You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
|[sysdig_secure_trusted_cloud_identity.trusted_identity](https://registry.terraform.io/providers/sysdiglabs/sysdig/latest/docs/data-sources/secure_trusted_cloud_identity)| data source |
|[sysdig_secure_tenant_external_id](https://registry.terraform.io/providers/sysdiglabs/sysdig/latest/docs/data-sources/secure_tenant_external_id)| data source |
66
+
|[sysdig_secure_cloud_ingestion_assets](https://registry.terraform.io/providers/sysdiglabs/sysdig/latest/docs/data-sources/secure_cloud_ingestion_assets)| data source |
63
67
|[google_project.project](https://registry.terraform.io/providers/hashicorp/google/latest/docs/data-sources/project)| data source |
68
+
|[google_organization.org](https://registry.terraform.io/providers/hashicorp/google/latest/docs/data-sources/organization)| data source |
| <aname="input_ack_deadline_seconds"></a> [ack\_deadline\_seconds](#input\_ack\_deadline\_seconds)| (Optional) Maximum time in seconds after Sysdig's subscriber receives a message before the subscriber should acknowledge the message |`number`|`60`| no |
70
-
| <aname="input_is_organizational"></a> [is\_organizational](#input\_is\_organizational)| (Optional) Set this field to 'true' to deploy secure-for-cloud to a GCP Organization. |`bool`|`false`| no |
71
-
| <aname="input_labels"></a> [labels](#input\_labels)| (Optional) Labels to be associated with Sysdig-originated resources |`map(string)`| <pre>{<br> "originator": "sysdig"<br>}</pre> | no |
72
-
| <aname="input_max_delivery_attempts"></a> [max\_delivery\_attempts](#input\_max\_delivery\_attempts)| (Optional) Number of attempts redelivering missed messages from the deadletter topic to the main one |`number`|`5`| no |
73
-
| <aname="input_maximum_backoff"></a> [maximum\_backoff](#input\_maximum\_backoff)| (Optional) Maximum backoff time for exponential backoff of the push subscription retry policy |`string`|`"600s"`| no |
74
-
| <aname="input_message_retention_duration"></a> [message\_retention\_duration](#input\_message\_retention\_duration)| (Optional) How long unacknowledged messages are retained in Sysdig's subscription backlog, from the moment a message is published |`string`|`"604800s"`| no |
75
-
| <aname="input_minimum_backoff"></a> [minimum\_backoff](#input\_minimum\_backoff)| (Optional) Minimum backoff time for exponential backoff of the push subscription retry policy |`string`|`"10s"`| no |
76
-
| <aname="input_organization_domain"></a> [organization\_domain](#input\_organization\_domain)| Organization domain. e.g. sysdig.com |`string`|`""`| no |
77
-
| <aname="input_project_id"></a> [project\_id](#input\_project\_id)| (Required) Target Project identifier provided by the customer |`string`| n/a | yes |
78
-
| <aname="input_role_name"></a> [role\_name](#input\_role\_name)| (Optional) Role name for custom role binding to the service account, with read permissions for data ingestion resources |`string`|`"SysdigIngestionAuthRole"`| no |
79
-
| <aname="input_suffix"></a> [suffix](#input\_suffix)| (Optional) Suffix to uniquely identify resources during multiple installs. If not provided, random value is autogenerated |`string`|`null`| no |
80
-
| <aname="input_audit_log_config"></a> [audit\_log\_config](#input\_audit\_log\_config)| List of services and their audit log configurations to be ingested. Default is to ingest all logs. | <pre>list(object({<br> service = string,<br> log_config = list(object({<br> log_type = string,<br> exempted_members = optional(list(string))<br> }))<br> }))</pre> | <pre>[<br> {<br> "log_config": [<br> {<br> "log_type": "ADMIN_READ"<br> },<br> {<br> "log_type": "DATA_READ"<br> },<br> {<br> "log_type": "DATA_WRITE"<br> }<br> ],<br> "service": "allServices"<br> }<br>]</pre> | no |
81
-
| <aname="ingestion_sink_filter"></a> [ingestion\_sink\_filter](#input\_ingestion\_sink\_filter)| Filter the Sink is set up with. Ingests AuditLogs by default. |`string`|`protoPayload.@type = "type.googleapis.com/google.cloud.audit.AuditLog"`| no |
82
-
