Policy Packs
Enforce Encryption at Rest Is Enabled for GCP Storage Buckets

Policy Setting: GCP > Storage > Bucket > Encryption at Rest > Customer Managed Key

Policies

This policy setting is dependent on the following policy types:

Source

resource "turbot_policy_setting" "gcp_storage_bucket_encryption_at_rest_customer_managed_key" {
resource = turbot_policy_pack.main.id
type = "tmod:@turbot/gcp-storage#/policy/types/bucketEncryptionAtRestCustomerManagedKey"
# Your KMS crypto key
value = "projects/acmeproject/locations/global/keyRings/acmekeyring/cryptoKeys/acmekey/cryptoKeyVersions/1"
}