Add publishToDataplexCatalog action to DiscoveryConfig (#15340)

Author: jlmwise

mmv1/products/dlp/DiscoveryConfig.yaml

@@ -228,7 +228,7 @@ properties:
                 - 'RESOURCE_NAME'
         - name: 'tagResources'
           type: NestedObject
-          description: Publish a message into the Pub/Sub topic.
+          description: Tag the profiled resources with the specified tag values.
           properties:
             - name: 'tagConditions'
               type: Array
@@ -271,6 +271,14 @@ properties:
             - name: 'lowerDataRiskToLow'
               type: Boolean
               description: Whether applying a tag to a resource should lower the risk of the profile for that resource. For example, in conjunction with an [IAM deny policy](https://cloud.google.com/iam/docs/deny-overview), you can deny all principals a permission if a tag value is present, mitigating the risk of the resource. This also lowers the data risk of resources at the lower levels of the resource hierarchy. For example, reducing the data risk of a table data profile also reduces the data risk of the constituent column data profiles.
+        - name: 'publishToDataplexCatalog'
+          type: NestedObject
+          description: Publish a portion of each profile to Dataplex Universal Catalog with the aspect type Sensitive Data Protection Profile.
+          send_empty_value: true
+          allow_empty_object: true
+          properties:
+            # Meant to be an empty object with no properties.
+            []
   - name: 'targets'
     type: Array
     description: Target to match against for determining what to scan and how frequently

mmv1/templates/terraform/examples/dlp_discovery_config_actions.tf.tmpl

@@ -56,6 +56,9 @@ resource "google_data_loss_prevention_discovery_config" "{{$.PrimaryResourceId}}
       lower_data_risk_to_low     = true
     }
   }
+  actions {
+    publish_to_dataplex_catalog {}
+  }
   inspect_templates = ["projects/%{project}/inspectTemplates/${google_data_loss_prevention_inspect_template.basic.name}"]
 }
 

mmv1/third_party/terraform/services/datalossprevention/resource_data_loss_prevention_discovery_config_test.go

@@ -666,7 +666,7 @@ resource "google_data_loss_prevention_discovery_config" "basic" {
 			detail_of_message = "TABLE_PROFILE"
 		}
     }
-	actions {
+    actions {
         tag_resources {
             tag_conditions {
                 tag {
@@ -688,6 +688,9 @@ resource "google_data_loss_prevention_discovery_config" "basic" {
             lower_data_risk_to_low = true
         }
     }
+    actions {
+	publish_to_dataplex_catalog {}
+    }
     inspect_templates = ["projects/%{project}/inspectTemplates/${google_data_loss_prevention_inspect_template.basic.name}"]
 	depends_on = [
 		google_project_iam_member.tag_role,