Jay Bana
1aad2c682c
Fix IAM bindings to impersonate resman CICD SAs at bootstrap stage ( #2411 )
2024-07-08 11:58:41 +01:00
Luca Prete
1bd3380a3f
Adds support for external SPGs to net-firewall-policy ( #2409 )
...
- Added support to reference external SPGs in factories in net-firewall-policy
- Added missing tls_inspect argument to hierarchical and global network firewall policies
- Fixed regional firewall policy rules, removing security profile groups and ngfw actions (given they're not supported)
- Updated copyright
2024-07-06 10:33:09 +00:00
Wiktor Niesiobędzki
afa6e7425c
Test different versions of Terraform ( #2399 )
...
Add capability to run tests using terraform version 1.5.7 and OpenTofu.
Automatic checks are run with Terraform 1.7.4 and OpenTofu 1.7.2, it should be possible to override terraform version when Tests workflow is run manually.
2024-07-05 13:21:41 +02:00
Julio Castillo
45fd48db42
Allow project factory projects to override name ( #2407 )
2024-07-04 20:14:04 +02:00
Aurélien Legrand
1f07cb72f2
Adding placement_policy for GKE nodepools (ex: GPU compact placement or TPU topology) ( #2405 )
...
* Adding placement policy to gke-nodepool module
* Adding placement policy for GKE nodepool
* updated README
* variables for placement_policy
* formatting
* Updated README
* fixing typo
* removing useless trys
---------
Co-authored-by: Aurélien Legrand <legranda@google.com>
2024-07-03 10:21:30 +00:00
Elia
287fee275c
Documented new GCVE design options ( #2404 )
2024-07-02 16:46:55 +02:00
Sudhir
3bb03c99f8
gitlab workflow fixes #2401 ( #2402 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2024-07-01 09:42:54 +00:00
Wiktor Niesiobędzki
e58c1b8892
Add info about roles for connectors service agent
2024-06-30 20:17:50 +02:00
Wiktor Niesiobędzki
22684f49e7
Fix tutorial error.
...
Without versions override it fails with:
Error: Failed to query available provider packages
│
│ Could not retrieve the list of available versions for provider hashicorp/kubectl: provider registry registry.terraform.io does not have a provider named registry.terraform.io/hashicorp/kubectl
│
│ All modules should specify their required_providers so that external consumers will get the correct providers when using a module. To see which modules are currently depending on hashicorp/kubectl, run the following command:
│ terraform providers
2024-06-29 08:55:33 +02:00
Julio Castillo
4e8adc9c43
Update `modules/artifact-registry` with newly-released features. ( #2396 )
...
Fixes #2377
2024-06-28 19:52:25 +02:00
Ludovico Magnocavallo
198fa01159
Add support for SSL policy to net-lb-app-int module ( #2393 )
2024-06-28 09:03:10 +02:00
apichick
1174604efe
Added forward_proxy_uri to apigee environments in apigee-x-foundations blueprint ( #2392 )
2024-06-27 19:48:24 +02:00
apichick
00d4673093
Added certificate-manager module ( #2387 )
2024-06-27 13:05:35 +00:00
Aleksandr Averbukh
85c1b7c156
Add AssuredWorkload support to the folder module ( #2390 )
...
* Feat: Add AssuredWorkload support to the folder module
* Formatting
* Use square brackets to access list items
* Docs gen after adding an example to the readme
* Reorder variables
* Formatting
* Reordering outputs, formatting
* Remove try where not needed. Add IAM into the AW example and tests
* Fix tests
* Enable Assured Workloads in E2E tests
* Add compliance_regime and partner enum fields validation
* Rewording validation message for compliance_regime, partner fields
* Sort the list of allowed values alphabetically
* Make the organization dependant on testing environment
* fix tests
* Disable E2E for Assured Workflow example.
This example requires Access Transparency enabled on org level, even
chosing different regime, we need to have `parent` and `organization`
within the same hierarchy, which is not currently the case and requires
more rework of the test framework.
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
2024-06-27 14:28:17 +02:00
Julio Castillo
07e519a8b7
Allow Cloud NAT to only use secondary ranges ( #2384 )
...
* Allow Cloud NAT to only use secondary ranges
* Fix secondary_ranges validation
* Fix linter
2024-06-27 08:05:45 +00:00
apichick
73d43b00db
Added missing links to firestore module is READMEs. ( #2388 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2024-06-27 06:54:02 +00:00
Alejandro Leal
99dd335cdf
Update tutorial.md
2024-06-27 07:36:19 +02:00
Alejandro Leal
0363e2cb80
Several wording and typos updates
...
Several wording and typos updates
2024-06-27 07:36:19 +02:00
apichick
00080cd840
Added firestore module ( #2374 )
2024-06-26 14:18:42 +02:00
apichick
3933a747fe
Fixes related to Apigee KMS keys ( #2382 )
...
* Fixes related to Apigee KMS keys
* tfdoc
---------
Co-authored-by: Ludo <ludomagno@google.com>
2024-06-26 06:12:26 +00:00
luigi-bitonti
750cff01cd
Added private_endpoint_subnetwork parameters to GKE module ( #2380 )
2024-06-25 16:16:00 +02:00
Diogo Teixeira
08ff3643da
Add forward_proxy_uri support ( #2370 )
...
