Memorystore Valkey Multi vpc support (#13355) (#948)

[upstream:a89d9534c8d63aad647030a54bc7fd62dd5935bd]

Signed-off-by: Modular Magician <[email protected]>

Author: modular-magician

memorystore_instance_desired_user_and_auto_created_endpoints/backing_file.tf

@@ -0,0 +1,15 @@
+# This file has some scaffolding to make sure that names are unique and that
+# a region and zone are selected when you try to create your Terraform resources.
+
+locals {
+  name_suffix = "${random_pet.suffix.id}"
+}
+
+resource "random_pet" "suffix" {
+  length = 2
+}
+
+provider "google" {
+  region = "us-central1"
+  zone   = "us-central1-c"
+}

memorystore_instance_desired_user_and_auto_created_endpoints/main.tf

@@ -0,0 +1,110 @@
+resource "google_memorystore_instance_desired_user_created_endpoints" "instance-user-auto-conn" {
+  name                        = "instance-user-auto-conn-${local.name_suffix}"
+  region                      = "us-central1"
+  desired_user_created_endpoints {
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule1_network2.psc_connection_id
+        ip_address            = google_compute_address.ip1_network2.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule1_network2.id
+        network               = google_compute_network.network2.id
+        service_attachment    = google_memorystore_instance.instance-user-auto-conn.psc_attachment_details[0].service_attachment
+     }
+    }
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule2_network2.psc_connection_id
+        ip_address            = google_compute_address.ip2_network2.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule2_network2.id
+        network               = google_compute_network.network2.id
+        service_attachment    = google_memorystore_instance.instance-user-auto-conn.psc_attachment_details[1].service_attachment
+      }
+    }
+  }
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule1_network2" {
+  name                        = "fwd1-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip1_network2.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network2.id
+  target                      = google_memorystore_instance.instance-user-auto-conn.psc_attachment_details[0].service_attachment
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule2_network2" {
+  name                        = "fwd2-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip2_network2.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network2.id
+  target                      = google_memorystore_instance.instance-user-auto-conn.psc_attachment_details[1].service_attachment
+}
+
+resource "google_compute_address" "ip1_network2" {
+  name                        = "ip1-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network2.id
+  address_type                = "INTERNAL"  
+  purpose                     = "GCE_ENDPOINT"
+}
+
+resource "google_compute_address" "ip2_network2" {
+  name                        = "ip2-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network2.id
+  address_type                = "INTERNAL"
+  purpose                     = "GCE_ENDPOINT"
+}
+
+resource "google_compute_subnetwork" "subnet_network2" {
+  name                        = "subnet-net2-${local.name_suffix}"
+  ip_cidr_range               = "10.0.0.248/29"
+  region                      = "us-central1"
+  network                     = google_compute_network.network2.id
+}
+
+resource "google_compute_network" "network2" {
+  name                        = "network2-${local.name_suffix}"
+  auto_create_subnetworks     = false
+}
+
+//valkey instance with endpoints
+resource "google_memorystore_instance" "instance-user-auto-conn" {
+  instance_id                 = "instance-user-auto-conn-${local.name_suffix}"
+  shard_count                 = 1
+  desired_psc_auto_connections {
+    network                   = google_compute_network.network1.id
+    project_id                = data.google_project.project.project_id
+  }
+  location                    = "us-central1"
+  deletion_protection_enabled = false
+  depends_on                  = [google_network_connectivity_service_connection_policy.default]
+
+}
+
+resource "google_network_connectivity_service_connection_policy" "default" {
+  name                        = "scpolicy-${local.name_suffix}"
+  location                    = "us-central1"
+  service_class               = "gcp-memorystore"
+  description                 = "my basic service connection policy"
+  network                     = google_compute_network.network1.id
+  psc_config {
+    subnetworks               = [google_compute_subnetwork.subnet_network1.id]
+  }
+}
+
+resource "google_compute_subnetwork" "subnet_network1" {
+  name                       = "subnet-net1-${local.name_suffix}"
+  ip_cidr_range              = "10.0.0.248/29"
+  region                     = "us-central1"
+  network                    = google_compute_network.network1.id
+}
+
+resource "google_compute_network" "network1" {
+  name                       = "net1-${local.name_suffix}"
+  auto_create_subnetworks    = false
+}
+
+data "google_project" "project" {
+}

