For some reason I missed one of the cloudbuild service enablements on the seed project - the last CB and testing ADO builds were fine - I had them on before

Add to existing

3 issue steps

cloudbuild is not enabled on bootstrap project
terraform 0-bootstrap apply fails
rerun tf apply before 5 min after cloudbuild services enable - and we get an eventually consistent error
3rd run will encounter an existing cloudbuild pool - delete it manually to proceed

421 421

Testing on existing org - no TEF run before - oldev

downgrade terraform and prep project

michael@cloudshell:~$ gcloud config set project tef-oldev
Updated property [core/project].

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ git checkout gh421-cb-enable
Branch 'gh421-cb-enable' set up to track remote branch 'gh421-cb-enable' from 'origin'.
Switched to a new branch 'gh421-cb-enable'
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ git status
On branch gh421-cb-enable
Your branch is up to date with 'origin/gh421-cb-enable'.

michael@cloudshell:~/tef-oldev/terraform1310 (tef-oldev)$ sudo cp terraform /usr/bin
michael@cloudshell:~/tef-oldev/terraform1310 (tef-oldev)$ cd ..
michael@cloudshell:~/tef-oldev (tef-oldev)$ ls
github  terraform1310
michael@cloudshell:~/tef-oldev (tef-oldev)$ terraform --version
Terraform v1.3.10
on linux_amd64

Your version of Terraform is out of date! The latest version
is 1.8.2. You can update by downloading from https://www.terraform.io/downloads.html
michael@cloudshell:~/tef-oldev (tef-oldev)$ cd github/pbmm-on-gcp-onboarding/
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ gcloud services enable cloudresourcemanager.googleapis.com
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$  gcloud services enable cloudbilling.googleapis.com
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ gcloud services enable iam.googleapis.com
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ gcloud services enable cloudkms.googleapis.com
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ gcloud services enable servicenetworking.googleapis.com
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$

https://github.com/GoogleCloudPlatform/pbmm-on-gcp-onboarding/blob/gh421-cb-enable/0-bootstrap/README.md#deploying-with-cloud-build

delete groups

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding (tef-oldev)$ cd 0-bootstrap/
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ mv terraform.example.tfvars terraform.tfvars
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ mv ./cb.tf.example ./cb.tf
mv: cannot stat './cb.tf.example': No such file or directory
michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform init

terraform init / plan / apply

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform init
Initializing modules...
Downloading registry.terraform.io/terraform-google-modules/gcloud/google 3.4.0 for bootstrap_csr_repo...

terraform plan -input=false -out bootstrap.tfplan

Plan: 271 to add, 0 to change, 0 to destroy.

total time actual: 50 min to 1821 total time without errors: 23 min

1731 apply - 1 min and group eventually consistent error

3 - plan / apply 1743

Plan: 248 to add, 0 to change, 0 to destroy.

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform apply bootstrap.tfplan

3:30 min for project factory
module.tf_private_pool.google_service_networking_connection.worker_pool_conn[0]: Still creating... [2m0s elapsed]
module.tf_private_pool.google_service_networking_connection.worker_pool_conn[0]: Creation complete after 2m2s [id=projects%2Fprj-b-cicd-khce%2Fglobal%2Fnetworks%2Fvpc-b-cbpools:servicenetworking.googleapis.com]
module.tf_private_pool.google_compute_network_peering_routes_config.peering_routes[0]: Creating...
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Creating...
module.tf_private_pool.google_compute_network_peering_routes_config.peering_routes[0]: Still creating... [10s elapsed]
module.tf_private_pool.google_compute_network_peering_routes_config.peering_routes[0]: Creation complete after 11s [id=projects/prj-b-cicd-khce/global/networks/vpc-b-cbpools/networkPeerings/servicenetworking-googleapis-com]
╷
│ Error: Error creating WorkerPool: googleapi: Error 403: Cloud Build API has not been used in project tef-oldev before or it is disabled. Enable it by visiting https://console.developers.google.com/apis/api/cloudbuild.googleapis.com/overview?project=tef-oldev then retry. If you enabled this API recently, wait a few minutes for the action to propagate to our systems and retry.
│ Details:
│ [
│   {
│     "@type": "type.googleapis.com/google.rpc.Help",
│     "links": [
│       {
│         "description": "Google developers console API activation",
│         "url": "https://console.developers.google.com/apis/api/cloudbuild.googleapis.com/overview?project=tef-oldev"
│       }
│     ]
│   },
│   {
│     "@type": "type.googleapis.com/google.rpc.ErrorInfo",
│     "domain": "googleapis.com",
│     "metadata": {
│       "consumer": "projects/tef-oldev",
│       "service": "cloudbuild.googleapis.com"
│     },
│     "reason": "SERVICE_DISABLED"
│   }
│ ]
│ 
│   with module.tf_private_pool.google_cloudbuild_worker_pool.private_pool,
│   on modules/cb-private-pool/main.tf line 30, in resource "google_cloudbuild_worker_pool" "private_pool":
│   30: resource "google_cloudbuild_worker_pool" "private_pool" {
│ 
╵
╷
│ Error: Error waiting to create Repository: Error waiting for Creating Repository: Error code 3, message: Request contains an invalid argument.
│ 
│   with module.tf_cloud_builder.google_artifact_registry_repository.tf-image-repo,
│   on .terraform/modules/tf_cloud_builder/modules/tf_cloudbuild_builder/gar.tf line 21, in resource "google_artifact_registry_repository" "tf-image-repo":
│   21: resource "google_artifact_registry_repository" "tf-image-repo" {
│ 
╵

1759

In past deployments - missed adding cb service enablement

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ gcloud services enable cloudbuild.googleapis.com
Operation "operations/acf.p2-959116870819-7975f6d3-e973-4039-89fb-27b0ec3b462f" finished successfully.

