zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,287 Commits 3 Branches 352 Tags 59 MiB
Commit Graph

5287 Commits

Author SHA1 Message Date
cmalpe 1563a76011
added missing option for exclusion scope (#2224) 
* added missing option for exclusion scope

* added validation and changes for gke autopilot
 2024-04-18 14:12:16 +03:00
Julio Castillo f22837cd47
Enable TFLint in FAST stages (#2221) 2024-04-18 10:06:24 +02:00
Julio Castillo 3af7e257d2
Add tflint to pipelines (#2220) 
* Fix terraform_deprecated_index

https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.5.0/docs/rules/terraform_deprecated_index.md

* Fix terraform_deprecated_interpolation

Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.5.0/docs/rules/terraform_deprecated_interpolation.md

* Fix more indexing

* Remove unused variable

* Enable TFLint for modules

* Add tflint config file

* Fix chdir

* Lint modules

* TFLint fixes

* TFLint

* Fixes binauthz README

* Fixes DNS response policy tests. Restores MIG outputs.

* Fixes other DNS response policy tests.

* Update tests for fast 2-e

* Moar fixed tests

---------

Co-authored-by: Simone Ruffilli <sruffilli@google.com>
 2024-04-17 10:23:48 +02:00
Ludo 25bf17c837
update changelog 2024-04-16 17:56:32 +02:00
Ludovico Magnocavallo 9414779cc2
Allow multiple PSA service providers in net-vpc module (#2218) 
* allowing multiple PSA service providers in net-vpc module

* tfdoc

* tfdoc

* Add tfvars/yaml tests

* fix module and tests

* re-enable inventory

* merge fix

* Add multiple PSA test case

* fix cloudsql example

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-04-16 15:02:36 +00:00
Julio Castillo b4b926a56e
Remove unused variables/locals from FAST (#2219) 
* Remove unused variables/locals from FAST

* Fix readmes
 2024-04-16 14:14:24 +00:00
Ludovico Magnocavallo 198d90c6fc
Remove data source from net-vpc module (#2216) 
* remove data source from net-vpc module

* fix test inventories

* remove data source, fix fast inventories
 2024-04-16 14:11:12 +03:00
Julio Castillo a74a106f8b
Add new org policies to FAST (#2215) 
* Add new org policies to FAST

* Fix tests
 2024-04-15 15:29:24 +02:00
Ludo e919bb6205
update changelog 2024-04-15 08:20:02 +02:00
Ludovico Magnocavallo fbc7e891db
Net LB App Internal Cross-Region recipe (#2214) 
* reorder tfdoc methods

* add support for recipes to tfdoc

* fix repo url in tfdoc

* update module README

* validated untested recipe

* validated untested refactored recipe

* add optional proxy subnet creation, outputs, fixes

* tested

* tfdoc fix

* fix README

* exclude examples from test collector
 2024-04-14 19:38:05 +03:00
Ludo e7f2ca7edc
update changelog 2024-04-12 08:53:19 +02:00
Ludovico Magnocavallo 3138eb9025
add support for tags to GCS module (#2213) 2024-04-11 13:19:05 +00:00
Wiktor Niesiobędzki 825bfca66d Document how to get quota_ids 2024-04-11 11:51:19 +02:00
Wiktor Niesiobędzki bca5901691 Fix project outputs inventory 2024-04-11 11:51:19 +02:00
Wiktor Niesiobędzki a236222a93 Add project quotas factory 2024-04-11 11:51:19 +02:00
Simone Ruffilli 7833203d87
Add support for GCS soft-delete retention period (#2212) 
* Add support for GCS soft-delete retention period
 2024-04-11 07:31:00 +00:00
Julio Castillo 395903ce6a
Update README.md 2024-04-11 06:47:12 +02:00
Ludo 9587512719
update changelog 2024-04-10 19:34:45 +02:00
Ludovico Magnocavallo 9cace5272f
Add support for quotas to project module (#2210) 
* add support for quotas to project module

