agent-starter-pack 0.0.1b0__py3-none-any.whl

src/base_template/deployment/terraform/dev/storage.tf

@@ -0,0 +1,76 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+resource "google_storage_bucket" "logs_data_bucket" {
+  name                        = "${var.dev_project_id}-logs-data"
+  location                    = var.region
+  project                     = var.dev_project_id
+  uniform_bucket_level_access = true
+
+  lifecycle {
+    prevent_destroy = false
+    ignore_changes  = all
+  }
+
+  # Use this block to create the bucket only if it doesn't exist
+  count      = length(data.google_storage_bucket.existing_bucket) > 0 ? 0 : 1
+  depends_on = [resource.google_project_service.services]
+}
+
+data "google_storage_bucket" "existing_bucket" {
+  name    = "${var.dev_project_id}-logs-data"
+  project = var.dev_project_id
+
+  # Capture the error if the bucket doesn't exist
+  count      = can(data.google_storage_bucket.existing_bucket[0]) ? 1 : 0
+  depends_on = [resource.google_project_service.services]
+}
+
+{%- if cookiecutter.data_ingestion %}
+resource "google_storage_bucket" "data_ingestion_PIPELINE_GCS_ROOT" {
+  name                        = "${var.dev_project_id}-pipeline-artifacts"
+  location                    = var.region
+  project                     = var.dev_project_id
+  uniform_bucket_level_access = true
+  force_destroy               = true
+
+  depends_on = [resource.google_project_service.services]
+}
+
+resource "google_discovery_engine_data_store" "data_store_dev" {
+  location                    = var.data_store_region
+  project                     = var.dev_project_id
+  data_store_id               = "${var.datastore_name}"
+  display_name                = "${var.datastore_name}"
+  industry_vertical           = "GENERIC"
+  content_config              = "NO_CONTENT"
+  solution_types              = ["SOLUTION_TYPE_SEARCH"]
+  create_advanced_site_search = false
+  provider                    = google.dev_billing_override
+  depends_on             = [resource.google_project_service.services]
+}
+
+resource "google_discovery_engine_search_engine" "search_engine_dev" {
+  project        = var.dev_project_id
+  engine_id      = "${var.search_engine_name}"
+  collection_id  = "default_collection"
+  location       = google_discovery_engine_data_store.data_store_dev.location
+  display_name   = "Search Engine App Staging"
+  data_store_ids = [google_discovery_engine_data_store.data_store_dev.data_store_id]
+  search_engine_config {
+    search_tier = "SEARCH_TIER_ENTERPRISE"
+  }
+  provider      = google.dev_billing_override
+}
+{%- endif %}

