* add id to outputs
* initial cloud build implementation for stage 0
* comments
* stage 0
* stage 1, untested
* add support for IAM and CB triggers to source repository module
* refactor stage 0 to use sourcerepo module
* refactor stage 1 to use sourcerepo module
* file descriptions
* fix gitlab pipeline
* GKE Hub initial PR commit
* variable management adjust
* comments, fixes and alphabetically ordered variables
* Update README.md
* Update README.md
* Update README.md
* fix test
* resources vs modules
still needs some love
* remove modules usage
* comments, readme update and output
* adjusting outputs and README
* fix README.md
* fix README
* adjusted based on comments
still need some love in the google_gke_hub_feature_membership variables management
* types and variable management
* optionally enable required api
* Update README.md
* reorder locals and use standard formatting
* Don't enable services from modules
* Use self links for member clusters
* Update readme
* members_clusters back to map
@juliocc let's talk about this cause we saw it together in our call and if I change it to a list than the other resources are not going to work, they need location there too.
* Forcing null feature to false due to a bug in provider
If a block is set to null the provider will crash with a "panic: interface conversion: interface {} is nil, not map[string]interface {}" a PR will follow
* Readme update
* Readme.md update
* Update README.md
* bring back tolist, WIP
* Update main.tf
* Readme.md update
* Update README.md
* Update main.tf
* Update main.tf
* Add id and self_links output to gke-cluster
* Use try and make all member feature blocks dynamic/optional
* Change member clusters to map
* Add gke-hub tests
* Address PR comments
* Update gke-hub readme
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
* Add ip_range variable for apigee-x-instance module
* Add variable definition and validation for ip_range
* Update the validation rule for ip_range variable
* Support services that require crypto/decrypt role on robot service accounts
* delete test and upload refactored implementation
* fix duplicate key on dependent services, add tests
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
We always use the same directory for terraform fixtures, so it's quite
easy to figure out its path from a pytest fixture by inspecting the
stack. This commit implements this functionality and decreases the
amount of boilerplate needed to write a test.
(Ported from fast)
* first implementation
* minimal output
* split service perimeters in regular and bridge
* tests and fixes
* new vpc-sc implementation
* remove providers file used for testing
* remove provider used during development
* First iteration updates
* All tests passing
* Updated README and var descriptions
* Updated README
* Updated example README
* Consolidated stateful vars
* consolidated stateful vars
* Updated README
* Requested changes to try
* Fixed README examples and try
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* refactor module and fix tests
* account for wildcard records
* account for empty recordset names
* align tests
* align networking end to end examples
* fix behaviour with wildcard and empty names
* Update main.tf
* fix dumb online edit :)
- Upgrade to latest terraform version (1.0.4)
- Remove tflint from linting pipeline (was not doing anything)
- Add terraform fmt check to linting pipeline
- Pass all code through terraform fmt
* Add support for lifecycle_rule in gcs module (#288)
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* fix docs
* rename unrelated interconnect module tests
* fix doc example test
Co-authored-by: iury <1934268+IuryAlves@users.noreply.github.com>
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* New Cloud Identity module
* Add tests to cloud-identity-group module
* Fix boilerplate
* Fix outputs
* Remove support for creating managers and admins
* Update cloud-identity-group README
* Small fix to cloud-identity-group README
* remove sensitive attribute from VPN modules key output
* fix type error in service account example
* update CI Terraform version
* update VPN modules docs
* require version in compute mig module
* require version in compute mig module for scaling_schedules
* update compute mig test, move provider version requirement in fixture
* add support for internal service account to GKE nodepool module, fixes#62
* update shared vpc example to use internally managed service account
* update shared vpc example to use internally managed service account
* update hub and spoke peering example to use renamed gke nodepool variables
With this commit the folders module (now called simply 'folder') only
creates a single google_folder resource. Support for creating multiple
folders is no longer needed since Terraform 0.13 added for_each support
to modules.
* add support for internal address purpose
* update gcs module README
* refactor net address module interface and add tests
* add more examples in net-address README
* Add alias IP support in `compute-vm`
* Fix tests
* add end to end tests for data solutions examples and fix example errors
* update changelog
* add missing boilerplate
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* rename infrastructure folder to networking
* example WIP: VPCs
* move ip forwarding to its own variable in compute-vm module
* add per-instance metadata support to compute-vm module
* ipip tunnels on linux savepoint
* simple multinic gateways example
* remove stale files
* resolve conflicts
* update diagram
* rename folder
* use a template for gw cloud config, rename some resources and files
* Update README.md
* Update README.md
* add basic plan tests for all networking e2e examples
* fix test for foundations/environments e2e example
* fix shared vpc e2 example count error in gke node service account permissions
* use module path for assets in onprem e2e example
* use project id from module in ilb e2e example
* add mising boilerplates in tests
* run examples tests in ci
* update module's README
* rename ilb example
* Update README.md
* fix rp_filter configuration
* README
* Update README.md
* Update README.md
* Update README.md
* update CHANGELOG
* update CHANGELOG
* Update README.md
* Invert the list for role/member mapping so that member is the key
* Add iam_additive_bindings to replace iam_additive_members and iam_additive_roles, change test suite accordingly
* attribute 'mode' added as it would error without
* Update Readme to reflect the new variable iam_additive_bindings
* test branch access
* iam_additive_bindings to replace iam_additive roles and iam_additive_members
* update foundation samples to new additive bindings format
* set bq dataset options in foundation environments to allow destroying
* trap exceptions raised during destroy in project module
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* Add support to Cloud KMS
* Fixes
* Fix tests
* Fix tests
* - change variable name to be consistent with BQ module
- remove output, not needed
- change string default value to null
* use locals to pre-populate kms key variable for all names
* rename kms variable, fix prefix check in locals
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>