* tfdoc

* better outputs

* Ensure keys in `quota_configs` are unique

* update fast tests

* Make quota E2E testable

* Remove quota project caveat

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-04-10 17:03:04 +00:00
Timothy Jabez 215c5cec26
Update the description and README for the tags variable (#2206) 
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-04-10 15:08:59 +02:00
Ludovico Magnocavallo e08ff19cd9
add support for data cache to cloud sql module (#2209) 2024-04-10 08:24:00 +02:00
Ben Swenka 1b44af595c
Updated diagram to better reflect PSC terminology (#2208) 2024-04-09 15:18:43 +00:00
Tone 2831af09fa
feat(gke-cluster-standard): Add optional `CiliumClusterWideNetworkPolicy` (#2207) 
* feat(gke-cluster-standard): Add optionnal `CiliumClusterWideNetworkPolicy`

Add `CiliumClusterWideNetworkPolicy` option on cluster.

Ref:
 - https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/container_cluster#enable_cilium_clusterwide_network_policy
 - https://cloud.google.com/kubernetes-engine/docs/how-to/configure-cilium-network-policy

* feat(gke-cluster-standard): Update Google provider to manage new feature

* feat(gke-cluster-standard): Move `cilium_clusterwide_network_policy` to `enable_features` field

* fix(scheduled-asset-inventory-export-bq): Set `dataset_id` with underscores

* fix(bigquery-dataset): Set `dataset_id` with underscores
 2024-04-09 17:08:36 +02:00
Ludovico Magnocavallo b472722b05
add validation rule for DNS module health check targets (#2205) 2024-04-08 11:30:42 +00:00
Ludovico Magnocavallo f0197c2662
align net stages exported tfvars, add psc and proxy only subnets (#2204) 2024-04-08 09:26:47 +02:00
Ludo d20b497d60
update changelog 2024-04-08 07:50:36 +02:00
Ludovico Magnocavallo 8511170412
FAST security stage refactor (#2203) 
* first working change, missing docs and tests

* fixes

* tests

* boilerplate

* tfdoc
 2024-04-07 20:14:39 -07:00
bluPhy c420f17636
Updating cloud-run-v2 terraform and some typos (#2201) 
* Updating cloud-run-v2 terraform and some typos

Updating modules/cloud-run-v2/main.tf to determine the tcp_socket value

Fixin typos in:
tests/fixtures.py
modules/workstation-cluster/README.md
modules/net-lb-int/README.md
modules/dataplex/README.md
modules/dataform-repository/README.md
modules/__docs/20230816-iam-refactor.md
CONTRIBUTING.md
blueprints/third-party-solutions/f5-bigip/f5-bigip-ha-active/startup-script.tpl
blueprints/third-party-solutions/f5-bigip/f5-bigip-ha-active/README.md

* Update README.md

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
 2024-04-07 09:49:07 +00:00
Veronika Priesner 0cae2ff08c
added force_destroy to dns module (#2202) 
* added force_destroy to dns module

* ran tfdoc.py modules/dns

* set default of force_destroy to null

* reran tfdoc.py after default value change
 2024-04-05 09:20:51 +00:00
Julio Castillo a9ac0f40cd
Add variable to resman to control top-level folder IAM (#2196) 2024-04-04 10:26:35 +02:00
Ludovico Magnocavallo 33ffe2daa6
Allow r/o project factory SAs access to folder-level IAM (#2195) 
* allow project factory SAs read access to folder-level IAM

* tfdoc
 2024-04-03 21:51:46 +02:00
Ludo 6b2c1e58ea
update changelog 2024-04-03 20:44:23 +02:00
Elia b80132a618
FAST GCVE stage (#2191) 
* GCVE stage prerequisites

* fix gcve prereq

* gcve stage first deploy

* Updated readme filex

* docs updated

* some fixes after testing

* updated readme files

* elia fix

* gcve net admin custom role

* gcve net admin custom role

* elia fix

* ven peering deploy

* elia fix

* added blueprint and stage tests

* Edits to Readme files

* typo in outputs

* clean-up

* gcve stage tests fix

* readme fix

* fix sorting

* fix copyrights and readme file

* fix test

* fix copyright

* fixed gcve feature flag cond.

