Adds support for Public Access Prevention #10670
Conversation
|
If this looks good I'll probably need some guidance getting it applied correctly. From a preliminary reading it sounds like I should be modifying this file instead: and renaming that to |
|
Great, thanks. Do you want me to start on a PR in that |
|
taking a look now ~ thanks for your patience |
| cfg := &storage.BucketIamConfiguration{ | ||
| ForceSendFields: []string{"UniformBucketLevelAccess"}, | ||
| UniformBucketLevelAccess: &storage.BucketIamConfigurationUniformBucketLevelAccess{ | ||
| Enabled: d.Get("uniform_bucket_level_access").(bool), | ||
| ForceSendFields: []string{"Enabled"}, | ||
| }, | ||
| } |
There was a problem hiding this comment.
This is changing existing behavior... we should craft the object manually so that we only configure the object with these properties if UniformBucketLevelAccess is present on the config. I recommend checking uniform_bucket_level_access and configuring it appropriately.
There was a problem hiding this comment.
Isn't that what the code currently does at L592? expandIamConfiguration is only called if:
if d.HasChange("uniform_bucket_level_access") || d.HasChange("public_access_prevention") {
sb.IamConfiguration = expandIamConfiguration(d)
}This check was already there, I added the test for public_access_prevention.
The tests look promising locally, although the CI/CD workflow looks like it still needs approval. I'll prepare the upstream changes now.
There was a problem hiding this comment.
Raised GoogleCloudPlatform/magic-modules#5519 and tagged you there. Thanks!
|
I've requested the relevant changes and expanded on my requests there... closing this pr as it is superseded by the new one. |
|
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. |
No description provided.