4 - plan / apply 1800

Plan: 79 to add, 0 to change, 0 to destroy.

1802

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform apply bootstrap.tfplan
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Creating...
module.tf_cloud_builder.google_artifact_registry_repository.tf-image-repo: Creating...
module.tf_cloud_builder.google_artifact_registry_repository.tf-image-repo: Still creating... [10s elapsed]
module.tf_cloud_builder.google_artifact_registry_repository.tf-image-repo: Creation complete after 11s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners]
module.tf_cloud_builder.google_artifact_registry_repository_iam_member.push_images: Creating...
module.tf_cloud_builder.google_artifact_registry_repository_iam_member.workflow_list: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["net"]: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["env"]: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["proj"]: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["bootstrap"]: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["org"]: Creating...
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["net"]: Creation complete after 7s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_cloud_builder.google_artifact_registry_repository_iam_member.push_images: Creation complete after 10s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.writer/serviceAccount:tf-cb-builder-sa@prj-b-cicd-khce.iam.gserviceaccount.com]
module.tf_cloud_builder.google_artifact_registry_repository_iam_member.workflow_list: Still creating... [10s elapsed]
module.tf_cloud_builder.google_artifact_registry_repository_iam_member.workflow_list: Creation complete after 10s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:terraform-runner-workflow-sa@prj-b-cicd-khce.iam.gserviceaccount.com]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["env"]: Still creating... [10s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["org"]: Still creating... [10s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["proj"]: Still creating... [10s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["bootstrap"]: Still creating... [10s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["env"]: Still creating... [20s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["bootstrap"]: Still creating... [20s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["proj"]: Still creating... [20s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["org"]: Still creating... [20s elapsed]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["org"]: Creation complete after 26s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["env"]: Creation complete after 26s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["proj"]: Creation complete after 26s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
google_artifact_registry_repository_iam_member.terraform_sa_artifact_registry_reader["bootstrap"]: Creation complete after 27s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners/roles/artifactregistry.reader/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
╷
│ Error: Error creating WorkerPool: googleapi: Error 403: Cloud Build API has not been used in project tef-oldev before or it is disabled. Enable it by visiting https://console.developers.google.com/apis/api/cloudbuild.googleapis.com/overview?project=tef-oldev then retry. If you enabled this API recently, wait a few minutes for the action to propagate to our systems and retry.
│ Details:
│ [
│   {
│     "@type": "type.googleapis.com/google.rpc.Help",
│     "links": [
│       {
│         "description": "Google developers console API activation",
│         "url": "https://console.developers.google.com/apis/api/cloudbuild.googleapis.com/overview?project=tef-oldev"
│       }
│     ]
│   },
│   {
│     "@type": "type.googleapis.com/google.rpc.ErrorInfo",
│     "domain": "googleapis.com",
│     "metadata": {
│       "consumer": "projects/tef-oldev",
│       "service": "cloudbuild.googleapis.com"
│     },
│     "reason": "SERVICE_DISABLED"
│   }
│ ]
│ 
│   with module.tf_private_pool.google_cloudbuild_worker_pool.private_pool,
│   on modules/cb-private-pool/main.tf line 30, in resource "google_cloudbuild_worker_pool" "private_pool":
│   30: resource "google_cloudbuild_worker_pool" "private_pool" {
│ 
╵

wait 5 min for cloudbuild enablement to propagate 1804-1809

5 - plan / apply 1809

Plan: 71 to add, 0 to change, 0 to destroy.

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform apply bootstrap.tfplan

module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Creating...
╷
│ Error: Error creating WorkerPool: Resource already exists - apply blocked by lifecycle params: &cloudbuild.WorkerPool{Name:(*string)(0xc000fcbc50), DisplayName:(*string)(0xc000fcbcd0), Uid:(*string)(0xc00174dba0), Annotations:map[string]string{}, CreateTime:(*string)(0xc00174dbb0), UpdateTime:(*string)(0xc00174dbc0), DeleteTime:(*string)(nil), State:(*cloudbuild.WorkerPoolStateEnum)(0xc00174dbd0), PrivatePoolV1Config:(*cloudbuild.WorkerPoolPrivatePoolV1Config)(0xc001ca6f30), Etag:(*string)(0xc00174dc70), WorkerConfig:(*cloudbuild.WorkerPoolWorkerConfig)(nil), NetworkConfig:(*cloudbuild.WorkerPoolNetworkConfig)(nil), Project:(*string)(0xc000fcbec0), Location:(*string)(0xc000fcbbd0)}.
│ 
│   with module.tf_private_pool.google_cloudbuild_worker_pool.private_pool,
│   on modules/cb-private-pool/main.tf line 30, in resource "google_cloudbuild_worker_pool" "private_pool":
│   30: resource "google_cloudbuild_worker_pool" "private_pool" {
│ 
╵

