add inventories net-vpc examples

modules/net-vpc/README.md

@@ -30,7 +30,7 @@ module "vpc" {
     }
   ]
 }
-# tftest modules=1 resources=3
+# tftest modules=1 resources=3 inventory=simple.yaml
 ```
 
 ### Peering
@@ -65,7 +65,7 @@ module "vpc-spoke-1" {
     import_routes      = true
   }
 }
-# tftest modules=2 resources=6
+# tftest modules=2 resources=6 inventory=peering.yaml
 ```
 
 ### Shared VPC
@@ -116,7 +116,7 @@ module "vpc-host" {
     }
   }
 }
-# tftest modules=1 resources=7
+# tftest modules=1 resources=7 inventory=shared-vpc.yaml
 ```
 
 ### Private Service Networking
@@ -137,7 +137,7 @@ module "vpc" {
     ranges = { myrange = "10.0.1.0/24" }
   }
 }
-# tftest modules=1 resources=5
+# tftest modules=1 resources=5 inventory=psc.yaml
 ```
 
 ### Private Service Networking with peering routes
@@ -162,7 +162,7 @@ module "vpc" {
     import_routes = true
   }
 }
-# tftest modules=1 resources=5
+# tftest modules=1 resources=5 inventory=psc-routes.yaml
 ```
 
 ### Subnets for Private Service Connect, Proxy-only subnets
@@ -194,7 +194,7 @@ module "vpc" {
     }
   ]
 }
-# tftest modules=1 resources=3
+# tftest modules=1 resources=3 inventory=proxy-only-subnets.yaml
 ```
 
