cloudquery
diff --git a/‎plugins/source/gcp/docs/tables/README.md‎
Lines changed: 6 additions & 2 deletions b/‎plugins/source/gcp/docs/tables/README.md‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_crypto_key_versions.md‎
Lines changed: 33 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_crypto_key_versions.md‎
Lines changed: 33 additions & 0 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_crypto_keys.md‎
Lines changed: 3 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_crypto_keys.md‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_ekm_connections.md‎
Lines changed: 23 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_ekm_connections.md‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_import_jobs.md‎
Lines changed: 29 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_import_jobs.md‎
Lines changed: 29 additions & 0 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_keyrings.md‎
Lines changed: 3 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_keyrings.md‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎plugins/source/gcp/docs/tables/gcp_kms_locations.md‎
Lines changed: 26 additions & 0 deletions b/‎plugins/source/gcp/docs/tables/gcp_kms_locations.md‎
Lines changed: 26 additions & 0 deletions
diff --git a/‎plugins/source/gcp/resources/plugin/tables.go‎
Lines changed: 1 addition & 1 deletion b/‎plugins/source/gcp/resources/plugin/tables.go‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎plugins/source/gcp/resources/services/kms/crypto_key_versions.go‎
Lines changed: 36 additions & 0 deletions b/‎plugins/source/gcp/resources/services/kms/crypto_key_versions.go‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎plugins/source/gcp/resources/services/kms/crypto_key_versions_fetch.go‎
Lines changed: 33 additions & 0 deletions b/‎plugins/source/gcp/resources/services/kms/crypto_key_versions_fetch.go‎
Lines changed: 33 additions & 0 deletions
@@ -122,8 +122,12 @@
 - [gcp_iam_roles](gcp_iam_roles.md)
 - [gcp_iam_service_accounts](gcp_iam_service_accounts.md)
   - [gcp_iam_service_account_keys](gcp_iam_service_account_keys.md)
-- [gcp_kms_keyrings](gcp_kms_keyrings.md)
-  - [gcp_kms_crypto_keys](gcp_kms_crypto_keys.md)
+- [gcp_kms_locations](gcp_kms_locations.md)
+  - [gcp_kms_ekm_connections](gcp_kms_ekm_connections.md)
+  - [gcp_kms_keyrings](gcp_kms_keyrings.md)
+    - [gcp_kms_crypto_keys](gcp_kms_crypto_keys.md)
+      - [gcp_kms_crypto_key_versions](gcp_kms_crypto_key_versions.md)
+    - [gcp_kms_import_jobs](gcp_kms_import_jobs.md)
 - [gcp_logging_metrics](gcp_logging_metrics.md)
 - [gcp_logging_sinks](gcp_logging_sinks.md)
 - [gcp_monitoring_alert_policies](gcp_monitoring_alert_policies.md)
 
@@ -0,0 +1,33 @@
+# Table: gcp_kms_crypto_key_versions
+
+https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.keyRings.cryptoKeys.cryptoKeyVersions#CryptoKeyVersion
+
+The composite primary key for this table is (**project_id**, **name**).
+
+## Relations
+
+This table depends on [gcp_kms_crypto_keys](gcp_kms_crypto_keys.md).
+
+## Columns
+
+| Name          | Type          |
+| ------------- | ------------- |
+|_cq_source_name|String|
+|_cq_sync_time|Timestamp|
+|_cq_id|UUID|
+|_cq_parent_id|UUID|
+|project_id (PK)|String|
+|name (PK)|String|
+|state|String|
+|protection_level|String|
+|algorithm|String|
+|attestation|JSON|
+|create_time|Timestamp|
+|generate_time|Timestamp|
+|destroy_time|Timestamp|
+|destroy_event_time|Timestamp|
+|import_job|String|
+|import_time|Timestamp|
+|import_failure_reason|String|
+|external_protection_level_options|JSON|
+|reimport_eligible|Bool|
@@ -8,6 +8,9 @@ The composite primary key for this table is (**project_id**, **name**).
 
 This table depends on [gcp_kms_keyrings](gcp_kms_keyrings.md).
 
+The following tables depend on gcp_kms_crypto_keys:
+  - [gcp_kms_crypto_key_versions](gcp_kms_crypto_key_versions.md)
+
 ## Columns
 
