Luca Prete
19565c5bad
[ #411 ] XLB module - Initial commit ( #416 )
...
* [#411 ] XLB module - Initial commit
* formatting
* Refactoring and examples tests
* Update copyright to 2022
* Remove splat syntax from outputs
* Fix linting
2022-01-14 08:19:02 +01:00
Julio Castillo
2728c4aac1
Fix all internal links
2022-01-11 11:53:19 +01:00
Julio Castillo
b2fe01c4fb
Fix vpc subnet factory for yamls with different shapes.
2022-01-11 11:16:16 +01:00
Ludovico Magnocavallo
4b500c2366
add support for additive IAM roles to KMS ( #417 )
2022-01-10 16:35:02 +01:00
Ludovico Magnocavallo
682041b369
add versions to vpc-sc module
2022-01-05 08:55:05 +01:00
Ludovico Magnocavallo
aff758b3a5
depend bridge from regular perimeters in vpc sc module
2022-01-05 03:14:30 +01:00
Ludovico Magnocavallo
79b7a6f40f
disable device policy support in vpc-sc module
2022-01-04 16:22:15 +01:00
Ludovico Magnocavallo
c17b23b665
fix ingress policies in vpc sc module
2022-01-04 16:01:03 +01:00
Ludovico Magnocavallo
91b40dc9c3
Interpolate access levels by key in vpc sc module ( #414 )
...
* interpolate access levels by key
* fix access level reference
* fix num resources in last README test
2022-01-04 13:02:38 +01:00
yuryninog
a3da60bc71
Merge branch 'master' into yuryninog-patch-1
2022-01-03 10:47:27 -05:00
Ludovico Magnocavallo
347a4c6b69
remove lifecycle block from vpc sc perimeters ( #412 )
2022-01-03 15:27:00 +01:00
Simone Ruffilli
ee25965c89
Copyright bump ( #410 )
2022-01-01 15:52:31 +01:00
Ludovico Magnocavallo
b9f00bf259
fix cases where bridge perimeter status resources are null ( #408 )
2021-12-31 16:47:39 +01:00
Ludovico Magnocavallo
ea2f92cfff
Update README.md
2021-12-31 15:14:33 +01:00
Ludovico Magnocavallo
2c7dab3bb2
New vpc-sc module implementation ( #406 )
...
* first implementation
* minimal output
* split service perimeters in regular and bridge
* tests and fixes
* new vpc-sc implementation
* remove providers file used for testing
* remove provider used during development
2021-12-31 13:29:22 +01:00
Julio Castillo
d4adcaced0
Fix typo.
2021-12-31 13:20:21 +01:00
Julio Castillo
f78902aee8
Update hierarchical firewall resource
...
This replaces all the `google_compute_organization_security_*`
resources with the newer `google_compute_firewall_*` resources.
2021-12-31 13:06:35 +01:00
Simone Ruffilli
640a5fe39c
Org/Folder: Allow for policy association when using rule factory ( #405 )
...
* Org/Folder: Allow for policy association when using rule factory
* Fix linting issue
2021-12-31 12:20:42 +01:00
Ludovico Magnocavallo
2bc5f7d33c
update tfdoc ( #404 )
2021-12-30 10:56:19 +01:00
Ludovico Magnocavallo
197e7cbe19
Fix ignore changes for hfw rules ( #401 )
...
* fix tfdoc replacement
* ignore changes to rule description
* add folder example, fixes #339
* fix ignore changes in org and folder module
2021-12-22 11:00:44 +01:00
Ludovico Magnocavallo
e2f5b96f4a
Ludo hfw fixes ( #400 )
...
* fix tfdoc replacement
* ignore changes to rule description
* add folder example, fixes #339
2021-12-22 10:46:27 +01:00
Julio Castillo
0c21fecff8
Add metric scopes support ( #397 )
...
* Add metric scopes support
* Fix typo
* new tfdoc block in README
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-12-21 09:22:10 +01:00
Ludovico Magnocavallo
1ac3fe4460
New tfdoc version ( #396 )
...
* update tfdoc
* rewrite check docs, refactor tfdoc replace, regenerate modules READMEs
* remove dead code from check docs
* do not fail on missing variable files in check docs
* fix typos
2021-12-21 08:51:51 +01:00
Simone Ruffilli
d2cbf800fc
Fixes typo
2021-12-16 18:11:40 +01:00
Simone Ruffilli
794ca6cb6c
Update outputs.tf
2021-12-16 18:11:40 +01:00
Simone Ruffilli
eeaca4023d
net-address: Added support for PSA ranges
2021-12-16 18:11:40 +01:00
sergiotejon
6a42929df3
Linux sysctls configuration and Kubelet config ( #388 )
...
* Linux sysctls configuration and Kubelet config
* Fix terraform linting issues
* Updated README.md
* Updated Kubelet config object type
* Update readme
Co-authored-by: Sergio Tejón <stejon@freepik.com>
Co-authored-by: Julio Castillo <jccb@google.com>
2021-12-16 13:32:17 +01:00
averbukh
c2b364a7ac
Merge branch 'sa-upload-crt' of https://github.com/terraform-google-modules/cloud-foundation-fabric into sa-upload-crt
2021-12-15 18:26:53 +01:00
averbukh
39b7756958
Rewording, fix typos
2021-12-15 18:26:44 +01:00
Aleksandr Averbukh
9d54e5a073
Merge branch 'master' into sa-upload-crt
2021-12-15 18:22:04 +01:00
Julio Castillo
a22169dcd2
Merge branch 'master' into yuryninog-patch-1
2021-12-15 15:27:26 +01:00
Stenio Ferreira
601ebd028e
Added support for Stateful Managed Instance Groups ( #367 )
...
* First iteration updates
* All tests passing
* Updated README and var descriptions
* Updated README
* Updated example README
* Consolidated stateful vars
* consolidated stateful vars
* Updated README
* Requested changes to try
* Fixed README examples and try
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-12-15 14:56:53 +01:00
Julio Castillo
d2859a295f
Merge branch 'master' into yuryninog-patch-1
2021-12-15 11:46:46 +01:00
Aleksandr Averbukh
aab78ece8b
Merge branch 'master' into sa-upload-crt
2021-12-13 22:50:13 +01:00
lcaggio
38b8ea1757
Fix VPC-SC module, add example ( #387 )
2021-12-13 11:26:09 +01:00
Ludovico Magnocavallo
174de3a087
Organization module refactor, in-module firewall policy factory for organization and folder ( #385 )
...
