feat: support create vpc if not specified

Author: shanewxy

README.md

@@ -49,6 +49,9 @@ No modules.
 
 | Name | Type |
 |------|------|
+| [google_compute_global_address.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_global_address) | resource |
+| [google_compute_network.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_network) | resource |
+| [google_service_networking_connection.default](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_networking_connection) | resource |
 | [google_sql_database.database](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/sql_database) | resource |
 | [google_sql_database_instance.primary](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/sql_database_instance) | resource |
 | [google_sql_database_instance.secondary](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/sql_database_instance) | resource |
@@ -64,7 +67,7 @@ No modules.
 | <a name="input_context"></a> [context](#input\_context) | Receive contextual information. When Walrus deploys, Walrus will inject specific contextual information into this field.<br><br>Examples:<pre>context:<br>  project:<br>    name: string<br>    id: string<br>  environment:<br>    name: string<br>    id: string<br>  resource:<br>    name: string<br>    id: string</pre> | `map(any)` | `{}` | no |
 | <a name="input_database"></a> [database](#input\_database) | Specify the database name. The database name must be 1-60 characters long and start with any lower letter, combined with number, or symbols: - \_.<br>The database name cannot be PostgreSQL forbidden keyword. | `string` | `"mydb"` | no |
 | <a name="input_engine_version"></a> [engine\_version](#input\_engine\_version) | Specify the deployment engine version, select from https://cloud.google.com/sql/docs/db-versions. | `string` | `"15.0"` | no |
-| <a name="input_infrastructure"></a> [infrastructure](#input\_infrastructure) | Specify the infrastructure information for deploying.<br><br>Examples:<pre>infrastructure:<br>  vpc_id: string                  # the ID of the VPC where the PostgreSQL service applies. It is a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.</pre> | <pre>object({<br>    vpc_id = string<br>  })</pre> | n/a | yes |
+| <a name="input_infrastructure"></a> [infrastructure](#input\_infrastructure) | Specify the infrastructure information for deploying.<br><br>Examples:<pre>infrastructure:<br>  vpc_id: string, optional                  # the ID of the VPC where the PostgreSQL service applies. It is a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.</pre> | <pre>object({<br>    vpc_id = optional(string)<br>  })</pre> | `{}` | no |
 | <a name="input_password"></a> [password](#input\_password) | Specify the account password. The password must be 8-128 characters long and start with any letter, number, or symbols: ! # $ % ^ & * ( ) \_ + - =.<br>If not specified, it will generate a random password. | `string` | `null` | no |
 | <a name="input_replication_readonly_replicas"></a> [replication\_readonly\_replicas](#input\_replication\_readonly\_replicas) | Specify the number of read-only replicas under the replication deployment. | `number` | `1` | no |
 | <a name="input_resources"></a> [resources](#input\_resources) | Specify the computing resources.<br>The computing resource design of Google Cloud is very complex, it also needs to consider on the storage resource, please view the specification document for more information.<br><br>Examples:<pre>resources:<br>  class: string, optional            # https://cloud.google.com/sql/docs/postgres/instance-settings</pre> | <pre>object({<br>    class = optional(string, "db-f1-micro")<br>  })</pre> | <pre>{<br>  "class": "db-f1-micro"<br>}</pre> | no |

examples/replication/README.md

@@ -17,9 +17,7 @@ $ terraform apply -auto-approve
 
 ## Providers
 
-| Name | Version |
-|------|---------|
-| <a name="provider_google"></a> [google](#provider\_google) | >= 3.5.0 |
+No providers.
 
 ## Modules
 
@@ -29,12 +27,7 @@ $ terraform apply -auto-approve
 
 ## Resources
 
-| Name | Type |
-|------|------|
-| [google_compute_firewall.private_network_firewall](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_firewall) | resource |
-| [google_compute_global_address.private_ip_address](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_global_address) | resource |
-| [google_compute_network.private_network](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_network) | resource |
-| [google_service_networking_connection.private_vpc_connection](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_networking_connection) | resource |
+No resources.
 
