Oliver Frolovs
6eb862a775
GKE cluster modules: add optional kube state metrics ( #1682 )
...
* `gke-cluster-standard`: add optional kube state metrics
* `gke-cluster-autopilot`: add optional kube state metrics
* FAST: add kube state metrics support for GKE
* blueprints/gke: add kube state metrics support
* Bump up the provider version to `v4.82.0`
2023-09-15 12:18:45 +01:00
Ludovico Magnocavallo
ec3b705f53
Change type of `iam_bindings` variable to allow multiple conditional bindings ( #1658 )
...
* modules
* fast
* dns readme
2023-09-08 08:56:31 +02:00
simonebruzzechesse
77c1e69666
New phpIPAM serverless third parties solution in blueprints ( #1642 )
...
* Added new phpIPAM serverless third parties solution in blueprints
* added jit to iap.googleapis.com service in project module
* updated tests
2023-09-07 15:30:22 +02:00
Julio Castillo
3d4cc7164a
Bump provider version to 4.80.0
2023-09-05 09:48:15 +02:00
Ludovico Magnocavallo
819894d2ba
IAM interface refactor ( #1595 )
...
* IAM modules refactor proposal
* policy
* subheading
* Update 20230816-iam-refactor.md
* log Julio's +1
* data-catalog-policy-tag
* dataproc
* dataproc
* folder
* folder
* folder
* folder
* project
* better filtering in test examples
* project
* folder
* folder
* organization
* fix variable descriptions
* kms
* net-vpc
* dataplex-datascan
* modules/iam-service-account
* modules/source-repository/
* blueprints/cloud-operations/vm-migration/
* blueprints/third-party-solutions/wordpress
* dataplex-datascan
* blueprints/cloud-operations/workload-identity-federation
* blueprints/data-solutions/cloudsql-multiregion/
* blueprints/data-solutions/composer-2
* Update 20230816-iam-refactor.md
* Update 20230816-iam-refactor.md
* capture discussion in architectural doc
* update variable names and refactor proposal
* project
* blueprints first round
* folder
* organization
* data-catalog-policy-tag
* re-enable folder inventory
* project module style fix
* dataproc
* source-repository
* source-repository tests
* dataplex-datascan
* dataplex-datascan tests
* net-vpc
* net-vpc test examples
* iam-service-account
* iam-service-account test examples
* kms
* boilerplate
* tfdoc
* fix module tests
* more blueprint fixes
* fix typo in data blueprints
* incomplete refactor of data platform foundations
* tfdoc
* data platform foundation
* refactor data platform foundation iam locals
* remove redundant example test
* shielded folder fix
* fix typo
* project factory
* project factory outputs
* tfdoc
* test workflow: less verbose tests, fix tf version
* re-enable -vv, shorter traceback, fix action version
* ignore github extension warning, re-enable action version
* fast bootstrap IAM, untested
* bootstrap stage IAM fixes
* stage 0 tests
* fast stage 1
* tenant stage 1
* minor changes to fast stage 0 and 1
* fast security stage
* fast mt stage 0
* fast mt stage 0
* fast pf
2023-08-20 09:44:20 +02:00
Ludovico Magnocavallo
def2f476d1
Add support for conditions to `iam_members` module variables ( #1594 )
...
* project
* data-catalog-policy-tag
* dataproc
* folder
* iam-service-account
* kms
* net-vpc
* organization
* source-repository
* dataplex-datascan
2023-08-15 16:28:23 +02:00
Ludovico Magnocavallo
adf2621727
Add new `iam_members` variable to IAM additive module interfaces ( #1589 )
...
* resource management modules
* data catalog policy
* dataproc
* service account
* kms
* net-vpc
* source repository
* dataplex datascan
* service account module variable order
2023-08-14 09:54:50 +00:00
Eunan Hardy
dd3a298892
Moved allow_net_admin to enable_features flag. Bumped provider version to 4.76
2023-08-07 14:27:20 +01:00
Wiktor Niesiobędzki
4998f1d376
Grant IAM rights to service identities in host project ( #1542 )
...
* [module/project] Grant IAM rights to service identities based on used services in host project
* [blueprints/factories/project-factory] enable granting IAM permissions in host VPC for service identities directly or by specifying services in use
2023-07-29 20:07:21 +02:00
Julio Castillo
e6be368367
Simplify whitespace handling
2023-07-28 16:32:38 +02:00
Julio Castillo
1fdec356e2
Update large TOCs
2023-07-28 15:43:51 +02:00
lcaggio
d46312a7f1
Improve Dataplex ( #1519 )
...
* First commit.
* Implement fixes.
* fix google_dataplex_zone_iam_binding
2023-07-24 10:52:07 +02:00
Ludovico Magnocavallo
551dc581e8
Implement proper support for data access logs in resource manager modules ( #1497 )
...
* organization module
* rename iam_bindings_authoritative to iam_policy, fix tests
* add support for data access logs and iam policy to folder module
* test inventories
* add support for data access logs and iam policy to project module
2023-07-10 08:08:02 +00:00
Ludovico Magnocavallo
d9f7cef1e7
allow using a separate resource for boot disk ( #1496 )
2023-07-07 15:40:13 +00:00
Ludovico Magnocavallo
6fcb010ff2
Add ToCs to resource manager modules ( #1471 )
...
* organization module
* folder
* project module
2023-06-27 09:36:28 +00:00
Taneli Leppä
81285065ca
Added module for Secure Web Proxy.
2023-06-13 08:49:58 +02:00
lcaggio
39b27ac25e
Add support for Log Analytics on logging-bucket module and bump provider version ( #1423 )
...
* first commit
* Bump provider versions
* Fix tests
2023-06-07 23:23:28 +02:00
Taneli Leppä
87db60de1f
Add networksecurity to JIT identity list.
2023-06-02 16:11:16 +02:00
Ludovico Magnocavallo
884cb8b4bf
Ensure all modules have an `id` output ( #1410 )
...
* net-vpc
* a-d
* complete modules
* fix error
2023-06-02 16:07:22 +02:00
Julio Castillo
fddf8b52bc
Fix sort order
2023-05-22 19:11:33 +02:00
Julio Castillo
3e67fc00ca
Add default Cloud Build SA to project module
2023-05-22 19:11:33 +02:00
Alejandro Leal
6a89d71e96
Update to multiple README.md ( #1379 )
...
- blueprints/data-solutions/data-platform-foundations/README.md
- blueprints/factories/project-factory/README.md
- modules/net-ilb-l7/README.md
- modules/project/README.md
2023-05-16 06:11:34 +00:00
Bob Idle
94589efc34
Fix external documentation links ( #1347 )
2023-05-02 05:26:58 +00:00
lcaggio
edf67fc5d0
First commit
2023-04-18 17:32:15 +02:00
Fawzi
4722efea40
bump provider versions
2023-04-11 22:18:31 +10:00
Ludovico Magnocavallo
865ef463bb
Support new fields in bigquery module, bump provider versions, unpin local provider ( #1306 )
...
* add support for new attributes to bigquery module
* bump provider versions
2023-04-05 14:22:52 +00:00
Julio Castillo
7135c9015f
Add boilerplate
2023-03-30 09:36:14 +03:00
Julio Castillo
b503bde544
Load all service agents identities from yaml
...
Source: https://cloud.google.com/iam/docs/service-agents
2023-03-30 09:36:14 +03:00
Wiktor Niesiobędzki
c76e95e7e8
Add Cloud Batch service identity ( #1294 )
2023-03-30 08:05:12 +02:00
Wiktor Niesiobędzki
58bc576ddb
Add dataplex SA
2023-03-27 07:37:40 +00:00
Ludovico Magnocavallo
79a6e9b191
pin local provider ( #1256 )
2023-03-16 10:59:06 +00:00
Julio Castillo
c82f142d2d
Delay creation of SVPC host bindings until APIs and JIT SAs are done
2023-03-14 14:51:17 +01:00
lcaggio
cc6ee44759
Add aiplatform robot service account
2023-03-09 08:17:26 +01:00
lcaggio
e213f156ad
Fix Jit notebook service account.
2023-03-08 16:06:27 +01:00
Dan Farmer
52eb83758f
Fix compute-vm:CloudKMS test for provider>=4.54.0
...
* TF provider >= 4.54.0 now returns `rsa_encrypted_key` for
`google_compute_disk.disks["attached-disk"]` (see
hashicorp/terraform-provider-google#4448 )
* Add this field to expected model to fix test assertion failure
* Update required TF provider to 4.55.0 (latest) since the assertion
will now fail with <4.54.0, which do not return `rsa_encrypted_key`
* Updated the whole repo on advice from @ludoo
2023-02-28 15:10:22 +00:00
Valerio Ponza
36e6367a5c
adding meshconfig.googleapis.com to JIT list.
2023-02-24 16:11:35 +00:00
Valerio Ponza
7670a6009f
adding meshconfig.googleapis.com to JIT list.
2023-02-24 16:05:11 +00:00
Julio Castillo
a5e905cb80
Update remaining org policies
2023-02-21 15:49:16 +01:00
Julio Castillo
62834ca83a
Update READMEs
2023-02-21 15:49:16 +01:00
Julio Castillo
6b767c9035
Simplify org policies data model in resman modules.
2023-02-21 15:49:16 +01:00
Julio Diez
4a9ce1c5ce
Update README
...
Remove unused field
2023-02-21 14:05:03 +01:00
Wiktor Niesiobędzki
e64e8db20d
Allow additive IAM grants by robots name
...
Regreatablly member name will be known after apply, hence changes in the
tests
2023-02-16 14:39:21 +01:00
Ludovico Magnocavallo
98a08c159a
Update README.md
2023-02-11 15:52:47 +01:00
Wiktor Niesiobędzki
9395fbc822
Add documentation about JIT-ed service accounts
2023-02-11 15:52:47 +01:00
Julio Castillo
08f2540872
Bump provider version
2023-02-07 15:59:29 +01:00
Wiktor Niesiobędzki
1a657b31d3
Bump beta provider to 4.48
...
This is the first version that supports `gateway_api_config` block
2023-01-29 15:50:24 +01:00
Wiktor Niesiobędzki
135f01f191
Add aditional Multi-Cluster related services
2023-01-29 15:50:24 +01:00
Ayman Farhat
edd3a82453
Include cloudbuild API in project module ( #1116 )
...
* Include cloudbuild API in project module
* Increase number of resources
2023-01-27 21:38:01 +01:00
lcaggio
07a7be29e3
Add shared-vpc support on Data Playgroud blueprint
2023-01-19 00:33:31 +01:00
Julio Castillo
065b1471a8
Reorder org policy rules
2023-01-03 16:52:31 +01:00