v7.37.0

Compare Source

NOTES:

• compute: migrated EnableDisplay fields in google_compute_instance resources to use direct HTTP rather than a client library (#​27778)
• compute: migrated desired_status block and startInstanceOperation in resource_compute_instance.go.tmpl to use direct HTTP rather than a client library (#​27755)
• compute: migrated getInstance, getDisk, Delete and the setMetadata update block in resource_compute_instance.go.tmpl to use direct HTTP rather than a client library (#​27716)
• compute: migrated part of google_compute_instance to use direct HTTP rather than a client library (#​27788)

DEPRECATIONS:

• cloudrunv2: deprecated http_get.http_headers.port field in container startup probe and liveness probe in google_cloud_run_v2_worker_pool resource because it is not supported in Cloud Run API. This field will be removed in a future major release. (#​27800)
• cloudsecuritycompliance: deprecated the organization field on google_cloud_security_compliance_cloud_control, google_cloud_security_compliance_framework, and google_cloud_security_compliance_framework_deployment. Use parent instead (#​27769)
• networkservices: deprecated protocols on google_network_services_agent_gateway (#​27802)

FEATURES:

• New Data Source: google_oracle_database_goldengate_deployment_versions (#​27771)
• New Data Source: google_storage_control_project_intelligence_finding (#​27764)
• New Data Source: google_storage_control_project_intelligence_findings (#​27764)
• New Resource: google_chronicle_parser (#​27801)
• New Resource: google_migration_center_import_data_file (#​27721)
• New Resource: google_network_services_agent_gateway (#​27803)
• New Resource: google_vertex_ai_tensorboard_experiment (#​27796)
• New List Resource: google_bigquery_dataset_access (#​27758)
• New List Resource: google_cloud_scheduler_job (#​27758)
• New List Resource: google_dns_record_set (#​27792)
• New List Resource: google_monitoring_alert_policy (#​27758)
• New List Resource: google_pubsub_subscription (#​27758)

IMPROVEMENTS:

• apigee: added new resource google_apigee_environment_debugmask for managing Apigee environment debug masks (#​27719)
• backupdr: added support for use_project_service_account flag in google_backup_dr_restore_workload disk and compute restores (#​27797)
• cloudrunv2: added http_get.http_headers.name field to container startup probe and liveness probe in google_cloud_run_v2_worker_pool resource (#​27800)
• cloudrunv2: added template.client and template.client_version fields to google_cloud_run_v2_worker_pool resource (#​27757)
• cloudsecuritycompliance: added support for project parent to google_cloud_security_compliance_cloud_control, google_cloud_security_compliance_framework, and google_cloud_security_compliance_framework_deployment via the new parent field. The organization field has been deprecated. (#​27769)
• compute: added params.resource_manager_tags field to google_compute_reservation resource (#​27770)
• compute: added data sources for google_compute_target_http_proxy, google_compute_target_https_proxy, google_compute_region_target_http_proxy, and google_compute_region_target_https_proxy (#​27767)
• container: added addons_config.slurm_operator_config field to google_container_cluster resource (#​27765)
• container: added node_image_config field to google_container_node_pool and google_container_cluster resources (#​27794)
• databasemigrationservice: added state and stop_on_warnings fields to google_database_migration_service_migration_job resource (#​27731)
• dns: added resource identity support for google_dns_record_set resource (#​27792)
• networksecurity: added network_rules field on google_network_security_authz_policy resource (#​27821)
• pubsub: added first_revision_id and last_revision_id fields to google_pubsub_topic resource (#​27718)
• sql: added settings.ip_configuration.psc_config.psc_auto_dns_enabled and settings.ip_configuration.psc_config.psc_write_endpoint_dns_enabled fields to google_sql_database_instance resource (#​27776)

BUG FIXES:

