Menambahkan project ke perimeter layanan menggunakan Terraform
Tetap teratur dengan koleksi
Simpan dan kategorikan konten berdasarkan preferensi Anda.
Kontrol Layanan VPC memungkinkan Anda mengisolasi resource layananGoogle Cloud multi-tenant yang didukung untuk mengurangi risiko pemindahan data yang tidak sah. Anda dapat menggunakan Terraform untuk menambahkan project dalam folder ke perimeter layanan.
Untuk menambahkan folder ke perimeter layanan secara otomatis, Anda dapat menggunakan fungsi Cloud Run. Saat mendeteksi project baru yang ditambahkan ke folder, fungsi ini akan mengeksekusi skrip Terraform untuk menambahkan project baru ke perimeter. Demikian pula, fungsi ini akan otomatis menghapus project dari
perimeter jika project dipindahkan dari folder.
[[["Mudah dipahami","easyToUnderstand","thumb-up"],["Memecahkan masalah saya","solvedMyProblem","thumb-up"],["Lainnya","otherUp","thumb-up"]],[["Sulit dipahami","hardToUnderstand","thumb-down"],["Informasi atau kode contoh salah","incorrectInformationOrSampleCode","thumb-down"],["Informasi/contoh yang saya butuhkan tidak ada","missingTheInformationSamplesINeed","thumb-down"],["Masalah terjemahan","translationIssue","thumb-down"],["Lainnya","otherDown","thumb-down"]],["Terakhir diperbarui pada 2025-08-18 UTC."],[],[],null,["# Add projects to service perimeters using Terraform\n\nVPC Service Controls lets you isolate resources of a supported multi-tenant\nGoogle Cloud service to mitigate data exfiltration risks. You can use Terraform\nto add a project in a folder to a service perimeter.\n\nTo automatically add a folder to a service perimeter, you can use\nCloud Run functions. When the function detects a new project being added to the\nfolder, it executes the Terraform script to add the new project to the\nperimeter. Similarly, the function automatically removes projects from the\nperimeter if they are moved out of the folder.\n\nFor more information, see [Automatically secured folder](https://github.com/terraform-google-modules/terraform-google-vpc-service-controls/tree/master/examples/automatic_folder).\n\nWhat's next\n-----------\n\n- [Overview of a service perimeter](/vpc-service-controls/docs/service-perimeters)\n- [Create a service perimeter](/vpc-service-controls/docs/create-service-perimeters)"]]