memorystore_instance_desired_user_and_auto_created_endpoints/motd

@@ -0,0 +1,7 @@
+===
+
+These examples use real resources that will be billed to the
+Google Cloud Platform project you use - so make sure that you
+run "terraform destroy" before quitting!
+
+===

memorystore_instance_desired_user_and_auto_created_endpoints/tutorial.md

@@ -0,0 +1,79 @@
+# Memorystore Instance Desired User And Auto Created Endpoints - Terraform
+
+## Setup
+
+<walkthrough-author name="[email protected]" analyticsId="UA-125550242-1" tutorialName="memorystore_instance_desired_user_and_auto_created_endpoints" repositoryUrl="https://github.com/terraform-google-modules/docs-examples"></walkthrough-author>
+
+Welcome to Terraform in Google Cloud Shell! We need you to let us know what project you'd like to use with Terraform.
+
+<walkthrough-project-billing-setup></walkthrough-project-billing-setup>
+
+Terraform provisions real GCP resources, so anything you create in this session will be billed against this project.
+
+## Terraforming!
+
+Let's use {{project-id}} with Terraform! Click the Cloud Shell icon below to copy the command
+to your shell, and then run it from the shell by pressing Enter/Return. Terraform will pick up
+the project name from the environment variable.
+
+```bash
+export GOOGLE_CLOUD_PROJECT={{project-id}}
+```
+
+After that, let's get Terraform started. Run the following to pull in the providers.
+
+```bash
+terraform init
+```
+
+With the providers downloaded and a project set, you're ready to use Terraform. Go ahead!
+
+```bash
+terraform apply
+```
+
+Terraform will show you what it plans to do, and prompt you to accept. Type "yes" to accept the plan.
+
+```bash
+yes
+```
+
+
+## Post-Apply
+
+### Editing your config
+
+Now you've provisioned your resources in GCP! If you run a "plan", you should see no changes needed.
+
+```bash
+terraform plan
+```
+
+So let's make a change! Try editing a number, or appending a value to the name in the editor. Then,
+run a 'plan' again.
+
+```bash
+terraform plan
+```
+
+Afterwards you can run an apply, which implicitly does a plan and shows you the intended changes
+at the 'yes' prompt.
+
+```bash
+terraform apply
+```
+
+```bash
+yes
+```
+
+## Cleanup
+
+Run the following to remove the resources Terraform provisioned:
+
+```bash
+terraform destroy
+```
+```bash
+yes
+```

memorystore_instance_desired_user_created_endpoints/backing_file.tf

@@ -0,0 +1,15 @@
+# This file has some scaffolding to make sure that names are unique and that
+# a region and zone are selected when you try to create your Terraform resources.
+
+locals {
+  name_suffix = "${random_pet.suffix.id}"
+}
+
+resource "random_pet" "suffix" {
+  length = 2
+}
+
+provider "google" {
+  region = "us-central1"
+  zone   = "us-central1-c"
+}

