cmalpe
1563a76011
added missing option for exclusion scope ( #2224 )
...
* added missing option for exclusion scope
* added validation and changes for gke autopilot
2024-04-18 14:12:16 +03:00
Julio Castillo
f22837cd47
Enable TFLint in FAST stages ( #2221 )
2024-04-18 10:06:24 +02:00
Julio Castillo
3af7e257d2
Add tflint to pipelines ( #2220 )
...
* Fix terraform_deprecated_index
https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.5.0/docs/rules/terraform_deprecated_index.md
* Fix terraform_deprecated_interpolation
Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.5.0/docs/rules/terraform_deprecated_interpolation.md
* Fix more indexing
* Remove unused variable
* Enable TFLint for modules
* Add tflint config file
* Fix chdir
* Lint modules
* TFLint fixes
* TFLint
* Fixes binauthz README
* Fixes DNS response policy tests. Restores MIG outputs.
* Fixes other DNS response policy tests.
* Update tests for fast 2-e
* Moar fixed tests
---------
Co-authored-by: Simone Ruffilli <sruffilli@google.com>
2024-04-17 10:23:48 +02:00
Ludo
25bf17c837
update changelog
2024-04-16 17:56:32 +02:00
Ludovico Magnocavallo
9414779cc2
Allow multiple PSA service providers in net-vpc module ( #2218 )
...
* allowing multiple PSA service providers in net-vpc module
* tfdoc
* tfdoc
* Add tfvars/yaml tests
* fix module and tests
* re-enable inventory
* merge fix
* Add multiple PSA test case
* fix cloudsql example
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
2024-04-16 15:02:36 +00:00
Julio Castillo
b4b926a56e
Remove unused variables/locals from FAST ( #2219 )
...
* Remove unused variables/locals from FAST
* Fix readmes
2024-04-16 14:14:24 +00:00
Ludovico Magnocavallo
198d90c6fc
Remove data source from net-vpc module ( #2216 )
...
* remove data source from net-vpc module
* fix test inventories
* remove data source, fix fast inventories
2024-04-16 14:11:12 +03:00
Julio Castillo
a74a106f8b
Add new org policies to FAST ( #2215 )
...
* Add new org policies to FAST
* Fix tests
2024-04-15 15:29:24 +02:00
Ludo
e919bb6205
update changelog
2024-04-15 08:20:02 +02:00
Ludovico Magnocavallo
fbc7e891db
Net LB App Internal Cross-Region recipe ( #2214 )
...
* reorder tfdoc methods
* add support for recipes to tfdoc
* fix repo url in tfdoc
* update module README
* validated untested recipe
* validated untested refactored recipe
* add optional proxy subnet creation, outputs, fixes
* tested
* tfdoc fix
* fix README
* exclude examples from test collector
2024-04-14 19:38:05 +03:00
Ludo
e7f2ca7edc
update changelog
2024-04-12 08:53:19 +02:00
Ludovico Magnocavallo
3138eb9025
add support for tags to GCS module ( #2213 )
2024-04-11 13:19:05 +00:00
Wiktor Niesiobędzki
825bfca66d
Document how to get quota_ids
2024-04-11 11:51:19 +02:00
Wiktor Niesiobędzki
bca5901691
Fix project outputs inventory
2024-04-11 11:51:19 +02:00
Wiktor Niesiobędzki
a236222a93
Add project quotas factory
2024-04-11 11:51:19 +02:00
Simone Ruffilli
7833203d87
Add support for GCS soft-delete retention period ( #2212 )
...
* Add support for GCS soft-delete retention period
2024-04-11 07:31:00 +00:00
Julio Castillo
395903ce6a
Update README.md
2024-04-11 06:47:12 +02:00
Ludo
9587512719
update changelog
2024-04-10 19:34:45 +02:00
Ludovico Magnocavallo
9cace5272f
Add support for quotas to project module ( #2210 )
...