 ## Inputs
 

examples/replication/main.tf

@@ -16,54 +16,16 @@ terraform {
 provider "google" {
 }
 
-// create network.
-resource "google_compute_network" "private_network" {
-  name = "private-network"
-}
-
-resource "google_compute_firewall" "private_network_firewall" {
-  name    = "private-network-firewall-policy"
-  network = google_compute_network.private_network.id
-  allow {
-    protocol = "tcp"
-    ports    = ["22"]
-  }
-
-  source_ranges = ["0.0.0.0/0"]
-
-  depends_on = [google_compute_network.private_network]
-}
-
-resource "google_compute_global_address" "private_ip_address" {
-  name          = "private-ip-address"
-  purpose       = "VPC_PEERING"
-  address_type  = "INTERNAL"
-  prefix_length = 16
-  network       = google_compute_network.private_network.id
-}
-
-// create private vpc connection.
-resource "google_service_networking_connection" "private_vpc_connection" {
-  network                 = google_compute_network.private_network.id
-  service                 = "servicenetworking.googleapis.com"
-  reserved_peering_ranges = [google_compute_global_address.private_ip_address.name]
-  deletion_policy         = "ABANDON"
-}
-
 # create postgresql service.
 
 module "this" {
   source = "../.."
 
-  infrastructure = {
-    vpc_id = google_compute_network.private_network.id
-  }
-
   architecture = "replication"
   database     = "mydb"
   username     = "rdsuser"
 
-  depends_on = [google_service_networking_connection.private_vpc_connection]
+  replication_readonly_replicas = 3
 }
 
 output "context" {

examples/standalone/README.md

@@ -3,6 +3,14 @@
 Deploy PostgreSQL service in standalone architecture by root moudle.
 
 ```bash
+# setup infrastructure
+$ terraform apply -auto-approve \
+  -target=google_compute_network.example \
+  -target=google_compute_firewall.example \
+  -target=google_compute_global_address.example \
+  -target=google_service_networking_connection.example
+  
+# create service
 $ terraform apply -auto-approve
 ```
 
@@ -31,10 +39,10 @@ $ terraform apply -auto-approve
 
 | Name | Type |
 |------|------|
-| [google_compute_firewall.private_network_firewall](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_firewall) | resource |
-| [google_compute_global_address.private_ip_address](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_global_address) | resource |
-| [google_compute_network.private_network](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_network) | resource |
-| [google_service_networking_connection.private_vpc_connection](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_networking_connection) | resource |
+| [google_compute_firewall.example](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_firewall) | resource |
+| [google_compute_global_address.example](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_global_address) | resource |
+| [google_compute_network.example](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_network) | resource |
+| [google_service_networking_connection.example](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/service_networking_connection) | resource |
 
 ## Inputs
 

examples/standalone/main.tf

@@ -16,37 +16,37 @@ terraform {
 provider "google" {
 }
 
-// create network.
-resource "google_compute_network" "private_network" {
+# create network.
+resource "google_compute_network" "example" {
   name = "private-network"
 }
 
-resource "google_compute_firewall" "private_network_firewall" {
+resource "google_compute_firewall" "example" {
   name    = "private-network-firewall-policy"
-  network = google_compute_network.private_network.id
+  network = google_compute_network.example.id
   allow {
     protocol = "tcp"
     ports    = ["22"]
   }
 
   source_ranges = ["0.0.0.0/0"]
 
-  depends_on = [google_compute_network.private_network]
+  depends_on = [google_compute_network.example]
 }
 
-resource "google_compute_global_address" "private_ip_address" {
+resource "google_compute_global_address" "example" {
   name          = "private-ip-address"
   purpose       = "VPC_PEERING"
   address_type  = "INTERNAL"
   prefix_length = 16
-  network       = google_compute_network.private_network.id
+  network       = google_compute_network.example.id
 }
 
