2.9 KiB
layout | page_title | sidebar_current | description |
---|---|---|---|
Provider: Google Cloud | docs-google-index | The Google Cloud provider is used to interact with Google Cloud services. The provider needs to be configured with the proper credentials before it can be used. |
Google Cloud Provider
The Google Cloud provider is used to interact with Google Cloud services. The provider needs to be configured with the proper credentials before it can be used.
Use the navigation to the left to read about the available resources.
Example Usage
# Configure the Google Cloud provider
provider "google" {
credentials = "${file("account.json")}"
project = "my-gce-project"
region = "us-central1"
}
# Create a new instance
resource "google_compute_instance" "default" {
...
}
Configuration Reference
The following keys can be used to configure the provider.
-
credentials
- (Optional) Contents of the JSON file used to describe your account credentials, downloaded from Google Cloud Console. More details on retrieving this file are below. Credentials may be blank if you are running Terraform from a GCE instance with a properly-configured Compute Engine Service Account. This can also be specified with theGOOGLE_CREDENTIALS
shell environment variable. -
project
- (Required) The ID of the project to apply any resources to. This can also be specified with theGOOGLE_PROJECT
shell environment variable. -
region
- (Required) The region to operate under. This can also be specified with theGOOGLE_REGION
shell environment variable.
The following keys are supported for backwards compatibility, and may be removed in a future version:
account_file
- Deprecated: please usecredentials
instead. Path to or contents of the JSON file used to describe your account credentials, downloaded from Google Cloud Console. More details on retrieving this file are below. Theaccount file
can be "" if you are running terraform from a GCE instance with a properly-configured Compute Engine Service Account. This can also be specified with theGOOGLE_ACCOUNT_FILE
shell environment variable.
Authentication JSON File
Authenticating with Google Cloud services requires a JSON file which we call the account file.
This file is downloaded directly from the Google Developers Console. To make the process more straightforwarded, it is documented here:
-
Log into the Google Developers Console and select a project.
-
Under the "APIs & Auth" section, click "Credentials."
-
Create a new OAuth client ID and select "Service account" as the type of account. Once created, and after a P12 key is downloaded, a JSON file should be downloaded. This is your account file.