* add support for quotas to project module
* tfdoc
* better outputs
* Ensure keys in `quota_configs` are unique
* update fast tests
* Make quota E2E testable
* Remove quota project caveat
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
2024-04-10 17:03:04 +00:00
Timothy Jabez
215c5cec26
Update the description and README for the tags variable ( #2206 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2024-04-10 15:08:59 +02:00
Ludovico Magnocavallo
e08ff19cd9
add support for data cache to cloud sql module ( #2209 )
2024-04-10 08:24:00 +02:00
Ben Swenka
1b44af595c
Updated diagram to better reflect PSC terminology ( #2208 )
2024-04-09 15:18:43 +00:00
Tone
2831af09fa
feat(gke-cluster-standard): Add optional `CiliumClusterWideNetworkPolicy` ( #2207 )
...
* feat(gke-cluster-standard): Add optionnal `CiliumClusterWideNetworkPolicy`
Add `CiliumClusterWideNetworkPolicy` option on cluster.
Ref:
- https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/container_cluster#enable_cilium_clusterwide_network_policy
- https://cloud.google.com/kubernetes-engine/docs/how-to/configure-cilium-network-policy
* feat(gke-cluster-standard): Update Google provider to manage new feature
* feat(gke-cluster-standard): Move `cilium_clusterwide_network_policy` to `enable_features` field
* fix(scheduled-asset-inventory-export-bq): Set `dataset_id` with underscores
* fix(bigquery-dataset): Set `dataset_id` with underscores
2024-04-09 17:08:36 +02:00
Ludovico Magnocavallo
b472722b05
add validation rule for DNS module health check targets ( #2205 )
2024-04-08 11:30:42 +00:00
Ludovico Magnocavallo
f0197c2662
align net stages exported tfvars, add psc and proxy only subnets ( #2204 )
2024-04-08 09:26:47 +02:00
Ludo
d20b497d60
update changelog
2024-04-08 07:50:36 +02:00
Ludovico Magnocavallo
8511170412
FAST security stage refactor ( #2203 )
...
* first working change, missing docs and tests
* fixes
* tests
* boilerplate
* tfdoc
2024-04-07 20:14:39 -07:00
bluPhy
c420f17636
Updating cloud-run-v2 terraform and some typos ( #2201 )
...
* Updating cloud-run-v2 terraform and some typos
Updating modules/cloud-run-v2/main.tf to determine the tcp_socket value
Fixin typos in:
tests/fixtures.py
modules/workstation-cluster/README.md
modules/net-lb-int/README.md
modules/dataplex/README.md
modules/dataform-repository/README.md
modules/__docs/20230816-iam-refactor.md
CONTRIBUTING.md
blueprints/third-party-solutions/f5-bigip/f5-bigip-ha-active/startup-script.tpl
blueprints/third-party-solutions/f5-bigip/f5-bigip-ha-active/README.md
* Update README.md
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2024-04-07 09:49:07 +00:00
Veronika Priesner
0cae2ff08c
added force_destroy to dns module ( #2202 )
...
* added force_destroy to dns module
* ran tfdoc.py modules/dns
* set default of force_destroy to null
* reran tfdoc.py after default value change
2024-04-05 09:20:51 +00:00
Julio Castillo
a9ac0f40cd
Add variable to resman to control top-level folder IAM ( #2196 )
2024-04-04 10:26:35 +02:00
Ludovico Magnocavallo
33ffe2daa6
Allow r/o project factory SAs access to folder-level IAM ( #2195 )
...
* allow project factory SAs read access to folder-level IAM
* tfdoc
2024-04-03 21:51:46 +02:00
Ludo
6b2c1e58ea
update changelog
2024-04-03 20:44:23 +02:00
Elia
b80132a618
FAST GCVE stage ( #2191 )
...
* GCVE stage prerequisites
* fix gcve prereq
* gcve stage first deploy
* Updated readme filex
* docs updated
* some fixes after testing
* updated readme files
* elia fix
* gcve net admin custom role
* gcve net admin custom role
* elia fix
* ven peering deploy
* elia fix
* added blueprint and stage tests
* Edits to Readme files
* typo in outputs
* clean-up
* gcve stage tests fix
* readme fix
* fix sorting
* fix copyrights and readme file
* fix test
* fix copyright
* fixed gcve feature flag cond.
