terraform-google-modules
diff --git a/‎README.md‎
Lines changed: 1 addition & 1 deletion b/‎README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎autogen/main.tf.tmpl‎
Lines changed: 7 additions & 0 deletions b/‎autogen/main.tf.tmpl‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎autogen/variables.tf.tmpl‎
Lines changed: 1 addition & 0 deletions b/‎autogen/variables.tf.tmpl‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎examples/cdn-policy/main.tf‎
Lines changed: 1 addition & 0 deletions b/‎examples/cdn-policy/main.tf‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎main.tf‎
Lines changed: 7 additions & 0 deletions b/‎main.tf‎
Lines changed: 7 additions & 0 deletions
@@ -94,7 +94,7 @@ module "gce-lb-http" {
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
 | address | Existing IPv4 address to use (the actual IP address value) | `string` | `null` | no |
-| backends | Map backend indices to list of backend maps. | <pre>map(object({<br>    port                    = optional(number)<br>    project                 = optional(string)<br>    protocol                = optional(string)<br>    port_name               = optional(string)<br>    description             = optional(string)<br>    enable_cdn              = optional(bool)<br>    compression_mode        = optional(string)<br>    security_policy         = optional(string, null)<br>    edge_security_policy    = optional(string, null)<br>    custom_request_headers  = optional(list(string))<br>    custom_response_headers = optional(list(string))<br><br>    timeout_sec                     = optional(number)<br>    connection_draining_timeout_sec = optional(number)<br>    session_affinity                = optional(string)<br>    affinity_cookie_ttl_sec         = optional(number)<br><br>    health_check = object({<br>      host                = optional(string)<br>      request_path        = optional(string)<br>      request             = optional(string)<br>      response            = optional(string)<br>      port                = optional(number)<br>      port_name           = optional(string)<br>      proxy_header        = optional(string)<br>      port_specification  = optional(string)<br>      protocol            = optional(string)<br>      check_interval_sec  = optional(number)<br>      timeout_sec         = optional(number)<br>      healthy_threshold   = optional(number)<br>      unhealthy_threshold = optional(number)<br>      logging             = optional(bool)<br>    })<br><br>    log_config = object({<br>      enable      = optional(bool)<br>      sample_rate = optional(number)<br>    })<br><br>    groups = list(object({<br>      group = string<br><br>      balancing_mode               = optional(string)<br>      capacity_scaler              = optional(number)<br>      description                  = optional(string)<br>      max_connections              = optional(number)<br>      max_connections_per_instance = optional(number)<br>      max_connections_per_endpoint = optional(number)<br>      max_rate                     = optional(number)<br>      max_rate_per_instance        = optional(number)<br>      max_rate_per_endpoint        = optional(number)<br>      max_utilization              = optional(number)<br>    }))<br>    iap_config = object({<br>      enable               = bool<br>      oauth2_client_id     = optional(string)<br>      oauth2_client_secret = optional(string)<br>    })<br>    cdn_policy = optional(object({<br>      cache_mode                   = optional(string)<br>      signed_url_cache_max_age_sec = optional(string)<br>      default_ttl                  = optional(number)<br>      max_ttl                      = optional(number)<br>      client_ttl                   = optional(number)<br>      negative_caching             = optional(bool)<br>      negative_caching_policy = optional(object({<br>        code = optional(number)<br>        ttl  = optional(number)<br>      }))<br>      serve_while_stale = optional(number)<br>      cache_key_policy = optional(object({<br>        include_host           = optional(bool)<br>        include_protocol       = optional(bool)<br>        include_query_string   = optional(bool)<br>        query_string_blacklist = optional(list(string))<br>        query_string_whitelist = optional(list(string))<br>        include_http_headers   = optional(list(string))<br>        include_named_cookies  = optional(list(string))<br>      }))<br>    }))<br>    outlier_detection = optional(object({<br>      base_ejection_time = optional(object({<br>        seconds = number<br>        nanos   = optional(number)<br>      }))<br>      consecutive_errors                    = optional(number)<br>      consecutive_gateway_failure           = optional(number)<br>      enforcing_consecutive_errors          = optional(number)<br>      enforcing_consecutive_gateway_failure = optional(number)<br>      enforcing_success_rate                = optional(number)<br>      interval = optional(object({<br>        seconds = number<br>        nanos   = optional(number)<br>      }))<br>      max_ejection_percent        = optional(number)<br>      success_rate_minimum_hosts  = optional(number)<br>      success_rate_request_volume = optional(number)<br>      success_rate_stdev_factor   = optional(number)<br>    }))<br>  }))</pre> | n/a | yes |
