feat(vertexai): Make it possible to use Private Service Connect in Vertex AI Index Endpoint #8851
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -53,14 +53,18 @@ examples: | |
| network_name: "network-name" | ||
| test_vars_overrides: | ||
| network_name: 'acctest.BootstrapSharedTestNetwork(t, "vertex-ai-index-endpoint")' | ||
| - !ruby/object:Provider::Terraform::Examples | ||
| name: "vertex_ai_index_endpoint_with_psc" | ||
| primary_resource_id: "index_endpoint" | ||
| test_vars_overrides: | ||
| network_name: 'acctest.BootstrapSharedTestNetwork(t, "vertex-ai-index-endpoint")' | ||
| parameters: | ||
| - !ruby/object:Api::Type::String | ||
| name: region | ||
| description: The region of the index endpoint. eg us-central1 | ||
| url_param_only: true | ||
| immutable: true | ||
| properties: | ||
|
There was a problem hiding this comment. Any reason we're removing this comment? There was a problem hiding this comment. Ah, I initially defined |
||
| - !ruby/object:Api::Type::String | ||
| name: 'name' | ||
| description: The resource name of the Index. | ||
|
|
@@ -97,3 +101,47 @@ properties: | |
| [Format](https://cloud.google.com/compute/docs/reference/rest/v1/networks/insert): `projects/{project}/global/networks/{network}`. | ||
| Where `{project}` is a project number, as in `12345`, and `{network}` is network name. | ||
| immutable: true | ||
| - !ruby/object:Api::Type::NestedObject | ||
| name: privateServiceConnectConfig | ||
|
There was a problem hiding this comment. We'll likely need to have There was a problem hiding this comment. I added it in f3aecd4. |
||
| immutable: true | ||
| description: |- | ||
| Optional. Configuration for private service connect. `network` and `privateServiceConnectConfig` are mutually exclusive. | ||
shotarok marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| properties: | ||
| - !ruby/object:Api::Type::Boolean | ||
| name: enablePrivateServiceConnect | ||
| description: If set to true, the IndexEndpoint is created without private service access. | ||
| - !ruby/object:Api::Type::Array | ||
| name: projectAllowlist | ||
| description: A list of Projects from which the forwarding rule will target the service attachment. | ||
| item_type: Api::Type::String | ||
|
There was a problem hiding this comment. Are these two subfields also immutable? If so, I think we need to add immutable as well. If not, it's be nice that we add an update test on it. Plus, can we make at least one of the subfields required. We 'd try to avoid users from sending empty object. There was a problem hiding this comment. The subfields were immutable although I tested a PATCH request. Based on your advice, I added |
||
| - !ruby/object:Api::Type::Array | ||
| name: deployedIndexes | ||
| description: Output only. The indexes deployed in this endpoint. | ||
| output: true | ||
| item_type: !ruby/object:Api::Type::NestedObject | ||
| properties: | ||
| - !ruby/object:Api::Type::String | ||
| name: id | ||
| output: true | ||
| description: The user specified ID of the DeployedIndex. The ID can be up to 128 characters long and must start with a letter and only contain letters, numbers, and underscores. | ||
| - !ruby/object:Api::Type::String | ||
| name: index | ||
| output: true | ||
| description: The name of the Index this is the deployment of. We may refer to this Index as the DeployedIndex's "original" Index. | ||
| - !ruby/object:Api::Type::String | ||
| name: displayName | ||
| output: true | ||
| description: The display name of the DeployedIndex. If not provided upon creation, the Index's displayName is used. | ||
| - !ruby/object:Api::Type::NestedObject | ||
| name: privateEndpoints | ||
| output: true | ||
| description: Provides paths for users to send requests directly to the deployed index services running on Cloud via private services access. | ||
| properties: | ||
| - !ruby/object:Api::Type::String | ||
| name: matchGrpcAddress | ||
| output: true | ||
| description: The ip address used to send match gRPC requests. | ||
| - !ruby/object:Api::Type::String | ||
| name: serviceAttachment | ||
| output: true | ||
| description: The name of the service attachment resource. Populated if private service connect is enabled. | ||
shotarok marked this conversation as resolved.
Show resolved
Hide resolved
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,17 @@ | ||
| resource "google_vertex_ai_index_endpoint" "<%= ctx[:primary_resource_id] %>" { | ||
| display_name = "sample-endpoint" | ||
| description = "A sample vertex endpoint" | ||
| region = "us-central1" | ||
| labels = { | ||
| label-one = "value-one" | ||
| } | ||
|
|
||
| private_service_connect_config { | ||
| enable_private_service_connect = true | ||
| project_allowlist = [ | ||
| data.google_project.project.number, | ||
| ] | ||
| } | ||
| } | ||
|
|
||
| data "google_project" "project" {} |
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It doesn't look like that
network_nameis being used anywhere in the test. Feel free to remove it if it's not neededThere was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I confirmed an acceptance test succeeded after removing it. Therefore, I've deleted it in 1a0f1ea.