src/base_template/deployment/terraform/dev/variables.tf

@@ -0,0 +1,126 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+variable "dev_project_id" {
+  type        = string
+  description = "**Dev** Google Cloud Project ID for resource deployment."
+}
+
+variable "region" {
+  type        = string
+  description = "Google Cloud region for resource deployment."
+  default     = "us-central1"
+}
+
+variable "telemetry_bigquery_dataset_id" {
+  type        = string
+  description = "BigQuery dataset ID for telemetry data export."
+  default     = "telemetry_genai_app_sample_sink"
+}
+
+variable "feedback_bigquery_dataset_id" {
+  type        = string
+  description = "BigQuery dataset ID for feedback data export."
+  default     = "feedback_genai_app_sample_sink"
+}
+
+variable "telemetry_logs_filter" {
+  type        = string
+  description = "Log Sink filter for capturing telemetry data. Captures logs with the `traceloop.association.properties.log_type` attribute set to `tracing`."
+  default     = "jsonPayload.attributes.\"traceloop.association.properties.log_type\"=\"tracing\" jsonPayload.resource.attributes.\"service.name\"=\"Sample Chatbot Application\""
+}
+
+variable "feedback_logs_filter" {
+  type        = string
+  description = "Log Sink filter for capturing feedback data. Captures logs where the `log_type` field is `feedback`."
+  default     = "jsonPayload.log_type=\"feedback\""
+}
+
+variable "telemetry_sink_name" {
+  type        = string
+  description = "Name of the telemetry data Log Sink."
+  default     = "telemetry_logs_genai_app_sample"
+}
+
+variable "feedback_sink_name" {
+  type        = string
+  description = "Name of the feedback data Log Sink."
+  default     = "feedback_logs_genai_app_sample"
+}
+{%- if cookiecutter.deployment_target == 'cloud_run' %}
+variable "cloud_run_app_sa_name" {
+  description = "Service account name to be used for the Cloud Run service"
+  type        = string
+  default     = "{{cookiecutter.project_name}}-cr"
+}
+
+variable "cloud_run_app_roles" {
+  description = "List of roles to assign to the Cloud Run app service account"
+{%- elif cookiecutter.deployment_target == 'agent_engine' %}
+variable "agentengine_sa_roles" {
+  description = "List of roles to assign to the Agent Engine app service account"
+{%- endif %}
+  type        = list(string)
+  default = [
+    "roles/aiplatform.user",
+    "roles/discoveryengine.editor",
+    "roles/logging.logWriter",
+    "roles/cloudtrace.agent",
+    "roles/storage.admin"
+  ]
+}
+
+{%- if cookiecutter.data_ingestion %}
+variable "vertexai_pipeline_sa_name" {
+  description = "Service account name to be used for the Vertex AI service"
+  type        = string
+  default     = "data-ingestion-vertexai-sa"
+}
+
+variable "data_store_region" {
+  type        = string
+  description = "Google Cloud region for resource deployment."
+  default     = "us"
+}
+
+variable "pipelines_roles" {
+  description = "List of roles to assign to the Vertex AI runner service account"
+  type        = list(string)
+  default = [
+    "roles/storage.admin",
+    "roles/run.invoker",
+    "roles/aiplatform.user",
+    "roles/discoveryengine.admin",
+    "roles/logging.logWriter",
+    "roles/artifactregistry.writer",
+    "roles/bigquery.dataEditor",
+    "roles/bigquery.jobUser",
+    "roles/bigquery.readSessionUser",
+    "roles/bigquery.connectionAdmin",
+    "roles/resourcemanager.projectIamAdmin"
+  ]
+}
+
+variable "datastore_name" {
+  description = "The name of the datastore"
+  type = string
+  default = "my-datastore"
+}
+
+variable "search_engine_name" {
+  description = "The name of the search engine"
+  type = string
+  default = "my-search-engine"
+}
+{%- endif %}

src/base_template/deployment/terraform/dev/vars/env.tfvars

@@ -0,0 +1,21 @@
+# Your Dev Google Cloud project id
+dev_project_id =  "your-dev-project-id"
+
+# The Google Cloud region you will use to deploy the infrastructure
+region = "us-central1"
+
+telemetry_bigquery_dataset_id = "telemetry_genai_app_sample_sink"
+telemetry_sink_name = "telemetry_logs_genai_app_sample"
+telemetry_logs_filter = "jsonPayload.attributes.\"traceloop.association.properties.log_type\"=\"tracing\" jsonPayload.resource.attributes.\"service.name\"=\"Sample Chatbot Application\""
+
+feedback_bigquery_dataset_id = "feedback_genai_app_sample_sink"
+feedback_sink_name = "feedback_logs_genai_app_sample"
+feedback_logs_filter = "jsonPayload.log_type=\"feedback\""
+{%- if cookiecutter.data_ingestion %}
+search_engine_name = "sample-search-engine"
+datastore_name = "sample-datastore"
+vertexai_pipeline_sa_name = "vertexai-pipelines-sa"
+
+#The value can only be one of "global", "us" and "eu".
+data_store_region = "us"
+{%- endif %}

