lcaggio
cd6e1c254d
Fix min provider version for vpc-sc module ( #252 )
2021-05-31 11:22:56 +02:00
Ludovico Magnocavallo
c1719951a9
Update to Terraform 0.15 ( #248 )
...
* don't use deprecated list() function
* don't use deprecated map() function
* update Terraform version in CI files
2021-05-22 15:58:55 +02:00
Ludovico Magnocavallo
3d7cc9810d
Fix output
2021-05-20 21:34:24 +02:00
lcaggio
585b3a79ee
Merge branch 'master' into vpc-sc-02
2021-05-18 09:52:45 +02:00
lcaggio
a7d58a73cf
Fix README
2021-05-17 20:41:59 +02:00
lcaggio
722b3f59f8
Fix link
2021-05-17 18:41:37 +02:00
lcaggio
4ecd13225a
Fix variable
2021-05-17 18:38:46 +02:00
lcaggio
f306f01fbc
Fix and change variable
2021-05-16 08:31:55 +02:00
sruffilli
654e171b32
Update resource name of google_dns_policy on net-vpc
2021-05-12 16:40:56 +02:00
sruffilli
36d253f1d3
DNS Policies in net-vpc module ( #238 )
2021-05-12 15:02:27 +02:00
lcaggio
628ab41c33
Add Support for Ingress Egress policy
2021-05-07 09:07:36 +02:00
Julio Castillo
875b786171
Optional create for service accounts
2021-05-06 12:07:39 +02:00
Chinmay Dorlikar
9c0b37f100
Added CORS dynamic block for gcs : feature/cors for gcs ( #232 )
...
* Added a dynamic CORS block for gcs module. Changed main.tf and variables.tf
* Updated the README for the CORS block
* Ran tfdoc for /modules/gcs/README.md
Co-authored-by: Chinmay Dorlikar <chinmay.dorlikar@quantiphi.com>
2021-04-23 17:58:58 +02:00
Julio Castillo
047ce9551e
Include VPC name in PSC reserved address name
2021-04-21 17:17:25 +02:00
Julio Castillo
140378f2f5
Add support for private service connect
2021-04-21 13:55:00 +02:00
Ludovico Magnocavallo
f8413cc98e
Add support for group-based IAM to resource management modules ( #229 )
...
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
2021-04-11 14:48:16 +02:00
Luca Prete
fbbe88eb23
[ #221 ] Add master_global_access_config to gke module ( #222 )
2021-04-07 09:50:40 +02:00
Luca Prete
aebb9dc1fe
[ #219 ] Specify VPC module key output format in docs ( #220 )
...
* [#219 ] Specify VPC module key output format in docs
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-04-01 15:23:57 +02:00
Ludovico Magnocavallo
3597769e8e
Support one group per zone in compute-vm ( #218 )
...
* support multiple groups per zone in compute-vm
* fix ilb as next hop example
2021-04-01 08:27:38 +02:00
Ludovico Magnocavallo
5149795bec
Allow using a non-suffixed name in compute-vm ( #217 )
...
* allow using a non-suffixed name in compute-vm
* update README
2021-03-31 20:01:10 +02:00
Julio Castillo
7ca2e60399
Fix tests
2021-03-31 10:45:35 +02:00
Julio Castillo
94b1a439ee
Fix IAM bindings for logging sinks
...
- Move to non-authoritative bindings to allow multiple sinks to write to
the same destination
- Allow automatically adding logging bucket IAM bindings
2021-03-31 09:59:28 +02:00
Julio Castillo
37935cee3a
Add project parameter to bigquery iam bindings.
2021-03-30 17:02:20 +02:00
lcaggio
eee06bd5dc
Remove device_policy, it requires BeyondCorp Enterprise Premium. we will implement it in future iterations. ( #215 )
2021-03-29 12:17:11 +02:00
Ludovico Magnocavallo
7052cfdb08
allow DNS zones with no vpcs ( #214 )
2021-03-27 09:08:54 +01:00
Ludovico Magnocavallo
3155bd7349
Update main.tf ( #213 )
2021-03-20 12:56:11 +01:00
lcaggio
2916f4e078
Project Module: add VPC-SC support ( #212 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
* Add VPC-SC support in the project module.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-19 20:12:29 +01:00
lcaggio
de5a9d747a
Add VPC-SC support for Regions, device policy and access policy dependency ( #210 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-18 13:04:37 +01:00
averbukh
5a796f3637
Shorten env names
2021-03-14 10:23:52 +01:00
averbukh
16e11fa7c1
Adjust FW rule name with network name to prevent name clashing within the same project.
2021-03-14 10:14:39 +01:00
averbukh
3428e9d562
Fix typo.
2021-03-14 03:10:16 +01:00
averbukh
fcd44c2b78
Added FW-Yaml module for distributed-firewall network example.
2021-03-14 03:03:36 +01:00
Julio Castillo
f5fb28b4b2
Merge pull request #203 from terraform-google-modules/jccb/log-buckets
...
Support for Cloud Logging buckets
2021-03-05 08:43:38 +01:00
Ludovico Magnocavallo
86b88e0634
fix modules version constraints ( #206 )
2021-03-05 08:41:59 +01:00
Ludovico Magnocavallo
8e44734fe5
set version for google-beta provider ( #205 )
2021-03-05 08:20:48 +01:00
Ludovico Magnocavallo
605ec7c4d1
depend org module resources for policy etc from IAM bindings ( #204 )
2021-03-05 08:19:39 +01:00
Julio Castillo
ad68fc4dfa
Support for cloud logging buckets
2021-03-03 14:23:59 +01:00
Ludovico Magnocavallo
54955b3e6d
Add support for per-tunnel routers to VPN dynamic and HA ( #202 )
...
* add optional per-tunnel router to vpn dynamic module
* add support for per-tunnel router to VPN HA
* fix onprem tests
2021-03-02 07:36:06 +01:00
Julio Castillo
2d9d81e061
Add support for essential contacts
2021-02-24 18:34:17 +01:00
Ludovico Magnocavallo
7e429425fe
Fix IAM additive ( #200 )
...
* Fix wrong iam_addictive variable input (#197 )
iam_additive variable from Project module expect { "roles" = list(string) } input
Co-authored-by: Emre Turan <emre@unl.global>
* fix project example
Co-authored-by: Emre Turan <turan.emre@gmail.com>
Co-authored-by: Emre Turan <emre@unl.global>
2021-02-16 20:01:18 +01:00
Julio Castillo
abf61fa7e2
Add support for allow- and deny-lists
2021-02-15 17:32:39 +01:00
Julio Castillo
d32937f263
Add Squid Docker images
2021-02-15 17:32:39 +01:00
Julio Castillo
1e11c670f5
Update copyright to 2021
2021-02-15 09:38:10 +01:00
Julio Castillo
5e983f55a7
Make `project_id` output non-dynamic
2021-02-15 09:22:19 +01:00
Julio Castillo
be8c61ac2c
Cloud Identity Group module ( #182 )
...
* New Cloud Identity module
* Add tests to cloud-identity-group module
* Fix boilerplate
* Fix outputs
* Remove support for creating managers and admins
* Update cloud-identity-group README
* Small fix to cloud-identity-group README
2021-02-13 06:55:22 +01:00
Ludovico Magnocavallo
e3a03a76ff
Add support for rePD and existing disk attachment to compute VM ( #194 )
...
* initial untested support for repd in compute-vm
* fix repd reference in instance disks
* add support for snapshot source, change disk variable
* fix attach existing disk to instance
* fix examples, add documentation on disk sources
* fix attaching disk for instance templates, add examples
* fix data e2e examples
* update vars table in README
2021-02-03 08:00:08 +01:00
averbukh
aec1f3df96
Adjusting second region for on-prem-in-a-box for testing more use cases
2021-01-29 18:43:53 +01:00
Ludovico Magnocavallo
0ce058e04f
Fix tests for 0.14 compatibility ( #191 )
...
* remove sensitive attribute from VPN modules key output
* fix type error in service account example
* update CI Terraform version
* update VPN modules docs
* require version in compute mig module
* require version in compute mig module for scaling_schedules
* update compute mig test, move provider version requirement in fixture
2021-01-29 14:55:50 +01:00
Ludovico Magnocavallo
2aa72c91f5
add provider constraint for net-vpc, fixes #185
2021-01-15 19:01:28 +01:00
Ludovico Magnocavallo
4e8fbbc54a
fix dns peering example in doc
2021-01-11 12:29:29 +01:00
Aurélien Legrand
dcbbf924f3
Update README.md in modules/dns
...
Adding an example for DNS Peering zones.
2021-01-11 12:11:20 +01:00
Roberto Jung Drebes
177a4d7f2c
update README.md for org module with new parameters
2020-12-10 09:36:32 +00:00
Roberto Jung Drebes
91febe4cd1
Authoritative IAM for organization
2020-12-09 22:58:17 +00:00
Julio Castillo
452669fed1
Update README and CHANGELOG
2020-12-06 18:05:57 +01:00
Julio Castillo
c6691a6140
Add include_children option folder and organization sinks
2020-12-06 17:56:27 +01:00
Julio Castillo
d4201c740d
Update environments e2e example with new sinks
2020-12-05 13:24:44 +01:00
Julio Castillo
1af70c748c
Rename "grant" to "iam" in sink variables
2020-12-05 12:39:06 +01:00
Ludovico Magnocavallo
7aaf24afd3
Add support for confidential compute to compute-vm module ( #179 )
...
* add support for confidential compute
* add support for confidential compute to instance template
2020-12-05 09:14:12 +01:00
Julio Castillo
2c0f949f07
Logging sinks and exclusions ( #178 )
...
* Add sink support to folder module
* Make folder creation optional.
* Add logging sinks to the organization module
* Add logging sink support to project module
* Update readme
2020-12-05 08:31:35 +01:00
Julio Castillo
ca82d71468
Fix organization tests
2020-11-25 18:47:11 +01:00
Julio Castillo
f56c36e2d0
Rename org_id variable to organization_id in organization module
2020-11-25 18:36:19 +01:00
Julio Castillo
0e535a3675
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 18:07:16 +01:00
Julio Castillo
dc038ad71f
Add tests for hierarchical firewall policy
2020-11-25 18:06:25 +01:00
Andras Gyömrey
c8958c548f
monitoring is automatically enabled when monitoring.writer is enabled ( #177 )
2020-11-25 17:32:53 +01:00
Julio Castillo
ce6311f684
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:45:55 +01:00
Julio Castillo
b2d8052b0e
Update modules/project/README.md
...
Remove `project_create = false` to all tests to run
2020-11-25 14:44:31 +01:00
Julio Castillo
1c3451cc35
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:37:36 +01:00
Andras Gyömrey
e0a45b61c5
fix README ( #176 )
2020-11-25 14:21:22 +01:00
Julio Castillo
6bd299190f
Update variable documentation.
2020-11-23 19:10:42 +01:00
Julio Castillo
254efdd799
Hierarchical firewall support for organizations
2020-11-23 19:01:02 +01:00
Julio Castillo
779f585d1d
Hierarchical firewall policies for folders
2020-11-23 18:45:18 +01:00
Ludovico Magnocavallo
cffc823f48
refactor access in bq module, add iam ( #172 )
2020-11-21 09:45:56 +01:00
Ludovico Magnocavallo
27aa0aa64c
Add support for forwarding path to dns module ( #171 )
...
* add support for forwarding path to dns module
* update README
2020-11-20 08:35:58 +01:00
Ludovico Magnocavallo
f611e99e46
add mtu ( #170 )
2020-11-19 16:48:08 +01:00
Ludovico Magnocavallo
dda715670c
Minor vpc-sc module corrections ( #167 )
...
* Fix #158
* fix variable type
2020-11-16 18:04:12 +01:00
Ludovico Magnocavallo
2ddfaad4bc
Merge branch 'master' of github.com:terraform-google-modules/cloud-foundation-fabric
2020-11-16 17:39:59 +01:00
Ludovico Magnocavallo
4cd351fa3b
align firewall module README with variables
2020-11-16 17:39:51 +01:00
nikever
5bfba15acf
Add boot_disk_kms_key to node_config ( #166 )
...
* Add support for CMEK to encrypt boot disks
* Fix typo in variable name
Co-authored-by: Niccolo Raspa <niccolo@sighup.io>
2020-11-16 17:37:10 +01:00
Ludovico Magnocavallo
42a865b8fa
fix provider version pinning
2020-11-14 17:47:07 +01:00
Ludovico Magnocavallo
80acb607c2
Add NLB health checks source ranges
...
https://cloud.google.com/load-balancing/docs/health-checks#fw-netlb
2020-11-12 13:57:56 +01:00
Samuele Chiocca
323e962fc8
Adding node taints on gke nodepool ( #165 )
...
* Adding node taints on gke nodepool. Automatic transformation via local variables from list(string) to the map google provider expects.
* Fixing readme with tfdoc.py
2020-11-10 13:41:19 +01:00
Ludovico Magnocavallo
ea6c5c3fed
shorten internal service account name
2020-11-09 13:28:42 +01:00
Ludovico Magnocavallo
6610b79b6c
Revert iam_additive behaviour ( #160 )
...
* revert iam_additive format, add iam_additive_members
* revert iam_additive format, add iam_additive_members
* update CHANGELOG
2020-11-09 11:29:08 +01:00
Julio Castillo
af2c7bd154
Fix GKE examples
2020-11-07 16:43:18 +01:00
Julio Castillo
946822ff5c
Merge pull request #157 from terraform-google-modules/example-tests
...
Make examples in READMEs runnable and testable
2020-11-07 11:38:19 +01:00
Ludovico Magnocavallo
b3ae7c9454
Add support for internal service account to GKE nodepool module ( #156 )
...
* add support for internal service account to GKE nodepool module, fixes #62
* update shared vpc example to use internally managed service account
* update shared vpc example to use internally managed service account
* update hub and spoke peering example to use renamed gke nodepool variables
2020-11-07 10:48:12 +01:00
Julio Castillo
eecdee63e6
Make examples in READMEs runnable and testable
2020-11-07 10:28:33 +01:00
Julio Castillo
ec6b1bc8ba
Update references to renamed modules
2020-11-06 10:14:30 +01:00
Julio Castillo
1df08caa7f
Update READMEs with new variable names
2020-11-06 09:43:12 +01:00
Julio Castillo
8a672b1b13
Fix typo in pubsub README
2020-11-06 09:36:55 +01:00
Julio Castillo
c60e37d884
Update copyright in headers
2020-11-06 09:36:09 +01:00
Ludovico Magnocavallo
f9e4a1d614
bump required tf version in modules using conditions
2020-11-06 08:43:06 +01:00
Ludovico Magnocavallo
b4fc8167a0
use new iam variable in cloud function module
2020-11-06 08:37:44 +01:00
Ludovico Magnocavallo
f1a3c3ebe8
use new iam variables in kms module
2020-11-06 08:26:50 +01:00
Ludovico Magnocavallo
f72bea3f96
use new iam variable in container registry
2020-11-06 08:22:35 +01:00
Ludovico Magnocavallo
0d17007c9d
new iam variable in endpoints module
2020-11-06 08:18:57 +01:00
Ludovico Magnocavallo
efc694ba01
fix and streamline bigtable module, add tests, align to new iam variable name
2020-11-06 08:11:07 +01:00
Ludovico Magnocavallo
3a4938874b
rename iam variables in pubsub module
2020-11-05 21:28:34 +01:00
Ludovico Magnocavallo
c33e68ecd0
use list in service account module variable types
2020-11-05 09:26:24 +01:00
Ludovico Magnocavallo
cb54ff77a1
rename iam variable in service account module
2020-11-05 09:22:13 +01:00
Ludovico Magnocavallo
44f1828c33
rename iam variable in compute vm module
2020-11-05 09:10:49 +01:00
Ludovico Magnocavallo
462a7023cd
rename iam variable in source repo module
2020-11-05 08:58:05 +01:00
Ludovico Magnocavallo
8267252031
rename iam variable in net vpc module
2020-11-05 08:49:29 +01:00
Ludovico Magnocavallo
9d0db19c5e
rename iam variables in gcs module
2020-11-04 16:57:06 +01:00
Ludovico Magnocavallo
bf23199724
rename iam variables in artifact registry
2020-11-04 16:56:57 +01:00
Ludovico Magnocavallo
0e1fb9bf9e
rename iam variables in folder unit module
2020-11-04 16:49:29 +01:00
Ludovico Magnocavallo
02d867ff3d
rename iam variables in folder module
2020-11-04 16:49:19 +01:00
Ludovico Magnocavallo
d47478a466
rename iam members variable in project module
2020-11-04 16:22:00 +01:00
Ludovico Magnocavallo
d0ed3b7614
rename iam additive variable in project module
2020-11-04 16:17:12 +01:00
Ludovico Magnocavallo
d2c84de8ff
use new variable names in organization module
2020-11-04 15:44:28 +01:00
Ludovico Magnocavallo
627f86219f
rename iam variable in secret manager module, add tests
2020-11-04 14:19:16 +01:00
Ludovico Magnocavallo
c372980e15
update service directory module to 0.13
2020-11-04 14:08:33 +01:00
Ludovico Magnocavallo
8dc131550f
fix variable validation in project module to allow for null values
2020-11-04 12:06:01 +01:00
Julio Castillo
7bd31ccf52
Added some basic variable validation
2020-11-03 08:12:11 +01:00
Julio Castillo
352b7a0645
Use description variable in dns module
2020-11-03 07:59:52 +01:00
Julio Castillo
c75230adf3
Remove iam_roles from net-vpc
2020-10-30 19:19:40 +01:00
Julio Castillo
405a3c23d5
Update project README
2020-10-30 19:06:20 +01:00
Julio Castillo
82a1fe3c20
Removing iam_roles from multiple modules
...
This commits removes the iam_roles variables from the modules:
- artifact-registry
- bigtable-instance
- cloud-function
- container-registry
- endopoints
- pubsub
- source-repository
2020-10-30 18:58:07 +01:00
Julio Castillo
96dba2256e
Remove iam_roles from secret_manager
2020-10-30 18:25:17 +01:00
Julio Castillo
53cb8359ee
Remove *_roles variables in kms module
2020-10-30 17:58:45 +01:00
Julio Castillo
fc5017cc24
Remove dependency hooks to net-vpc-peerings.
2020-10-30 00:19:28 +01:00
Julio Castillo
b13a10efe5
Remove iam_roles from compute-vm module
2020-10-30 00:18:10 +01:00
Julio Castillo
1a7b9836ea
Update folder and service account READMEs
2020-10-29 23:54:40 +01:00
Julio Castillo
78efb63b4a
Remove iam_roles from project module
2020-10-29 23:51:34 +01:00
Julio Castillo
6e81125c6a
Remove useless calls to toset
2020-10-29 23:29:41 +01:00
Julio Castillo
61d402fece
Update gcs module to terraform 0.13
2020-10-29 23:26:03 +01:00
Julio Castillo
85fda5b1fe
Remove iam_roles from service accounts, folder and organization modules
2020-10-21 09:37:05 +02:00
Julio Castillo
13ed799a8b
Update service account module to Terraform 0.13
2020-10-20 22:36:03 +02:00
Julio Castillo
2e7876b4c7
Update folders module to Terraform 0.13
...