* move iam and logging to separate files, minimal refactoring
* update README
* fix example
* factory
* tfdoc
* boilerplate
* remove data_folder variable
* tfdoc
* fix default factory name
* add firewall policy to folder module
* add factory example
2021-12-13 08:41:02 +01:00
Yury Nino
63019316e1
Remove location from local.prefix
2021-12-12 16:15:21 -05:00
Ludovico Magnocavallo
3758c8f3b0
Improve PSN support in net-vpc module ( #384 )
...
* improve PSN support
* fix variable order
* fix example test
* fix cloudsql example
2021-12-09 17:26:37 +01:00
lcaggio
546385d3ee
Add support for partitioned tables on Organization sinks ( #380 )
...
* Add support for partioned tables on Organization sinks
* Update changelog
* Fix lint
* Fix lint
* Use simple bool instead of block
* fix README
* Fix Readme
* Rename variable
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-12-09 09:55:47 +01:00
Ludovico Magnocavallo
cc63468176
Merge branch 'master' into sruffilli-net-vpc-firewall-minifactory
2021-12-07 19:26:58 +01:00
Ludovico Magnocavallo
fcc8741cd2
refactor locals ( #382 )
2021-12-07 19:26:24 +01:00
Simone Ruffilli
8348504067
Fixed small bug on locals
2021-12-07 13:40:35 +01:00
Simone Ruffilli
5c8557a29d
Paying tributes to the linting gods
2021-12-07 13:29:01 +01:00
Simone Ruffilli
b1ff592990
net-vpc-firewall mini rules-factory
2021-12-07 13:26:21 +01:00
Simone Ruffilli
a0f15931a5
Removed dead code
2021-12-07 10:08:41 +01:00
Simone Ruffilli
8a2ad25a45
Updated README.md. Added tests.
2021-12-07 09:35:24 +01:00
Simone Ruffilli
04cf75d446
Gracefully handle a null secondary_ip_range
2021-12-06 17:48:12 +01:00
Simone Ruffilli
dfe1bad689
Adds support for IAM per-subnet IAM bindings via factory
2021-12-06 17:32:15 +01:00
Aleksandr Averbukh
4fd1ccb982
Update iam-sa docs
2021-12-06 17:30:56 +01:00
Aleksandr Averbukh
0e5fdda107
TF fmt
2021-12-06 17:23:53 +01:00
Aleksandr Averbukh
2d9c2fe774
Fix typo in the SA module readme
2021-12-06 17:09:48 +01:00
Aleksandr Averbukh
205975ff39
SA key uploading and credentials json generation with terraform.
2021-12-06 17:02:56 +01:00
Simone Ruffilli
a2d5f6bfa7
Code cleanup
2021-12-06 16:46:46 +01:00
Simone Ruffilli
ca03a8aea7
Update README.md
2021-12-06 16:44:33 +01:00
Simone Ruffilli
90718bf134
net-vpc module: added subnet mini-factory
2021-12-06 16:41:08 +01:00
Luca Prete
8e8f4d2117
[ #374 ] Add taint when Windows node pools are created to match the one GKE implicitly adds
2021-12-03 14:15:51 +01:00
Ludovico Magnocavallo
7bf372305e
Update README.md
2021-12-02 08:50:30 +01:00
Ludovico Magnocavallo
357f6d5939
depend log sinks from IAM roles, fixes #371
2021-12-01 12:08:04 +01:00
caiotavaresdito
c9870b44f1
defaulted to false and conditional output
2021-11-30 07:58:45 -05:00
caiotavaresdito
fd4383540a
removed extra lines
2021-11-30 07:50:53 -05:00
caiotavaresdito
5a9183d908
Updated variable default value
2021-11-29 23:09:36 -05:00
caiotavaresdito
da296c8bfe
Default creation false
2021-11-29 22:49:01 -05:00
caiotavaresdito
01e100719e
Added GKE pubsub notifications
2021-11-29 22:39:44 -05:00
caiotavaresdito
40c66f9fa9
small var conditional fix
2021-11-29 22:35:07 -05:00
Daniel Strebel
c484f052ec
Adding Apigee Environments as output for apigee-organization module
2021-11-24 18:57:29 +01:00
Julio Castillo
7204a1ca39
Merge branch 'master' into cloud-function-vpc-connector-fix
2021-11-24 11:04:23 +01:00
caiotavaresdito
9d57c10f36
Fixed boolean variable condition
2021-11-18 14:12:13 -05:00
caiotavaresdito
b09c24c736
Added dynamic block for dns_cache_config
2021-11-18 12:49:31 -05:00
apichick
da0838d55a
Fixed error with VPC connector. Count was referring to resource attributes that weren't known until after the configuration was applied
2021-11-17 17:36:17 +01:00
Julio Castillo
56bd8a6a21
Merge branch 'master' into jccb/bq-roles
2021-11-16 15:18:43 +01:00
caiotavaresdito
193b3f1097
added depends on topic iam binding
2021-11-14 07:21:35 -05:00
Andras Gyomrey
d2ef4c3277
Allow using gVNIC in compute-vm ( #211 )
2021-11-08 11:18:15 +00:00
Julio Castillo
1a35ba3478
Allow custom and predefined roles in bq dataset access rules
2021-11-08 11:34:37 +01:00
Andras Gyomrey
4d278d62e4
Default for output_file_mode
2021-11-07 13:20:00 +00:00
Andras Gyomrey
1da5bde47b
Support for consistent function bundles
2021-11-07 10:27:10 +00:00
Julio Castillo
b062d73db5
Update README.md
2021-11-04 11:34:10 +01:00
Julio Castillo
798eac7e18
Update README.md
2021-11-04 11:33:51 +01:00
apichick
e471d02810
updated doc
2021-11-04 00:23:44 +01:00
apichick
bba8f6de5d
added missing description
2021-11-04 00:22:14 +01:00
apichick
731688a782
parent 871dd3f5c0
...
author apichick <apichick@google.com> 1635979681 +0100
committer apichick <apichick@google.com> 1635980891 +0100
parent 871dd3f5c0
author apichick <apichick@google.com> 1635979681 +0100
committer apichick <apichick@google.com> 1635980849 +0100
update vpc connector variables and added options variable to containers
Updated iam variable description
Included tests for examples in README
Fixed linting
2021-11-04 00:09:28 +01:00
apichick
871dd3f5c0
Fixed linting
2021-11-03 23:50:07 +01:00
apichick
e86f3e984b
Added additional examples in README
2021-11-03 23:50:07 +01:00
apichick
8ab0f055da
Fixed mistake with for_each in containers
2021-11-03 23:50:07 +01:00
apichick
9f8239746b
Included tests for examples in README
2021-11-03 23:50:07 +01:00
apichick
c2d1f245f2
Changed volume_mounts from list to map
2021-11-03 23:50:07 +01:00
apichick
b5e1e7f3cf
Updated iam variable description
2021-11-03 23:50:07 +01:00
apichick
7f5f5a460f
Added cloud-run module
2021-11-03 23:50:07 +01:00
Ludovico Magnocavallo
f6775aca1b
Use the same versions file everywhere, pin to tf 1.0+ provider 4.0+ ( #355 )
...