1810

idempotent error - either full terraform destroy - or orphan/rename the resource

private-pool-rtbh northamerica-northeast1 e2-medium 100 GB vpc-b-cbpools

6 - plan/apply after cb worker pool delete - 1817


Plan: 71 to add, 0 to change, 0 to destroy.

michael@cloudshell:~/tef-oldev/github/pbmm-on-gcp-onboarding/0-bootstrap (tef-oldev)$ terraform apply bootstrap.tfplan
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Creating...
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Still creating... [10s elapsed]
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Still creating... [20s elapsed]
module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Still creating... [30s elapsed]

1:30

module.tf_private_pool.google_cloudbuild_worker_pool.private_pool: Creation complete after 1m33s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/workerPools/private-pool-rtbh]
module.tf_cloud_builder.google_cloudbuild_trigger.build_trigger: Creating...
module.tf_cloud_builder.google_cloudbuild_trigger.build_trigger: Creation complete after 0s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/aee350d1-bc42-4542-bf2e-62a554925fd0]
time_sleep.cloud_builder: Creating...
module.tf_workspace["env"].data.google_project.cloudbuild_project[0]: Reading...
module.tf_workspace["org"].data.google_project.cloudbuild_project[0]: Reading...
module.tf_workspace["bootstrap"].data.google_project.cloudbuild_project[0]: Reading...
module.tf_workspace["proj"].data.google_project.cloudbuild_project[0]: Reading...
module.tf_workspace["net"].data.google_project.cloudbuild_project[0]: Reading...
module.tf_workspace["proj"].google_storage_bucket_iam_member.state_admin: Creating...
module.tf_workspace["net"].google_storage_bucket_iam_member.state_admin: Creating...
module.tf_workspace["org"].google_storage_bucket_iam_member.state_admin: Creating...
module.tf_workspace["env"].google_storage_bucket_iam_member.state_admin: Creating...
module.tf_workspace["env"].data.google_project.cloudbuild_project[0]: Read complete after 1s [id=projects/prj-b-cicd-khce]
module.tf_workspace["org"].data.google_project.cloudbuild_project[0]: Read complete after 1s [id=projects/prj-b-cicd-khce]
module.tf_workspace["net"].data.google_project.cloudbuild_project[0]: Read complete after 1s [id=projects/prj-b-cicd-khce]
module.tf_workspace["bootstrap"].data.google_project.cloudbuild_project[0]: Read complete after 1s [id=projects/prj-b-cicd-khce]
module.tf_workspace["proj"].data.google_project.cloudbuild_project[0]: Read complete after 1s [id=projects/prj-b-cicd-khce]
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creating...
module.tf_workspace["org"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creating...
module.tf_workspace["env"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creating...
module.tf_workspace["org"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creating...
module.tf_workspace["env"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creating...
module.tf_workspace["proj"].google_storage_bucket_iam_member.state_admin: Creation complete after 5s [id=b/bkt-prj-b-seed-7766-gcp-projects-tfstate/roles/storage.admin/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creating...
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountUser/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["env"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountUser/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_project_iam_member.cb_sa_logging: Creating...
module.tf_workspace["org"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountUser/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_project_iam_member.cb_sa_logging: Creating...
module.tf_workspace["net"].google_project_iam_member.cb_sa_logging: Creating...
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creating...
module.tf_workspace["org"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creation complete after 8s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["env"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creation complete after 8s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_sourcerepo_repository_iam_member.member[0]: Creating...
module.tf_workspace["env"].google_project_iam_member.cb_sa_logging: Creating...
time_sleep.cloud_builder: Still creating... [10s elapsed]
module.tf_workspace["net"].google_storage_bucket_iam_member.state_admin: Still creating... [10s elapsed]
module.tf_workspace["org"].google_storage_bucket_iam_member.state_admin: Still creating... [10s elapsed]
module.tf_workspace["env"].google_storage_bucket_iam_member.state_admin: Still creating... [10s elapsed]
module.tf_workspace["env"].google_storage_bucket_iam_member.state_admin: Creation complete after 13s [id=b/bkt-prj-b-seed-tfstate-d48a/roles/storage.admin/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_project_iam_member.cb_sa_logging: Creating...
module.tf_workspace["net"].google_storage_bucket_iam_member.state_admin: Creation complete after 13s [id=b/bkt-prj-b-seed-tfstate-d48a/roles/storage.admin/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountUser/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.state_admin: Creating...
