3e67fc00ca
Add default Cloud Build SA to project module
2023-05-22 19:11:33 +02:00
a5bbd09776
Support CMEK encryption in logging-bucket module
...
We have a use case, Local Controls, that requires to configure
CMEK with Logging buckets. This commit adds an optional variable to
configure CMEK in the `logging-bucket` module. By default the Logging
bucket won't use CMEK encryption.
To configure CMEK for Logging buckets it's also required to add the
correct permissions to the bucket service account. For more information
and a Terraform example, see:
https://cloud.google.com/logging/docs/routing/managed-encryption-storage
https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/logging_project_bucket_config#example-usage
2023-05-22 15:12:27 +01:00
6a89d71e96
Update to multiple README.md ( #1379 )
...
- blueprints/data-solutions/data-platform-foundations/README.md
- blueprints/factories/project-factory/README.md
- modules/net-ilb-l7/README.md
- modules/project/README.md
2023-05-16 06:11:34 +00:00
0ad21351c0
Merge branch 'master' into master
2023-05-15 14:25:42 -04:00
2cbd85c8e0
Merge branch 'master' into jccb/nat-rules
2023-05-14 15:29:52 +02:00
dd1e5dc463
added the export_public_ip_routes variable in the net-vpc-peering mod… ( #1374 )
...
* added the export_public_ip_routes variable in the net-vpc-peering module to control the google_compute_network_peering resource created
* adding period to the variable description
2023-05-14 15:29:24 +02:00
87cd83f5c0
Several updates
...
Several updates
2023-05-13 23:51:46 -04:00
8e1e761577
Merge branch 'master' into cloud-functions-cpu
2023-05-13 09:45:10 +02:00
4df6c90d12
Made available CPUs configurable in Cloud Functions module
2023-05-12 21:36:22 +02:00
d20a078134
Cloud NAT rules support
2023-05-12 16:20:38 +02:00
20b8002602
feat(net-cloudnat): add config_port_allocation configuration block
2023-05-11 12:20:43 -07:00
b8b6f0dcc2
Add versions.tf to ncc-spoke-ra module
2023-05-09 16:00:13 +02:00
8c7b6b2410
Update README tfdoc
2023-05-05 19:52:41 +02:00
252be12bd4
Update README showing the Shared VPC use case
2023-05-05 19:38:34 +02:00
aec85a20c9
Add support for Shared VPC in Cloud Run
...
A VPC access connector in a Shared VPC needs to specify the subnet
and subnet project (the host project).
2023-05-05 18:15:19 +02:00
c344606ae5
Add module link to README ( #1357 )
...
* Add dataplex module
* fix dataplex test
* resolve comments
* python test removed
* Change variable desc
* refactor variables
* fix typos
* fix assets & zones resources
* fix linting error
* fix tests
* fix typo
* add module link in README
---------
Co-authored-by: lcaggio <lorenzo.caggioni@gmail.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-05 08:10:09 +00:00
e333b6ffa2
Change serve_while_stale type to a number ( #1329 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-05 07:41:12 +00:00
23299f7bd7
Add cloud dataplex module ( #1308 )
...
* Add dataplex module
* fix dataplex test
* resolve comments
* python test removed
* Change variable desc
* refactor variables
* fix typos
* fix assets & zones resources
* fix linting error
* fix tests
* fix typo
2023-05-05 09:26:46 +02:00
efb0ebe689
Switch FAST networking stages to network policies for Google domains ( #1352 )
...
* peering stage implementation
* vpn stage implementation
* tfdoc
* tests
* add most supported google domains
* align all net stages
* add support for factory to DNS response policy module
* use dns policy factory in network stages
* boilerplate
2023-05-04 07:38:40 +02:00
5763eb53d4
Enhance GKE Backup Configuration Support ( #1349 )
...
* Add more support for backup configuration
* Update docs
* Remove redundant lookups
2023-05-02 14:59:12 +00:00
98c8643886
ignore entire node config in standard cluster ( #1348 )
2023-05-02 15:23:02 +02:00
94589efc34
Fix external documentation links ( #1347 )
2023-05-02 05:26:58 +00:00
8e55374717
Merge branch 'master' into lcaggio/vertex-01
2023-04-24 20:33:03 +02:00
df7cf3d278
Migrate compute-mig tests
2023-04-21 17:51:20 +02:00
eab9053e16
Migrate billing-budget tests
2023-04-21 17:51:20 +02:00
1649787905
Migrate kms tests
2023-04-21 17:51:20 +02:00
1c7f8f5907
Migrate bigquery-dataset tests
2023-04-21 17:51:20 +02:00
230a1034ec
Migrate net-address tests
2023-04-21 17:51:19 +02:00
924230eb12
Migrate gke-hub tests
2023-04-21 17:51:19 +02:00
e881537f87
Separating GKE Standard and Autopilot Modules ( #1330 )
...