• apigee: fixed google_apigee_api not detecting local bundle changes due to a missing default on detect_md5hash, and fixed the test sweeper's list URL (#​27791)
• apigee: fixed google_apigee_security_action update failure by enabling PATCH-based updates now that the Apigee Security Actions API supports mutations (#​27768)
• apigee: fixed a perma-diff for api_products and scopes fields in google_apigee_developer_app resource when updating them with multiple items (#​27789)
• apigee: fixed an issue where the resource would attempt recreation if the key_expires_in field was set in google_apigee_developer_app resource (#​27779)
• ces: fixed persistent diff in google_ces_guardrail when llm_prompt_security is configured with default_settings (#​27766)
• cloudrun: fixed a permadiff for the run.googleapis.com/gpu-zonal-redundancy-disabled annotation in google_cloud_run_service (#​27787)
• cloudrunv2: fixed bug where only one http_get.http_headers block could be specified in container startup probe and liveness probe in google_cloud_run_v2_worker_pool resource (#​27800)
• compute: fixed an issue in google_compute_subnetwork where secondary_ip_range entries linked to an internal_range could not be removed and adding new ranges would sometimes fail due to positional shifts (#​27175) (#​27720)
• compute: fixed diff when using existing_reservations field in google_region_commitment (#​27775)
• compute: fixed rules in google_compute_security_policy being unnecessarily recreated due to TypeSet hash instability (#​27754)
• sql: fixed inconsistent result after apply error when adding users of type CLOUD_IAM_GROUP with capitalized domain names for MySQL (#​27784)
• storage: fixed OOM issue for google_storage_bucket force_destroy by limiting the number of outstanding tasks to 2000 (#​27777)

v7.36.0

Compare Source

FEATURES:

• New Data Source: google_apigee_instance (#​27683)
• New Data Source: google_oracle_database_goldengate_deployment_types (#​27634)
• New Resource: google_apigee_datastore (#​27607)
• New Resource: google_discovery_engine_search_engine_iam_binding (#​27703)
• New Resource: google_license_manager_configuration (#​27707)
• New Resource: google_migration_center_import_job (#​27599)
• New List Resource: google_compute_disk (#​27608)
• New List Resource: google_compute_image (#​27608)
• New List Resource: google_compute_snapshot (#​27608)
• New List Resource: google_storage_hmac_key (#​27637)

IMPROVEMENTS:

• accesscontextmanager: added in-place update for egress_from and egress_to fields in google_access_context_manager_service_perimeter_egress_policy resource (#​27690)
• accesscontextmanager: added in-place update for egress_from and egress_to fields in google_access_context_manager_service_perimeter_ingress_policy resource (#​27690)
• bigquery: added IAM support (google_bigquery_routine_iam_policy, google_bigquery_routine_iam_binding, google_bigquery_routine_iam_member) for google_bigquery_routine resource (#​27704)
• bigtable: added automated_backup_policy.locations field in google_bigtable_table resource (#​27646)
• ces: added agent_tool, file_search_tool, and widget_tool fields to the google_ces_tool resource (#​27681)
• ces: added google_search_tool.prompt_config and data_store_tool.data_store_source fields to the google_ces_tool resource (#​27681)
• ces: exposed remote_agent_tool, connector_tool, and mcp_tool as read-only (output-only) attributes in google_ces_tool (#​27681)
• container: added node_creation_config field to google_container_cluster resource (#​27702)
• container: added node_drain_config.pdb_timeout_duration and node_drain_config.grace_termination_duration fields to google_container_node_pool and google_container_cluster resources (#​27694)
• data_catalog: added RICHTEXT to allowed values of primitive_type on google_data_catalog_tag_template fields. (#​27672)
• dataplex: added IAM support for google_dataplex_data_product resource (iam_policy, iam_binding, iam_member) (#​27652)
• dataplex: added access_approval_config field to google_dataplex_data_product resource (#​27652)
• hypercomputecluster: marked network_resources field as required in google_hypercomputecluster_cluster resource to align with API validation (#​27655)
• networksecurity: google_network_security_ull_mirroring_engine, google_network_security_ull_mirroring_collector, and google_network_security_ull_mirroring_collector_rule resources promoted to GA (#​27710)
• securesourcemanager: added psc_allowed_projects field to google_secure_source_manager_instance resource (#​27695)
• workbench: added NVIDIA_RTX6000 to the supported gce_setup.accelerator_configs.type values on google_workbench_instance resource(#​27709)