module.tf_workspace["proj"].google_project_iam_member.cb_sa_logging: Creation complete after 8s [id=prj-b-cicd-khce/roles/logging.logWriter/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_storage_bucket_iam_member.state_admin: Creation complete after 13s [id=b/bkt-prj-b-seed-tfstate-d48a/roles/storage.admin/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_sourcerepo_repository_iam_member.member[0]: Creating...
module.tf_workspace["org"].google_sourcerepo_repository_iam_member.member[0]: Creating...
module.tf_workspace["env"].google_sourcerepo_repository_iam_member.member[0]: Creating...
module.tf_workspace["bootstrap"].google_sourcerepo_repository_iam_member.member[0]: Creation complete after 4s [id=projects/prj-b-cicd-khce/repos/gcp-bootstrap/roles/viewer/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creating...
module.tf_workspace["org"].google_project_iam_member.cb_sa_logging: Still creating... [10s elapsed]
module.tf_workspace["net"].google_project_iam_member.cb_sa_logging: Still creating... [10s elapsed]
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.state_admin: Creation complete after 4s [id=b/bkt-prj-b-seed-tfstate-d48a/roles/storage.admin/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["env"].google_sourcerepo_repository_iam_member.member[0]: Creation complete after 4s [id=projects/prj-b-cicd-khce/repos/gcp-environments/roles/viewer/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creating...
module.tf_workspace["proj"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_sourcerepo_repository_iam_member.member[0]: Creation complete after 4s [id=projects/prj-b-cicd-khce/repos/gcp-networks/roles/viewer/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_sourcerepo_repository_iam_member.member[0]: Creation complete after 4s [id=projects/prj-b-cicd-khce/repos/gcp-org/roles/viewer/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_project_iam_member.cb_sa_logging: Creation complete after 12s [id=prj-b-cicd-khce/roles/logging.logWriter/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_sourcerepo_repository_iam_member.member[0]: Creating...
module.tf_workspace["net"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creating...
module.tf_workspace["net"].google_project_iam_member.cb_sa_logging: Creation complete after 13s [id=prj-b-cicd-khce/roles/logging.logWriter/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_project_iam_member.pool_user[0]: Creating...
module.tf_workspace["env"].google_project_iam_member.pool_user[0]: Creating...
module.tf_workspace["org"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creating...
module.tf_workspace["env"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creating...
module.tf_workspace["env"].google_project_iam_member.cb_sa_logging: Still creating... [10s elapsed]
time_sleep.cloud_builder: Still creating... [20s elapsed]
module.tf_workspace["env"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:service-1011704167489@gcp-sa-cloudbuild.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_sourcerepo_repository_iam_member.member[0]: Creation complete after 5s [id=projects/prj-b-cicd-khce/repos/gcp-projects/roles/viewer/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_project_iam_member.pool_user[0]: Creating...
module.tf_workspace["net"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creating...
module.tf_workspace["env"].google_project_iam_member.cb_sa_logging: Creation complete after 13s [id=prj-b-cicd-khce/roles/logging.logWriter/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:service-1011704167489@gcp-sa-cloudbuild.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_project_iam_member.pool_user[0]: Creating...
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creating...
module.tf_workspace["bootstrap"].google_project_iam_member.cb_sa_logging: Still creating... [10s elapsed]
module.tf_workspace["net"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountUser"]: Creation complete after 8s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountUser/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_service_account_iam_member.cb_sa_self["roles/iam.serviceAccountTokenCreator"]: Creation complete after 8s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creating...
module.tf_workspace["proj"].google_project_iam_member.pool_user[0]: Creating...
module.tf_workspace["bootstrap"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:service-1011704167489@gcp-sa-cloudbuild.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_project_iam_member.cb_sa_logging: Creation complete after 13s [id=prj-b-cicd-khce/roles/logging.logWriter/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].module.log_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["bootstrap"].module.log_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["proj"].module.log_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-projects-build-logs]
module.tf_workspace["bootstrap"].module.log_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-bootstrap-build-logs]
module.tf_workspace["net"].module.log_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["env"].module.log_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["org"].google_project_iam_member.pool_user[0]: Still creating... [10s elapsed]
module.tf_workspace["env"].google_project_iam_member.pool_user[0]: Still creating... [10s elapsed]
module.tf_workspace["env"].module.log_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-environments-build-logs]
module.tf_workspace["net"].module.log_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-networks-build-logs]