* add default versions file, remove old providers and versions
* use default versions file everywhere
* fix kms module
* re-add provider configuration for data platform step 2
* update kms module outputs sorting
* update kms documentation
* fix data solutions tests
* fix GKE workload identity attribute name
* work around firewall provider issue in datafusion example
2021-11-03 15:05:43 +01:00
Roberto Jung Drebes
b96cebc3fa
Fix SA IAM dynamic interpolation
2021-11-01 19:28:58 +01:00
Christopher Avila
e42383eab9
update var to skip_delete per feedback
2021-11-01 11:33:24 -05:00
Christopher Avila
3663151465
format project variables
2021-11-01 11:22:30 -05:00
Christopher Avila
88c6af3dbb
Add a project_skip_delete variable to optionally let the project stick around after the resources are destroyed.
2021-11-01 10:59:27 -05:00
Caio Tavares
f74599a317
Added GCS notification support ( #335 )
...
* Added GCS notification support
* fixed notification output indices
* merged vars and added more conditional validation
* Terraform linting
* Added sa_email serviceAccount variable
* Fixed bool check and use try in notification var
* Fixed typo source path example block
* Fixed assert number tftest gcs example
2021-10-21 10:27:35 -04:00
Ludovico Magnocavallo
8894c40153
Merge branch 'master' into change-gke-metadata
2021-10-21 10:57:33 +02:00
Taneli Leppä
ea553ec117
The node_metadata key is deprecated, switch to mode. Change your workload_metadata_config
...
from GKE_METADATA_SERVER to GKE_METADATA.
2021-10-21 10:44:41 +02:00
Taneli Leppä
e1b79bc7f6
Added recurring maintenance window, dns config, L4ILB subsetting and monitoring/logging config to GKE cluster module.
2021-10-20 18:21:05 +02:00
Ludovico Magnocavallo
e6c8fa2552
cloud-function
2021-10-19 21:10:43 +02:00
Ludovico Magnocavallo
923ba819d1
bigquery-dataset
2021-10-19 21:09:16 +02:00
Ludovico Magnocavallo
555de95f48
iam-service-account
2021-10-19 21:05:09 +02:00
caiotavaresdito
4e7a34cc5b
Fixed typo README cloudsql-instance
2021-10-18 11:25:43 -04:00
caiotavaresdito
64fc4fcaf6
Fixed variable name typo
2021-10-18 10:55:37 -04:00
caiotavaresdito
9c9916744a
removed backup_retention_settings var
2021-10-18 09:12:22 -04:00
caiotavaresdito
dbfb5404a4
merged backup_retention_settings var
2021-10-18 09:11:24 -04:00
caiotavaresdito
7ea01e2c03
Updated doc to include backup_retention_settings
2021-10-18 09:11:24 -04:00
caiotavaresdito
c26d457b55
Added additional backup settings
2021-10-18 09:11:24 -04:00
Ludovico Magnocavallo
bf5e1e5b4a
add l7ilb subnets to net-vpc module
2021-10-18 09:52:28 +02:00
Caio Tavares
6cb381334e
Added dynamic description of compute-vm ( #328 )
...
* Added dynamic description of compute-vm
* Re-ordered variables alphabetically
2021-10-16 16:23:11 +02:00
caiotavaresdito
75b5c91c28
Terraform linting
2021-10-15 13:39:30 -04:00
caiotavaresdito
910567ce5c
removed default labels and let user pass values in
2021-10-15 13:38:23 -04:00
caiotavaresdito
06d0085edd
removed name of bucket from label field
2021-10-15 13:35:40 -04:00
Ludovico Magnocavallo
c8dba7f10e
Merge branch 'master' into sruffilli/factories
2021-10-15 09:33:54 +02:00
Ludovico Magnocavallo
f5353d2d2c
Merge branch 'master' of github.com:terraform-google-modules/cloud-foundation-fabric
2021-10-14 20:15:41 +02:00
Ludovico Magnocavallo
dcb1e32097
update test params after README fix
2021-10-14 20:15:31 +02:00
Caio Tavares
7dad4496b4
Feature/added gcs website ( #325 )
...
* Added GCS website block support
* Terraform linting
* Moved variable to last and re-generated README
2021-10-14 20:11:26 +02:00
Simone Ruffilli
36fb785ea9
Resource factories
2021-10-14 17:00:04 +02:00
Ludovico Magnocavallo
ead0593da4
Update README.md
2021-10-12 10:45:14 +02:00
Ludovico Magnocavallo
0f22bce9e2
Update README.md
2021-10-12 09:40:10 +02:00
Julio Castillo
1d13e3e624
Add more validations to linter
...
- Ensure all variables and outputs are sorted
- Ensure all variables and outputs have a description
- Add data-solutions/data-platform-foundations to linter
Fix all modules to follow these new conventions.
2021-10-08 18:26:04 +02:00
Julio Castillo
89525bed95
Add Cloud SQL module to READMEs
2021-10-07 21:52:22 +02:00
Julio Castillo
cd4917f2f2
README and test fixes
2021-10-07 21:50:16 +02:00
Ludovico Magnocavallo
bd1f9354ce
Update README.md
2021-10-07 19:41:45 +02:00
Ludovico Magnocavallo
3cdc8f79ef
Typos
2021-10-07 19:41:12 +02:00
Julio Castillo
74f17a51a9
Reorder variables
2021-10-07 18:25:49 +02:00
Julio Castillo
be60c1ad4f
Fix README title
2021-10-07 18:22:43 +02:00
Julio Castillo
1378efde6e
New module for Cloud SQL instances
2021-10-07 18:20:07 +02:00
Julio Castillo
77c888e302
Always output project_id from net-vpc
2021-10-06 18:21:04 +02:00
Ludovico Magnocavallo
a45814f41c
Naming convention module ( #318 )
...