| <aname="input_exclude_logs_filter"></a> [exclude\_logs\_filter](#input\_exclude\_logs\_filter)| Filter to exclude logs from ingestion. Default is to ingest all google.cloud.audit.AuditLog logs. with no exclusions. | <pre>list(object({<br> name = string,<br> description = optional(string),<br> filter = string,<br> disabled = optional(bool)<br> }))</pre> |`[]`| no |
77
+
| Name | Description | Type | Default | Required |
| <aname="input_ack_deadline_seconds"></a> [ack\_deadline\_seconds](#input\_ack\_deadline\_seconds)| (Optional) Maximum time in seconds after Sysdig's subscriber receives a message before the subscriber should acknowledge the message |`number`|`60`| no |
80
+
| <aname="input_is_organizational"></a> [is\_organizational](#input\_is\_organizational)| (Optional) Set this field to 'true' to deploy secure-for-cloud to a GCP Organization. |`bool`|`false`| no |
81
+
| <aname="input_labels"></a> [labels](#input\_labels)| (Optional) Labels to be associated with Sysdig-originated resources |`map(string)`| <pre>{<br> "originator": "sysdig"<br>}</pre> | no |
82
+
| <aname="input_max_delivery_attempts"></a> [max\_delivery\_attempts](#input\_max\_delivery\_attempts)| (Optional) Number of attempts redelivering missed messages from the deadletter topic to the main one |`number`|`5`| no |
83
+
| <aname="input_maximum_backoff"></a> [maximum\_backoff](#input\_maximum\_backoff)| (Optional) Maximum backoff time for exponential backoff of the push subscription retry policy |`string`|`"600s"`| no |
84
+
| <aname="input_message_retention_duration"></a> [message\_retention\_duration](#input\_message\_retention\_duration)| (Optional) How long unacknowledged messages are retained in Sysdig's subscription backlog, from the moment a message is published |`string`|`"604800s"`| no |
85
+
| <aname="input_minimum_backoff"></a> [minimum\_backoff](#input\_minimum\_backoff)| (Optional) Minimum backoff time for exponential backoff of the push subscription retry policy |`string`|`"10s"`| no |
86
+
| <aname="input_organization_domain"></a> [organization\_domain](#input\_organization\_domain)| Organization domain. e.g. sysdig.com |`string`|`""`| no |
87
+
| <aname="input_project_id"></a> [project\_id](#input\_project\_id)| (Required) Target Project identifier provided by the customer |`string`| n/a | yes |
88
+
| <aname="input_role_name"></a> [role\_name](#input\_role\_name)| (Optional) Role name for custom role binding to the service account, with read permissions for data ingestion resources |`string`|`"SysdigIngestionAuthRole"`| no |
89
+
| <aname="input_suffix"></a> [suffix](#input\_suffix)| (Optional) Suffix to uniquely identify resources during multiple installs. If not provided, random value is autogenerated |`string`|`null`| no |
90
+
| <aname="input_audit_log_config"></a> [audit\_log\_config](#input\_audit\_log\_config)| List of services and their audit log configurations to be ingested. Default is to ingest all logs. | <pre>list(object({<br> service = string,<br> log_config = list(object({<br> log_type = string,<br> exempted_members = optional(list(string))<br> }))<br> }))</pre> | <pre>[<br> {<br> "log_config": [<br> {<br> "log_type": "ADMIN_READ"<br> },<br> {<br> "log_type": "DATA_READ"<br> },<br> {<br> "log_type": "DATA_WRITE"<br> }<br> ],<br> "service": "allServices"<br> }<br>]</pre> | no |
91
+
| <aname="ingestion_sink_filter"></a> [ingestion\_sink\_filter](#input\_ingestion\_sink\_filter)| Filter the Sink is set up with. Ingests AuditLogs by default. |`string`|`protoPayload.@type = "type.googleapis.com/google.cloud.audit.AuditLog"`| no |
92
+
| <aname="input_exclude_logs_filter"></a> [exclude\_logs\_filter](#input\_exclude\_logs\_filter)| Filter to exclude logs from ingestion. Default is to ingest all google.cloud.audit.AuditLog logs. with no exclusions. | <pre>list(object({<br> name = string,<br> description = optional(string),<br> filter = string,<br> disabled = optional(bool)<br> }))</pre> |`[]`| no |
93
+
| <aname="input_sysdig_secure_account_id"></a> [sysdig\_secure\_account\_id](#input\_sysdig\_secure\_account\_id)| ID of the Sysdig Cloud Account to enable Event Bridge integration for (incase of organization, ID of the Sysdig management account) |`string`|`""`| no |
0 commit comments