module.tf_workspace["org"].module.log_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["env"].module.artifacts_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["proj"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creation complete after 4s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:service-1011704167489@gcp-sa-cloudbuild.iam.gserviceaccount.com]
module.tf_workspace["net"].google_service_account_iam_member.cb_service_agent_impersonate[0]: Creation complete after 7s [id=projects/prj-b-seed-7766/serviceAccounts/sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com/roles/iam.serviceAccountTokenCreator/serviceAccount:service-1011704167489@gcp-sa-cloudbuild.iam.gserviceaccount.com]
module.tf_workspace["org"].module.artifacts_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["bootstrap"].module.artifacts_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["org"].module.log_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-org-build-logs]
module.tf_workspace["net"].module.artifacts_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["env"].module.artifacts_bucket.google_storage_bucket.bucket: Creation complete after 2s [id=bkt-prj-b-cicd-khce-gcp-environments-build-artifacts]
module.tf_workspace["proj"].module.artifacts_bucket.google_storage_bucket.bucket: Creating...
module.tf_workspace["bootstrap"].module.artifacts_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-bootstrap-build-artifacts]
module.tf_workspace["env"].google_storage_bucket_iam_member.log_admin: Creating...
module.tf_workspace["net"].module.artifacts_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-networks-build-artifacts]
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.log_admin: Creating...
module.tf_workspace["org"].module.artifacts_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-org-build-artifacts]
module.tf_workspace["net"].google_storage_bucket_iam_member.log_admin: Creating...
module.tf_workspace["env"].google_project_iam_member.pool_user[0]: Creation complete after 12s [id=prj-b-cicd-khce/roles/cloudbuild.workerPoolUser/serviceAccount:1011704167489@cloudbuild.gserviceaccount.com]
module.tf_workspace["proj"].google_storage_bucket_iam_member.log_admin: Creating...
module.tf_workspace["org"].google_project_iam_member.pool_user[0]: Creation complete after 12s [id=prj-b-cicd-khce/roles/cloudbuild.workerPoolUser/serviceAccount:1011704167489@cloudbuild.gserviceaccount.com]
time_sleep.cloud_builder: Still creating... [30s elapsed]
time_sleep.cloud_builder: Creation complete after 31s [id=2024-05-04T22:18:29Z]
module.tf_workspace["org"].google_storage_bucket_iam_member.log_admin: Creating...
module.build_terraform_image.null_resource.module_depends_on[0]: Creating...
module.build_terraform_image.null_resource.module_depends_on[0]: Creation complete after 0s [id=360307412708142270]
module.tf_workspace["proj"].module.artifacts_bucket.google_storage_bucket.bucket: Creation complete after 1s [id=bkt-prj-b-cicd-khce-gcp-projects-build-artifacts]
module.build_terraform_image.null_resource.run_destroy_command[0]: Creating...
module.build_terraform_image.null_resource.run_command[0]: Creating...
module.build_terraform_image.null_resource.run_destroy_command[0]: Creation complete after 0s [id=6465925445161128346]
module.build_terraform_image.null_resource.run_command[0]: Provisioning with 'local-exec'...
module.build_terraform_image.null_resource.run_command[0] (local-exec): Executing: ["/bin/sh" "-c" "PATH=/google-cloud-sdk/bin:$PATH\ngcloud beta builds triggers run  aee350d1-bc42-4542-bf2e-62a554925fd0 --branch main --region northamerica-northeast1 --project prj-b-cicd-khce\n"]
module.tf_workspace["net"].google_storage_bucket_iam_member.artifacts_admin: Creating...
module.tf_workspace["net"].google_project_iam_member.pool_user[0]: Still creating... [10s elapsed]
module.tf_workspace["bootstrap"].google_project_iam_member.pool_user[0]: Still creating... [10s elapsed]
module.build_terraform_image.null_resource.run_command[0] (local-exec): metadata:
module.build_terraform_image.null_resource.run_command[0] (local-exec):   '@type': type.googleapis.com/google.devtools.cloudbuild.v1.BuildOperationMetadata
module.build_terraform_image.null_resource.run_command[0] (local-exec):   build:
module.build_terraform_image.null_resource.run_command[0] (local-exec):     artifacts:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       images:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3
module.build_terraform_image.null_resource.run_command[0] (local-exec):     buildTriggerId: aee350d1-bc42-4542-bf2e-62a554925fd0
module.build_terraform_image.null_resource.run_command[0] (local-exec):     createTime: '2024-05-04T22:18:31.308650Z'
module.build_terraform_image.null_resource.run_command[0] (local-exec):     id: d4ed61f2-a6c9-40a5-93ef-30d9fc565d8d
module.build_terraform_image.null_resource.run_command[0] (local-exec):     images:
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3
module.build_terraform_image.null_resource.run_command[0] (local-exec):     logUrl: https://console.cloud.google.com/cloud-build/builds;region=northamerica-northeast1/d4ed61f2-a6c9-40a5-93ef-30d9fc565d8d?project=1011704167489
module.build_terraform_image.null_resource.run_command[0] (local-exec):     logsBucket: gs://bkt-prj-b-cicd-khce-tf-cloudbuilder-build-logs
