Merge pull request appsembler#27 from appsembler/gcp-projects-vm-mana…

…ger-setup

gcp-project: enable VM Manager

gcp_project/README.md

@@ -55,6 +55,7 @@ we will consider auto-generating this.
 
 ## Releases
 
+* `gcp_project-1.3.0` - enable VM Manager / OS Config by default
 * `gcp_project-1.2.0` - enable vanta required services by default
 * `gcp_project-1.1.0` - add `folder_id` parameter to allow support placing projects in folders.
 * `gcp_project-1.0.0` - Terraform 1.0.0 support

gcp_project/vm_manager.tf

@@ -0,0 +1,44 @@
+# these services are required for VM Manager, which we want to
+# enable on all projects.
+
+resource "google_project_service" "compute_service" {
+  project                    = var.project_id
+  service                    = "compute.googleapis.com"
+  disable_dependent_services = false
+  disable_on_destroy         = false
+}
+
+resource "google_project_service" "containeranalysis_service" {
+  project                    = var.project_id
+  service                    = "containeranalysis.googleapis.com"
+  disable_dependent_services = false
+  disable_on_destroy         = false
+}
+
+resource "google_project_service" "osconfig_service" {
+  project                    = var.project_id
+  service                    = "osconfig.googleapis.com"
+  disable_dependent_services = false
+  disable_on_destroy         = false
+}
+
+resource "google_project_service" "oslogin_service" {
+  project                    = var.project_id
+  service                    = "oslogin.googleapis.com"
+  disable_dependent_services = false
+  disable_on_destroy         = false
+}
+
+# and we need to set some project metadata to actually enable it
+
+resource "google_compute_project_metadata_item" "guestattributes" {
+  project = var.project_id
+  key     = "enable-guest-attributes"
+  value   = "TRUE"
+}
+
+resource "google_compute_project_metadata_item" "osconfig" {
+  project = var.project_id
+  key     = "enable-osconfig"
+  value   = "TRUE"
+}