_config = optional(object({
        idle_delete_ttl  = optional(string)
        auto_delete_time = optional(string)
      }))
      endpoint_config = optional(object({
        enable_http_port_access = string
      }))
      dataproc_metric_config = optional(object({
        metrics = list(object({
          metric_source    = string
          metric_overrides = optional(list(string))
        }))
      }))
      metastore_config = optional(object({
        dataproc_metastore_service = string
      }))
    }))

    virtual_cluster_config = optional(object({
      staging_bucket = optional(string)
      auxiliary_services_config = optional(object({
        metastore_config = optional(object({
          dataproc_metastore_service = string
        }))
        spark_history_server_config = optional(object({
          dataproc_cluster = string
        }))
      }))
      kubernetes_cluster_config = object({
        kubernetes_namespace = optional(string)
        kubernetes_software_config = object({
          component_version = list(map(string))
          properties        = optional(list(map(string)))
        })

        gke_cluster_config = object({
          gke_cluster_target = optional(string)
          node_pool_target = optional(object({
            node_pool = string
            roles     = list(string)
            node_pool_config = optional(object({
              autoscaling = optional(object({
                min_node_count = optional(number)
                max_node_count = optional(number)
              }))

              config = object({
                machine_type     = optional(string)
                preemptible      = optional(bool)
                local_ssd_count  = optional(number)
                min_cpu_platform = optional(string)
                spot             = optional(bool)
              })

              locations = optional(list(string))
            }))
          }))
        })
      })
    }))
  })
  default = {}
}

variable "group_iam" {
  description = "Authoritative IAM binding for organization groups, in {GROUP_EMAIL => [ROLES]} format. Group emails need to be static. Can be used in combination with the `iam` variable."
  type        = map(list(string))
  default     = {}
  nullable    = false
}

variable "iam" {
  description = "IAM bindings in {ROLE => [MEMBERS]} format."
  type        = map(list(string))
  default     = {}
  nullable    = false
}

variable "iam_bindings" {
  description = "Authoritative IAM bindings in {KEY => {role = ROLE, members = [], condition = {}}}. Keys are arbitrary."
  type = map(object({
    members = list(string)
    role    = string
    condition = optional(object({
      expression  = string
      title       = string
      description = optional(string)
    }))
  }))
  nullable = false
  default  = {}
}

variable "iam_bindings_additive" {
  description = "Individual additive IAM bindings. Keys are arbitrary."
  type = map(object({
    member = string
    role   = string
    condition = optional(object({
      expression  = string
      title       = string
      description = optional(string)
    }))
  }))
  nullable = false
  default  = {}
}

variable "labels" {
  description = "The resource labels for instance to use to annotate any related underlying resources, such as Compute Engine VMs."
  type        = map(string)
  default     = {}
}

variable "name" {
  description = "Cluster name."
  type        = string
}

variable "prefix" {
  description = "Optional prefix used to generate project id and name."
  type        = string
  default     = null
  validation {
    condition     = var.prefix != ""
    error_message = "Prefix cannot be empty, please use null instead."
  }
}

variable "project_id" {
  description = "Project ID."
  type        = string
}

variable "region" {
  description = "Dataproc region."
  type        = string
}

variable "service_account" {
  description = "Service account to set on the Dataproc cluster."
  type        = string
  default     = null
}
First commit 2023-02-27 13:14:07 -08:00			`/**`
			`* Copyright 2023 Google LLC`
			`*`
			`* Licensed under the Apache License, Version 2.0 (the "License");`
			`* you may not use this file except in compliance with the License.`
			`* You may obtain a copy of the License at`
			`*`
			`* http://www.apache.org/licenses/LICENSE-2.0`
			`*`
			`* Unless required by applicable law or agreed to in writing, software`
			`* distributed under the License is distributed on an "AS IS" BASIS,`
			`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`* See the License for the specific language governing permissions and`
			`* limitations under the License.`
			`*/`

