Google Cloud Storage

Overview

Firefly integrates with Google Cloud Storage to pull in Terraform state files. This integration allows Firefly to analyze your Terraform state files stored in Google Cloud Storage buckets, providing comprehensive visibility into your infrastructure resources managed through Terraform.

Prerequisites

• A Google Cloud Platform account

• A service account with appropriate permissions to access the storage buckets containing Terraform state files

Integrating a new account

1. Log into your Google Cloud service account, and select CREATE SERVICE ACCOUNT

2. Add the Service account details, and select CREATE AND CONTINUE

3. Add the following role:

   • storage.objectViewer conditional to tfstate suffix

4. Select SAVE > DONE

5. Select the kebab menu

6. Select Manage keys > ADD KEY > Create new key

7. To download a service account key file, select JSON > CREATE

8. In Firefly, select Settings > Integrations

9. Select Add New > Google Cloud Storage

10. Enter a Nickname and Project ID

11. Paste or upload the account key file into the Service Account Key field

12. Select Next

Integrating an existing account

1. Log in to your Google Cloud service account

2. Add the following roles to the account you want to integrate:

   • storage.objectViewer conditional to tfstate suffix

3. Select the kebab menu

4. Select Manage keys > ADD KEY > Create new key

5. To download a service account key file, select JSON > CREATE

6. In Firefly, select Settings > Integrations

7. Select Add New > Google Cloud Storage

8. Enter a Nickname and Project ID

9. Paste or upload the account key file into the Service Account Key field

10. Select Next

Configuration Details

• Firefly scans your Google Cloud Storage buckets periodically for Terraform state files

• Your state files list will stay updated automatically

• Firefly only requires read access to your storage buckets