some boilerplate code added

examples/third-party-solutions/wordpress/main.tf

@@ -0,0 +1,65 @@
+/**
+ * Copyright 2022 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+locals {
+  all_principals_iam = [
+    for k in var.principals :
+    "user:${k}"
+  ]
+  iam = {
+    # GCS roles
+    "roles/storage.objectAdmin" = [
+      module.service-account-gcs.iam_email,
+    ]
+    # CloudSQL
+    "roles/cloudsql.admin" = local.all_principals_iam
+    "roles/cloudsql.client" = concat(
+      local.all_principals_iam,
+      [module.service-account-sql.iam_email]
+    )
+    "roles/cloudsql.instanceUser" = concat(
+      local.all_principals_iam,
+      [module.service-account-sql.iam_email]
+    )
+    # common roles
+    "roles/logging.admin" = local.all_principals_iam
+    "roles/iam.serviceAccountUser" = local.all_principals_iam
+    "roles/iam.serviceAccountTokenCreator" = local.all_principals_iam
+  }
+}
+
+module "project" {
+  source          = "../../../modules/project"
+  name            = var.project_id
+  parent          = try(var.project_create.parent, null)
+  billing_account = try(var.project_create.billing_account_id, null)
+  project_create  = var.project_create != null
+  prefix          = var.project_create == null ? null : var.prefix
+  iam             = var.project_create != null ? local.iam : {}
+  iam_additive    = var.project_create == null ? local.iam : {}
+  services = [
+    "run.googleapis.com",
+    "logging.googleapis.com",
+    "monitoring.googleapis.com",
+    "sqladmin.googleapis.com",
+    "sql-component.googleapis.com",
+    "storage.googleapis.com",
+    "storage-component.googleapis.com",
+  ]
+  service_config = {
+    disable_on_destroy = false, disable_dependent_services = false
+  }
+}

examples/third-party-solutions/wordpress/variables.tf

@@ -0,0 +1,46 @@
+/**
+ * Copyright 2022 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+variable "prefix" {
+  description = "Unique prefix used for resource names. Not used for project if 'project_create' is null."
+  type        = string
+}
+
+variable "project_create" {
+  description = "Provide values if project creation is needed, uses existing project if null. Parent is in 'folders/nnn' or 'organizations/nnn' format."
+  type = object({
+    billing_account_id = string
+    parent             = string
+  })
+  default = null
+}
+
+variable "project_id" {
+  description = "Project id, references existing project if `project_create` is null."
+  type        = string
+}
+
+variable "region" {
+  type        = string
+  description = "Region for the created resources"
+  default     = "europe-west4"
+}
+
+variable "principals" {
+  description = "List of emails of people/service accounts to give rights to, eg 'user@domain.com'."
+  type        = list(string)
+  default     = []
+}