feat(bigquery): Add example for creating an authorized view

[ccarpentiere]

Description

Fixes b/361168902

Note: If you are not associated with Google, open an issue for discussion before submitting a pull request.

Checklist

Readiness

• Yes, merge this PR after it is approved
• No, don't merge this PR after it is approved

Style

• My sample follows the rules described for Terraform in the Effective Samples style guide
• My sample follows the other requirements and best practices in the Contributing
  guide

Testing

• I have performed tests described in the Contributing guide:

  • Tests pass: terraform apply
  • Lint pass: terraform fmt check

Intended location

• Yes, this sample will be (or already is) included on cloud.google.com
  Location(s): https://cloud.google.com/bigquery/docs/create-authorized-views

• No, this sample won't be included on cloud.google.com
  Reason:

API enablement

• If the sample needs an API enabled to pass testing, I have added the service to the Test setup file

Review

• If this sample adds a new directory, I have added codeowners to the CODEOWNERS file

[snippet-bot]

Here is the summary of changes.

You are about to add 1 region tag.

• bigquery/bigquery_authorized_view_tutorial/main.tf:18, tag bigquery_authorized_view_tutorial

---

This comment is generated by snippet-bot.
If you find problems with this result, please file an issue at:
https://github.com/googleapis/repo-automation-bots/issues.
To update this comment, add snippet-bot:force-run label or use the checkbox below:

• Refresh this comment

[wj-chen]

nit: can remove this empty line

[wj-chen]

Since e.g. project and dataset_id accesses google_bigquery_dataset.default directly, Terraform can infer the dependency and we don't need depends_on explicitly, see https://developer.hashicorp.com/terraform/language/meta-arguments/depends_on.

Same in the other places in this example.

[wj-chen]

google_bigquery_table.default.table_id

[wj-chen]

google_bigquery_table.default.dataset_id

[glasnt]

Some nits, but some blockers.

[glasnt]

These comments can be useful, and if you want to keep the, I would suggest using single-line comments to reduce the lines of the demo, to make it more accessible/visible on the tutorial page.

If you want to present each resource in a different block in the codes, you can use region tags around each block.

Suggested change

	/*
	Create a dataset to contain the authorized view.
	*/
	# Create a dataset to contain the authorized view.

[ccarpentiere]

Changed in latest commit.

[glasnt]

Since this sample is not being tested, remove this line and ensure the configuration is production ready. Deletion protection is true by default

Suggested change

deletion_protection = false # set to "true" in production

[ccarpentiere]

Changed in latest commit.

[glasnt]

Query: is the dataset "authdataset", or "movie_dataset"? You're assigning dataset access to a different dataset later int his sample.

You can reference google_bigquery_dataset.default.dataset_id in other resources to ensure a consistent name.

It's helpful to clearly show which is the original dataset and which is the authorised view of the data with clear names (unsure what "movies" is in this context. )

[ccarpentiere]

I re-named the resources for clarity and tested again to make sure it works.