search

hashicorp / terraform-provider-google

Terraform Provider for Google Cloud Platform
https://registry.terraform.io/providers/hashicorp/google/latest/docs
Mozilla Public License 2.0
2.36k stars 1.75k forks source link

add aclEnabled to google_discovery_engine_data_store #19566

Open eeaton opened 1 month ago

eeaton commented 1 month ago

Community Note

Description

The google_discovery_engine_data_store resource in Terraform has no way to set use the GA feature configure data source access control.

Currently, the aclEnabled flag can only be enabled when creating a data store through the UI or through a direct API call (no support for gcloud or terraform). It should be added as an optional

New or Affected Resource(s)

Potential Terraform Configuration

Example implementation with a new boolean argument exposed for aclEnabled

resource "google_discovery_engine_data_store" "basic" {
  location                     = "global"
  data_store_id                = "data-store-id"
  display_name                 = "tf-test-structured-datastore"
  acl_enabled = true
  industry_vertical            = "GENERIC"
  content_config               = "NO_CONTENT"
  solution_types               = ["SOLUTION_TYPE_SEARCH"]
  create_advanced_site_search  = false
  skip_default_schema_creation = false
}

References

No response

b/369148147

BBBmau commented 1 month ago

Hi @eeaton, based off of the API Docs it is currently unsupported yet. Do you know where else this field is called or if this field has yet to be added into the official API Docs?

eeaton commented 1 month ago

Hmm, the product docs claim that this is supported in the API, but that's concerning that it's not included in the API docs.

Screenshot of relevant section of product docs that mentions the aclEnabled flag: BtN6psh4ZjRGqDB

I've raised an internal bug with the product team to confirm, b/369297665.