/** * Copyright 2024 Google LLC * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ # Configure PSC # # Create VPC resource "google_compute_network" "main" { name = "genai-rag-psc-${random_id.id.hex}" auto_create_subnetworks = false project = module.project-services.project_id } # # Create Subnet resource "google_compute_subnetwork" "subnetwork" { name = "genai-rag-psc-subnet-${random_id.id.hex}" ip_cidr_range = "10.2.0.0/16" region = var.region network = google_compute_network.main.id project = module.project-services.project_id } # # Configure IP resource "google_compute_address" "default" { project = module.project-services.project_id name = "psc-compute-address" region = var.region address_type = "INTERNAL" subnetwork = google_compute_subnetwork.subnetwork.id address = "10.2.0.42" } # # Create VPC / PSC forwarding rule resource "google_compute_forwarding_rule" "default" { project = module.project-services.project_id name = "psc-forwarding-rule-${google_sql_database_instance.main[0].name}" region = var.region network = google_compute_network.main.id ip_address = google_compute_address.default.self_link load_balancing_scheme = "" target = google_sql_database_instance.main[0].psc_service_attachment_link } # # Create DNS Zone for PSC resource "google_dns_managed_zone" "psc" { project = module.project-services.project_id name = "${google_sql_database_instance.main[0].name}-${random_id.id.hex}-zone" dns_name = "${google_sql_database_instance.main[0].region}.sql.goog." description = "Regional zone for Cloud SQL PSC instances" visibility = "private" private_visibility_config { networks { network_url = google_compute_network.main.id } } } # # Add SQL DNS record resource "google_dns_record_set" "psc" { project = module.project-services.project_id name = google_sql_database_instance.main[0].dns_name type = "A" ttl = 300 managed_zone = google_dns_managed_zone.psc.name rrdatas = [google_compute_address.default.address] }