src/base_template/deployment/terraform/iam.tf

@@ -0,0 +1,130 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Data source to get project numbers
+data "google_project" "projects" {
+  for_each   = local.deploy_project_ids
+  project_id = each.value
+}
+
+# 1. Assign roles for the CICD project
+resource "google_project_iam_member" "cicd_project_roles" {
+  for_each = toset(var.cicd_roles)
+
+  project    = var.cicd_runner_project_id
+  role       = each.value
+  member     = "serviceAccount:${resource.google_service_account.cicd_runner_sa.email}"
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+
+}
+
+# 2. Assign roles for the other two projects (prod and staging)
+resource "google_project_iam_member" "other_projects_roles" {
+  for_each = {
+    for pair in setproduct(keys(local.deploy_project_ids), var.cicd_sa_deployment_required_roles) :
+    "${pair[0]}-${pair[1]}" => {
+      project_id = local.deploy_project_ids[pair[0]]
+      role       = pair[1]
+    }
+  }
+
+  project    = each.value.project_id
+  role       = each.value.role
+  member     = "serviceAccount:${resource.google_service_account.cicd_runner_sa.email}"
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- if cookiecutter.deployment_target == 'cloud_run' %}
+# 3. Allow Cloud Run service SA to pull containers stored in the CICD project
+resource "google_project_iam_member" "cicd_run_invoker_artifact_registry_reader" {
+  for_each = local.deploy_project_ids
+  project  = var.cicd_runner_project_id
+
+  role       = "roles/artifactregistry.reader"
+  member     = "serviceAccount:service-${data.google_project.projects[each.key].number}@serverless-robot-prod.iam.gserviceaccount.com"
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+
+}
+
+# 4. Grant Cloud Run SA the required permissions to run the application
+resource "google_project_iam_member" "cloud_run_app_sa_roles" {
+  for_each = {
+    for pair in setproduct(keys(local.deploy_project_ids), var.cloud_run_app_roles) :
+    join(",", pair) => {
+      project = local.deploy_project_ids[pair[0]]
+      role    = pair[1]
+    }
+  }
+
+  project    = each.value.project
+  role       = each.value.role
+  member     = "serviceAccount:${google_service_account.cloud_run_app_sa[split(",", each.key)[0]].email}"
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- elif cookiecutter.deployment_target == 'agent_engine' %}
+resource "google_project_service_identity" "vertex_sa" {
+  for_each = local.deploy_project_ids
+  provider = google-beta
+  project  = each.value
+  service  = "aiplatform.googleapis.com"
+}
+
+# 3. Grant required permissions to Vertex AI Service Agent SA
+resource "google_project_iam_member" "vertex_ai_sa_permissions" {
+  for_each = {
+    for pair in setproduct(keys(local.deploy_project_ids), var.agentengine_sa_roles) :
+    "${pair[0]}_${pair[1]}" => {
+      project = local.deploy_project_ids[pair[0]]
+      role = pair[1]
+    }
+  }
+
+  project     = each.value.project
+  role        = each.value.role
+  member      = "serviceAccount:service-${data.google_project.projects[split("_", each.key)[0]].number}@gcp-sa-aiplatform-re.iam.gserviceaccount.com"
+  depends_on  = [resource.google_project_service.shared_services, resource.google_project_service_identity.vertex_sa]
+}
+{%- endif %}
+
+# Special assignment: Allow the CICD SA to create tokens
+resource "google_service_account_iam_member" "cicd_run_invoker_token_creator" {
+  service_account_id = google_service_account.cicd_runner_sa.name
+  role               = "roles/iam.serviceAccountTokenCreator"
+  member             = "serviceAccount:${resource.google_service_account.cicd_runner_sa.email}"
+  depends_on         = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+# Special assignment: Allow the CICD SA to impersonate himself for trigger creation
+resource "google_service_account_iam_member" "cicd_run_invoker_account_user" {
+  service_account_id = google_service_account.cicd_runner_sa.name
+  role               = "roles/iam.serviceAccountUser"
+  member             = "serviceAccount:${resource.google_service_account.cicd_runner_sa.email}"
+  depends_on         = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+{%- if cookiecutter.data_ingestion %}
+# Grant Vertex AI SA the required permissions to run the ingestion
+resource "google_project_iam_member" "vertexai_pipeline_sa_roles" {
+  for_each = {
+    for pair in setproduct(keys(local.deploy_project_ids), var.pipelines_roles) :
+    join(",", pair) => {
+      project = local.deploy_project_ids[pair[0]]
+      role    = pair[1]
+    }
+  }
+
+  project    = each.value.project
+  role       = each.value.role
+  member     = "serviceAccount:${google_service_account.vertexai_pipeline_app_sa[split(",", each.key)[0]].email}"
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- endif %}

