google-cla[bot]
commented
1 year ago Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).
View this failed invocation of the CLA check for more information.
For the most up to date status, view the checks section at the bottom of the pull request.
Removed google_access_context_manager_service_perimeter_resource terraform resource and move resource list directly into google_access_context_manager_service_perimeter. In dry run mode module works but in standard mode doesn't work. There is an error "Error creating ServicePerimeter: googleapi: Error 400: Invalid Directional Policies set in Perimeter 'accessPolicies//servicePerimeters/xxx': Error in IngressTo: 'projects/'
is defined in
IngressTo.resources, but it is not present inServicePerimeterConfig.resources. Only resources protected by this Service Perimeter can be put in IngressTo.resources." This is caused because ingress rule needs resources list (for example project number) during creation regular service perimeter. I've moved list and deleted reference to google_access_context_manager_service_perimeter_resource in output file.