BUG FIXES:

• apigee: send zero values for ip_header_index in google_apigee_environment resource (#​27670)
• backupdr: fixed an issue where google_backup_dr_restore_workload did not use the correct API JSON names for networking/reservation fields (#​27680)
• compute: fixed an issue where updating connection_limit in the consumer_accept_lists block of google_compute_service_attachment would not trigger a resource update. (#​27688)
• compute: fixed regional backend reference in google_compute_regional_url_map resource (#​27705)
• dlp: fixed error when reading google_data_loss_prevention_discovery_config caused by nested error details (#​27669)
• sql: fixed permadiff on connection_pool_config when connection_pooling_enabled is set to false (#​27711)
• tags: fixed google_tags_location_tag_binding failing with Operation location does not match service location 'global' during creation (#​27668)
• vertexai: fixed terraform import of google_vertex_ai_index_endpoint_deployed_index failing with "Cannot determine region" when provider-level region/zone is unset (#​27692)

v7.35.0

Compare Source

FEATURES:

• New Data Source: google_oracle_database_goldengate_connection_types (#​27567)
• New Resource: google_chronicle_findings_refinement (#​27591)
• New Resource: google_dataplex_data_product (#​27588)
• New Resource: google_dataplex_data_product_data_asset (#​27588)
• New Resource: google_migration_center_discovery_client (#​27572)
• New Resource: google_migration_center_report (#​27548)
• New Resource: google_oracle_database_goldengate_connection_assignment (#​27566)
• New Resource: google_oracle_database_goldengate_connection (#​27587)
• New Resource: google_oracle_database_goldengate_deployment (#​27575)
• New List Resource: google_compute_firewall (#​27549)
• New List Resource: google_compute_global_address (#​27549)
• New List Resource: google_compute_subnetwork (#​27549)
• New List Resource: google_sql_database (#​27552)

IMPROVEMENTS:

• compute: added target_type and target_forwarding_rules fields to google_compute_network_firewall_policy_rule resource (#​27538)
• container: added crash_loop_back_off.max_container_restart_period field to google_container_node_pool and google_container_cluster resources (#​27574)
• container: added additional value KCP_VPA for logging_config.enable_components field to google_container_cluster resource (#​27546)
• dataplex: added service_account support to google_dataplex_data_product access group principals (#​27588)
• firestore: added ttl_config.expiration_offset field to google_firestore_field resource (#​27589)
• netapp: added ontap_source field to google_netapp_backup resource (#​27584)
• networkmanagement: added gke_pod and network_type fields to google_network_management_connectivity_test resource (#​27585)

BUG FIXES:

• resourcemanager: fixed a bug where ephemeral google_service_account_key failed on deletion if the parent service account had already been deleted (#​27541)
• storage: fixed missing identity error when updating values in google_storage_bucket (#​27605)

v7.34.0

Compare Source

NOTES:

• compute: migrated google_compute_region_instance_template to use direct HTTP rather than a client library (#​27471)
• compute: migrated google_compute_instance_group_manager resource to use direct HTTP rather than a client library (#​27441)

FEATURES:

• New Data Source: google_compute_service_attachment (#​27526)
• New Data Source: google_oracle_database_goldengate_deployment_environments (#​27499)
• New Resource: google_config_deployment (#​27438)
• New Resource: google_dialogflow_sip_trunk (#​27468)
• New Resource: google_migration_center_assets_export_job (#​27466)
• New Resource: google_migration_center_report_config (#​27395)
• New Resource: google_migration_center_settings (#​27465)
• New Resource: google_migration_center_source (#​27496)

IMPROVEMENTS:

• bigtable: added edition field to google_bigtable_instance resource (#​27507)
• ces: added fail_open field to llm_prompt_security block in google_ces_guardrail resource (#​27497)
• ces: added read-only fail_open field to llm_prompt_security block in google_ces_app_version resource (#​27497)
• compute: added ip_version and ip_collection fields to secondary_ip_range field in google_compute_subnetwork resource (#​27432)
• compute: added post_quantum_key_exchange field to google_compute_ssl_policy and google_compute_region_ssl_policy resources (#​27479)
• compute: added support in the google_compute_network datasource for looking up a network by self_link in addition to name (#​27509)
• container: added agent_sandbox_config field to google_container_cluster resource (#​27482)
• container: added node_config.gpudirect_strategy and node_pool.node_config.gpudirect_strategy to cluster resource, added node_config.gpudirect_strategy to node_pool resource (#​27495)
• dataflow: Added create_ignore_already_exists field to google_dataflow_flex_template_job resource to handle 409 conflicts (#​27476)
• datafusion: added maintenance_policy field to google_data_fusion_instance resource (#​27470)
• iam: add resource identity support for iam_member resources (#​27383)
• networkconnectivity: google_network_connectivity_transport resource promoted to GA (#​27440)
• oracledatabase: added identity_connector to google_oracle_database_cloud_vm_cluster for CMEK support (#​27435)
• project: added Resource Identity support to google_project_iam_binding (#​27502)
• project: added Resource Identity support to google_project_iam_policy (#​27503)
• sql: promoted Hyperdisk fields, data_disk_provisioned_iops and data_disk_provisioned_throughput to GA (#​27437)

BUG FIXES:

• bigtable: fixed an issue where bigtable_custom_endpoint and universe_domain were ignored when creating Bigtable resources. (#​27515)
• compute: fixed an issue in google_compute_subnetwork where secondary_ip_range entries linked to an internal_range could not be removed and adding new ranges would sometimes fail due to positional shifts (#​27175) (#​27512)
• compute: marked encryption keys as immutable and sensitive across compute and backupdr resources (#​27508)
• dialogflow: corrected AUDIOENCODING_SPEEX_WITH_HEADER_BYTE enum value to AUDIO_ENCODING_SPEEX_WITH_HEADER_BYTE for audio_encoding field in google_dialogflow_conversation_profile resource (#​27459)
• resourcemanager: resolved a one-time diff for deletion_policy that would occur on existing and imported google_project_service resources following upgrading to v7.32.0 (#​27484)

v7.33.0

Compare Source

NOTES:

• compute: migrated google_compute_target_pool resource to use direct HTTP rather than a client library (#​12212)
• compute: migrated google_compute_instance_group_manager resource to use direct HTTP rather than a client library (#​12206)
• compute: migrated google_compute_project_default_network_tier resource to use direct HTTP rather than a client library (#​12201)
• compute: migrated google_compute_router_status data source to use direct HTTP rather than a client library (#​12174)
• compute: migrated google_compute_instance_group_manager resource to use direct HTTP rather than a client library (#​12216)
• compute: partially migrated google_compute_instance resource to use direct HTTP rather then a client library (#​12205)

FEATURES:

• New Data Source: google_logging_log_view (#​12226)
• New Resource: google_apigee_data_collector (#​12190)
• New Resource: google_chronicle_native_dashboard (ga) (#​12188)
• New Resource: google_contact_center_insights_encryption_spec (#​12225)

IMPROVEMENTS:

• backupdr: added guest_flush field to google_backup_dr_backup_plan resource and google_backup_dr_backup data source. (#​12229)
• backupdr: added guest_flush field to google_backup_dr_backup_plan resource and google_backup_dr_backup data source. (#​12230)
• ces: added security_settings field to google_ces_deployment resource (#​12227)
• ces: added tool_execution_mode field to google_ces_app resource (#​12221)
• compute: added stabilization_period field to google_compute_autoscaler and google_compute_region_autoscaler resources (#​12232)
• compute: added support for "ARP_BROADCAST_PRIMARY_RANGE" values to the resolve_subnet_mask field in google_compute_subnetwork resource (#​12176)
• compute: added support for "GCE_VM_IP_DEDICATED_BACKEND" to the network_endpoint_type field in google_compute_network_endpoint_group resource (#​12176)
• compute: migrated data_source_google_compute_regions to use direct HTTP rather than a client library (#​12202)
• container: added pod_snapshot_config field to google_container_cluster resource (GA) (#​12196)
• container: added secret_sync_config field to google_container_cluster resource (ga) (#​12215)
• databasemigrationservice: added database and private_connectivity fields to google_database_migration_service_connection_profile resource (#​12203)
• databasemigrationservice: added postgres_homogeneous_config field to google_database_migration_service_migration_job resource (#​12203)
• databasemigrationservice: added psc_interface_config field to google_database_migration_service_private_connection resource (#​12184)
• hypercomputecluster: added terminal_storage_class and per_unit_storage_throughput fields to the google_hypercomputecluster_cluster resource (#​12234)
• netapp: added ontap_source field to google_netapp_backup resource (beta) (#​12231)
• provider: support for a deletion_policy field has been added to almost all resources in the provider. Details on its usage can be found within individual resource documentation if supported. (#​12183)
• storagebatchoperations: added description field to google_storage_batch_operations_job resource (#​12207)
• workstations: added workstation_authorization_url and workstation_launch_url fields to the google_workstations_workstation_cluster resource. (#​12185)