			`variable "dataproc_config" {`
			`description = "Dataproc cluster config."`
			`type = object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`graceful_decommission_timeout = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`cluster_config = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`staging_bucket = optional(string)`
			`temp_bucket = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`gce_cluster_config = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`zone = optional(string)`
			`network = optional(string)`
			`subnetwork = optional(string)`
			`service_account = optional(string)`
			`service_account_scopes = optional(list(string))`
First commit 2023-02-27 13:14:07 -08:00			`tags = optional(list(string), [])`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`internal_ip_only = optional(bool)`
First commit 2023-02-27 13:14:07 -08:00			`metadata = optional(map(string), {})`
			`reservation_affinity = optional(object({`
			`consume_reservation_type = string`
			`key = string`
			`values = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`node_group_affinity = optional(object({`
			`node_group_uri = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00
			`shielded_instance_config = optional(object({`
			`enable_secure_boot = bool`
			`enable_vtpm = bool`
			`enable_integrity_monitoring = bool`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`master_config = optional(object({`
			`num_instances = number`
			`machine_type = string`
			`min_cpu_platform = string`
add missing variable image_uri For master_config, the variable image_uri is missing 2023-06-21 15:19:48 -07:00			`image_uri = string`
First commit 2023-02-27 13:14:07 -08:00			`disk_config = optional(object({`
			`boot_disk_type = string`
			`boot_disk_size_gb = number`
			`num_local_ssds = number`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`accelerators = optional(object({`
			`accelerator_type = string`
			`accelerator_count = number`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`worker_config = optional(object({`
			`num_instances = number`
			`machine_type = string`
			`min_cpu_platform = string`
			`disk_config = optional(object({`
			`boot_disk_type = string`
			`boot_disk_size_gb = number`
			`num_local_ssds = number`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`image_uri = string`
			`accelerators = optional(object({`
			`accelerator_type = string`
			`accelerator_count = number`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`preemptible_worker_config = optional(object({`
			`num_instances = number`
			`preemptibility = string`
			`disk_config = optional(object({`
			`boot_disk_type = string`
			`boot_disk_size_gb = number`
			`num_local_ssds = number`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`software_config = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`image_version = optional(string)`
Fix Variables 2023-02-28 22:54:10 -08:00			`override_properties = map(string)`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`optional_components = optional(list(string))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`security_config = optional(object({`
			`kerberos_config = object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`cross_realm_trust_admin_server = optional(string)`
			`cross_realm_trust_kdc = optional(string)`
			`cross_realm_trust_realm = optional(string)`
			`cross_realm_trust_shared_password_uri = optional(string)`
			`enable_kerberos = optional(string)`
			`kdc_db_key_uri = optional(string)`
			`key_password_uri = optional(string)`
			`keystore_uri = optional(string)`
			`keystore_password_uri = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`kms_key_uri = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`realm = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`root_principal_password_uri = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`tgt_lifetime_hours = optional(string)`
			`truststore_password_uri = optional(string)`
			`truststore_uri = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`})`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`autoscaling_config = optional(object({`
			`policy_uri = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`initialization_action = optional(object({`
			`script = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`timeout_sec = optional(string)`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`encryption_config = optional(object({`
			`kms_key_name = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`lifecycle_config = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`idle_delete_ttl = optional(string)`
			`auto_delete_time = optional(string)`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`endpoint_config = optional(object({`
			`enable_http_port_access = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`dataproc_metric_config = optional(object({`
			`metrics = list(object({`
			`metric_source = string`
Dataproc module bug fix (#1848) * bug fix * bug fix * fix dinamic for_each --------- Co-authored-by: Francesco Spinelli <francesco.spinelli@nttdata.com> 2023-11-09 07:48:29 -08:00			`metric_overrides = optional(list(string))`
First commit 2023-02-27 13:14:07 -08:00			`}))`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`metastore_config = optional(object({`
			`dataproc_metastore_service = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00
			`virtual_cluster_config = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`staging_bucket = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`auxiliary_services_config = optional(object({`
			`metastore_config = optional(object({`
			`dataproc_metastore_service = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`spark_history_server_config = optional(object({`
			`dataproc_cluster = string`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`kubernetes_cluster_config = object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`kubernetes_namespace = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`kubernetes_software_config = object({`
			`component_version = list(map(string))`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`properties = optional(list(map(string)))`
First commit 2023-02-27 13:14:07 -08:00			`})`