* naming convention module
* tfdoc
* lint fixture
* add optional separator, variable descriptions
* add output descriptions
* fix example tests
2021-10-05 12:21:12 +02:00
Ludovico Magnocavallo
127e090511
Update README.md
2021-10-05 08:22:07 +02:00
Ludovico Magnocavallo
5001eb49a4
Make dns module resilient to dynamic values ( #317 )
...
* refactor module and fix tests
* account for wildcard records
* account for empty recordset names
* align tests
* align networking end to end examples
* fix behaviour with wildcard and empty names
* Update main.tf
* fix dumb online edit :)
2021-10-04 18:59:14 +02:00
Julio Castillo
2863d929a5
Remove redundant variable `admin_ranges_enabled`
2021-10-04 14:12:00 +02:00
Julio Castillo
2a6f662e71
Update firewall README
2021-10-04 12:56:17 +02:00
Julio Castillo
f5d00d22dd
Fix typo
2021-10-04 12:53:20 +02:00
Julio Castillo
400a94658d
Allow using named ranges in firewall rules
2021-10-04 12:39:45 +02:00
Julio Castillo
d3e8b5e35e
Use single resource for custom rules in firwall module
2021-10-04 12:06:31 +02:00
Ludovico Magnocavallo
bccda4eb39
Update README.md
2021-10-04 11:09:09 +02:00
Ludovico Magnocavallo
262f823464
Refactor compute-vm to remove multiple instance support ( #314 )
...
* first iteration, largely untested
* basic tests pass
* basic tests pass
* nic test
* disk tests, refactor
* fix tests
* update README
* update gcs to bq example
* fix README examples, do not create disks for template
* fix data solutions examples
* update cloud operations examples
* update networking examples, mig and ilb modules examples
* update default image to debian 11
* update README table
2021-10-04 10:46:44 +02:00
Daniel Marzini
a220f2ab1f
Update README.md
2021-09-14 15:12:06 +02:00
Daniel Marzini
10698e1d5c
Update README.md
2021-09-14 14:57:20 +02:00
Daniel Marzini
cb7a41e49f
Merge branch 'master' into feature/vpc-sc-multiple-perimeters
2021-09-14 10:22:19 +02:00
Daniel Marzini
6b24acbbd4
Update README.md
2021-09-14 10:21:36 +02:00
Julio Castillo
a1152003c6
Output role information from organization module
2021-09-13 17:36:21 +02:00
Daniel Marzini
8ed8d917a9
Update README.md
2021-09-03 18:54:53 +02:00
Daniel Marzini
996b8d2aa6
Update README.md
2021-09-03 18:53:30 +02:00
Daniel Marzini
ae2dddc192
Update README.md
2021-09-03 18:41:51 +02:00
Daniel Marzini
d5fde0e6e1
adjusting code to reflect pr changes request
2021-09-03 18:35:06 +02:00
sruffilli
7b01f3dc08
Updated README.md for net-vpc module ( #299 )
...
* Updated README.md for net-vpc module
Added a recommendation to avoid setting up shared vpcs using the module for prod usage.
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-08-25 16:54:05 +02:00
Julio Castillo
658eb3b297
Fix typo
2021-08-13 12:35:12 +02:00
Julio Castillo
5f97d68c0b
Update readmes
2021-08-13 12:33:44 +02:00
Julio Castillo
1b80085c9b
Create email notification channels automatically
2021-08-13 12:02:46 +02:00
Julio Castillo
3a8a040ff3
Billing budget module
2021-08-13 12:01:00 +02:00
Julio Castillo
cb7c65135e
Update CI processes ( #296 )
...
- Upgrade to latest terraform version (1.0.4)
- Remove tflint from linting pipeline (was not doing anything)
- Add terraform fmt check to linting pipeline
- Pass all code through terraform fmt
2021-08-12 17:30:53 +02:00
Julio Castillo
c2e23001b7
Fix formatting
2021-08-12 10:07:27 +02:00
Noah Dungey
4f91e3039b
Fixed typo in max_delivery_attempts variable name.
...
Fixed type in max_delivery_attempts variable name.
2021-08-11 15:48:38 -06:00
Julio Castillo
75418bbbd0
Compute service account email statically
...
Generate the service account output statically based on the service
account name and parent project. This allows, among other things, to use
service accounts as map keys (e.g. to be used in the `iam` argument in
other modules).
2021-08-10 10:50:44 +02:00
vanessabodard-voi
f181c5164d
Update list ==> tolist ( #293 )
2021-08-05 18:03:54 +02:00
Daniel Strebel
a0b3f2fb7f
Apigee tfdoc update
2021-08-05 15:55:23 +02:00
Daniel Strebel
109bd80f43
Apigee module variable description fixes
2021-08-05 15:53:44 +02:00
Daniel Strebel
cb6ded0528
Adding TFDOC to Apigee modules
2021-08-05 14:25:50 +02:00
Daniel Strebel
e8b01064f6
Apigee add paid only variables and examples
2021-08-05 13:21:57 +02:00
Daniel Strebel
9c4bb0562f
apigee module without service networking
2021-08-05 11:57:22 +02:00
Daniel Strebel
24b5e03c80
initial scaffold for an Apigee tf module
2021-08-04 17:09:44 +02:00
Ludovico Magnocavallo
202892b344
Add support for lifecycle_rule in gcs module ( #288 ) ( #289 )
...
* Add support for lifecycle_rule in gcs module (#288 )
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* fix docs
* rename unrelated interconnect module tests
* fix doc example test
Co-authored-by: iury <1934268+IuryAlves@users.noreply.github.com>
2021-07-30 12:07:17 +02:00
averbukh
a1008a83a8
Fix firewall-yaml readme
2021-07-29 11:54:26 +02:00
Aleksandr Averbukh
5197274974
Merge branch 'master' into decentralized-firewall-averbukh
2021-07-28 22:18:20 +02:00
Ludovico Magnocavallo
83e469b07f
Update main.tf
2021-07-28 18:47:53 +02:00
sly92
804ce9bdc4
Add new variable for flexibility between project id & name ( #287 )
...
