Skip to content
/ bqpubauditsink-tofu Public

A module for OpenTofu that deploys bqpubauditsink to GCP Cloud Run, along with configuring essential services including the Pub/Sub subscription and BigQuery dataset and table.

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

UnitVectorY-Labs/bqpubauditsink-tofu

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
.github
.github
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

Repository files navigation

License Work In Progress

bqpubauditsink-tofu

A module for OpenTofu that deploys bqpubauditsink to GCP Cloud Run, along with configuring essential services including the Pub/Sub subscription and BigQuery dataset and table.

References

  • firepubauditsource - Publishes Firestore data changes to Pub/Sub as JSON audit records for downstream processing.
  • firepubauditsource-tofu - A module for OpenTofu that deploys firepubauditsource to GCP Cloud Run, along with configuring essential services including Eventarc for Firestore and Pub/Sub.
  • bqpubauditsink - Ingests Pub/Sub audit JSON events and inserts the records into BigQuery.
  • bqpubauditsink-tofu - A module for OpenTofu that deploys bqpubauditsink to GCP Cloud Run, along with configuring essential services including the Pub/Sub subscription and BigQuery dataset and table.

Usage

module "bqpubauditsink" {
    source = "git::https://github.com/UnitVectorY-Labs/bqpubauditsink-tofu.git?ref=main"
    name                         = "bqpub"
    project_id                   = var.project_id
    region                       = var.region
    artifact_registry_host       = "us-docker.pkg.dev"
    artifact_registry_name       = "ghcr"
    artifact_registry_project_id = var.project_id
    pubsub_topic                 = "fpas-firepub"
}

Requirements

Name Version
terraform >= 1.0.0

Providers

Name Version
google n/a

Modules

No modules.

Resources

Name Type
google_bigquery_dataset.dataset resource
google_bigquery_table.table resource
google_bigquery_table_iam_member.member resource
google_cloud_run_service_iam_member.invoke_permission resource
google_cloud_run_v2_service.bqpubauditsink resource
google_project_service.eventarc resource
google_project_service.firestore resource
google_project_service.pubsub resource
google_project_service.run resource
google_pubsub_subscription.pubsub_subscription resource
google_service_account.cloud_run_sa resource
google_service_account.eventarc_sa resource

Inputs

Name Description Type Default Required
artifact_registry_host The name of the Artifact Registry repository string "us-docker.pkg.dev" no
artifact_registry_name The name of the Artifact Registry repository string n/a yes
artifact_registry_project_id The project to use for Artifact Registry. Will default to the project_id if not set. string null no
bqpubauditsink_tag The tag for the bqpubauditsink image to deploy string "dev" no
name The name of the application (used for Cloud Run, Subscription, and BigQuery dataset/table) string n/a yes
project_id The GCP project id string n/a yes
pubsub_topic The Firestore database to monitor for changes string n/a yes
region The GCP region to deploy resources to string n/a yes

Outputs

No outputs.

About

A module for OpenTofu that deploys bqpubauditsink to GCP Cloud Run, along with configuring essential services including the Pub/Sub subscription and BigQuery dataset and table.

Topics

gcp tofu gcp-pubsub gcp-bigquery

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages