Each submodule should have a Kitchen test suite which verifies significant functionality. These test suites should use the example modules to provision the test environments.

When creating a HANA instance the SSD and the standard disks are created with the same size.
As the Terraform is using the sap_hana.py script for HANA disk size calculation, it is be possible to retreive both values in the python script output.
Can the HANA and HANA_HA modules be updated to set the correct disk sizes ?

I would be happy to contribute and propose a change.

We should update the testing to use Cloud Build and a new Service Account per run, as documented here.

For security reasons many customers only want to deploy VMs without external IP addresses. Currently this is not configurable in the scripts for HANA / HANA_HA. The NetWeaver scripts already have this config option named "external_ip".

Is there a chance to add this to the HANA / HANA_HA setups?
I'm happy to contribute if that makes sense for this little change.

I keep getting this error when trying to plan the sap_hana_simple_example.

module.gcp_sap_hana.module.sap_hana.data.http.sap-hana-py: Refreshing state...

Error: Incorrect condition type

on ....\modules\sap_hana\main.tf line 59, in resource "google_compute_address" "gcp_sap_hana_ip":
59: count = var.public_ip ? 1 : 0
|----------------
| var.public_ip is 1

The condition expression must be of type bool.

The READMEs for the SAP HANA submodules list only roles/storage.objectViewer as required for the service account attached to the VM instances, but I have a client who has identified roles/logging.admin and roles/compute.admin as required roles to solve errors seen during execution of the startup script. It's possible that roles less privileged than "admin" may be sufficient, but this needs to be investigated.

The master password for SAP system to be installed in examples is provided as an input variable and stored in *.tfvars file.
Does not look secure even assuming that password value will be removed from repository after installation (could still be found in git history)

The proposal is to generate the random and secure password on the runtime with random_password resource.
The result can be put into GCP secrets manager secret

Hello!

I was running some test deployments and I wanted to build my machines without a public IP. I noticed that the is a variable option for "public_ip". I set it to false in my variables file, but when I ran a terraform validate it came back that the "public_ip" was an unsupported argument. If I'm doing something wrong, please let me know!

`Error: Unsupported argument

on main.tf line 48, in module "gcp_sap_hana":
48: public_ip = var.public_ip

An argument named "public_ip" is not expected here.`

This is a minor proposal for an improvement that increases the consistency between the NW example and the HANA examples. The HANA examples use (in main.tf) for the startup-script the approach to load it from a file. This is missing in the netweaver example.

The effect is: The HANA examples expect to get a filename to the script, while the netweaver example expects to get the scripts content. If would streamline this to the approach in the HANA example

In HANA Example:

In NW Example:

If that makes sense i would move forward and create the changes and make the pull request.

Since there are changes to existing submodules in 1.0.0 beyond the upgrade to Terraform 0.12, they must be tested for backward compatibility with their 0.1.0 counterparts. If there are breaking changes, an upgrade guide must be written which documents how to upgrade from 0.1.0 to 1.0.0. The Kubernetes Engine module has several examples for reference.

Many SAP GCP deployments are performed in a shared VPC configuration. Currently, the scripts do not support deployment to a shared VPC.
Does this enhancement is planned in a future release ?

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• chore(deps): Update go modules and/or dev-tools (cft/developer-tools, github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test, github.com/gruntwork-io/terratest, go)

Detected dependencies

• Check this box to trigger a request for Renovate to run again on this repository

Presently, the examples include a large amount of variable inputs. The examples should be simplified through hard-coding of values and inclusion of supporting resources to demonstrate specific usage patterns of the module.