* add new variable for flexibility between project id & name
* remove random feature & use new variable
* remove project_id variable & use local descriptive name variable
* fix bad project_id output & avoid confusing name
* update readme
* Update main.tf
Co-authored-by: slaheddine_bejaoui.ext <slaheddine_bejaoui.ext@orange.com>
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-07-28 18:08:51 +02:00
averbukh
c0aab69bb7
feat: Decenrtalized firewall management example added.
2021-07-26 09:22:40 +02:00
Daniel Marzini
a0e6cfab67
Update README.md
2021-07-22 11:45:02 +02:00
Daniel Marzini
5b88545ca0
Update README.md
2021-07-22 10:41:11 +02:00
Daniel Marzini
4a3464fa7e
Update variables.tf
2021-07-22 10:36:01 +02:00
Daniel Marzini
a604e66cf9
Update README.md
2021-07-22 10:18:18 +02:00
Daniel Marzini
0f10e820f9
Enable multiple vpc-sc perimeters over multiple modules
2021-07-22 09:19:10 +02:00
Ludovico Magnocavallo
813ea55d0d
Simplify new CF from onprem via PSC example ( #280 )
...
* add support for PSC addresses to net-address module
* simplify PSC CF example
* update diagram
2021-07-20 15:05:48 +02:00
Lorenzo Caggioni
a793f62bd4
fix logic on module
2021-07-16 09:50:51 +02:00
Julio Castillo
0ce81743f2
Update CAI example ( #274 )
...
* Add Asset Inventory API to project module
* Create feed from terraform in CAI example
* Fix tests
* sort services
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-07-08 08:57:27 +02:00
Julio Castillo
46e83d3b59
Autopilot support
2021-06-28 00:54:14 +02:00
lcaggio
3d84897b4b
Create pubsub service identity if service is enabled ( #270 )
...
* Create service identity if service is enabled
* remove dry run mode
* fix tests
* Improve for_each logic
2021-06-25 09:26:33 +02:00
Ludovico Magnocavallo
1f5b96b7f1
Update README.md
2021-06-23 12:26:05 +02:00
dsiviglia
f3901fc567
module for VLAN attachment+cloud router+bgp ( #254 )
...
* module for VLAN attachment+cloud router+bgp
* fix vlan attachments review comments
* run terraform fmt
* fix code review comment and build errors
* fix for code review comments
* code review changes
* changes after review
* changes after code review
* changes after code review
2021-06-16 13:56:40 +02:00
Lorenzo Caggioni
f3390839ab
Fix dependencies
2021-06-15 09:44:15 +02:00
Lorenzo Caggioni
d03773df46
Fix dependencies
...
Fix role
2021-06-15 00:54:59 +02:00
Lorenzo Caggioni
741de90eed
Fix test
2021-06-14 19:03:02 +02:00
Lorenzo Caggioni
12e69c71e3
Add Service Identity for Secret Manager
2021-06-14 18:35:53 +02:00
lcaggio
1a7fe48c46
Merge pull request #263 from terraform-google-modules/lcaggio-kms-prj
...
Add IAM cryptDecrypt role to robot service account on specified keys
2021-06-11 18:12:58 +02:00
Lorenzo Caggioni
4a2ba0c36c
Add example
2021-06-11 18:02:35 +02:00
Lorenzo Caggioni
136fe03e1d
Remove extralines
2021-06-11 17:41:19 +02:00
Lorenzo Caggioni
dc01db0426
Update Readme and rename variable
2021-06-11 17:38:27 +02:00
Lorenzo Caggioni
476d2c79e9
Add IAM cryptDecrypt role to robo service account on specified keys
2021-06-11 16:00:20 +02:00
lcaggio
efb52eeb6c
Move `bq` robot service account into the robot service account project output ( #262 )
2021-06-11 13:02:30 +02:00
lcaggio
d1b560c76d
Fix message_retention_duration type ( #261 )
...
* Fix message_retention_duration type
* Fix Readme and update Changelog
* Update CHANGELOG.md
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-06-10 18:46:14 +02:00
Ludovico Magnocavallo
a4158827a6
add BGP peers to vpn-ha outputs ( #257 )
2021-06-04 15:58:39 +02:00
Daniel Marzini
71031efc7c
Dataplane V2 integration ( #256 )
...
* Dataplane V2 integration
* Moving enable_dataplane_v2 outside addons
* Fixing enable_dataplane_v2 position and default value
* Fix README with default value
* Removing enable_dataplane_v2 from addons
* Adding standalone Dataplane V2 Example
2021-06-04 12:29:12 +02:00
Julio Castillo
faa3a1cfe9
Add deletion_protection to bigquery module
2021-06-01 18:36:53 +02:00
lcaggio
cd6e1c254d
Fix min provider version for vpc-sc module ( #252 )
2021-05-31 11:22:56 +02:00
Ludovico Magnocavallo
c1719951a9
Update to Terraform 0.15 ( #248 )
...
* don't use deprecated list() function
* don't use deprecated map() function
* update Terraform version in CI files
2021-05-22 15:58:55 +02:00
Ludovico Magnocavallo
3d7cc9810d
Fix output
2021-05-20 21:34:24 +02:00
lcaggio
585b3a79ee
Merge branch 'master' into vpc-sc-02
2021-05-18 09:52:45 +02:00
lcaggio
a7d58a73cf
Fix README
2021-05-17 20:41:59 +02:00
lcaggio
722b3f59f8
Fix link
2021-05-17 18:41:37 +02:00
lcaggio
4ecd13225a
Fix variable
2021-05-17 18:38:46 +02:00
lcaggio
f306f01fbc
Fix and change variable
2021-05-16 08:31:55 +02:00
sruffilli
654e171b32
Update resource name of google_dns_policy on net-vpc
2021-05-12 16:40:56 +02:00
sruffilli
36d253f1d3
DNS Policies in net-vpc module ( #238 )
2021-05-12 15:02:27 +02:00
lcaggio
628ab41c33
Add Support for Ingress Egress policy
2021-05-07 09:07:36 +02:00
Julio Castillo
875b786171
Optional create for service accounts
2021-05-06 12:07:39 +02:00
Chinmay Dorlikar
9c0b37f100
Added CORS dynamic block for gcs : feature/cors for gcs ( #232 )
...
* Added a dynamic CORS block for gcs module. Changed main.tf and variables.tf
* Updated the README for the CORS block
* Ran tfdoc for /modules/gcs/README.md
Co-authored-by: Chinmay Dorlikar <chinmay.dorlikar@quantiphi.com>
2021-04-23 17:58:58 +02:00
Julio Castillo
047ce9551e
Include VPC name in PSC reserved address name
2021-04-21 17:17:25 +02:00
Julio Castillo
140378f2f5
Add support for private service connect
2021-04-21 13:55:00 +02:00
Ludovico Magnocavallo
f8413cc98e
Add support for group-based IAM to resource management modules ( #229 )
...
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
2021-04-11 14:48:16 +02:00
Luca Prete
fbbe88eb23
[ #221 ] Add master_global_access_config to gke module ( #222 )
2021-04-07 09:50:40 +02:00
Luca Prete
aebb9dc1fe
[ #219 ] Specify VPC module key output format in docs ( #220 )
...
* [#219 ] Specify VPC module key output format in docs
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-04-01 15:23:57 +02:00
Ludovico Magnocavallo
3597769e8e
Support one group per zone in compute-vm ( #218 )
...
* support multiple groups per zone in compute-vm
* fix ilb as next hop example
2021-04-01 08:27:38 +02:00
Ludovico Magnocavallo
5149795bec
Allow using a non-suffixed name in compute-vm ( #217 )
...
* allow using a non-suffixed name in compute-vm
* update README
2021-03-31 20:01:10 +02:00
Julio Castillo
7ca2e60399
Fix tests
2021-03-31 10:45:35 +02:00
Julio Castillo
94b1a439ee
Fix IAM bindings for logging sinks
...
- Move to non-authoritative bindings to allow multiple sinks to write to
the same destination
- Allow automatically adding logging bucket IAM bindings
2021-03-31 09:59:28 +02:00
Julio Castillo
37935cee3a
Add project parameter to bigquery iam bindings.
2021-03-30 17:02:20 +02:00
lcaggio
eee06bd5dc
Remove device_policy, it requires BeyondCorp Enterprise Premium. we will implement it in future iterations. ( #215 )
2021-03-29 12:17:11 +02:00
Ludovico Magnocavallo
7052cfdb08
allow DNS zones with no vpcs ( #214 )
2021-03-27 09:08:54 +01:00
Ludovico Magnocavallo
3155bd7349
Update main.tf ( #213 )
2021-03-20 12:56:11 +01:00
lcaggio
2916f4e078
Project Module: add VPC-SC support ( #212 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
* Add VPC-SC support in the project module.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-19 20:12:29 +01:00
lcaggio
de5a9d747a
Add VPC-SC support for Regions, device policy and access policy dependency ( #210 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-18 13:04:37 +01:00
averbukh
5a796f3637
Shorten env names
2021-03-14 10:23:52 +01:00
averbukh
16e11fa7c1
Adjust FW rule name with network name to prevent name clashing within the same project.
2021-03-14 10:14:39 +01:00
averbukh
3428e9d562
Fix typo.
2021-03-14 03:10:16 +01:00
averbukh
fcd44c2b78
Added FW-Yaml module for distributed-firewall network example.
2021-03-14 03:03:36 +01:00
Julio Castillo
f5fb28b4b2
Merge pull request #203 from terraform-google-modules/jccb/log-buckets
...
Support for Cloud Logging buckets
2021-03-05 08:43:38 +01:00
Ludovico Magnocavallo
86b88e0634
fix modules version constraints ( #206 )
2021-03-05 08:41:59 +01:00
Ludovico Magnocavallo
8e44734fe5
set version for google-beta provider ( #205 )
2021-03-05 08:20:48 +01:00
Ludovico Magnocavallo
605ec7c4d1
depend org module resources for policy etc from IAM bindings ( #204 )
2021-03-05 08:19:39 +01:00
Julio Castillo
ad68fc4dfa
Support for cloud logging buckets
2021-03-03 14:23:59 +01:00
Ludovico Magnocavallo
54955b3e6d
Add support for per-tunnel routers to VPN dynamic and HA ( #202 )
...
* add optional per-tunnel router to vpn dynamic module
* add support for per-tunnel router to VPN HA
* fix onprem tests
2021-03-02 07:36:06 +01:00
Julio Castillo
2d9d81e061
Add support for essential contacts
2021-02-24 18:34:17 +01:00
Ludovico Magnocavallo
7e429425fe
Fix IAM additive ( #200 )
...
* Fix wrong iam_addictive variable input (#197 )
iam_additive variable from Project module expect { "roles" = list(string) } input
Co-authored-by: Emre Turan <emre@unl.global>
* fix project example
Co-authored-by: Emre Turan <turan.emre@gmail.com>
Co-authored-by: Emre Turan <emre@unl.global>
2021-02-16 20:01:18 +01:00
Julio Castillo
abf61fa7e2
Add support for allow- and deny-lists
2021-02-15 17:32:39 +01:00
Julio Castillo
d32937f263
Add Squid Docker images
2021-02-15 17:32:39 +01:00
Julio Castillo
1e11c670f5
Update copyright to 2021
2021-02-15 09:38:10 +01:00
Julio Castillo
5e983f55a7
Make `project_id` output non-dynamic
2021-02-15 09:22:19 +01:00
Julio Castillo
be8c61ac2c
Cloud Identity Group module ( #182 )
...
* New Cloud Identity module
* Add tests to cloud-identity-group module
* Fix boilerplate
* Fix outputs
* Remove support for creating managers and admins
* Update cloud-identity-group README
* Small fix to cloud-identity-group README
2021-02-13 06:55:22 +01:00
Ludovico Magnocavallo
e3a03a76ff
Add support for rePD and existing disk attachment to compute VM ( #194 )
...
* initial untested support for repd in compute-vm
* fix repd reference in instance disks
* add support for snapshot source, change disk variable
* fix attach existing disk to instance
* fix examples, add documentation on disk sources
* fix attaching disk for instance templates, add examples
* fix data e2e examples
* update vars table in README
2021-02-03 08:00:08 +01:00
averbukh
aec1f3df96
Adjusting second region for on-prem-in-a-box for testing more use cases
2021-01-29 18:43:53 +01:00
Ludovico Magnocavallo
0ce058e04f
Fix tests for 0.14 compatibility ( #191 )
...
