Skip to main content

google_bigquery_datasets resource

Use the google_bigquery_datasets InSpec audit resource to to test a Google Cloud Dataset resource.

Examples

describe google_bigquery_datasets(project: 'chef-gcp-inspec') do
  its('count') { should be >= 1 }
  its('friendly_names') { should include 'A BigQuery dataset test' }
  its('locations') { should include 'EU' }
end

google_bigquery_datasets(project: 'chef-gcp-inspec').ids.each do |name|
  google_bigquery_dataset(project: 'chef-gcp-inspec', name: name.split(':').last).access.each do |access|
    describe access do
      # No bigquery dataset should allow access to allUsers
      its('iam_member') { should_not cmp 'allUsers' }
    end
  end
end

Properties

Properties that can be accessed from the google_bigquery_datasets resource:

See google_bigquery_dataset for more detailed information.

  • dataset_references: an array of google_bigquery_dataset dataset_reference
  • default_partition_expiration_ms: an array of google_bigquery_dataset default_partition_expiration_ms
  • etags: an array of google_bigquery_dataset etag
  • friendly_names: an array of google_bigquery_dataset friendly_name
  • ids: an array of google_bigquery_dataset id
  • labels: an array of google_bigquery_dataset labels
  • locations: an array of google_bigquery_dataset location
  • default_encryption_configurations: an array of google_bigquery_dataset default_encryption_configuration

Filter criteria

This resource supports all of the above properties as filter criteria, which can be used with where as a block or a method.

GCP permissions

Ensure the BigQuery API is enabled for the current project.

Thank you for your feedback!

×