Terraform-provider-google: Add iam_configuration.bucket_policy_only to google_storage_bucket

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment. If the issue is assigned to the "modular-magician" user, it is either in the process of being autogenerated, or is planned to be autogenerated soon. If the issue is assigned to a user, that user is claiming responsibility for the issue. If the issue is assigned to "hashibot", a community member has claimed the issue already.

Description

Since Feb 15, the config of Cloud Storage "Bucket Policy Only" has been added.
If this config is enabled, object ACLs cannot be used.
It seems that the current API operation defaults to "Enabled: false" of Bucket Policy Only.
However, I think that this config should be made declaratively.

New or Affected Resource(s)

• google_storage_bucket

Potential Terraform Configuration

resource "google_storage_bucket" "sample" {
  name = "sample-bucket"

  iam_configuration {
    bucket_policy_only {
      enabled =  true
    }
  }
}

References

• https://cloud.google.com/storage/docs/bucket-policy-only
• https://cloud.google.com/storage/docs/using-bucket-policy-only
• https://cloud.google.com/storage/docs/json_api/v1/buckets