* removed validation

* fixed typo

* fixed typo

* fixed gcve tests

* fixed typo

* fixed typo

* fixed sorting

* fixed sorting

---------

Co-authored-by: Konrad Schieban <kschieban@google.com>
 2024-04-03 17:25:12 +02:00
Ludovico Magnocavallo fc23c9c387
Update labeler version (#2192) 
* update labeler version

* test on:documentation label

* test on:blueprints label

* remove on:documentation

* test

* test on:fast label

* test

* remove test event from workflow

* remove fast comment
 2024-04-03 11:24:10 +02:00
Wiktor Niesiobędzki bc5f4c3969 Use explicit UTF-8 encoding 2024-04-02 20:34:51 +02:00
Amela Spica fb4a661f54
VPC module - PSA configurable service producer (#2190) 
* added configurable service provider for PSA in VPC module

* fmt

* readme update

* description fix based on PR comment

* readme regenerated
 2024-04-02 20:23:25 +02:00
Wiktor Niesiobędzki da4e5acd46 Fix failin e2e tests for Cloud Run CMEK 
* create a fixture adding IAM grants to Cloud Run service agent
* add to README.md information about required grant

Decided to add ths as a fixture though it may not be reused so:
* grant is not polluting the example
* grant is fairly easy discoverable from README.md
* setup_module is not burdened with additional grant which is used only
  for this example
 2024-03-28 15:02:56 +01:00
Ludovico Magnocavallo f487b27aa9
Fix default nodepool defaults in gke standard module (#2182) 
* fix default nodepool defaults in gke standard module

* fix inventory
 2024-03-28 11:22:14 +01:00
dependabot[bot] 4e8f60e8e2
Bump express from 4.17.3 to 4.19.2 in /blueprints/gke/binauthz/image (#2181) 
Bumps [express](https://github.com/expressjs/express) from 4.17.3 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.3...4.19.2)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-28 07:14:50 +01:00
Saleh Elnagar 136d74db4e
add cmek option for cloud_run_v2 (#2177) 
add cmek option for cloud_run_v2 service and job
 2024-03-27 09:15:02 +00:00
Ludovico Magnocavallo f25701d79c
update org viewer custom role and cicd templates (#2178) 2024-03-27 09:06:25 +01:00
Tone 0f44e581d5
feat(gke-cluster-standard): Set optionnal `default_node_pool` configuration (#2175) 
* feat(gke-cluster-standard): Set optionnal `default_node_pool` configuration

* feat(gke-cluster-standard): Improve `default_node_pool` variable setup

* feat(gke-cluster-standard): Improve `default_node_pool` condition validation
 2024-03-26 18:05:35 +01:00
Ludo b69ce8c5ba
update changelog 2024-03-26 13:35:14 +01:00
Wiktor Niesiobędzki f2806f347b Bump provider version to 5.18, so fix non-empty plan for google_notebooks_instance 2024-03-25 19:57:14 +01:00
Ludovico Magnocavallo 52b5bd00a9
stage c nva (#2172) 2024-03-24 12:54:29 +01:00
Ludo 796ad0077d
update changelog 2024-03-22 16:22:05 +01:00
Ludovico Magnocavallo a590deb58b
Fix subnet configuration in cloud nat module (#2171) 
* support optional secondary ranges in net-cloudnat module

* fix subnet configuration

* fix packer blueprint
 2024-03-22 15:59:02 +01:00
Ludovico Magnocavallo 1ee7494a30
support optional secondary ranges in net-cloudnat module (#2170) 2024-03-22 12:10:48 +01:00
Ludovico Magnocavallo 5ac86ecae7
Support advanced_datapath_observability in gke cluster standard module (#2168) 
* support advanced_datapath_observability in gke cluster standard module

* bump provider to 5.17.0
 2024-03-22 08:25:43 +01:00
Ludovico Magnocavallo e051cf42a1
stub READMEs for the removed hub and spoke blueprints (#2169) 2024-03-22 06:48:46 +00:00