* remove sensitive attribute from VPN modules key output
* fix type error in service account example
* update CI Terraform version
* update VPN modules docs
* require version in compute mig module
* require version in compute mig module for scaling_schedules
* update compute mig test, move provider version requirement in fixture
2021-01-29 14:55:50 +01:00
Ludovico Magnocavallo
2aa72c91f5
add provider constraint for net-vpc, fixes #185
2021-01-15 19:01:28 +01:00
Ludovico Magnocavallo
4e8fbbc54a
fix dns peering example in doc
2021-01-11 12:29:29 +01:00
Aurélien Legrand
dcbbf924f3
Update README.md in modules/dns
...
Adding an example for DNS Peering zones.
2021-01-11 12:11:20 +01:00
Roberto Jung Drebes
177a4d7f2c
update README.md for org module with new parameters
2020-12-10 09:36:32 +00:00
Roberto Jung Drebes
91febe4cd1
Authoritative IAM for organization
2020-12-09 22:58:17 +00:00
Julio Castillo
452669fed1
Update README and CHANGELOG
2020-12-06 18:05:57 +01:00
Julio Castillo
c6691a6140
Add include_children option folder and organization sinks
2020-12-06 17:56:27 +01:00
Julio Castillo
d4201c740d
Update environments e2e example with new sinks
2020-12-05 13:24:44 +01:00
Julio Castillo
1af70c748c
Rename "grant" to "iam" in sink variables
2020-12-05 12:39:06 +01:00
Ludovico Magnocavallo
7aaf24afd3
Add support for confidential compute to compute-vm module ( #179 )
...
* add support for confidential compute
* add support for confidential compute to instance template
2020-12-05 09:14:12 +01:00
Julio Castillo
2c0f949f07
Logging sinks and exclusions ( #178 )
...
* Add sink support to folder module
* Make folder creation optional.
* Add logging sinks to the organization module
* Add logging sink support to project module
* Update readme
2020-12-05 08:31:35 +01:00
Julio Castillo
ca82d71468
Fix organization tests
2020-11-25 18:47:11 +01:00
Julio Castillo
f56c36e2d0
Rename org_id variable to organization_id in organization module
2020-11-25 18:36:19 +01:00
Julio Castillo
0e535a3675
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 18:07:16 +01:00
Julio Castillo
dc038ad71f
Add tests for hierarchical firewall policy
2020-11-25 18:06:25 +01:00
Andras Gyömrey
c8958c548f
monitoring is automatically enabled when monitoring.writer is enabled ( #177 )
2020-11-25 17:32:53 +01:00
Julio Castillo
ce6311f684
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:45:55 +01:00
Julio Castillo
b2d8052b0e
Update modules/project/README.md
...
Remove `project_create = false` to all tests to run
2020-11-25 14:44:31 +01:00
Julio Castillo
1c3451cc35
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:37:36 +01:00
Andras Gyömrey
e0a45b61c5
fix README ( #176 )
2020-11-25 14:21:22 +01:00
Julio Castillo
6bd299190f
Update variable documentation.
2020-11-23 19:10:42 +01:00
Julio Castillo
254efdd799
Hierarchical firewall support for organizations
2020-11-23 19:01:02 +01:00
Julio Castillo
779f585d1d
Hierarchical firewall policies for folders
2020-11-23 18:45:18 +01:00
Ludovico Magnocavallo
cffc823f48
refactor access in bq module, add iam ( #172 )
2020-11-21 09:45:56 +01:00
Ludovico Magnocavallo
27aa0aa64c
Add support for forwarding path to dns module ( #171 )
...
* add support for forwarding path to dns module
* update README
2020-11-20 08:35:58 +01:00
Ludovico Magnocavallo
f611e99e46
add mtu ( #170 )
2020-11-19 16:48:08 +01:00
Ludovico Magnocavallo
dda715670c
Minor vpc-sc module corrections ( #167 )
...
* Fix #158
* fix variable type
2020-11-16 18:04:12 +01:00
Ludovico Magnocavallo
2ddfaad4bc
Merge branch 'master' of github.com:terraform-google-modules/cloud-foundation-fabric
2020-11-16 17:39:59 +01:00
Ludovico Magnocavallo
4cd351fa3b
align firewall module README with variables
2020-11-16 17:39:51 +01:00
nikever
5bfba15acf
Add boot_disk_kms_key to node_config ( #166 )
...
* Add support for CMEK to encrypt boot disks
* Fix typo in variable name
Co-authored-by: Niccolo Raspa <niccolo@sighup.io>
2020-11-16 17:37:10 +01:00
Ludovico Magnocavallo
42a865b8fa
fix provider version pinning
2020-11-14 17:47:07 +01:00
Ludovico Magnocavallo
80acb607c2
Add NLB health checks source ranges
...
https://cloud.google.com/load-balancing/docs/health-checks#fw-netlb
2020-11-12 13:57:56 +01:00
Samuele Chiocca
323e962fc8
Adding node taints on gke nodepool ( #165 )
...
* Adding node taints on gke nodepool. Automatic transformation via local variables from list(string) to the map google provider expects.
* Fixing readme with tfdoc.py
2020-11-10 13:41:19 +01:00
Ludovico Magnocavallo
ea6c5c3fed
shorten internal service account name
2020-11-09 13:28:42 +01:00
Ludovico Magnocavallo
6610b79b6c
Revert iam_additive behaviour ( #160 )
...
* revert iam_additive format, add iam_additive_members
* revert iam_additive format, add iam_additive_members
* update CHANGELOG
2020-11-09 11:29:08 +01:00
Julio Castillo
af2c7bd154
Fix GKE examples
2020-11-07 16:43:18 +01:00
Julio Castillo
946822ff5c
Merge pull request #157 from terraform-google-modules/example-tests
...
Make examples in READMEs runnable and testable
2020-11-07 11:38:19 +01:00
Ludovico Magnocavallo
b3ae7c9454
Add support for internal service account to GKE nodepool module ( #156 )
...