+| backends | Map backend indices to list of backend maps. | <pre>map(object({<br>    port                    = optional(number)<br>    project                 = optional(string)<br>    protocol                = optional(string)<br>    port_name               = optional(string)<br>    description             = optional(string)<br>    enable_cdn              = optional(bool)<br>    compression_mode        = optional(string)<br>    security_policy         = optional(string, null)<br>    edge_security_policy    = optional(string, null)<br>    custom_request_headers  = optional(list(string))<br>    custom_response_headers = optional(list(string))<br><br>    timeout_sec                     = optional(number)<br>    connection_draining_timeout_sec = optional(number)<br>    session_affinity                = optional(string)<br>    affinity_cookie_ttl_sec         = optional(number)<br><br>    health_check = object({<br>      host                = optional(string)<br>      request_path        = optional(string)<br>      request             = optional(string)<br>      response            = optional(string)<br>      port                = optional(number)<br>      port_name           = optional(string)<br>      proxy_header        = optional(string)<br>      port_specification  = optional(string)<br>      protocol            = optional(string)<br>      check_interval_sec  = optional(number)<br>      timeout_sec         = optional(number)<br>      healthy_threshold   = optional(number)<br>      unhealthy_threshold = optional(number)<br>      logging             = optional(bool)<br>    })<br><br>    log_config = object({<br>      enable      = optional(bool)<br>      sample_rate = optional(number)<br>    })<br><br>    groups = list(object({<br>      group = string<br><br>      balancing_mode               = optional(string)<br>      capacity_scaler              = optional(number)<br>      description                  = optional(string)<br>      max_connections              = optional(number)<br>      max_connections_per_instance = optional(number)<br>      max_connections_per_endpoint = optional(number)<br>      max_rate                     = optional(number)<br>      max_rate_per_instance        = optional(number)<br>      max_rate_per_endpoint        = optional(number)<br>      max_utilization              = optional(number)<br>    }))<br>    iap_config = object({<br>      enable               = bool<br>      oauth2_client_id     = optional(string)<br>      oauth2_client_secret = optional(string)<br>    })<br>    cdn_policy = optional(object({<br>      cache_mode                   = optional(string)<br>      signed_url_cache_max_age_sec = optional(string)<br>      default_ttl                  = optional(number)<br>      max_ttl                      = optional(number)<br>      client_ttl                   = optional(number)<br>      negative_caching             = optional(bool)<br>      negative_caching_policy = optional(object({<br>        code = optional(number)<br>        ttl  = optional(number)<br>      }))<br>      serve_while_stale = optional(number)<br>      cache_key_policy = optional(object({<br>        include_host           = optional(bool)<br>        include_protocol       = optional(bool)<br>        include_query_string   = optional(bool)<br>        query_string_blacklist = optional(list(string))<br>        query_string_whitelist = optional(list(string))<br>        include_http_headers   = optional(list(string))<br>        include_named_cookies  = optional(list(string))<br>      }))<br>      bypass_cache_on_request_headers = optional(list(string))<br>    }))<br>    outlier_detection = optional(object({<br>      base_ejection_time = optional(object({<br>        seconds = number<br>        nanos   = optional(number)<br>      }))<br>      consecutive_errors                    = optional(number)<br>      consecutive_gateway_failure           = optional(number)<br>      enforcing_consecutive_errors          = optional(number)<br>      enforcing_consecutive_gateway_failure = optional(number)<br>      enforcing_success_rate                = optional(number)<br>      interval = optional(object({<br>        seconds = number<br>        nanos   = optional(number)<br>      }))<br>      max_ejection_percent        = optional(number)<br>      success_rate_minimum_hosts  = optional(number)<br>      success_rate_request_volume = optional(number)<br>      success_rate_stdev_factor   = optional(number)<br>    }))<br>  }))</pre> | n/a | yes |
 | certificate | Content of the SSL certificate. Requires `ssl` to be set to `true` and `create_ssl_certificate` set to `true` | `string` | `null` | no |
 | certificate\_map | Certificate Map ID in format projects/{project}/locations/global/certificateMaps/{name}. Identifies a certificate map associated with the given target proxy.  Requires `ssl` to be set to `true` | `string` | `null` | no |
 | create\_address | Create a new global IPv4 address | `bool` | `true` | no |
 