Co-authored-by: apichick <mirene@google.com>
2024-06-25 07:50:19 +00:00
Ludovico Magnocavallo
d70cdf8393
add wording for SCC Enterprise to FAST stage 0 ( #2378 )
2024-06-24 19:03:07 +02:00
apichick
6c54ab69db
Removed advertised_groups ALL_VPC_SUBNETS, ALL_VPC_SUBNETS as they are no longer supported ( #2376 )
...
Removed advertised_groups ALL_VPC_SUBNETS, ALL_VPC_SUBNETS as they are no longer supported
2024-06-24 07:15:19 +00:00
apichick
6358ba34e0
Minor fixes in workstations IAM ( #2375 )
2024-06-24 08:59:29 +02:00
apichick
73e286c0ab
Added spanner-instance module ( #2372 )
2024-06-23 17:25:22 +00:00
Dean Sorie
270f61a75a
Added expire_time option to the secret-manager module ( #2373 )
...
* Added expire_time option to the secret module
* Ran tfdoc to update the readme file
* Fixed a failed test, moved the expire_time variable to the top and ran tfdoc again
2024-06-23 17:20:10 +02:00
Ludovico Magnocavallo
0bb75f3ae1
support build service account in cloud function v2 module ( #2371 )
2024-06-21 20:19:29 +02:00
Wiktor Niesiobędzki
bf3f2b9367
Add example, tests and fix for Google APIs PSC endpoint ( #2369 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2024-06-20 12:44:43 +02:00
Sudhir
e84d479741
Fix for plan not in sync when creating billing budgets in project factory #2365 ( #2368 )
2024-06-20 07:23:20 +02:00
luigi-bitonti
9b095a540e
Added additional range field to GKE standand and autopilot ( #2366 )
...
* Added additional range field to GKE standand and autopilot
* Bug fix
* Bug fix
2024-06-18 12:17:08 +00:00
Ludo
b83b43b74b
update changelog
2024-06-16 09:50:23 +02:00
Ludo
250ea851fd
update changelog
2024-06-14 20:33:29 +02:00
Ludovico Magnocavallo
f68e423c48
Relax dataproc master config type ( #2364 )
2024-06-14 16:19:57 +02:00
Wiktor Niesiobędzki
1f40f2e573
Add support for different endpoint types for Cloud NAT
2024-06-14 15:37:58 +02:00
Ludovico Magnocavallo
d1f7210fa8
strip bucket name from bundle URI ( #2362 )
2024-06-14 12:31:01 +00:00
Ludovico Magnocavallo
fa00deb747
Support GCS objects in cloud function modules bundles ( #2361 )
...
* cloud function v2
* cloud function v1
* blueprints
2024-06-14 11:44:01 +00:00
Ludovico Magnocavallo
ea5e6dedc9
validate bundle, use pathexpand in cloud function modules ( #2360 )
2024-06-14 09:23:49 +02:00
Ludovico Magnocavallo
cb5b36906c
don't compute checksum in cloud function module for static bundles ( #2359 )
2024-06-13 16:08:12 +00:00
Ludovico Magnocavallo
97d77d263b
support pre-made bundle archives in cloud function modules ( #2358 )
2024-06-13 14:58:23 +02:00
mdaddetta
bbf81752a4
Add use_table_schema parameter for PubSub subscription to BigQuery ( #2357 )
2024-06-12 22:36:19 +00:00
Konrad Schieban
330fe0096b
Add GCVE Logging and Monitoring Blueprint ( #2347 )
...
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2024-06-11 14:36:23 +00:00
Wiktor Niesiobędzki
f0c83c4f91
Add Terraform installation step to meet the versions.tf requirements
2024-06-11 15:40:31 +02:00
dependabot[bot]
e15426111c
Bump @grpc/grpc-js ( #2355 )
...
Bumps [@grpc/grpc-js](https://github.com/grpc/grpc-node ) from 1.10.7 to 1.10.9.
- [Release notes](https://github.com/grpc/grpc-node/releases )
- [Commits](https://github.com/grpc/grpc-node/compare/@grpc/grpc-js@1.10.7...@grpc/grpc-js@1.10.9 )
---
updated-dependencies:
- dependency-name: "@grpc/grpc-js"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-11 07:21:41 +02:00
Wiktor Niesiobędzki
4d51d33921
Use var.vpc_config.subnetwork in NEGs when var.neg_config.*.subnetwork is not provided
2024-06-10 16:57:12 +02:00
Ludo
d11e880753
update changelog
2024-06-10 12:25:32 +02:00
Ludovico Magnocavallo
e3809e6735
Add main project factory service account ( #2353 )
...
* add main project factory service account
* add main project factory service account
2024-06-10 12:23:30 +02:00
Ludo
35ba187e7b
update changelog
2024-06-10 11:16:39 +02:00
Ludovico Magnocavallo
b13b6032d3
Remove support for source repositories from FAST CI/CD ( #2352 )
...
* stage 0
* stage 1
* stage 1 mt
* remove unused locals from resman
* remove unused locals from resman
* tfdoc
2024-06-10 09:02:55 +00:00
Ludo
8e861f5e74
update changelog
2024-06-09 10:35:06 +02:00