Allow user to specify connector subnet range.

BSick7 · BSick7 · commit 73e02155f883 · 2026-02-27T10:47:36.000-05:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,6 @@
+# 0.4.6 (Feb 27, 2026)
+* Allow user to specify connector subnet range.
+
 # 0.4.5 (Feb 19, 2026)
 * Added `var.vpc_flow_logs` to enable and configure VPC Flow logs on the network.
 
diff --git a/outputs.tf b/outputs.tf
@@ -48,6 +48,21 @@ output "private_subnet_self_links" {
   description = "list(string) ||| The self_link of each private subnet"
 }
 
+output "connector_subnet_name" {
+  value       = google_compute_subnetwork.access_connector.name
+  description = "string ||| The name of the private access connector subnet"
+}
+
+output "connector_subnet_id" {
+  value       = google_compute_subnetwork.access_connector.id
+  description = "string ||| The ID of the private access connector subnet"
+}
+
+output "connector_subnet_self_link" {
+  value       = google_compute_subnetwork.access_connector.self_link
+  description = "string ||| The self_link of the private access connector subnet"
+}
+
 output "nat_id" {
   value       = google_compute_router_nat.this.id
   description = "string ||| Id of Cloud NAT"
diff --git a/subnets.tf b/subnets.tf
@@ -42,7 +42,7 @@ resource "google_compute_subnetwork" "private" {
 
 resource "google_compute_subnetwork" "access_connector" {
   name                     = "${local.resource_name}-connector-0"
-  ip_cidr_range            = local.connector_subnet
+  ip_cidr_range            = var.connector_subnet
   network                  = google_compute_network.this.name
   region                   = data.google_compute_zones.available.region
   private_ip_google_access = true
diff --git a/variables.tf b/variables.tf
@@ -10,6 +10,12 @@ variable "private_subnets" {
   default     = ["10.102.0.0/16"]
 }
 
+variable "connector_subnet" {
+  type        = string
+  default     = "10.128.0.0/28"
+  description = "Network range for the connector subnet created in the VPC. This subnet is used for private access to GCP-managed services like CloudSQL."
+}
+
 variable "internal_subdomain" {
   type        = string
   default     = ""
@@ -18,10 +24,6 @@ When specified, creates a private Google Cloud DNS zone that allows internal DNS
 EOF
 }
 
-locals {
-  connector_subnet = "10.128.0.0/28"
-}
-
 variable "vpc_flow_logs" {
   type = object({
     enabled              = bool
