Sometimes you need a database. Why not use Google Cloud Platform's Cloud SQL?
Cloud SQL is an easy-to-use service that delivers fully managed SQL databases in the cloud. Cloud SQL provides PostgreSQL, SQL Server, and MySQL databases.
This sample takes advantage of the postgresql sub-module of sql-db within the Terraform Registry.
Starts with the assumption that you will use a service account's credentials that has appropriate role/permissions to create/delete a Cloud SQL database instance.
cp terraform.tfvars.sample terraform.tfvars
Amend the values for
projectregionzonedatabase_versiondatabase_tierdatabase_usernameencryption_key_namenameadditional_databasesadditional_usersservice_account_credentials
./create-database.sh
You'll probably want to connect to the database instance you just created, huh?
In order to obtain the ssl_key, ssl_cert, and ssl_ca you'll, there's a convenient script to generate them and a sample psql client command
Change directories
cd ../connect
cp terraform.tfvars.sample terraform.tfvars
Amend values for
projectregioninstance_namedatabase_namedatabase_usernameinstance_public_ip_addressservice_account_credentials
./create-connection.sh
./destroy-connection.sh
To tear it down
./destroy-database.sh
If you're going to setup the database instance with an encryption_key_name then you will need to perform some work outside of Terraform as described here. The service account you use to create the database instance must also have the roles/cloudkms.cryptoKeyEncrypterDecrypter role assigned.