BUG FIXES:

• apigee: fixed forced replacement when importing google_apigee_sharedflow_deployment resource, where service_account read as null (#​12228)
• bigqueryconnection: fixed an issue where configuration.authentication.username_password.password.secret_type is not populated and a diff on configuration.authentication.username_password.username after import in google_bigquery_connection resource (#​12179)
• bigqueryreservation: Fixed google_bigquery_reservation_assignment returning a confusing 404 error when reservation is a bare name and location is not set (#​12210)
• ces: updated supported values for channel_type, modality, and theme in google_ces_deployment (#​12227)
• compute: updated google_compute_forwarding_rule resource to properly prompt for resource recreation when updating the target field between different "serviceAttachments", rather than having an in-place update blocked by an API error. (#​12214)
• modelarmor: fixed permadiff and REQUEST_FIELD_MISSING error when template_metadata is omitted from google_model_armor_template (#​12222)
• networkconnectivity: fixed an issue where google_network_connectivity_destination was not recognizing the name field as mapping to an API value (#​12224)
• networkconnectivity: fixed an issue where google_network_connectivity_multicloud_data_transfer_config was not recognizing the name field as mapping to an API value (#​12224)
• resourcemanager: added verification polling to google_service_account updates to ensure the resource is consistent before succeeding (#​12217)

v7.32.0

Compare Source

NOTES:

• compute: migrated google_compute_instance_from_machine resource to use direct HTTP rather than a client library (#​27260)
• compute: migrated google_compute_instance_group_manager resource to use direct HTTP rather than a client library (#​27259)
• compute: migrated google_compute_zones data source to use direct HTTP rather than a client library (#​27261)
• compute: migrated google_compute_project_metadata_item resource to use direct HTTP rather than a client library (#​27200)

FEATURES:

• New Data Source: google_compute_region_instant_snapshot_iam_policy (#​27281)
• New Resource: google_chronicle_dashboard_chart (#​27275)
• New Resource: google_compute_region_instant_snapshot_iam_binding (#​27281)
• New Resource: google_compute_region_instant_snapshot_iam_member (#​27281)
• New Resource: google_compute_region_instant_snapshot_iam_policy (#​27281)
• New Resource: google_compute_region_instant_snapshot (#​27281)

IMPROVEMENTS:

• compute: added IDPF value to nic_type in resource_compute_instance_template (#​27244)
• compute: added IDPF value to nic_type in resource_compute_instance (#​27244)
• compute: added IDPF value to nic_type in resource_compute_region_instance_template (#​27244)
• compute: added address_id field to google_compute_address resource (#​27216)
• compute: added advanced_options_config field on google_compute_organization_security_policy resource (#​27255)
• compute: added connection_tracking_policy field to google_compute_region_backend_service resource (#​27217)
• compute: added image, source_image_encryption_key, and source_image_id fields to google_compute_region_disk resource. This field is currently behind an allowlist. (#​27243)
• compute: added replica_zones field to google_compute_instance resource (#​27258)
• compute: added request_body field on google_compute_security_policy_rule resource (#​27252)
• compute: added update support for ip_collection field to google_compute_subnetwork resource (#​27265)
• discoveryengine: added config_id attribute to google_discovery_engine_widget_config (#​27278)
• networksecurity: added support for project parent values to google_network_security_firewall_endpoint (#​27222)
• recaptchaenterprise: added POLICY_BASED_CHALLENGE value to integration_type field and added new challenge_settings field to google_recaptcha_enterprise_key (#​27221)
• redis: added new node types supported in google_redis_cluster. (#​27242)
• resourcemanager: add private_key and private_key_type fields to ephemeral google_service_account_key resource (#​27279)
• storage: added ingest_on_write field for google_storage_anywhere_cache resource (#​27271)
• workstations: added gce_hd field to google_workstations_workstation_config resource (#​27201)