* removed validation
* fixed typo
* fixed typo
* fixed gcve tests
* fixed typo
* fixed typo
* fixed sorting
* fixed sorting
---------
Co-authored-by: Konrad Schieban <kschieban@google.com>
2024-04-03 17:25:12 +02:00
Ludovico Magnocavallo
fc23c9c387
Update labeler version ( #2192 )
...
* update labeler version
* test on:documentation label
* test on:blueprints label
* remove on:documentation
* test
* test on:fast label
* test
* remove test event from workflow
* remove fast comment
2024-04-03 11:24:10 +02:00
Wiktor Niesiobędzki
bc5f4c3969
Use explicit UTF-8 encoding
2024-04-02 20:34:51 +02:00
Amela Spica
fb4a661f54
VPC module - PSA configurable service producer ( #2190 )
...
* added configurable service provider for PSA in VPC module
* fmt
* readme update
* description fix based on PR comment
* readme regenerated
2024-04-02 20:23:25 +02:00
Wiktor Niesiobędzki
da4e5acd46
Fix failin e2e tests for Cloud Run CMEK
...
* create a fixture adding IAM grants to Cloud Run service agent
* add to README.md information about required grant
Decided to add ths as a fixture though it may not be reused so:
* grant is not polluting the example
* grant is fairly easy discoverable from README.md
* setup_module is not burdened with additional grant which is used only
for this example
2024-03-28 15:02:56 +01:00
Ludovico Magnocavallo
f487b27aa9
Fix default nodepool defaults in gke standard module ( #2182 )
...
* fix default nodepool defaults in gke standard module
* fix inventory
2024-03-28 11:22:14 +01:00
dependabot[bot]
4e8f60e8e2
Bump express from 4.17.3 to 4.19.2 in /blueprints/gke/binauthz/image ( #2181 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.17.3 to 4.19.2.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.17.3...4.19.2 )
---
updated-dependencies:
- dependency-name: express
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 07:14:50 +01:00
Saleh Elnagar
136d74db4e
add cmek option for cloud_run_v2 ( #2177 )
...
add cmek option for cloud_run_v2 service and job
2024-03-27 09:15:02 +00:00
Ludovico Magnocavallo
f25701d79c
update org viewer custom role and cicd templates ( #2178 )
2024-03-27 09:06:25 +01:00
Tone
0f44e581d5
feat(gke-cluster-standard): Set optionnal `default_node_pool` configuration ( #2175 )
...
* feat(gke-cluster-standard): Set optionnal `default_node_pool` configuration
* feat(gke-cluster-standard): Improve `default_node_pool` variable setup
* feat(gke-cluster-standard): Improve `default_node_pool` condition validation
2024-03-26 18:05:35 +01:00
Ludo
b69ce8c5ba
update changelog
2024-03-26 13:35:14 +01:00
Wiktor Niesiobędzki
f2806f347b
Bump provider version to 5.18, so fix non-empty plan for google_notebooks_instance
2024-03-25 19:57:14 +01:00
Ludovico Magnocavallo
52b5bd00a9
stage c nva ( #2172 )
2024-03-24 12:54:29 +01:00
Ludo
796ad0077d
update changelog
2024-03-22 16:22:05 +01:00
Ludovico Magnocavallo
a590deb58b
Fix subnet configuration in cloud nat module ( #2171 )
...
* support optional secondary ranges in net-cloudnat module
* fix subnet configuration
* fix packer blueprint
2024-03-22 15:59:02 +01:00
Ludovico Magnocavallo
1ee7494a30
support optional secondary ranges in net-cloudnat module ( #2170 )
2024-03-22 12:10:48 +01:00
Ludovico Magnocavallo
5ac86ecae7
Support advanced_datapath_observability in gke cluster standard module ( #2168 )
...
* support advanced_datapath_observability in gke cluster standard module
* bump provider to 5.17.0
2024-03-22 08:25:43 +01:00
Ludovico Magnocavallo
e051cf42a1
stub READMEs for the removed hub and spoke blueprints ( #2169 )
2024-03-22 06:48:46 +00:00