Add Terraform support for GCS in Global Internal Load Balancers (#14679)

SCSAndre · Samir-Cit · NickElliot · web-flow · commit b363509c8de7 · 2025-08-26T20:09:53.000Z
Co-authored-by: samir-cit &lt;samir@ciandt.com&gt;
Co-authored-by: Nick Elliot &lt;nickelliot@google.com&gt;
diff --git a/mmv1/products/compute/BackendBucket.yaml b/mmv1/products/compute/BackendBucket.yaml
@@ -115,6 +115,7 @@ examples:
       backend_bucket_name: 'global-ilb-backend-bucket'
       bucket_name: 'global-ilb-bucket'
     exclude_docs: true
+    skip_vcr: true
 parameters:
 properties:
   - name: 'bucketName'
@@ -273,7 +274,9 @@ properties:
       client when the resource is created.
   - name: 'enableCdn'
     type: Boolean
-    description: 'If true, enable Cloud CDN for this BackendBucket.'
+    description: |
+      If true, enable Cloud CDN for this BackendBucket.
+      Note: This cannot be set to true when loadBalancingScheme is set to INTERNAL_MANAGED.
     include_empty_value_in_cai: true
   - name: 'name'
     type: String
@@ -295,6 +298,7 @@ properties:
     description: |
       The value can only be INTERNAL_MANAGED for cross-region internal layer 7 load balancer.
       If loadBalancingScheme is not specified, the backend bucket can be used by classic global external load balancers, or global application external load balancers, or both.
+      Important: CDN cannot be enabled (enableCdn cannot be set to true) when loadBalancingScheme is set to INTERNAL_MANAGED.
     enum_values:
       - 'INTERNAL_MANAGED'
     send_empty_value: true
diff --git a/mmv1/templates/terraform/examples/backend_bucket_global_ilb.tf.tmpl b/mmv1/templates/terraform/examples/backend_bucket_global_ilb.tf.tmpl
@@ -1,3 +1,7 @@
+# Note: This example must be run in a project without Cloud Armor tier configured,
+# as it may cause conflicts with the INTERNAL_MANAGED load balancing scheme.
+# This test is skipped in VCR mode due to non-determinism in project creation and resource management.
+
 resource "google_project" "unarmored" {
   project_id      = "tf-test%{random_suffix}"
   name            = "tf-test%{random_suffix}"
@@ -14,7 +18,7 @@ resource "google_project_service" "project" {
 
 resource "google_compute_backend_bucket" "{{$.PrimaryResourceId}}" {
   name                  = "{{index $.Vars "backend_bucket_name"}}"
-  project               = google_project.unarmored.name
+  project               = google_project.unarmored.number
   bucket_name           = google_storage_bucket.{{$.PrimaryResourceId}}.name
   load_balancing_scheme = "INTERNAL_MANAGED"
 