 | Name          | Type          |
 
@@ -0,0 +1,23 @@
+# Table: gcp_kms_ekm_connections
+
+https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.ekmConnections#EkmConnection
+
+The composite primary key for this table is (**project_id**, **name**).
+
+## Relations
+
+This table depends on [gcp_kms_locations](gcp_kms_locations.md).
+
+## Columns
+
+| Name          | Type          |
+| ------------- | ------------- |
+|_cq_source_name|String|
+|_cq_sync_time|Timestamp|
+|_cq_id|UUID|
+|_cq_parent_id|UUID|
+|project_id (PK)|String|
+|name (PK)|String|
+|create_time|Timestamp|
+|service_resolvers|JSON|
+|etag|String|
@@ -0,0 +1,29 @@
+# Table: gcp_kms_import_jobs
+
+https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.keyRings.importJobs#ImportJob
+
+The composite primary key for this table is (**project_id**, **name**).
+
+## Relations
+
+This table depends on [gcp_kms_keyrings](gcp_kms_keyrings.md).
+
+## Columns
+
+| Name          | Type          |
+| ------------- | ------------- |
+|_cq_source_name|String|
+|_cq_sync_time|Timestamp|
+|_cq_id|UUID|
+|_cq_parent_id|UUID|
+|project_id (PK)|String|
+|name (PK)|String|
+|import_method|String|
+|protection_level|String|
+|create_time|Timestamp|
+|generate_time|Timestamp|
+|expire_time|Timestamp|
+|expire_event_time|Timestamp|
+|state|String|
+|public_key|JSON|
+|attestation|JSON|
@@ -6,8 +6,11 @@ The composite primary key for this table is (**project_id**, **name**).
 
 ## Relations
 
+This table depends on [gcp_kms_locations](gcp_kms_locations.md).
+
 The following tables depend on gcp_kms_keyrings:
   - [gcp_kms_crypto_keys](gcp_kms_crypto_keys.md)
+  - [gcp_kms_import_jobs](gcp_kms_import_jobs.md)
 
 ## Columns
 
 
@@ -0,0 +1,26 @@
+# Table: gcp_kms_locations
+
+https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.keyRings#KeyRing
+
+The composite primary key for this table is (**project_id**, **name**).
+
+## Relations
+
+The following tables depend on gcp_kms_locations:
+  - [gcp_kms_ekm_connections](gcp_kms_ekm_connections.md)
+  - [gcp_kms_keyrings](gcp_kms_keyrings.md)
+
+## Columns
+
+| Name          | Type          |
+| ------------- | ------------- |
+|_cq_source_name|String|
+|_cq_sync_time|Timestamp|
+|_cq_id|UUID|
+|_cq_parent_id|UUID|
+|project_id (PK)|String|
+|name (PK)|String|
+|location_id|String|
+|display_name|String|
+|labels|JSON|
+|metadata|JSON|
@@ -121,7 +121,7 @@ func PluginAutoGeneratedTables() []*schema.Table {
 		iam.Roles(),
 		iam.ServiceAccounts(),
 		iam.DenyPolicies(),
-		kms.Keyrings(),
+		kms.Locations(),
 		logging.Metrics(),
 		logging.Sinks(),
 		monitoring.AlertPolicies(),
 
@@ -0,0 +1,36 @@
+package kms
+
+import (
+	pb "cloud.google.com/go/kms/apiv1/kmspb"
+	"github.com/cloudquery/plugin-sdk/schema"
+	"github.com/cloudquery/plugin-sdk/transformers"
+	"github.com/cloudquery/plugins/source/gcp/client"
+)
+
+func CryptoKeyVersions() *schema.Table {
+	return &schema.Table{
+		Name:        "gcp_kms_crypto_key_versions",
+		Description: `https://cloud.google.com/kms/docs/reference/rest/v1/projects.locations.keyRings.cryptoKeys.cryptoKeyVersions#CryptoKeyVersion`,
+		Resolver:    fetchCryptoKeyVersions,
+		Multiplex:   client.ProjectMultiplexEnabledServices("cloudkms.googleapis.com"),
+		Transform:   transformers.TransformWithStruct(&pb.CryptoKeyVersion{}, client.Options()...),
+		Columns: []schema.Column{
+			{
+				Name:     "project_id",
+				Type:     schema.TypeString,
+				Resolver: client.ResolveProject,
+				CreationOptions: schema.ColumnCreationOptions{
+					PrimaryKey: true,
+				},
+			},
+			{
+				Name:     "name",
+				Type:     schema.TypeString,
+				Resolver: schema.PathResolver("Name"),
+				CreationOptions: schema.ColumnCreationOptions{
+					PrimaryKey: true,
+				},
+			},
+		},
+	}
+}
@@ -0,0 +1,33 @@
+package kms
+
+import (
+	"context"
+
+	kms "cloud.google.com/go/kms/apiv1"
+	"cloud.google.com/go/kms/apiv1/kmspb"
+	"github.com/cloudquery/plugin-sdk/schema"
+	"github.com/cloudquery/plugins/source/gcp/client"
+	"google.golang.org/api/iterator"
+)
+
+func fetchCryptoKeyVersions(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
+	c := meta.(*client.Client)
+	p := parent.Item.(*kmspb.CryptoKey)
+	kmsClient, err := kms.NewKeyManagementClient(ctx, c.ClientOptions...)
+	if err != nil {
+		return err
+	}
+
+	it := kmsClient.ListCryptoKeyVersions(ctx, &kmspb.ListCryptoKeyVersionsRequest{Parent: p.Name})
+	for {
+		key, err := it.Next()
+		if err == iterator.Done {
+			break
+		}
+		if err != nil {
+			return err
+		}
+		res <- key
+	}
+	return nil
+}