* separating GKE Standard and Autopilot Modules
* Changes for Updating the terraform and provide versions
* Changes for Autopilot Readme
* Changes for Autopilot Variable
* Changes for Autopilot Readme
* Changes for Autopilot Readme
* Changes for Blueprint
* Changes for Blueprint ReadMe
* Changes for gke-standard-cluster dependency
* Changes for gke-standard-cluster in gke-fleet
* Changes for gke-standard-cluster in cluster-mesh-gke-fleet-api
* python formatting
* python formatting
* python formatting
* GKE module naming convention
* Readme Changes
* test module
* Removing comment code from Autopilot
2023-04-21 12:08:13 +00:00
15a4dcdd71
Merge branch 'master' into lcaggio/vertex-01
2023-04-19 11:51:53 +02:00
e24b993550
Add lifecycle for create certificate before destroy
2023-04-19 09:24:35 +01:00
edf67fc5d0
First commit
2023-04-18 17:32:15 +02:00
5807c03d88
Certifiate
2023-04-18 13:15:02 +01:00
e1ebfeecad
Fix the tf error: Inconsistent conditional result types
...
The conditional statement, with tomap({}) will cause the following error under terraform 1.4.5
Error: Inconsistent conditional result types
│
│ on ../../../modules/net-vpc/subnets.tf line 20, in locals:
│ 20: _factory_data = var.data_folder == null ? tomap({}) : {
│ 21: for f in fileset(var.data_folder, "**/*.yaml") :
│ 22: trimsuffix(basename(f), ".yaml") => yamldecode(file("${var.data_folder}/${f}"))
│ 23: }
│ ├────────────────
│ │ var.data_folder is "data/subnets/common"
│
│ The false result value has the wrong type: element types must all match for conversion to map.
2023-04-18 19:54:37 +10:00
306b38295e
Add CMEK support
2023-04-17 23:32:13 +02:00
e8ff5080b9
Fix linting
2023-04-17 09:17:54 +02:00
4770cb06fd
Migrate cloudsql-instance examples
2023-04-17 09:17:54 +02:00
461f7780c2
Migrate bigtable-instance tests
2023-04-17 09:17:54 +02:00
5f82938739
Migrate cloud-identity-group tests
2023-04-17 09:17:54 +02:00
771dd02b18
Migrate logging-bucket tests
2023-04-17 09:17:54 +02:00
0150e97e51
Migrate endpoints tests
2023-04-17 09:17:54 +02:00
01b9921f5c
Migrate PubSub tests
2023-04-17 09:17:54 +02:00
1927b138d6
Migrate secret-manager tests
2023-04-17 09:17:54 +02:00
a2bffc7302
Migrate service-directory tests
2023-04-17 09:17:54 +02:00
ed49f3db39
Migrate source repository tests
2023-04-17 09:17:54 +02:00
f5e1717319
Migrate VPC-SC tests to examples
2023-04-17 09:17:54 +02:00
2d4bd5a244
Remove net-interconnect-attachment-direct
2023-04-14 11:01:54 +02:00
eca0a9583e
Add inventories to net-vpc-firewall tests
2023-04-12 14:04:58 +02:00
063c5061c8
lowercase text
2023-04-12 08:25:33 +00:00
df789db9bd
updated spaces
2023-04-11 21:59:36 +00:00
b4156eff41
Merge branch 'GoogleCloudPlatform:master' into ajln-firewall
2023-04-11 22:58:22 +02:00
3673dc2774
Merge branch 'master' into fawzihmouda/firewall-enforcement-order
2023-04-11 23:44:56 +10:00
ebf93a66ad
add new test to README
2023-04-11 23:38:16 +10:00
4722efea40
bump provider versions
2023-04-11 22:18:31 +10:00
3c4254fc1f
update firewall_policy_enforcement_order variable
2023-04-11 22:08:41 +10:00
6db1a5f5d3
updated variables doc
2023-04-11 11:39:47 +00:00
d150f03b41
included link to the tf resource bug in a comment
2023-04-11 11:30:12 +00:00
4e426a990a
correct naming in source destination egress fw rule
2023-04-11 10:48:56 +00:00
6f1e531af0
added example for source&destination ranges usage in fw rules
2023-04-11 10:45:45 +00:00
b809b315f6
added example for source&destination ranges usage in fw rules
2023-04-11 10:43:32 +00:00
660da5b585
Merge branch 'GoogleCloudPlatform:master' into ajln-firewall
2023-04-11 12:24:06 +02:00
4ccf9f9361
included an empty list as default in the ingress_rules.destination_ranges variable
2023-04-11 10:22:08 +00:00
33e8b42842
Use labels var in cloud-run module ( #1310 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-04-11 03:06:13 +00:00
adb88d8a87
allow destination_range variable in ingress rules and source_range in egress rules
2023-04-10 14:00:55 +00:00
18f1e8ebb1
added source and destination ranges to both ingress and egress fw rules
2023-04-10 10:47:51 +00:00
db3c48736c
add firewall enforcement variable to VPC
2023-04-10 01:28:12 +10:00
865ef463bb
Support new fields in bigquery module, bump provider versions, unpin local provider ( #1306 )
...
