Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Doc] Added permissions for GCP file events #4415

Merged
merged 5 commits into from
Mar 18, 2025
Merged

[Doc] Added permissions for GCP file events #4415

merged 5 commits into from
Mar 18, 2025

Conversation

borremosch-db
Copy link
Contributor

Changes

Added permissions for GCP file events. As it stands, this is a docs only change, similar to the PR for Azure. I'm wondering if it's possible and/or desirable to wrap the created role into a custom terraform resource as is the case with AWS. Whatever we end up with, I'll need to e2e test this before merging.

Tests

  • make test run locally
  • relevant change in docs/ folder
  • covered with integration tests in internal/acceptance
  • using Go SDK
  • using TF Plugin Framework

@borremosch-db borremosch-db requested review from a team as code owners January 17, 2025 14:11
@borremosch-db borremosch-db requested review from tanmay-db and removed request for a team January 17, 2025 14:11
@borremosch-db borremosch-db force-pushed the add-storage-credential-file-events-permissions-gcp branch from 1e02973 to cd6743d Compare March 11, 2025 13:11
@borremosch-db
Copy link
Contributor Author

@nkvuong I finally had time to e2e test this. I have changed the PR to modify the external location setup instead of the metastore setup. I'll follow up on that later if necessary. Please have another look

@borremosch-db borremosch-db requested a review from nkvuong March 11, 2025 13:25
@borremosch-db borremosch-db changed the title [Feature][WIP] Added permissions for GCP file events [Feature] Added permissions for GCP file events Mar 13, 2025
@nkvuong nkvuong temporarily deployed to test-trigger-is March 13, 2025 14:21 — with GitHub Actions Inactive
@nkvuong nkvuong changed the title [Feature] Added permissions for GCP file events [Doc] Added permissions for GCP file events Mar 13, 2025
@nkvuong
Copy link
Contributor

nkvuong commented Mar 13, 2025

@borremosch-db 2 more things please:

@borremosch-db borremosch-db force-pushed the add-storage-credential-file-events-permissions-gcp branch from 9c4e599 to c8b687b Compare March 13, 2025 16:24
@borremosch-db
Copy link
Contributor Author

@nkvuong you're right, added changelog and the service agent role binding. Please have another look!

@nkvuong nkvuong temporarily deployed to test-trigger-is March 17, 2025 11:24 — with GitHub Actions Inactive
@alexott alexott enabled auto-merge March 17, 2025 11:56
@github-actions GitHub Actions
Copy link

If integration tests don't run automatically, an authorized user can run them manually by following the instructions below:

Trigger:
go/deco-tests-run/terraform

Inputs:

  • PR number: 4415
  • Commit SHA: 0f8a47a83a8401f47d223a63c682af3616bd3722

Checks will be approved automatically on success.

@alexott alexott temporarily deployed to test-trigger-is March 17, 2025 11:57 — with GitHub Actions Inactive
@alexott alexott added this pull request to the merge queue Mar 18, 2025
Merged via the queue into databricks:main with commit 1f5e475 Mar 18, 2025
12 checks passed
deco-sdk-tagging bot added a commit that referenced this pull request Apr 1, 2025
@deco-sdk-tagging
[Release] Release v1.71.0
982b5cb 
## Release v1.71.0

### New Features and Improvements

 * Mark GKE-related fields for `databricks_mws_workspaces` and `databricks_mws_networks` as deprecated([#4531](#4531)).
 * Add support for `CAN_VIEW` permission level in `databricks_permissions`, which can be assigned to `databricks_sql_endpoint` ([#4464](#4464)).
 * Add support for `aws-us-gov-dod` (AWS Govcloud DoD shard) ([#4594](5ac0111))

### Bug Fixes

 * Recreate `databricks_access_control_rule_set` when the `name` changes ([#4572](#4572)).
 * Avoid timeouts during `databricks_mount` state refresh and creation ([#4590](#4590)).

### Documentation

 * Improve documentation for `databricks_access_control_rule_set` ([#4580](#4580)).
 * Correct `first_on_demand` documentation for `aws_attributes` in `databricks_cluster`.
 * Added file events permissions to GCP external location documentation. ([#4415](#4415)).
 * Improve description of `metric` field in `databricks_job` resource [#4595](#4595)

### Exporter

 * Add support for special selectors in `-listing` and `-services` [#4573](#4573)
 * Fix incorrect reference to model serving endpoint [#4588](#4588)
 * Allow the selective export of `databricks_mws_permission_assignment`, and change its service name to `idfed` instead of `access` ([#4571](#4571))
  * Fix panic caused by incorrect values in the cluster policies ([#4585](#4585))

### Internal Changes

* Bump Go SDK version to 0.61.0 ([#4602](#4602))
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nkvuong nkvuong nkvuong approved these changes

@tanmay-db tanmay-db Awaiting requested review from tanmay-db tanmay-db is a code owner automatically assigned from databricks/eng-plat-auto-exp-reviewers

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@borremosch-db @nkvuong @alexott