module.build_terraform_image.null_resource.run_command[0] (local-exec):     name: projects/1011704167489/locations/northamerica-northeast1/builds/d4ed61f2-a6c9-40a5-93ef-30d9fc565d8d
module.build_terraform_image.null_resource.run_command[0] (local-exec):     options:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       dynamicSubstitutions: true
module.build_terraform_image.null_resource.run_command[0] (local-exec):       logging: LEGACY
module.build_terraform_image.null_resource.run_command[0] (local-exec):       pool:
module.build_terraform_image.null_resource.run_command[0] (local-exec):         name: projects/prj-b-cicd-khce/locations/northamerica-northeast1/workerPools/private-pool-rtbh
module.build_terraform_image.null_resource.run_command[0] (local-exec):       substitutionOption: ALLOW_LOOSE
module.build_terraform_image.null_resource.run_command[0] (local-exec):     projectId: prj-b-cicd-khce
module.build_terraform_image.null_resource.run_command[0] (local-exec):     queueTtl: 3600s
module.build_terraform_image.null_resource.run_command[0] (local-exec):     serviceAccount: projects/prj-b-cicd-khce/serviceAccounts/tf-cb-builder-sa@prj-b-cicd-khce.iam.gserviceaccount.com
module.build_terraform_image.null_resource.run_command[0] (local-exec):     source:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       repoSource:
module.build_terraform_image.null_resource.run_command[0] (local-exec):         commitSha: 1be6671cb5c732b4cd020db4c504f9a8e9c149d0
module.build_terraform_image.null_resource.run_command[0] (local-exec):         projectId: prj-b-cicd-khce
module.build_terraform_image.null_resource.run_command[0] (local-exec):         repoName: tf-cloudbuilder
module.build_terraform_image.null_resource.run_command[0] (local-exec):     sourceProvenance:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       resolvedRepoSource:
module.build_terraform_image.null_resource.run_command[0] (local-exec):         commitSha: 1be6671cb5c732b4cd020db4c504f9a8e9c149d0
module.build_terraform_image.null_resource.run_command[0] (local-exec):         projectId: prj-b-cicd-khce
module.build_terraform_image.null_resource.run_command[0] (local-exec):         repoName: tf-cloudbuilder
module.build_terraform_image.null_resource.run_command[0] (local-exec):     status: QUEUED
module.build_terraform_image.null_resource.run_command[0] (local-exec):     steps:
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - args:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - build
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - --tag=northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - --tag=northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - --tag=northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - --build-arg=TERRAFORM_VERSION=1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - .
module.build_terraform_image.null_resource.run_command[0] (local-exec):       name: gcr.io/cloud-builders/docker
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - args:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       - version
module.build_terraform_image.null_resource.run_command[0] (local-exec):       name: northamerica-northeast1-docker.pkg.dev/prj-b-cicd-khce/tf-runners/terraform:v1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):     substitutions:
module.build_terraform_image.null_resource.run_command[0] (local-exec):       BRANCH_NAME: main
module.build_terraform_image.null_resource.run_command[0] (local-exec):       COMMIT_SHA: 1be6671cb5c732b4cd020db4c504f9a8e9c149d0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       REF_NAME: main
module.build_terraform_image.null_resource.run_command[0] (local-exec):       REPO_NAME: tf-cloudbuilder
module.build_terraform_image.null_resource.run_command[0] (local-exec):       REVISION_ID: 1be6671cb5c732b4cd020db4c504f9a8e9c149d0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       SHORT_SHA: 1be6671
module.build_terraform_image.null_resource.run_command[0] (local-exec):       TRIGGER_BUILD_CONFIG_PATH: ''
module.build_terraform_image.null_resource.run_command[0] (local-exec):       TRIGGER_NAME: tf-cloud-builder-build
module.build_terraform_image.null_resource.run_command[0] (local-exec):       _TERRAFORM_FULL_VERSION: 1.3.0
module.build_terraform_image.null_resource.run_command[0] (local-exec):       _TERRAFORM_MAJOR_VERSION: '1'
module.build_terraform_image.null_resource.run_command[0] (local-exec):       _TERRAFORM_MINOR_VERSION: '1.3'
module.build_terraform_image.null_resource.run_command[0] (local-exec):     tags:
module.build_terraform_image.null_resource.run_command[0] (local-exec):     - trigger-aee350d1-bc42-4542-bf2e-62a554925fd0
module.build_terraform_image.null_resource.run_command[0] (local-exec):     timeout: 1200s
module.build_terraform_image.null_resource.run_command[0] (local-exec): name: operations/build/prj-b-cicd-khce/ZDRlZDYxZjItYTZjOS00MGE1LTkzZWYtMzBkOWZjNTY1ZDhk
module.build_terraform_image.null_resource.run_command[0]: Creation complete after 2s [id=8305770739688778764]
module.tf_workspace["env"].google_storage_bucket_iam_member.artifacts_admin: Creating...
module.tf_workspace["env"].google_storage_bucket_iam_member.log_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-environments-build-logs/roles/storage.admin/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_storage_bucket_iam_member.artifacts_admin: Creating...
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.log_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-bootstrap-build-logs/roles/storage.admin/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_storage_bucket_iam_member.log_admin: Creation complete after 5s [id=b/bkt-prj-b-cicd-khce-gcp-projects-build-logs/roles/storage.admin/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_storage_bucket_iam_member.artifacts_admin: Creating...
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.artifacts_admin: Creating...
module.tf_workspace["bootstrap"].google_project_iam_member.pool_user[0]: Creation complete after 13s [id=prj-b-cicd-khce/roles/cloudbuild.workerPoolUser/serviceAccount:1011704167489@cloudbuild.gserviceaccount.com]
module.tf_workspace["org"].google_storage_bucket_iam_member.log_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-org-build-logs/roles/storage.admin/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_storage_bucket_iam_member.log_admin: Creation complete after 5s [id=b/bkt-prj-b-cicd-khce-gcp-networks-build-logs/roles/storage.admin/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_project_iam_member.pool_user[0]: Still creating... [10s elapsed]
module.tf_workspace["proj"].google_project_iam_member.pool_user[0]: Creation complete after 10s [id=prj-b-cicd-khce/roles/cloudbuild.workerPoolUser/serviceAccount:1011704167489@cloudbuild.gserviceaccount.com]
module.tf_workspace["net"].google_project_iam_member.pool_user[0]: Creation complete after 13s [id=prj-b-cicd-khce/roles/cloudbuild.workerPoolUser/serviceAccount:1011704167489@cloudbuild.gserviceaccount.com]
module.tf_workspace["net"].google_storage_bucket_iam_member.artifacts_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-networks-build-artifacts/roles/storage.admin/serviceAccount:sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["net"].google_cloudbuild_trigger.triggers["plan"]: Creating...
module.tf_workspace["proj"].google_cloudbuild_trigger.triggers["apply"]: Creating...
module.tf_workspace["proj"].google_cloudbuild_trigger.triggers["plan"]: Creating...
module.tf_workspace["org"].google_cloudbuild_trigger.triggers["plan"]: Creating...
module.tf_workspace["bootstrap"].google_cloudbuild_trigger.triggers["apply"]: Creating...
module.tf_workspace["bootstrap"].google_cloudbuild_trigger.triggers["plan"]: Creating...
module.tf_workspace["bootstrap"].google_cloudbuild_trigger.triggers["plan"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/2824c7a4-670b-48c3-a610-e17990a2f0cb]
module.tf_workspace["proj"].google_cloudbuild_trigger.triggers["plan"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/64bf72f0-786b-42fd-bff4-22cc698b4ec3]
module.tf_workspace["proj"].google_cloudbuild_trigger.triggers["apply"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/4ebb0852-d633-4203-ad98-b2ef86c2fd97]
module.tf_workspace["net"].google_cloudbuild_trigger.triggers["plan"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/a1f20675-b6f7-494e-bfaf-1770788f4fc0]
module.tf_workspace["env"].google_cloudbuild_trigger.triggers["plan"]: Creating...
module.tf_workspace["org"].google_cloudbuild_trigger.triggers["plan"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/02cbbc49-1ee8-41df-bc5d-766d4c7e0299]
module.tf_workspace["bootstrap"].google_cloudbuild_trigger.triggers["apply"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/291792f7-155c-43cf-a263-0096c6313941]
module.tf_workspace["net"].google_cloudbuild_trigger.triggers["apply"]: Creating...
module.tf_workspace["env"].google_cloudbuild_trigger.triggers["apply"]: Creating...
module.tf_workspace["org"].google_cloudbuild_trigger.triggers["apply"]: Creating...
module.tf_workspace["env"].google_cloudbuild_trigger.triggers["plan"]: Creation complete after 1s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/7c89a555-65da-4d0c-baaa-7163ee2f5ea1]
module.tf_workspace["net"].google_cloudbuild_trigger.triggers["apply"]: Creation complete after 0s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/6890d4a4-1291-4651-b171-c609d551437e]
module.tf_workspace["org"].google_cloudbuild_trigger.triggers["apply"]: Creation complete after 0s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/aaac5cc9-cb72-4492-b673-efd0d609e496]
module.tf_workspace["env"].google_cloudbuild_trigger.triggers["apply"]: Creation complete after 0s [id=projects/prj-b-cicd-khce/locations/northamerica-northeast1/triggers/c0f4c403-0344-4726-a79e-d0d145e5123f]
module.tf_workspace["env"].google_storage_bucket_iam_member.artifacts_admin: Creation complete after 5s [id=b/bkt-prj-b-cicd-khce-gcp-environments-build-artifacts/roles/storage.admin/serviceAccount:sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["proj"].google_storage_bucket_iam_member.artifacts_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-projects-build-artifacts/roles/storage.admin/serviceAccount:sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["bootstrap"].google_storage_bucket_iam_member.artifacts_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-bootstrap-build-artifacts/roles/storage.admin/serviceAccount:sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com]
module.tf_workspace["org"].google_storage_bucket_iam_member.artifacts_admin: Creation complete after 4s [id=b/bkt-prj-b-cicd-khce-gcp-org-build-artifacts/roles/storage.admin/serviceAccount:sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com]