@@ -283,6 +283,13 @@ resource "google_compute_backend_service" "default" {
           include_named_cookies  = each.value.cdn_policy.cache_key_policy.include_named_cookies
         }
       }
+
+      dynamic "bypass_cache_on_request_headers" {
+        for_each = toset(each.value.cdn_policy.bypass_cache_on_request_headers) != null ? each.value.cdn_policy.bypass_cache_on_request_headers : []
+        content {
+          header_name = bypass_cache_on_request_headers.value
+        }
+      }
     }
   }
 
 
@@ -173,6 +173,7 @@ variable "backends" {
         include_http_headers   = optional(list(string))
         include_named_cookies  = optional(list(string))
       }))
+      bypass_cache_on_request_headers = optional(list(string))
     }))
     outlier_detection = optional(object({
       base_ejection_time = optional(object({
 
@@ -116,6 +116,7 @@ module "gce-lb-http" {
           include_query_string  = true
           include_named_cookies = ["__next_preview_data", "__prerender_bypass"]
         }
+        bypass_cache_on_request_headers = ["example-header-1", "example-header-2"]
       }
 
       groups = [
 
@@ -274,6 +274,13 @@ resource "google_compute_backend_service" "default" {
           include_named_cookies  = each.value.cdn_policy.cache_key_policy.include_named_cookies
         }
       }
+
+      dynamic "bypass_cache_on_request_headers" {
+        for_each = toset(each.value.cdn_policy.bypass_cache_on_request_headers) != null ? each.value.cdn_policy.bypass_cache_on_request_headers : []
+        content {
+          header_name = bypass_cache_on_request_headers.value
+        }
+      }
     }
   }
Original file line number	Diff line number	Diff line change
`@@ -283,6 +283,13 @@ resource "google_compute_backend_service" "default" {`
`283`	`283`	`include_named_cookies = each.value.cdn_policy.cache_key_policy.include_named_cookies`
`284`	`284`	`}`
`285`	`285`	`}`
	`286`	`+`
	`287`	`+ dynamic "bypass_cache_on_request_headers" {`
	`288`	`+ for_each = toset(each.value.cdn_policy.bypass_cache_on_request_headers) != null ? each.value.cdn_policy.bypass_cache_on_request_headers : []`
	`289`	`+ content {`
	`290`	`+ header_name = bypass_cache_on_request_headers.value`
	`291`	`+ }`
	`292`	`+ }`
`286`	`293`	`}`
`287`	`294`	`}`
`288`	`295`
Original file line number	Diff line number	Diff line change
`@@ -116,6 +116,7 @@ module "gce-lb-http" {`
`116`	`116`	`include_query_string = true`
`117`	`117`	`include_named_cookies = ["__next_preview_data", "__prerender_bypass"]`
`118`	`118`	`}`
	`119`	`+ bypass_cache_on_request_headers = ["example-header-1", "example-header-2"]`
`119`	`120`	`}`
`120`	`121`
`121`	`122`	`groups = [`
Original file line number	Diff line number	Diff line change
`@@ -274,6 +274,13 @@ resource "google_compute_backend_service" "default" {`
`274`	`274`	`include_named_cookies = each.value.cdn_policy.cache_key_policy.include_named_cookies`
`275`	`275`	`}`
`276`	`276`	`}`
	`277`	`+`
	`278`	`+ dynamic "bypass_cache_on_request_headers" {`
	`279`	`+ for_each = toset(each.value.cdn_policy.bypass_cache_on_request_headers) != null ? each.value.cdn_policy.bypass_cache_on_request_headers : []`
	`280`	`+ content {`
	`281`	`+ header_name = bypass_cache_on_request_headers.value`
	`282`	`+ }`
	`283`	`+ }`
`277`	`284`	`}`
`278`	`285`	`}`
`279`	`286`