terraform-google-modules · g-awmalik · Mar 15, 2023 · Dec 12, 2022 · Dec 13, 2022 · Dec 12, 2022
@@ -188,19 +188,27 @@ resource "random_password" "user-password" {
     name = google_sql_database_instance.default.name
   }
 
-  length     = 32
-  special    = var.enable_random_password_special
-  depends_on = [null_resource.module_depends_on, google_sql_database_instance.default]
+  min_lower   = 1
+  min_numeric = 1
+  min_upper   = 1
+  length      = var.password_validation_policy_config != null ? (var.password_validation_policy_config.min_length != null ? var.password_validation_policy_config.min_length + 4 : 32) : 32
+  special     = var.enable_random_password_special ? true : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? true : false) : false)
+  min_special = var.enable_random_password_special ? 1 : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? 1 : 0) : 0)
+  depends_on  = [null_resource.module_depends_on, google_sql_database_instance.default]
 }
 
 resource "random_password" "additional_passwords" {
   for_each = local.users
   keepers = {
     name = google_sql_database_instance.default.name
   }
-  length     = 32
-  special    = var.enable_random_password_special
-  depends_on = [null_resource.module_depends_on, google_sql_database_instance.default]
+  min_lower   = 1
+  min_numeric = 1
+  min_upper   = 1
+  length      = var.password_validation_policy_config != null ? (var.password_validation_policy_config.min_length != null ? var.password_validation_policy_config.min_length + 4 : 32) : 32
+  special     = var.enable_random_password_special ? true : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? true : false) : false)
+  min_special = var.enable_random_password_special ? 1 : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? 1 : 0) : 0)
+  depends_on  = [null_resource.module_depends_on, google_sql_database_instance.default]
 }
 
 resource "google_sql_user" "default" {

@@ -197,20 +197,27 @@ resource "random_password" "user-password" {
   keepers = {
     name = google_sql_database_instance.default.name
   }
-
-  length     = 32
-  special    = var.enable_random_password_special
-  depends_on = [null_resource.module_depends_on, google_sql_database_instance.default]
+  min_lower   = 1
+  min_numeric = 1
+  min_upper   = 1
+  length      = var.password_validation_policy_config != null ? (var.password_validation_policy_config.min_length != null ? var.password_validation_policy_config.min_length + 4 : 32) : 32
+  special     = var.enable_random_password_special ? true : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? true : false) : false)
+  min_special = var.enable_random_password_special ? 1 : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? 1 : 0) : 0)
+  depends_on  = [null_resource.module_depends_on, google_sql_database_instance.default]
 }
 
 resource "random_password" "additional_passwords" {
   for_each = local.users
   keepers = {
     name = google_sql_database_instance.default.name
   }
-  length     = 32
-  special    = var.enable_random_password_special
-  depends_on = [null_resource.module_depends_on, google_sql_database_instance.default]
+  min_lower   = 1
+  min_numeric = 1
+  min_upper   = 1
+  length      = var.password_validation_policy_config != null ? (var.password_validation_policy_config.min_length != null ? var.password_validation_policy_config.min_length + 4 : 32) : 32
+  special     = var.enable_random_password_special ? true : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? true : false) : false)
+  min_special = var.enable_random_password_special ? 1 : (var.password_validation_policy_config != null ? (var.password_validation_policy_config.complexity != "COMPLEXITY_UNSPECIFIED" ? 1 : 0) : 0)
+  depends_on  = [null_resource.module_depends_on, google_sql_database_instance.default]
 }
 
 resource "google_sql_user" "default" {