Control: GCP > SQL > Instance > Authorized Network > Approved

Determine whether to check or enforce Authorized Network setting for Cloud SQL Database Services.

GCP Cloud SQL provides authorized networks, which specify whitelisted IP ranges in CIDR notation. For example, in order to authorize connections from all addresses, an authorized network could be added with an address range of 0.0.0.0/0. And default value is "*". If set to Enforce: Delete unapproved, any unapproved IP's will be revoked from the authorized network block.

Resource Types

This control targets the following resource types:

GCP > SQL > Instance

Primary Policies

The following policies can be used to configure this control:

In Your Workspace

Developers

Control Type URI

tmod:@turbot/gcp-sql#/control/types/instanceAuthorizedNetworkApproved

Category URI

tmod:@turbot/turbot#/control/categories/resourceApproved

GraphQL

query controlType(id: "tmod:@turbot/gcp-sql#/control/types/instanceAuthorizedNetworkApproved") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/gcp-sql#/control/types/instanceAuthorizedNetworkApproved'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/gcp-sql#/control/types/instanceAuthorizedNetworkApproved"