Julio Castillo
616c6fbc48
Fix subnet iam_bindings to use arbitrary keys
2023-09-15 14:30:27 +02:00
Julio Castillo
f3be29cbc9
Fix tests
2023-09-15 00:27:55 +02:00
Julio Castillo
f19ab4872f
Embed subnet-level IAM in the variables controlling creation of subnets
...
This moves the top-level `iam`, `iam_bindings` and
`iam_bindings_additive` variables into subnet-level attributes. This
change also allows setting permissions to PSC or proxy-only subnets
As part of this change, the factory interface is more aligned with the
rest of the modules using a `factories_config` variable. In the future
we can add a cidrs template similar to the firewall policy module
2023-09-15 00:27:55 +02:00
Dave Gulli
819b4aab5c
fixed up nit from PR 1666
2023-09-14 13:15:00 +10:00
Dave Gulli
ced8e498f8
terraform fmt
2023-09-13 16:58:50 +10:00
Dave Gulli
09e6e8f4d2
created passing test, fixed logic
2023-09-13 16:49:14 +10:00
Dave Gulli
3d39a3ecf1
fixed up logic.
2023-09-13 14:11:09 +10:00
Dave Gulli
3479c40735
fixing tests
2023-09-12 15:53:28 +10:00
Dave Gulli
5f2bc7fa92
refactored to recommended method
2023-09-12 14:58:49 +10:00
Dave Gulli
8c264da200
small commits to add variables, append tests
2023-09-11 20:14:17 +10:00
Dave Gulli
a18071ed36
updated for global managed proxy
2023-09-11 17:42:34 +10:00
Dave Gulli
b49984e1b9
added support for global proxy only subnets
2023-09-11 16:56:09 +10:00
Ludovico Magnocavallo
819894d2ba
IAM interface refactor ( #1595 )
...
* IAM modules refactor proposal
* policy
* subheading
* Update 20230816-iam-refactor.md
* log Julio's +1
* data-catalog-policy-tag
* dataproc
* dataproc
* folder
* folder
* folder
* folder
* project
* better filtering in test examples
* project
* folder
* folder
* organization
* fix variable descriptions
* kms
* net-vpc
* dataplex-datascan
* modules/iam-service-account
* modules/source-repository/
* blueprints/cloud-operations/vm-migration/
* blueprints/third-party-solutions/wordpress
* dataplex-datascan
* blueprints/cloud-operations/workload-identity-federation
* blueprints/data-solutions/cloudsql-multiregion/
* blueprints/data-solutions/composer-2
* Update 20230816-iam-refactor.md
* Update 20230816-iam-refactor.md
* capture discussion in architectural doc
* update variable names and refactor proposal
* project
* blueprints first round
* folder
* organization
* data-catalog-policy-tag
* re-enable folder inventory
* project module style fix
* dataproc
* source-repository
* source-repository tests
* dataplex-datascan
* dataplex-datascan tests
* net-vpc
* net-vpc test examples
* iam-service-account
* iam-service-account test examples
* kms
* boilerplate
* tfdoc
* fix module tests
* more blueprint fixes
* fix typo in data blueprints
* incomplete refactor of data platform foundations
* tfdoc
* data platform foundation
* refactor data platform foundation iam locals
* remove redundant example test
* shielded folder fix
* fix typo
* project factory
* project factory outputs
* tfdoc
* test workflow: less verbose tests, fix tf version
* re-enable -vv, shorter traceback, fix action version
* ignore github extension warning, re-enable action version
* fast bootstrap IAM, untested
* bootstrap stage IAM fixes
* stage 0 tests
* fast stage 1
* tenant stage 1
* minor changes to fast stage 0 and 1
* fast security stage
* fast mt stage 0
* fast mt stage 0
* fast pf
2023-08-20 09:44:20 +02:00
Ludovico Magnocavallo
def2f476d1
Add support for conditions to `iam_members` module variables ( #1594 )
...
* project
* data-catalog-policy-tag
* dataproc
* folder
* iam-service-account
* kms
* net-vpc
* organization
* source-repository
* dataplex-datascan
2023-08-15 16:28:23 +02:00
Ludovico Magnocavallo
adf2621727
Add new `iam_members` variable to IAM additive module interfaces ( #1589 )
...
* resource management modules
* data catalog policy
* dataproc
* service account
* kms
* net-vpc
* source repository
* dataplex datascan
* service account module variable order
2023-08-14 09:54:50 +00:00
Ludovico Magnocavallo
aecba0bbd0
Add support for ipv6 to net-vpc module ( #1568 )
...
* add support for ipv6
* fix test
2023-08-05 13:07:26 +02:00
jamesmao-xyz
e1ebfeecad
Fix the tf error: Inconsistent conditional result types
...
The conditional statement, with tomap({}) will cause the following error under terraform 1.4.5
Error: Inconsistent conditional result types
│
│ on ../../../modules/net-vpc/subnets.tf line 20, in locals:
│ 20: _factory_data = var.data_folder == null ? tomap({}) : {
│ 21: for f in fileset(var.data_folder, "**/*.yaml") :
│ 22: trimsuffix(basename(f), ".yaml") => yamldecode(file("${var.data_folder}/${f}"))
│ 23: }
│ ├────────────────
│ │ var.data_folder is "data/subnets/common"
│
│ The false result value has the wrong type: element types must all match for conversion to map.
2023-04-18 19:54:37 +10:00
Ludovico Magnocavallo
8a8b7ea35f
Add support for `iam_additive` and simplify factory interface in net VPC module ( #1259 )
...
* initial implementation, no tests
* change interface, align tests
* add examples ToC
* fix variable type, test module-level variable
2023-03-17 10:12:34 +00:00
Ludovico Magnocavallo
6ba0f8b0ba
allow overriding name in net-vpc subnet factory ( #1239 )
2023-03-11 09:30:42 +01:00
Ludovico Magnocavallo
8fc9549c58
add support for proxy and psc subnets to module factory ( #1211 )
2023-03-05 17:08:43 +01:00
James D'Alfonso
15487078d4
add missing iam properties to factory_subnets
2023-02-13 10:00:50 +01:00
Ludovico Magnocavallo
29cde275f0
fix backwards compatibility for vpc subnet descriptions ( #926 )
2022-10-28 08:13:04 +02:00
Ludovico Magnocavallo
4fa1dc431d
Refactor net-vpc module for Terraform 1.3 ( #880 )
...
* module tests pass
* doc examples
* refactor blueprints
* fast stages
* fix comment typo
* fix module factory test
2022-10-14 11:02:33 +02:00
Ludovico Magnocavallo
1abfdacd56
Avoid setting empty IAM binding in subnet factory ( #731 )
...
* avoid setting empty IAM binding in subnet factory
* fix tests
2022-07-11 21:11:52 +02:00
Ludovico Magnocavallo
22d0506f4d
fix condition in subnet factory flow logs ( #654 )
2022-05-18 10:33:56 +02:00
Aleksandr Averbukh
62a299a6f5
Deprecate subnets_l7ilb variable, add support for proxy_only and psc subnets.
2022-04-13 16:38:47 +02:00
Aleksandr Averbukh
6ab121a836
Add support for Private Service Connect and Reginal Managed Proxy subnets for net-vpc module
2022-04-12 12:57:33 +02:00
Ludovico Magnocavallo
9a05aed0e8
fix psa peering routes, split files ( #586 )
2022-03-17 16:39:37 +01:00