enable-backup
Explanation
Automated backups are not enabled by default. Backups are an easy way to restore data in a corruption or data-loss scenario.
Possible Impact
No recovery of lost or corrupted data
Suggested Resolution
Enable automated backups
Insecure Example
The following example will fail the google-sql-enable-backup check.
resource "google_sql_database_instance" "db" {
name = "db"
database_version = "POSTGRES_12"
region = "us-central1"
settings {
backup_configuration {
enabled = false
}
}
}
Secure Example
The following example will pass the google-sql-enable-backup check.
resource "google_sql_database_instance" "db" {
name = "db"
database_version = "POSTGRES_12"
region = "us-central1"
settings {
backup_configuration {
enabled = true
}
}
}