* add support for new attributes to bigquery module
* bump provider versions
2023-04-05 14:22:52 +00:00
70aefc2ddb
Add ability to run vtysh from simple-nva vm directly when frr is active ( #1301 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 21:37:02 +02:00
07f60fb0b9
Fix vtysh ( #1300 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 14:37:46 +00:00
bc2d9372aa
Fix urlmap in ILB L7 module ( #1299 )
...
* port tests to new format
* add test to catch error and fix urlmap
* boilerplate
* boilerplate
2023-04-03 15:47:37 +02:00
bf14d2da23
Add sample vtysh file to remove warnings ( #1298 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 15:10:46 +02:00
92b71a5098
Refactor cloud run module to use optionals and support all features ( #1293 )
...
* refactor cloud run resource and variables
* vpc connector variables and resource
* refactor env variable, combine and fix env examples
* fix volume example
* fix traffic split example
* fix eventarc/pubsub example
* fix eventarc/audit log example
* fix SA examples, fix examples formatting
* refactor eventarc variable
* tfdoc
* add IAM to example
* add examples for revision annotations and serverless connector
* fix new examples
* remove legacy module tests
* blueprint tests
* Add tests to cloud-run module
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-04-01 14:06:29 +02:00
c5db50d1d7
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
6204787226
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
0a20bc4f2d
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
1fb7e114fd
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
596acb63e4
removing deprecated field from gke-hub
2023-03-30 12:47:39 +02:00
44d2e9e50e
removing deprecated field from gke-hub
2023-03-30 12:47:39 +02:00
64a9952656
add Backup for GKE support
2023-03-30 12:47:39 +02:00
7135c9015f
Add boilerplate
2023-03-30 09:36:14 +03:00
b503bde544
Load all service agents identities from yaml
...
Source: https://cloud.google.com/iam/docs/service-agents
2023-03-30 09:36:14 +03:00
c76e95e7e8
Add Cloud Batch service identity ( #1294 )
2023-03-30 08:05:12 +02:00
d64b5779e4
Merge branch 'master' into dataplex
2023-03-27 21:44:24 +02:00
039d10b287
Merge branch 'master' into dataplex
2023-03-27 16:18:38 +02:00
dfa1fce274
Merge branch 'master' into bruzz/nva-firewall-mgmt
2023-03-27 16:04:55 +02:00
d68476ba07
fixes
2023-03-27 15:46:37 +02:00
cf2fd119b5
small fixes
2023-03-27 15:35:00 +02:00
9005a51a95
Use example testing instead custom test
2023-03-27 14:13:38 +02:00
d105ed59d3
Resolve review comments
2023-03-27 14:13:38 +02:00
082301c09c
Use unique bundle name for Cloud Function
...
When cloud-function module is used multiple times within project and
default `bundle_config.output_path` is used then all the instances try
to use filename and result is undefined without guarantee to converge to
desired state (i.e. multiple functions may share the same code).
2023-03-27 14:13:38 +02:00
a93b80cf95
linting
2023-03-27 11:49:01 +02:00
41570d2840
update documentation
2023-03-27 11:42:17 +02:00
021fb84765
add firewall mgmt on simple-nva module
2023-03-27 09:54:01 +02:00
58bc576ddb
Add dataplex SA
2023-03-27 07:37:40 +00:00
987ea34d93
DNS policy module fixes ( #1278 )
...
* dns response policy module
* tfdoc
* Add dns policy tests
* fix copyright, var description, initial wording
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-03-26 18:39:07 +02:00
28da881c3f
DNS Response Policy module ( #1276 )
...
* dns response policy module
* tfdoc
2023-03-26 17:42:57 +02:00
60261a6352
add static gateway id to outputs ( #1270 )
2023-03-21 18:08:45 +01:00
3d425b7d9c
Ignore changes to metadata.0.annotations in Cloud Run module
...
Fixes #1173
2023-03-21 11:54:07 +01:00
3b20d617dc
Improvements to NCC-RA spoke module. ( #1267 )
2023-03-21 07:07:44 +00:00
Julio Castillo
Ana Fernandez del Alamo
Alejandro Leal
Ludovico Magnocavallo
Manuel Aller
Miren Esnaola
Jay Schwerberg
Julio Diez
Prabha Arya
Toby Archer
Brent Walker
Bob Idle
Avinash Jha
lcaggio
bjohnrl
bjohnrl
jamesmao-xyz
ajlopezn
Antonio Lopez
Fawzi
Mikhail Filipchuk
Luca Prete
Valerio Ponza
Wiktor Niesiobędzki
bruzzechesse