cloud-foundation-fabric/tests/modules/net_vpc/examples/shared-vpc.yaml

# Copyright 2023 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

values:
  module.vpc-host.google_compute_network.network[0]:
    name: my-host-network
    project: project-id
  module.vpc-host.google_compute_shared_vpc_host_project.shared_vpc_host[0]:
    project: project-id
  module.vpc-host.google_compute_shared_vpc_service_project.service_projects["service-project-1-project-id"]:
    host_project: project-id
    service_project: service-project-1-project-id
  module.vpc-host.google_compute_shared_vpc_service_project.service_projects["service-project-2-project-id"]:
    host_project: project-id
    service_project: service-project-2-project-id
  module.vpc-host.google_compute_subnetwork.subnetwork["europe-west1/subnet-1"]:
    secondary_ip_range:
    - ip_cidr_range: 172.16.0.0/20
      range_name: pods
    - ip_cidr_range: 192.168.0.0/24
      range_name: services
  module.vpc-host.google_compute_subnetwork_iam_binding.authoritative["europe-west1/subnet-1.roles/compute.networkUser"]:
    condition: []
    members:
    - serviceAccount:service_account_email
    # - serviceAccount:gke
    project: project-id
    region: europe-west1
    role: roles/compute.networkUser
    subnetwork: subnet-1
  module.vpc-host.google_compute_subnetwork_iam_binding.authoritative["europe-west1/subnet-1.roles/compute.securityAdmin"]:
    condition: []
    members:
    - serviceAccount:service_account_email
    project: project-id
    region: europe-west1
    role: roles/compute.securityAdmin
    subnetwork: subnet-1

counts:
  google_compute_network: 1
  google_compute_shared_vpc_host_project: 1
  google_compute_shared_vpc_service_project: 2
  google_compute_subnetwork: 1
  google_compute_subnetwork_iam_binding: 2
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`# Copyright 2023 Google LLC`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

			`values:`
			`module.vpc-host.google_compute_network.network[0]:`
			`name: my-host-network`
E2E tests for net-vpc module 2023-11-29 06:36:03 -08:00			`project: project-id`
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`module.vpc-host.google_compute_shared_vpc_host_project.shared_vpc_host[0]:`
E2E tests for net-vpc module 2023-11-29 06:36:03 -08:00			`project: project-id`
			`module.vpc-host.google_compute_shared_vpc_service_project.service_projects["service-project-1-project-id"]:`
			`host_project: project-id`
			`service_project: service-project-1-project-id`
			`module.vpc-host.google_compute_shared_vpc_service_project.service_projects["service-project-2-project-id"]:`
			`host_project: project-id`
			`service_project: service-project-2-project-id`
Add test for #1197 2023-03-01 00:58:50 -08:00			`module.vpc-host.google_compute_subnetwork.subnetwork["europe-west1/subnet-1"]:`
			`secondary_ip_range:`
			`- ip_cidr_range: 172.16.0.0/20`
			`range_name: pods`
			`- ip_cidr_range: 192.168.0.0/24`
			`range_name: services`
IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`module.vpc-host.google_compute_subnetwork_iam_binding.authoritative["europe-west1/subnet-1.roles/compute.networkUser"]:`
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`condition: []`
			`members:`
E2E tests for net-vpc module 2023-11-29 06:36:03 -08:00			`- serviceAccount:service_account_email`
			`# - serviceAccount:gke`
			`project: project-id`
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`region: europe-west1`
			`role: roles/compute.networkUser`
			`subnetwork: subnet-1`
IAM interface refactor (#1595) * IAM modules refactor proposal * policy * subheading * Update 20230816-iam-refactor.md * log Julio's +1 * data-catalog-policy-tag * dataproc * dataproc * folder * folder * folder * folder * project * better filtering in test examples * project * folder * folder * organization * fix variable descriptions * kms * net-vpc * dataplex-datascan * modules/iam-service-account * modules/source-repository/ * blueprints/cloud-operations/vm-migration/ * blueprints/third-party-solutions/wordpress * dataplex-datascan * blueprints/cloud-operations/workload-identity-federation * blueprints/data-solutions/cloudsql-multiregion/ * blueprints/data-solutions/composer-2 * Update 20230816-iam-refactor.md * Update 20230816-iam-refactor.md * capture discussion in architectural doc * update variable names and refactor proposal * project * blueprints first round * folder * organization * data-catalog-policy-tag * re-enable folder inventory * project module style fix * dataproc * source-repository * source-repository tests * dataplex-datascan * dataplex-datascan tests * net-vpc * net-vpc test examples * iam-service-account * iam-service-account test examples * kms * boilerplate * tfdoc * fix module tests * more blueprint fixes * fix typo in data blueprints * incomplete refactor of data platform foundations * tfdoc * data platform foundation * refactor data platform foundation iam locals * remove redundant example test * shielded folder fix * fix typo * project factory * project factory outputs * tfdoc * test workflow: less verbose tests, fix tf version * re-enable -vv, shorter traceback, fix action version * ignore github extension warning, re-enable action version * fast bootstrap IAM, untested * bootstrap stage IAM fixes * stage 0 tests * fast stage 1 * tenant stage 1 * minor changes to fast stage 0 and 1 * fast security stage * fast mt stage 0 * fast mt stage 0 * fast pf 2023-08-20 00:44:20 -07:00			`module.vpc-host.google_compute_subnetwork_iam_binding.authoritative["europe-west1/subnet-1.roles/compute.securityAdmin"]:`
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`condition: []`
			`members:`
E2E tests for net-vpc module 2023-11-29 06:36:03 -08:00			`- serviceAccount:service_account_email`
			`project: project-id`
add inventories net-vpc examples 2023-01-18 15:00:58 -08:00			`region: europe-west1`
			`role: roles/compute.securityAdmin`
			`subnetwork: subnet-1`

			`counts:`
			`google_compute_network: 1`
			`google_compute_shared_vpc_host_project: 1`
			`google_compute_shared_vpc_service_project: 2`
			`google_compute_subnetwork: 1`
E2E tests for net-vpc module 2023-11-29 06:36:03 -08:00			`google_compute_subnetwork_iam_binding: 2`