add options to enable MD5 authentication in BGP peers

Author: rhariady

modules/interface/README.md

@@ -8,7 +8,7 @@
 | interconnect\_attachment | The name or resource link to the VLAN interconnect for this interface | `string` | `null` | no |
 | ip\_range | IP address and range of the interface | `string` | `null` | no |
 | name | The name of the interface | `string` | n/a | yes |
-| peers | BGP peers for this interface. | <pre>list(object({<br>    name                      = string<br>    peer_ip_address           = string<br>    peer_asn                  = string<br>    advertised_route_priority = optional(number)<br>    bfd = object({<br>      session_initialization_mode = string<br>      min_transmit_interval       = optional(number)<br>      min_receive_interval        = optional(number)<br>      multiplier                  = optional(number)<br>    })<br>  }))</pre> | `[]` | no |
+| peers | BGP peers for this interface. | <pre>list(object({<br>    name                      = string<br>    peer_ip_address           = string<br>    peer_asn                  = string<br>    advertised_route_priority = optional(number)<br>    bfd = object({<br>      session_initialization_mode = string<br>      min_transmit_interval       = optional(number)<br>      min_receive_interval        = optional(number)<br>      multiplier                  = optional(number)<br>    })<br>    md5_authentication_key = object({<br>      name = string<br>      key  = string<br>    })<br>  }))</pre> | `[]` | no |
 | project | The project ID to deploy to | `string` | n/a | yes |
 | region | Region where the interface resides | `string` | n/a | yes |
 | router | Name of the router the interface resides | `string` | n/a | yes |

modules/interface/main.tf

@@ -48,4 +48,12 @@ resource "google_compute_router_peer" "peers" {
       multiplier                  = try(each.value.bfd.multiplier, null)
     }
   }
+
+  dynamic "md5_authentication_key" {
+    for_each = lookup(each.value, "md5_authentication_key", null) == null ? [] : [""]
+    content {
+      name = each.value.md5_authentication_key.name
+      key  = each.value.md5_authentication_key.key
+    }
+  }
 }

modules/interface/variables.tf

@@ -64,6 +64,10 @@ variable "peers" {
       min_receive_interval        = optional(number)
       multiplier                  = optional(number)
     })
+    md5_authentication_key = object({
+      name = string
+      key  = string
+    })
   }))
   description = "BGP peers for this interface."
   default     = []