Ensure GCP DataFusion has stack driver logging enabled

Error: GCP DataFusion does not have stack driver logging enabled

Bridgecrew Policy ID: BC_GCP_GENERAL_40
Checkov Check ID: CKV_GCP_104
Severity: LOW

GCP DataFusion does not have stack driver logging enabled

Description

It is recommended to have a proper logging process for GCP DataFusion stack driver in order to track configuration changes conducted manually and programmatically and trace back unapproved changes.

Fix - Runtime

Fix - Buildtime

Terraform

resource "google_data_fusion_instance" "pass" {
  project                       = "examplea"
  provider                      = google-beta
  name                          = "my-instance"
  description                   = "My Data Fusion instance"
  region                        = "us-central1"
  type                          = "BASIC"
   enable_stackdriver_logging    = true
   enable_stackdriver_monitoring = true
  labels = {
    example_key = "example_value"
  }
  //private_instance = false
  network_config {
    network       = "default"
    ip_allocation = "10.89.48.0/22"
  }
  version                  = "6.3.0"
  dataproc_service_account = data.google_app_engine_default_service_account.default.email
}

Updated 12 months ago