			`gke_cluster_config = object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`gke_cluster_target = optional(string)`
First commit 2023-02-27 13:14:07 -08:00			`node_pool_target = optional(object({`
			`node_pool = string`
			`roles = list(string)`
			`node_pool_config = optional(object({`
			`autoscaling = optional(object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`min_node_count = optional(number)`
			`max_node_count = optional(number)`
			`}))`
First commit 2023-02-27 13:14:07 -08:00
			`config = object({`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`machine_type = optional(string)`
			`preemptible = optional(bool)`
			`local_ssd_count = optional(number)`
			`min_cpu_platform = optional(string)`
			`spot = optional(bool)`
First commit 2023-02-27 13:14:07 -08:00			`})`

Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`locations = optional(list(string))`
			`}))`
			`}))`
First commit 2023-02-27 13:14:07 -08:00			`})`
			`})`
Fix dataproc modules variables 2023-03-10 07:54:09 -08:00			`}))`
First commit 2023-02-27 13:14:07 -08:00			`})`
			`default = {}`
			`}`
Fix variables 2023-02-27 13:23:45 -08:00
			`variable "group_iam" {`
			description = "Authoritative IAM binding for organization groups, in {GROUP_EMAIL => [ROLES]} format. Group emails need to be static. Can be used in combination with the `iam` variable."
			`type = map(list(string))`
			`default = {}`
			`nullable = false`
			`}`

			`variable "iam" {`
			`description = "IAM bindings in {ROLE => [MEMBERS]} format."`
			`type = map(list(string))`
			`default = {}`
			`nullable = false`
			`}`

IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`variable "iam_bindings" {`
Change type of `iam_bindings` variable to allow multiple conditional bindings (#1658) * modules * fast * dns readme 2023-09-07 23:56:31 -07:00			`description = "Authoritative IAM bindings in {KEY => {role = ROLE, members = [], condition = {}}}. Keys are arbitrary."`
IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`type = map(object({`
			`members = list(string)`
Change type of `iam_bindings` variable to allow multiple conditional bindings (#1658) * modules * fast * dns readme 2023-09-07 23:56:31 -07:00			`role = string`
IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`condition = optional(object({`
			`expression = string`
			`title = string`
			`description = optional(string)`
			`}))`
			`}))`
			`nullable = false`
			`default = {}`
Fix variables 2023-02-27 13:23:45 -08:00			`}`

IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`variable "iam_bindings_additive" {`
			`description = "Individual additive IAM bindings. Keys are arbitrary."`
Add new `iam_members` variable to IAM additive module interfaces (#1589) * resource management modules * data catalog policy * dataproc * service account * kms * net-vpc * source repository * dataplex datascan * service account module variable order 2023-08-14 02:54:50 -07:00			`type = map(object({`
			`member = string`
			`role = string`
Add support for conditions to `iam_members` module variables (#1594) * project * data-catalog-policy-tag * dataproc * folder * iam-service-account * kms * net-vpc * organization * source-repository * dataplex-datascan 2023-08-15 07:28:23 -07:00			`condition = optional(object({`
			`expression = string`
			`title = string`
			`description = optional(string)`
			`}))`
Add new `iam_members` variable to IAM additive module interfaces (#1589) * resource management modules * data catalog policy * dataproc * service account * kms * net-vpc * source repository * dataplex datascan * service account module variable order 2023-08-14 02:54:50 -07:00			`}))`
			`nullable = false`
			`default = {}`
			`}`

Fix variables 2023-02-27 13:23:45 -08:00			`variable "labels" {`
			`description = "The resource labels for instance to use to annotate any related underlying resources, such as Compute Engine VMs."`
			`type = map(string)`
			`default = {}`
			`}`

			`variable "name" {`
			`description = "Cluster name."`
			`type = string`
			`}`

			`variable "prefix" {`
			`description = "Optional prefix used to generate project id and name."`
			`type = string`
			`default = null`
			`validation {`
			`condition = var.prefix != ""`
			`error_message = "Prefix cannot be empty, please use null instead."`
			`}`
			`}`

			`variable "project_id" {`
			`description = "Project ID."`
			`type = string`
			`}`

			`variable "region" {`
			`description = "Dataproc region."`
			`type = string`
			`}`

			`variable "service_account" {`
			`description = "Service account to set on the Dataproc cluster."`
			`type = string`
			`default = null`
			`}`