Apply complete! Resources: 71 added, 0 changed, 0 destroyed.

Outputs:

bootstrap_step_terraform_service_account_email = "sa-terraform-bootstrap@prj-b-seed-7766.iam.gserviceaccount.com"
cloud_build_peered_network_id = "projects/prj-b-cicd-khce/global/networks/vpc-b-cbpools"
cloud_build_private_worker_pool_id = "projects/prj-b-cicd-khce/locations/northamerica-northeast1/workerPools/private-pool-rtbh"
cloud_build_worker_peered_ip_range = "192.168.0.0/24"
cloud_build_worker_range_id = "projects/prj-b-cicd-khce/global/addresses/ga-b-cbpools-worker-pool-range"
cloud_builder_artifact_repo = "projects/prj-b-cicd-khce/locations/northamerica-northeast1/repositories/tf-runners"
cloudbuild_project_id = "prj-b-cicd-khce"
common_config = {
  "billing_account" = "019283-6F1AB5-7AD576"
  "bootstrap_folder_name" = "folders/939569880380"
  "default_region" = "northamerica-northeast1"
  "folder_prefix" = "fldr"
  "org_id" = "583675367868"
  "parent_folder" = "1071946810002"
  "parent_id" = "folders/1071946810002"
  "project_prefix" = "prj"
}
csr_repos = {
  "gcp-bootstrap" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-bootstrap"
    "name" = "gcp-bootstrap"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-bootstrap"
  }
  "gcp-environments" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-environments"
    "name" = "gcp-environments"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-environments"
  }
  "gcp-networks" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-networks"
    "name" = "gcp-networks"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-networks"
  }
  "gcp-org" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-org"
    "name" = "gcp-org"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-org"
  }
  "gcp-policies" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-policies"
    "name" = "gcp-policies"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-policies"
  }
  "gcp-projects" = {
    "id" = "projects/prj-b-cicd-khce/repos/gcp-projects"
    "name" = "gcp-projects"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/gcp-projects"
  }
  "tf-cloudbuilder" = {
    "id" = "projects/prj-b-cicd-khce/repos/tf-cloudbuilder"
    "name" = "tf-cloudbuilder"
    "project" = "prj-b-cicd-khce"
    "url" = "https://source.developers.google.com/p/prj-b-cicd-khce/r/tf-cloudbuilder"
  }
}
environment_step_terraform_service_account_email = "sa-terraform-env@prj-b-seed-7766.iam.gserviceaccount.com"
gcs_bucket_cloudbuild_artifacts = {
  "bootstrap" = "bkt-prj-b-cicd-khce-gcp-bootstrap-build-artifacts"
  "env" = "bkt-prj-b-cicd-khce-gcp-environments-build-artifacts"
  "net" = "bkt-prj-b-cicd-khce-gcp-networks-build-artifacts"
  "org" = "bkt-prj-b-cicd-khce-gcp-org-build-artifacts"
  "proj" = "bkt-prj-b-cicd-khce-gcp-projects-build-artifacts"
}
gcs_bucket_cloudbuild_logs = {
  "bootstrap" = "bkt-prj-b-cicd-khce-gcp-bootstrap-build-logs"
  "env" = "bkt-prj-b-cicd-khce-gcp-environments-build-logs"
  "net" = "bkt-prj-b-cicd-khce-gcp-networks-build-logs"
  "org" = "bkt-prj-b-cicd-khce-gcp-org-build-logs"
  "proj" = "bkt-prj-b-cicd-khce-gcp-projects-build-logs"
}
gcs_bucket_tfstate = "bkt-prj-b-seed-tfstate-d48a"
networks_step_terraform_service_account_email = "sa-terraform-net@prj-b-seed-7766.iam.gserviceaccount.com"
optional_groups = tomap({
  "gcp_global_secrets_admin" = "gcp_global_secrets_admin@obrienlabs.dev"
  "gcp_kms_admin" = "gcp_kms_admin@obrienlabs.dev"
  "gcp_network_viewer" = "gcp_network_viewer@obrienlabs.dev"
  "gcp_scc_admin" = "gcp_scc_admin@obrienlabs.dev"
  "gcp_security_reviewer" = "gcp_security_reviewer@obrienlabs.dev"
})
organization_step_terraform_service_account_email = "sa-terraform-org@prj-b-seed-7766.iam.gserviceaccount.com"
projects_gcs_bucket_tfstate = "bkt-prj-b-seed-7766-gcp-projects-tfstate"
projects_step_terraform_service_account_email = "sa-terraform-proj@prj-b-seed-7766.iam.gserviceaccount.com"
required_groups = tomap({
  "audit_data_users" = "gcp-audit-data@obrienlabs.dev"
  "billing_data_users" = "gcp-billing-data@obrienlabs.dev"
  "group_billing_admins" = "gcp-billing-admins@obrienlabs.dev"
  "group_org_admins" = "gcp-organization-admins@obrienlabs.dev"
  "monitoring_workspace_users" = "gcp-monitoring-workspace@obrienlabs.dev"
})
seed_project_id = "prj-b-seed-7766"

1819 50 min overall with 23 min terraform run time

bootstrap project

https://github.com/terraform-google-modules/terraform-example-foundation/issues/1139 https://github.com/terraform-google-modules/terraform-example-foundation/issues/1140 https://github.com/terraform-google-modules/terraform-example-foundation/issues/1142 https://github.com/terraform-google-modules/terraform-example-foundation/issues/1143

michael@cloudshell:~ (tef-olxyz)$ gcloud services enable cloudresourcemanager.googleapis.com
Operation "operations/acat.p2-438381210056-f7e0fb71-9240-434b-918d-6e4bfe1fadfb" finished successfully.
michael@cloudshell:~ (tef-olxyz)$ gcloud services enable cloudbilling.googleapis.com
Operation "operations/acat.p2-438381210056-9316b2a5-637a-40ad-bd64-981dc1af28f3" finished successfully.
michael@cloudshell:~ (tef-olxyz)$ gcloud services enable iam.googleapis.com
Operation "operations/acat.p2-438381210056-2344a0fc-dc11-4432-b9aa-53a89f0fbb4d" finished successfully.
michael@cloudshell:~ (tef-olxyz)$ gcloud services enable cloudkms.googleapis.com
Operation "operations/acat.p2-438381210056-4379d575-1d69-40b6-9104-113ff4f48704" finished successfully.
michael@cloudshell:~ (tef-olxyz)$ gcloud services enable servicenetworking.googleapis.com
Operation "operations/acat.p2-438381210056-b21bf432-2188-49c1-a9b9-44ec824f8d43" finished successfully.

See latest 3rd org testing 50 min for #421 in https://github.com/GoogleCloudPlatform/pbmm-on-gcp-onboarding/issues/421#issuecomment-2093522430

GoogleCloudPlatform / pbmm-on-gcp-onboarding

Missing cloudbuild services enable on bootstrap requires a 5 min wait state before a terraform re apply on 0-bootstrap - delete the existing cloudbuild worker pool to proceed #425