src/base_template/deployment/terraform/locals.tf

@@ -0,0 +1,50 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+locals {
+  cicd_services = [
+    "cloudbuild.googleapis.com",
+    "discoveryengine.googleapis.com",
+    "aiplatform.googleapis.com",
+    "serviceusage.googleapis.com",
+    "bigquery.googleapis.com",
+    "cloudresourcemanager.googleapis.com",
+    "cloudtrace.googleapis.com"
+  ]
+
+  shared_services = [
+    "aiplatform.googleapis.com",
+    "run.googleapis.com",
+    "discoveryengine.googleapis.com",
+    "cloudresourcemanager.googleapis.com",
+    "iam.googleapis.com",
+    "bigquery.googleapis.com",
+    "serviceusage.googleapis.com",
+    "logging.googleapis.com",
+    "cloudtrace.googleapis.com"
+  ]
+
+  deploy_project_ids = {
+    prod    = var.prod_project_id
+    staging = var.staging_project_id
+  }
+
+  all_project_ids = [
+    var.cicd_runner_project_id,
+    var.prod_project_id,
+    var.staging_project_id
+  ]
+
+}
+

src/base_template/deployment/terraform/log_sinks.tf

@@ -0,0 +1,72 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+resource "google_project_iam_member" "bigquery_data_editor" {
+  for_each = local.deploy_project_ids
+
+  project = each.value
+  role    = "roles/bigquery.dataEditor"
+  member  = module.log_export_to_bigquery[each.key].writer_identity
+}
+
+module "log_export_to_bigquery" {
+  for_each = local.deploy_project_ids
+
+  source  = "terraform-google-modules/log-export/google"
+  version = "10.0.0"
+
+  log_sink_name          = var.telemetry_sink_name
+  parent_resource_type   = "project"
+  parent_resource_id     = each.value
+  destination_uri        = "bigquery.googleapis.com/projects/${each.value}/datasets/${var.telemetry_bigquery_dataset_id}"
+  filter                 = var.telemetry_logs_filter
+  bigquery_options       = { use_partitioned_tables = true }
+  unique_writer_identity = true
+  depends_on             = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+
+}
+
+resource "google_bigquery_dataset" "feedback_dataset" {
+  for_each      = local.deploy_project_ids
+  project       = each.value
+  dataset_id    = var.feedback_bigquery_dataset_id
+  friendly_name = var.feedback_bigquery_dataset_id
+  location      = var.region
+  depends_on    = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+
+}
+
+module "feedback_export_to_bigquery" {
+  for_each = local.deploy_project_ids
+
+  source                 = "terraform-google-modules/log-export/google"
+  version                = "10.0.0"
+  log_sink_name          = var.feedback_sink_name
+  parent_resource_type   = "project"
+  parent_resource_id     = each.value
+  destination_uri        = "bigquery.googleapis.com/projects/${each.value}/datasets/${var.feedback_bigquery_dataset_id}"
+  filter                 = var.feedback_logs_filter
+  bigquery_options       = { use_partitioned_tables = true }
+  unique_writer_identity = true
+  depends_on             = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services, google_bigquery_dataset.feedback_dataset]
+}
+
+resource "google_bigquery_dataset" "telemetry_logs_dataset" {
+  depends_on    = [module.log_export_to_bigquery, module.feedback_export_to_bigquery, resource.google_project_service.shared_services]
+  for_each      = local.deploy_project_ids
+  project       = each.value
+  dataset_id    = var.telemetry_bigquery_dataset_id
+  friendly_name = var.telemetry_bigquery_dataset_id
+  location      = var.region
+}

src/base_template/deployment/terraform/providers.tf

@@ -0,0 +1,35 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+terraform {
+  required_version = ">= 1.0.0"
+  required_providers {
+    google = {
+      source  = "hashicorp/google"
+      version = "< 7.0.0"
+    }
+  }
+}
+
+provider "google" {
+  alias                 = "staging_billing_override"
+  billing_project       = var.staging_project_id
+  user_project_override = true
+}
+
+provider "google" {
+  alias                 = "prod_billing_override"
+  billing_project       = var.prod_project_id
+  user_project_override = true
+}