BUG FIXES:

• cloudfunctions2: fixed bug where all_traffic_on_latest_revision = false was ignored in google_cloudfunctions2_function (#​27256)
• compute: fixed permadiff when removing preconfigured_waf_config from a google_compute_security_policy rule (#​27276)

v7.31.0

Compare Source

NOTES:

• compute: migrated google_compute_instance.network_interface field to use direct HTTP rather than a client library (#​27104)
• compute: migrated google_compute_image datasource to use direct HTTP rather then a client library (#​27179)
• compute: migrated partner_metadata field on google_compute_instance, google_compute_instance_template, and google_compute_region_instance_template to use direct HTTP rather than a client library (#​27131)
• compute: migrated google_compute_node_types data source to use direct HTTP rather than a client library (#​27184)
• compute: migrated google_compute_region_instance_group data source to use direct HTTP rather than a client library (#​27178)
• compute: migrated google_compute_subnetwork data source to use direct HTTP rather than a client library (#​27167)
• compute: migrated google_compute_vpn_gateway data source to use direct HTTP rather than a client library (#​27168)

FEATURES:

• New Data Source: google_artifact_registry_file (#​27183)
• New Resource: google_ces_app_root_agent_association (#​27123)
• New Resource: google_contact_center_insights_qa_question (#​27169)
• New Resource: google_contact_center_insights_qa_scorecard_revision (#​27169)
• New Resource: google_contact_center_insights_qa_scorecard (#​27169)
• New Resource: google_firebase_app_check_resource_policy (#​27185)

IMPROVEMENTS:

• clouddeploy: added default_pool and private_pool fields to google_clouddeploy_target resource (#​27187)
• clouddeploy: added tasks and analysis fields to google_clouddeploy_delivery_pipeline resource (#​27187)
• compute: added params.resource_manager_tags field to google_compute_image (#​27107)
• compute: added params.resource_manager_tags field to google_compute_region_commitment resource (#​27181)
• compute: added resource_policies.workload_policy to google_compute_region_instance_group_manager resource (#​27170)
• compute: marked csek disk encryption key fields as sensitive in compute resources (#​27193)
• container: added node_pool.network_config.accelerator_network_profile to google_container_cluster resource and network_config.accelerator_network_profile to google_container_node_pool resource (#​27171)
• databasemigrationservice: added objects_config field to google_database_migration_service_migration_job resource (#​27180)
• dataplex: added attributes, template_reference, enable_catalog_basedRules, and filter fields to google_dataplex_datascan resource (#​27130)
• firestore: added search_config field to google_firestore_index resource (#​27108)
• oracle_database: added pluggable_database_id, pluggable_database_name fields to google_oracle_database_db_system resource (#​27127)

BUG FIXES:

• provider: fixed a bad timeouts diff across a number of resources that had resource identity support added in 7.29.0 (#​27189)
• assuredworkloads: made assuredworkloads resources use GA endpoint instead of beta (#​27122)
• bigquery: fixed ignore_auto_generated_schema evaluation for google_bigquery_table external tables which caused spurious replacement (#​27188)
• cloudscheduler: fixed perpetual diff on google_cloud_scheduler_job.http_target.headers when oidc_token or oauth_token is set (#​27173)
• servicenetworking: fixed a permadiff issue of reserved_peering_ranges in google_service_networking_connection (#​27132)
• storage: fix inconsistent plan issue for google_storage_notification.custom_attributes field (#​27129)

v7.30.0

Compare Source

BREAKING CHANGES:

• apigee: fixed google_apigee_env_keystore to require the name field which is mandatory in the Apigee API (#​27006)

FEATURES:

• New Data Source: google_data_lineage_config (#​27098)
• New Resource: google_artifact_registry_rule (#​27049)
• New Resource: google_data_lineage_config (#​27098)
• New Resource: google_document_ai_schema (#​27102)
• New Resource: google_firebase_remote_config_remote_config (#​27050)

IMPROVEMENTS:

• provider: added support for prefer_global_endpoints and prefer_regional_endpoints to the provider configuration. Support for regional endpoints will be rolled out on a per-product level (#​27014)
• artifactregistry: added support for regionalized endpoints (#​27014)
• assuredworkloads: added SPAIN_DATA_BOUNDARY_BY_TELEFONICA value to partner field on google_assured_workloads_workload resource (#​27027)
• bigqueryconnection: added configuration block to google_bigquery_connection resource to support AlloyDB and other connector types via the BigQuery Connector framework (#​27029)
• bigtable: added support for tags to google_bigtable_instance (#​27060)
• cloudrunv2: added DISK fields to google_cloud_run_v2_job resource (#​27052)
• cloudrunv2: added DISK fields to google_cloud_run_v2_worker_pool resource (#​27048)
• compute: add params.resourceManagerTags field to the google_compute_storage_pool (#​27051)
• compute: added cache_policy field to google_compute_url_map (#​27011)
• compute: added params.resource_manager_tags field to google_compute_instant_snapshot resource (#​27087)
• compute: added resource_manager_tags field to google_compute_machine_image resource (#​27075)
• container: added node_config.linux_node_config.accurate_time_config field to google_container_node_pool resource (#​27064)
• container: added node_pool.node_config.linux_node_config.accurate_time_config and node_config.linux_node_config.accurate_time_config fields to google_container_cluster resource (#​27064)
• container: added node_pool.node_config.linux_node_config.swap_config field to google_container_node_pool resource (#​26982)
• container: increased default timeout for google_container_cluster to 90 minutes (from 40/60 depending on operation) and google_container_node_pool to 60 minutes (from 30) (#​27101)
• discoveryengine: added destionation_configs.destionations.port and destionation_configs.params fields to google_discovery_engine_data_connector resource (#​27058)
• dns: added support for IAM conditions to google_dns_managed_zone resource (#​27010)
• datastream: added deletion_policy field to control whether child routes are force-deleted to google_datastream_private_connection (#​27033)
• networkconnectivity: added support for IAM conditions to google_network_connectivity_hub resource (#​27005)
• networksecurity: added parent field to google_network_security_address_groups data source (#​27082)
• workbench: added support for new disk types and accelerators to google_workbench_instance (#​27061)

BUG FIXES:

• alloydb: fixed google_alloydb_cluster so that maintenance_update_policy.maintenance_windows.start_time.hours can be set to 0 (midnight) (#​26981)
• ces: fixed type mismatch in google_ces_app variable default value (#​27084)
• compute: fixed an issue where an erroneous error could occur for having an unset zone field in google_compute_instance_template (#​27076)
• compute: fixed permadiff for iap.oauth2_client_id in google_compute_backend_service and google_compute_region_backend_service when the API returns a single space (#​26975)
• container: fixed a permadiff in google_container_cluster where database_encryption.state returning ALL_OBJECTS_ENCRYPTION_ENABLED instead of the configured ENCRYPTED caused unintended reapplies (#​27040)
• dataplex: fixed acceptance test failure for one time scans (#​27095)
• dialogflowcx: fixed a perma-diff in google_dialogflow_cx_test_case when session_parameters was omitted from the configuration (#​26985)
• hypercomputecluster: fixed a permadiff in google_hypercomputecluster_cluster when count, static_node_count, or max_dynamic_node_count were explicitly set to 0. (#​27073)
• identityplatform: fixed a premadiff on multi_tenant in google_identity_platform_config resource. Removing the value from config will now preserve the existing settings instead of removing them. ([#​26986](https://redirect.github.com/hashicorp/terr

✂ Note

PR body was truncated to here.