 ### DNS Policies
@@ -219,7 +219,7 @@ module "vpc" {
     }
   ]
 }
-# tftest modules=1 resources=3
+# tftest modules=1 resources=3 inventory=dns-policies.yaml
 ```
 
 ### Subnet Factory

tests/modules/net_vpc/examples/dns-policies.yaml

@@ -0,0 +1,42 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc.google_compute_network.network[0]:
+    name: my-network
+    project: my-project
+  module.vpc.google_compute_subnetwork.subnetwork["europe-west1/production"]: {}
+  module.vpc.google_dns_policy.default[0]:
+    alternative_name_server_config:
+    - target_name_servers:
+      - forwarding_path: ''
+        ipv4_address: '8.8.8.8'
+      - forwarding_path: private
+        ipv4_address: '10.0.0.1'
+    description: Managed by Terraform
+    enable_inbound_forwarding: true
+    enable_logging: null
+    name: my-network
+    networks:
+    - {}
+    project: my-project
+
+counts:
+  google_compute_network: 1
+  google_compute_subnetwork: 1
+  google_dns_policy: 1
+  modules: 1
+  resources: 3
+
+outputs: {}

tests/modules/net_vpc/examples/peering.yaml

@@ -0,0 +1,34 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc-hub.google_compute_network.network[0]: {}
+  module.vpc-spoke-1.google_compute_network.network[0]: {}
+  module.vpc-hub.google_compute_subnetwork.subnetwork["europe-west1/subnet-1"]: {}
+  module.vpc-spoke-1.google_compute_subnetwork.subnetwork["europe-west1/subnet-2"]: {}
+  module.vpc-spoke-1.google_compute_network_peering.local[0]:
+    export_custom_routes: false
+    export_subnet_routes_with_public_ip: true
+    import_custom_routes: true
+    import_subnet_routes_with_public_ip: null
+  module.vpc-spoke-1.google_compute_network_peering.remote[0]:
+    export_custom_routes: true
+    export_subnet_routes_with_public_ip: true
+    import_custom_routes: false
+    import_subnet_routes_with_public_ip: null
+
+counts:
+  google_compute_network: 2
+  google_compute_network_peering: 2
+  google_compute_subnetwork: 2

tests/modules/net_vpc/examples/proxy-only-subnets.yaml

@@ -0,0 +1,40 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc.google_compute_network.network[0]:
+    name: my-network
+    project: my-project
+  module.vpc.google_compute_subnetwork.proxy_only["europe-west1/regional-proxy"]:
+    description: Terraform-managed proxy-only subnet for Regional HTTPS or Internal HTTPS LB.
+    ip_cidr_range: 10.0.1.0/24
+    log_config: []
+    name: regional-proxy
+    project: my-project
+    purpose: REGIONAL_MANAGED_PROXY
+    region: europe-west1
+    role: ACTIVE
+  module.vpc.google_compute_subnetwork.psc["europe-west1/psc"]:
+    description: Terraform-managed subnet for Private Service Connect (PSC NAT).
+    ip_cidr_range: 10.0.3.0/24
+    log_config: []
+    name: psc
+    project: my-project
+    purpose: PRIVATE_SERVICE_CONNECT
+    region: europe-west1
+    role: null
+
+counts:
+  google_compute_network: 1
+  google_compute_subnetwork: 2

tests/modules/net_vpc/examples/psc-routes.yaml

@@ -0,0 +1,47 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc.google_compute_global_address.psa_ranges["myrange"]:
+    address: 10.0.1.0
+    address_type: INTERNAL
+    description: null
+    ip_version: null
+    name: myrange
+    prefix_length: 24
+    project: my-project
+    purpose: VPC_PEERING
+  module.vpc.google_compute_network.network[0]:
+    name: my-network
+    project: my-project
+    routing_mode: GLOBAL
+  module.vpc.google_compute_network_peering_routes_config.psa_routes["1"]:
+    export_custom_routes: true
+    import_custom_routes: true
+    project: my-project
+  module.vpc.google_compute_subnetwork.subnetwork["europe-west1/production"]:
+    ip_cidr_range: 10.0.0.0/24
+    name: production
+    project: my-project
+  module.vpc.google_service_networking_connection.psa_connection["1"]:
+    reserved_peering_ranges:
+    - myrange
+    service: servicenetworking.googleapis.com
+
+counts:
+  google_compute_global_address: 1
+  google_compute_network: 1
+  google_compute_network_peering_routes_config: 1
+  google_compute_subnetwork: 1
+  google_service_networking_connection: 1

tests/modules/net_vpc/examples/psc.yaml

@@ -0,0 +1,46 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc.google_compute_global_address.psa_ranges["myrange"]:
+    address: 10.0.1.0
+    address_type: INTERNAL
+    name: myrange
+    prefix_length: 24
+    project: my-project
+    purpose: VPC_PEERING
+  module.vpc.google_compute_network.network[0]:
+    name: my-network
+    project: my-project
+  module.vpc.google_compute_network_peering_routes_config.psa_routes["1"]:
+    export_custom_routes: false
+    import_custom_routes: false
+    project: my-project
+  module.vpc.google_compute_subnetwork.subnetwork["europe-west1/production"]:
+    ip_cidr_range: 10.0.0.0/24
+    name: production
+    project: my-project
+  module.vpc.google_service_networking_connection.psa_connection["1"]:
+    reserved_peering_ranges:
+    - myrange
+    service: servicenetworking.googleapis.com
+
+counts:
+  google_compute_global_address: 1
+  google_compute_network: 1
+  google_compute_network_peering_routes_config: 1
+  google_compute_subnetwork: 1
+  google_service_networking_connection: 1
+
+outputs: {}

tests/modules/net_vpc/examples/shared-vpc.yaml

@@ -0,0 +1,51 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc-host.google_compute_network.network[0]:
+    name: my-host-network
+    project: my-project
+  module.vpc-host.google_compute_shared_vpc_host_project.shared_vpc_host[0]:
+    project: my-project
+  module.vpc-host.google_compute_shared_vpc_service_project.service_projects["project1"]:
+    host_project: my-project
+    service_project: project1
+  module.vpc-host.google_compute_shared_vpc_service_project.service_projects["project2"]:
+    host_project: my-project
+    service_project: project2
+  module.vpc-host.google_compute_subnetwork.subnetwork["europe-west1/subnet-1"]: {}
+  module.vpc-host.google_compute_subnetwork_iam_binding.binding["europe-west1/subnet-1.roles/compute.networkUser"]:
+    condition: []
+    members:
+    - serviceAccount:cloudsvc
+    - serviceAccount:gke
+    project: my-project
+    region: europe-west1
+    role: roles/compute.networkUser
+    subnetwork: subnet-1
+  module.vpc-host.google_compute_subnetwork_iam_binding.binding["europe-west1/subnet-1.roles/compute.securityAdmin"]:
+    condition: []
+    members:
+    - serviceAccount:gke
+    project: my-project
+    region: europe-west1
+    role: roles/compute.securityAdmin
+    subnetwork: subnet-1
+
+counts:
+  google_compute_network: 1
+  google_compute_shared_vpc_host_project: 1
+  google_compute_shared_vpc_service_project: 2
+  google_compute_subnetwork: 1
+  google_compute_subnetwork_iam_binding: 2

tests/modules/net_vpc/examples/simple.yaml

@@ -0,0 +1,50 @@
+# Copyright 2023 Google LLC
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+values:
+  module.vpc.google_compute_network.network[0]:
+    auto_create_subnetworks: false
+    delete_default_routes_on_create: false
+    description: Terraform-managed.
+    name: my-network
+    project: my-project
+    routing_mode: GLOBAL
+  module.vpc.google_compute_subnetwork.subnetwork["europe-west1/production"]:
+    description: Terraform-managed.
+    ip_cidr_range: 10.0.0.0/24
+    log_config: []
+    name: production
+    private_ip_google_access: true
+    project: my-project
+    region: europe-west1
+    role: null
+    secondary_ip_range:
+    - ip_cidr_range: 172.16.0.0/20
+      range_name: pods
+    - ip_cidr_range: 192.168.0.0/24
+      range_name: services
+  module.vpc.google_compute_subnetwork.subnetwork["europe-west2/production"]:
+    description: Terraform-managed.
+    ip_cidr_range: 10.0.16.0/24
+    log_config: []
+    name: production
+    private_ip_google_access: true
+    project: my-project
+    region: europe-west2
+    role: null
+    secondary_ip_range: []
+
+counts:
+  google_compute_network: 1
+  google_compute_subnetwork: 2