src/base_template/deployment/terraform/service_accounts.tf

@@ -0,0 +1,42 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+resource "google_service_account" "cicd_runner_sa" {
+  account_id   = var.cicd_runner_sa_name
+  display_name = "CICD Runner SA"
+  project      = var.cicd_runner_project_id
+  depends_on   = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- if cookiecutter.deployment_target == 'cloud_run' %}
+resource "google_service_account" "cloud_run_app_sa" {
+  for_each = local.deploy_project_ids
+
+  account_id   = var.cloud_run_app_sa_name
+  display_name = "Cloud Run Generative AI app SA"
+  project      = each.value
+  depends_on   = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- endif %}
+
+{%- if cookiecutter.data_ingestion %}
+# Service account to run Vertex AI pipeline
+resource "google_service_account" "vertexai_pipeline_app_sa" {
+  for_each = local.deploy_project_ids
+
+  account_id   = var.vertexai_pipeline_sa_name
+  display_name = "Vertex AI Pipeline app SA"
+  project      = each.value
+  depends_on   = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+{%- endif %}

src/base_template/deployment/terraform/storage.tf

@@ -0,0 +1,100 @@
+# Copyright 2025 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+resource "google_storage_bucket" "bucket_load_test_results" {
+  name                        = "${var.cicd_runner_project_id}-${var.suffix_bucket_name_load_test_results}"
+  location                    = var.region
+  project                     = var.cicd_runner_project_id
+  uniform_bucket_level_access = true
+  force_destroy               = true
+  depends_on                  = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+resource "google_storage_bucket" "logs_data_bucket" {
+  for_each                    = toset(local.all_project_ids)
+  name                        = "${each.value}-logs-data"
+  location                    = var.region
+  project                     = each.value
+  uniform_bucket_level_access = true
+  force_destroy               = true
+
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+{%- if cookiecutter.data_ingestion %}
+resource "google_storage_bucket" "data_ingestion_pipeline_gcs_root" {
+  for_each                    = local.deploy_project_ids
+  name                        = "${each.value}-pipeline-artifacts"
+  location                    = var.region
+  project                     = each.value
+  uniform_bucket_level_access = true
+  force_destroy               = true
+
+  depends_on = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+resource "google_discovery_engine_data_store" "data_store_staging" {
+  location                    = var.data_store_region
+  project                     = var.staging_project_id
+  data_store_id               = "${var.datastore_name}"
+  display_name                = "${var.datastore_name}"
+  industry_vertical           = "GENERIC"
+  content_config              = "NO_CONTENT"
+  solution_types              = ["SOLUTION_TYPE_SEARCH"]
+  create_advanced_site_search = false
+  provider                    = google.staging_billing_override
+  depends_on         = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+resource "google_discovery_engine_search_engine" "search_engine_staging" {
+  project        = var.staging_project_id
+  engine_id      = "${var.search_engine_name}"
+  collection_id  = "default_collection"
+  location       = google_discovery_engine_data_store.data_store_staging.location
+  display_name   = "Search Engine App Staging"
+  data_store_ids = [google_discovery_engine_data_store.data_store_staging.data_store_id]
+  search_engine_config {
+    search_tier = "SEARCH_TIER_ENTERPRISE"
+  }
+  provider = google.staging_billing_override
+}
+
+resource "google_discovery_engine_data_store" "data_store_prod" {
+  location                    = var.data_store_region
+  project                     = var.prod_project_id
+  data_store_id               = "${var.datastore_name}"
+  display_name                = "${var.datastore_name}"
+  industry_vertical           = "GENERIC"
+  content_config              = "NO_CONTENT"
+  solution_types              = ["SOLUTION_TYPE_SEARCH"]
+  create_advanced_site_search = false
+  provider                    = google.prod_billing_override
+  depends_on         = [resource.google_project_service.cicd_services, resource.google_project_service.shared_services]
+}
+
+resource "google_discovery_engine_search_engine" "search_engine_prod" {
+  project        = var.prod_project_id
+  engine_id      = "${var.search_engine_name}"
+  collection_id  = "default_collection"
+  location       = google_discovery_engine_data_store.data_store_prod.location
+  display_name   = "Search Engine App Prod"
+  data_store_ids = [google_discovery_engine_data_store.data_store_prod.data_store_id]
+  search_engine_config {
+    search_tier = "SEARCH_TIER_ENTERPRISE"
+  }
+  provider = google.prod_billing_override
+}
+{%- endif %}
+
+