Add public_access_prevention
This commit is contained in:
parent
d9589f56a1
commit
1306f67b96
|
@ -196,6 +196,7 @@ module "bucket" {
|
|||
| [notification_config](variables.tf#L169) | GCS Notification configuration. | <code title="object({ enabled = bool payload_format = string topic_name = string sa_email = string event_types = optional(list(string)) custom_attributes = optional(map(string)) object_name_prefix = optional(string) })">object({…})</code> | | <code>null</code> |
|
||||
| [objects_to_upload](variables.tf#L183) | Objects to be uploaded to bucket. | <code title="map(object({ name = string metadata = optional(map(string)) content = optional(string) source = optional(string) cache_control = optional(string) content_disposition = optional(string) content_encoding = optional(string) content_language = optional(string) content_type = optional(string) event_based_hold = optional(bool) temporary_hold = optional(bool) detect_md5hash = optional(string) storage_class = optional(string) kms_key_name = optional(string) customer_encryption = optional(object({ encryption_algorithm = optional(string) encryption_key = string })) }))">map(object({…}))</code> | | <code>{}</code> |
|
||||
| [prefix](variables.tf#L209) | Optional prefix used to generate the bucket name. | <code>string</code> | | <code>null</code> |
|
||||
| [public_access_prevention](variables.tf#L224) | Prevents public access to a bucket. Acceptable values are inherited or enforced. If inherited, the bucket uses public access prevention, only if the bucket is subject to the public access prevention organization policy constraint. | <code>string</code> | | <code>"inherited"</code> |
|
||||
| [requester_pays](variables.tf#L224) | Enables Requester Pays on a storage bucket. | <code>bool</code> | | <code>null</code> |
|
||||
| [retention_policy](variables.tf#L230) | Bucket retention policy. | <code title="object({ retention_period = number is_locked = optional(bool) })">object({…})</code> | | <code>null</code> |
|
||||
| [storage_class](variables.tf#L239) | Bucket storage class. | <code>string</code> | | <code>"MULTI_REGIONAL"</code> |
|
||||
|
|
|
@ -29,6 +29,7 @@ resource "google_storage_bucket" "bucket" {
|
|||
labels = var.labels
|
||||
default_event_based_hold = var.default_event_based_hold
|
||||
requester_pays = var.requester_pays
|
||||
public_access_prevention = var.public_access_prevention
|
||||
versioning {
|
||||
enabled = var.versioning
|
||||
}
|
||||
|
|
|
@ -221,6 +221,12 @@ variable "project_id" {
|
|||
type = string
|
||||
}
|
||||
|
||||
variable "public_access_prevention" {
|
||||
description = "Prevents public access to a bucket. Acceptable values are inherited or enforced. If inherited, the bucket uses public access prevention, only if the bucket is subject to the public access prevention organization policy constraint."
|
||||
type = string
|
||||
default = "inherited"
|
||||
}
|
||||
|
||||
variable "requester_pays" {
|
||||
description = "Enables Requester Pays on a storage bucket."
|
||||
type = bool
|
||||
|
|
Loading…
Reference in New Issue