support enabling multi networking

sebastiandero · sebastiandero · commit 09d34fe5f242 · 2023-08-25T10:11:15.000+02:00
diff --git a/modules/beta-autopilot-private-cluster/cluster.tf b/modules/beta-autopilot-private-cluster/cluster.tf
@@ -129,6 +129,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-autopilot-private-cluster/variables.tf b/modules/beta-autopilot-private-cluster/variables.tf
@@ -416,3 +416,9 @@ variable "timeouts" {
   }
 }
 
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}
+
diff --git a/modules/beta-autopilot-public-cluster/cluster.tf b/modules/beta-autopilot-public-cluster/cluster.tf
@@ -129,6 +129,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-autopilot-public-cluster/variables.tf b/modules/beta-autopilot-public-cluster/variables.tf
@@ -386,3 +386,9 @@ variable "timeouts" {
   }
 }
 
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}
+
diff --git a/modules/beta-private-cluster-update-variant/cluster.tf b/modules/beta-private-cluster-update-variant/cluster.tf
@@ -260,6 +260,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-private-cluster-update-variant/variables.tf b/modules/beta-private-cluster-update-variant/variables.tf
@@ -740,3 +740,9 @@ variable "enable_identity_service" {
   description = "Enable the Identity Service component, which allows customers to use external identity providers with the K8S API."
   default     = false
 }
+
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}
diff --git a/modules/beta-private-cluster/cluster.tf b/modules/beta-private-cluster/cluster.tf
@@ -260,6 +260,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-private-cluster/variables.tf b/modules/beta-private-cluster/variables.tf
@@ -496,7 +496,7 @@ variable "shadow_firewall_rules_log_config" {
     metadata = string
   })
   description = "The log_config for shadow firewall rules. You can set this variable to `null` to disable logging."
-  default = {
+  default     = {
     metadata = "INCLUDE_ALL_METADATA"
   }
 }
@@ -581,10 +581,12 @@ variable "database_encryption" {
   description = "Application-layer Secrets Encryption settings. The object format is {state = string, key_name = string}. Valid values of state are: \"ENCRYPTED\"; \"DECRYPTED\". key_name is the name of a CloudKMS key."
   type        = list(object({ state = string, key_name = string }))
 
-  default = [{
-    state    = "DECRYPTED"
-    key_name = ""
-  }]
+  default = [
+    {
+      state    = "DECRYPTED"
+      key_name = ""
+    }
+  ]
 }
 
 variable "enable_shielded_nodes" {
@@ -605,7 +607,9 @@ variable "node_metadata" {
   type        = string
 
   validation {
-    condition     = contains(["GKE_METADATA", "GCE_METADATA", "UNSPECIFIED", "GKE_METADATA_SERVER", "EXPOSE"], var.node_metadata)
+    condition     = contains([
+      "GKE_METADATA", "GCE_METADATA", "UNSPECIFIED", "GKE_METADATA_SERVER", "EXPOSE"
+    ], var.node_metadata)
     error_message = "The node_metadata value must be one of GKE_METADATA, GCE_METADATA, UNSPECIFIED, GKE_METADATA_SERVER or EXPOSE."
   }
 }
@@ -740,3 +744,9 @@ variable "enable_identity_service" {
   description = "Enable the Identity Service component, which allows customers to use external identity providers with the K8S API."
   default     = false
 }
+
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}
diff --git a/modules/beta-public-cluster-update-variant/cluster.tf b/modules/beta-public-cluster-update-variant/cluster.tf
@@ -260,6 +260,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-public-cluster-update-variant/variables.tf b/modules/beta-public-cluster-update-variant/variables.tf
@@ -710,3 +710,9 @@ variable "enable_identity_service" {
   description = "Enable the Identity Service component, which allows customers to use external identity providers with the K8S API."
   default     = false
 }
+
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}
diff --git a/modules/beta-public-cluster/cluster.tf b/modules/beta-public-cluster/cluster.tf
@@ -260,6 +260,8 @@ resource "google_container_cluster" "primary" {
 
   networking_mode = "VPC_NATIVE"
 
+  enable_multi_networking = var.enable_multi_networking
+
   protect_config {
     workload_config {
       audit_mode = var.workload_config_audit_mode
diff --git a/modules/beta-public-cluster/variables.tf b/modules/beta-public-cluster/variables.tf
@@ -466,7 +466,7 @@ variable "shadow_firewall_rules_log_config" {
     metadata = string
   })
   description = "The log_config for shadow firewall rules. You can set this variable to `null` to disable logging."
-  default = {
+  default     = {
     metadata = "INCLUDE_ALL_METADATA"
   }
 }
@@ -551,10 +551,12 @@ variable "database_encryption" {
   description = "Application-layer Secrets Encryption settings. The object format is {state = string, key_name = string}. Valid values of state are: \"ENCRYPTED\"; \"DECRYPTED\". key_name is the name of a CloudKMS key."
   type        = list(object({ state = string, key_name = string }))
 
-  default = [{
-    state    = "DECRYPTED"
-    key_name = ""
-  }]
+  default = [
+    {
+      state    = "DECRYPTED"
+      key_name = ""
+    }
+  ]
 }
 
 variable "enable_shielded_nodes" {
@@ -575,7 +577,9 @@ variable "node_metadata" {
   type        = string
 
   validation {
-    condition     = contains(["GKE_METADATA", "GCE_METADATA", "UNSPECIFIED", "GKE_METADATA_SERVER", "EXPOSE"], var.node_metadata)
+    condition = contains([
+      "GKE_METADATA", "GCE_METADATA", "UNSPECIFIED", "GKE_METADATA_SERVER", "EXPOSE"
+    ], var.node_metadata)
     error_message = "The node_metadata value must be one of GKE_METADATA, GCE_METADATA, UNSPECIFIED, GKE_METADATA_SERVER or EXPOSE."
   }
 }
@@ -710,3 +714,9 @@ variable "enable_identity_service" {
   description = "Enable the Identity Service component, which allows customers to use external identity providers with the K8S API."
   default     = false
 }
+
+variable "enable_multi_networking" {
+  default     = false
+  type        = bool
+  description = "Enable multi NIC support."
+}

Original file line number	Diff line number	Diff line change
`@@ -416,3 +416,9 @@ variable "timeouts" {`
`416`	`416`	`}`
`417`	`417`	`}`
`418`	`418`
	`419`	`+variable "enable_multi_networking" {`
	`420`	`+ default = false`
	`421`	`+ type = bool`
	`422`	`+ description = "Enable multi NIC support."`
	`423`	`+}`
	`424`	`+`
Original file line number	Diff line number	Diff line change
`@@ -386,3 +386,9 @@ variable "timeouts" {`
`386`	`386`	`}`
`387`	`387`	`}`
`388`	`388`
	`389`	`+variable "enable_multi_networking" {`
	`390`	`+ default = false`
	`391`	`+ type = bool`
	`392`	`+ description = "Enable multi NIC support."`
	`393`	`+}`
	`394`	`+`