With this commit the folders module (now called simply 'folder') only
creates a single google_folder resource. Support for creating multiple
folders is no longer needed since Terraform 0.13 added for_each support
to modules.
2020-10-20 15:41:03 +02:00
Julio Castillo
7ab87d0790
Fix typo in iam-service-account README
2020-10-20 10:50:08 +02:00
Julio Castillo
db330fe063
Add support for single-sided peerings.
2020-10-12 16:16:24 +02:00
Julio Castillo
ab39c9e4d4
Update compute-vm variable documentation
2020-10-12 13:10:13 +02:00
Julio Castillo
2bef92da57
Fixes to `compute-vm` module
2020-10-12 12:26:00 +02:00
Julio Castillo
0b34b9fa71
Bring back firewall logging
2020-10-07 10:30:26 +02:00
Ludovico Magnocavallo
09301cf7bd
Bump Terraform version used in tests, increase pytest verbosity ( #147 )
...
* update Terraform version used for tests
* increase verbosity of test runs
* delete stale experimental cloud function module
2020-09-27 15:31:19 +02:00
Chinmay Dorlikar
9bd1d5bb79
Updated the main.tf for bigquery-datasets ( #146 )
...
Added the "depends_on" attribute for views to be created only after all the tables are created to avoid failure.
2020-09-27 15:16:09 +02:00
Ludovico Magnocavallo
bd00eec1be
decouple cloudrun from istio in gke cluster module ( #144 )
2020-09-25 22:02:17 +02:00
Julio Castillo
5fd8720c7a
Add service project configuration options to project module ( #142 )
2020-09-24 10:41:44 +02:00
Luca Prete
f2c80e17f1
[ #138 ] Update copyright headers to 2020 ( #139 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2020-09-23 11:07:03 +02:00
Sumeet Chaurasia
bbb14886fd
provider version update ( #140 )
2020-09-23 10:09:41 +02:00
vanessabodard-voi
435d64d81a
Change bucket_policy_only into uniform_bucket_level_access in GCS module ( #135 )
...
* Change bucket_policy_only into bucket_policy_only
* Update changelog
2020-09-15 19:33:40 +02:00
Ludovico Magnocavallo
120e1be1d9
extend gcs module tests to cover new variables
2020-09-03 19:19:41 +02:00
Ludovico Magnocavallo
9e32b32b3d
reformat GCS module and update README
2020-09-03 19:08:29 +02:00
vanessabodard-voi
e8c227fdd6
Add bucket logging ( #134 )
...
* Add logging
* Improve syntax
* Add example
* Improve type for retention policy
2020-09-03 19:06:35 +02:00
Ludovico Magnocavallo
0265ba0951
Refactor net-address variables, add support for internal address purpose
...
* add support for internal address purpose
* update gcs module README
* refactor net address module interface and add tests
* add more examples in net-address README
2020-09-01 18:49:21 +02:00
vanessabodard-voi
daf3dc41e7
Add retention policy ( #133 )
2020-09-01 17:48:02 +02:00
Aleksandr Averbukh
d45934e544
Merge pull request #132 from terraform-google-modules/vpn-ha-optional-gateway
...
Make VPN Gateway creation optional for the net-vpn-ha module
2020-09-01 16:32:14 +02:00
Aleksandr Averbukh
4626dafcc8
Make VPN Gateway creation optional for the module.
2020-09-01 12:38:25 +02:00
Julio Castillo
21aee6f0aa
Reference VPC name from module variable
2020-08-31 14:54:05 +02:00
Julio Castillo
067f072c26
Make VPC creation optional in `net-vpc` module
2020-08-31 14:09:28 +02:00