memorystore_instance_desired_user_created_endpoints/main.tf

@@ -0,0 +1,148 @@
+resource "google_memorystore_instance_desired_user_created_endpoints" "instance-user-conn" {
+  name                        = "instance-user-conn-${local.name_suffix}"
+  region                      = "us-central1"
+  desired_user_created_endpoints {
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule1_network1.psc_connection_id
+        ip_address            = google_compute_address.ip1_network1.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule1_network1.id
+        network               = google_compute_network.network1.id
+        service_attachment    = google_memorystore_instance.instance-user-conn.psc_attachment_details[0].service_attachment
+      }
+    }
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule2_network1.psc_connection_id
+        ip_address            = google_compute_address.ip2_network1.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule2_network1.id
+        network               = google_compute_network.network1.id
+        service_attachment    = google_memorystore_instance.instance-user-conn.psc_attachment_details[1].service_attachment
+      }
+    }
+  }
+  desired_user_created_endpoints {
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule1_network2.psc_connection_id
+        ip_address            = google_compute_address.ip1_network2.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule1_network2.id
+        network               = google_compute_network.network2.id
+        service_attachment    = google_memorystore_instance.instance-user-conn.psc_attachment_details[0].service_attachment
+      }
+    }
+    connections {
+      psc_connection {
+        psc_connection_id     = google_compute_forwarding_rule.forwarding_rule2_network2.psc_connection_id
+        ip_address            = google_compute_address.ip2_network2.address
+        forwarding_rule       = google_compute_forwarding_rule.forwarding_rule2_network2.id
+        network               = google_compute_network.network2.id
+        service_attachment    = google_memorystore_instance.instance-user-conn.psc_attachment_details[1].service_attachment
+      }
+    }
+  }
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule1_network1" {
+  name                        = "fwd1-net1-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip1_network1.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network1.id
+  target                      = google_memorystore_instance.instance-user-conn.psc_attachment_details[0].service_attachment
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule2_network1" {
+  name                        = "fwd2-net1-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip2_network1.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network1.id
+  target                      = google_memorystore_instance.instance-user-conn.psc_attachment_details[1].service_attachment
+}
+
+resource "google_compute_address" "ip1_network1" {
+  name                        = "ip1-net1-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network1.id
+  address_type                = "INTERNAL"
+  purpose                     = "GCE_ENDPOINT"
+}
+
+resource "google_compute_address" "ip2_network1" {
+  name                        = "ip2-net1-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network1.id
+  address_type                = "INTERNAL"
+  purpose                     = "GCE_ENDPOINT"
+}
+
+resource "google_compute_subnetwork" "subnet_network1" {
+  name                        = "subnet-net1-${local.name_suffix}"
+  ip_cidr_range               = "10.0.0.248/29"
+  region                      = "us-central1"
+  network                     = google_compute_network.network1.id
+}
+
+resource "google_compute_network" "network1" {
+  name                        = "net1-${local.name_suffix}"
+  auto_create_subnetworks     = false
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule1_network2" {
+  name                        = "fwd1-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip1_network2.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network2.id
+  target                      = google_memorystore_instance.instance-user-conn.psc_attachment_details[0].service_attachment
+}
+
+resource "google_compute_forwarding_rule" "forwarding_rule2_network2" {
+  name                        = "fwd2-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  ip_address                  = google_compute_address.ip2_network2.id
+  load_balancing_scheme       = ""
+  network                     = google_compute_network.network2.id
+  target                      = google_memorystore_instance.instance-user-conn.psc_attachment_details[1].service_attachment
+}
+
+resource "google_compute_address" "ip1_network2" {
+  name                        = "ip1-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network2.id
+  address_type                = "INTERNAL"
+  purpose                     = "GCE_ENDPOINT"
+}
+
+resource "google_compute_address" "ip2_network2" {
+  name                        = "ip2-net2-${local.name_suffix}"
+  region                      = "us-central1"
+  subnetwork                  = google_compute_subnetwork.subnet_network2.id
+  address_type                = "INTERNAL"
+  purpose                     = "GCE_ENDPOINT"
+}
+
+//Valkey instance without endpoints
+resource "google_memorystore_instance" "instance-user-conn" {
+  instance_id                 =  "instance-user-conn-${local.name_suffix}"
+  shard_count                 = 1
+  location                    = "us-central1"
+  deletion_protection_enabled = false
+}
+
+resource "google_compute_subnetwork" "subnet_network2" {
+  name                        = "subnet-net2-${local.name_suffix}"
+  ip_cidr_range               = "10.0.0.248/29"
+  region                      = "us-central1"
+  network                     = google_compute_network.network2.id
+}
+
+resource "google_compute_network" "network2" {
+  name                        = "network2-${local.name_suffix}"
+  auto_create_subnetworks     = false
+}
+
+
+data "google_project" "project" {
+}

memorystore_instance_desired_user_created_endpoints/motd

@@ -0,0 +1,7 @@
+===
+
+These examples use real resources that will be billed to the
+Google Cloud Platform project you use - so make sure that you
+run "terraform destroy" before quitting!
+
+===