We are using Terraform for our IaC – to build datasets, tables…etc.
Our BigQuery Row and Column level Security controls are provisioned using an API. Policy tags are added on the columns using this API. Whenever there is a deployment through our pipeline, this policy tags are getting removed. Is there a way to ignore this policy tags changes when the policy tags are not added through Terraform?
We tried adding the ignore changes lifecycle, below, but it is ignoring all the changes in the schema. We cannot deploy any change at all.
lifecycle {
ignore_changes = [
schema
]
Any thoughts will be appreciated.