-// create private vpc connection.
-resource "google_service_networking_connection" "private_vpc_connection" {
-  network                 = google_compute_network.private_network.id
+# create private vpc connection.
+resource "google_service_networking_connection" "example" {
+  network                 = google_compute_network.example.id
   service                 = "servicenetworking.googleapis.com"
-  reserved_peering_ranges = [google_compute_global_address.private_ip_address.name]
+  reserved_peering_ranges = [google_compute_global_address.example.name]
   deletion_policy         = "ABANDON"
 }
 
@@ -57,14 +57,14 @@ module "this" {
   source = "../.."
 
   infrastructure = {
-    vpc_id = google_compute_network.private_network.id
+    vpc_id = google_compute_network.example.id
   }
 
   architecture = "standalone"
   database     = "mydb"
   username     = "rdsuser"
 
-  depends_on = [google_service_networking_connection.private_vpc_connection]
+  depends_on = [google_service_networking_connection.example]
 }
 
 output "context" {

main.tf

@@ -35,6 +35,33 @@ locals {
   }, var.engine_version, "POSTGRES_15")
 }
 
+# create network.
+resource "google_compute_network" "default" {
+  count = var.infrastructure.vpc_id == null ? 1 : 0
+
+  name = "default-vpc"
+}
+
+resource "google_compute_global_address" "default" {
+  count = var.infrastructure.vpc_id == null ? 1 : 0
+
+  name          = "default"
+  purpose       = "VPC_PEERING"
+  address_type  = "INTERNAL"
+  prefix_length = 16
+  network       = google_compute_network.default[0].id
+}
+
+# create private vpc connection.
+resource "google_service_networking_connection" "default" {
+  count = var.infrastructure.vpc_id == null ? 1 : 0
+
+  network                 = google_compute_network.default[0].id
+  service                 = "servicenetworking.googleapis.com"
+  reserved_peering_ranges = [google_compute_global_address.default[0].name]
+  deletion_policy         = "ABANDON"
+}
+
 #
 # Random
 #
@@ -86,7 +113,7 @@ resource "google_sql_database_instance" "primary" {
     #tfsec:ignore:google-sql-encrypt-in-transit-data
     ip_configuration {
       ipv4_enabled    = false
-      private_network = var.infrastructure.vpc_id
+      private_network = var.infrastructure.vpc_id == null ? google_compute_network.default[0].id : var.infrastructure.vpc_id
     }
 
     backup_configuration {
@@ -112,7 +139,7 @@ resource "google_sql_database_instance" "secondary" {
     #tfsec:ignore:google-sql-encrypt-in-transit-data
     ip_configuration {
       ipv4_enabled    = false
-      private_network = var.infrastructure.vpc_id
+      private_network = var.infrastructure.vpc_id == null ? google_compute_network.default[0].id : var.infrastructure.vpc_id
     }
   }
 

schema.yaml

@@ -5,27 +5,18 @@ components:
   schemas:
     variables:
       type: object
-      required:
-      - infrastructure
       properties:
         infrastructure:
           title: Infrastructure
           type: object
           description: |
             Specify the infrastructure information for deploying.
-
-            Examples:
-            ```
-            infrastructure:
-              vpc_id: string                  # the ID of the VPC where the PostgreSQL service applies. It is a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.
-            ```
-          required:
-          - vpc_id
+          default: {}
           properties:
             vpc_id:
               description: |
                 The ID of the VPC where the PostgreSQL service applies. It is
-                a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.
+                a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}. If not specified, a new VPC will be created.
               title: Vpc Id
               type: string
               x-walrus-ui:

variables.tf

@@ -35,12 +35,13 @@ Specify the infrastructure information for deploying.
 Examples:
 ```
 infrastructure:
-  vpc_id: string                  # the ID of the VPC where the PostgreSQL service applies. It is a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.
+  vpc_id: string, optional                  # the ID of the VPC where the PostgreSQL service applies. It is a fully-qualified resource name, such as projects/{project_id}/global/networks/{network_id}.
 ```
 EOF
   type = object({
-    vpc_id = string
+    vpc_id = optional(string)
   })
+  default = {}
 }
 
 #