* add support for internal service account to GKE nodepool module, fixes #62
* update shared vpc example to use internally managed service account
* update shared vpc example to use internally managed service account
* update hub and spoke peering example to use renamed gke nodepool variables
2020-11-07 10:48:12 +01:00
Julio Castillo
eecdee63e6
Make examples in READMEs runnable and testable
2020-11-07 10:28:33 +01:00
Julio Castillo
ec6b1bc8ba
Update references to renamed modules
2020-11-06 10:14:30 +01:00
Julio Castillo
1df08caa7f
Update READMEs with new variable names
2020-11-06 09:43:12 +01:00
Julio Castillo
8a672b1b13
Fix typo in pubsub README
2020-11-06 09:36:55 +01:00
Julio Castillo
c60e37d884
Update copyright in headers
2020-11-06 09:36:09 +01:00
Ludovico Magnocavallo
f9e4a1d614
bump required tf version in modules using conditions
2020-11-06 08:43:06 +01:00
Ludovico Magnocavallo
b4fc8167a0
use new iam variable in cloud function module
2020-11-06 08:37:44 +01:00
Ludovico Magnocavallo
f1a3c3ebe8
use new iam variables in kms module
2020-11-06 08:26:50 +01:00
Ludovico Magnocavallo
f72bea3f96
use new iam variable in container registry
2020-11-06 08:22:35 +01:00
Ludovico Magnocavallo
0d17007c9d
new iam variable in endpoints module
2020-11-06 08:18:57 +01:00
Ludovico Magnocavallo
efc694ba01
fix and streamline bigtable module, add tests, align to new iam variable name
2020-11-06 08:11:07 +01:00
Ludovico Magnocavallo
3a4938874b
rename iam variables in pubsub module
2020-11-05 21:28:34 +01:00
Ludovico Magnocavallo
c33e68ecd0
use list in service account module variable types
2020-11-05 09:26:24 +01:00
Ludovico Magnocavallo
cb54ff77a1
rename iam variable in service account module
2020-11-05 09:22:13 +01:00
Ludovico Magnocavallo
44f1828c33
rename iam variable in compute vm module
2020-11-05 09:10:49 +01:00
Ludovico Magnocavallo
462a7023cd
rename iam variable in source repo module
2020-11-05 08:58:05 +01:00
Ludovico Magnocavallo
8267252031
rename iam variable in net vpc module
2020-11-05 08:49:29 +01:00
Ludovico Magnocavallo
9d0db19c5e
rename iam variables in gcs module
2020-11-04 16:57:06 +01:00
Ludovico Magnocavallo
bf23199724
rename iam variables in artifact registry
2020-11-04 16:56:57 +01:00
Ludovico Magnocavallo
0e1fb9bf9e
rename iam variables in folder unit module
2020-11-04 16:49:29 +01:00
Ludovico Magnocavallo
02d867ff3d
rename iam variables in folder module
2020-11-04 16:49:19 +01:00
Ludovico Magnocavallo
d47478a466
rename iam members variable in project module
2020-11-04 16:22:00 +01:00
Ludovico Magnocavallo
d0ed3b7614
rename iam additive variable in project module
2020-11-04 16:17:12 +01:00
Ludovico Magnocavallo
d2c84de8ff
use new variable names in organization module
2020-11-04 15:44:28 +01:00
Ludovico Magnocavallo
627f86219f
rename iam variable in secret manager module, add tests
2020-11-04 14:19:16 +01:00
Ludovico Magnocavallo
c372980e15
update service directory module to 0.13
2020-11-04 14:08:33 +01:00
Ludovico Magnocavallo
8dc131550f
fix variable validation in project module to allow for null values
2020-11-04 12:06:01 +01:00
Julio Castillo
7bd31ccf52
Added some basic variable validation
2020-11-03 08:12:11 +01:00
Julio Castillo
352b7a0645
Use description variable in dns module
2020-11-03 07:59:52 +01:00
Julio Castillo
c75230adf3
Remove iam_roles from net-vpc
2020-10-30 19:19:40 +01:00
Julio Castillo
405a3c23d5
Update project README
2020-10-30 19:06:20 +01:00
Julio Castillo
82a1fe3c20
Removing iam_roles from multiple modules
...
This commits removes the iam_roles variables from the modules:
- artifact-registry
- bigtable-instance
- cloud-function
- container-registry
- endopoints
- pubsub
- source-repository
2020-10-30 18:58:07 +01:00
Julio Castillo
96dba2256e
Remove iam_roles from secret_manager
2020-10-30 18:25:17 +01:00
Julio Castillo
53cb8359ee
Remove *_roles variables in kms module
2020-10-30 17:58:45 +01:00
Julio Castillo
fc5017cc24
Remove dependency hooks to net-vpc-peerings.
2020-10-30 00:19:28 +01:00
Julio Castillo
b13a10efe5
Remove iam_roles from compute-vm module
2020-10-30 00:18:10 +01:00
Julio Castillo
1a7b9836ea
Update folder and service account READMEs
2020-10-29 23:54:40 +01:00
Julio Castillo
78efb63b4a
Remove iam_roles from project module
2020-10-29 23:51:34 +01:00
Julio Castillo
6e81125c6a
Remove useless calls to toset
2020-10-29 23:29:41 +01:00
Julio Castillo
61d402fece
Update gcs module to terraform 0.13
2020-10-29 23:26:03 +01:00
Julio Castillo
85fda5b1fe
Remove iam_roles from service accounts, folder and organization modules
2020-10-21 09:37:05 +02:00
Julio Castillo
13ed799a8b
Update service account module to Terraform 0.13
2020-10-20 22:36:03 +02:00
Julio Castillo
2e7876b4c7
Update folders module to Terraform 0.13
...
With this commit the folders module (now called simply 'folder') only
creates a single google_folder resource. Support for creating multiple
folders is no longer needed since Terraform 0.13 added for_each support
to modules.
2020-10-20 15:41:03 +02:00
Julio Castillo
7ab87d0790
Fix typo in iam-service-account README
2020-10-20 10:50:08 +02:00
Julio Castillo
db330fe063
Add support for single-sided peerings.
2020-10-12 16:16:24 +02:00
Julio Castillo
ab39c9e4d4
Update compute-vm variable documentation
2020-10-12 13:10:13 +02:00
Julio Castillo
2bef92da57
Fixes to `compute-vm` module
2020-10-12 12:26:00 +02:00
Julio Castillo
0b34b9fa71
Bring back firewall logging
2020-10-07 10:30:26 +02:00
Ludovico Magnocavallo
09301cf7bd
Bump Terraform version used in tests, increase pytest verbosity ( #147 )
...
* update Terraform version used for tests
* increase verbosity of test runs
* delete stale experimental cloud function module
2020-09-27 15:31:19 +02:00
Chinmay Dorlikar
9bd1d5bb79
Updated the main.tf for bigquery-datasets ( #146 )
...
Added the "depends_on" attribute for views to be created only after all the tables are created to avoid failure.
2020-09-27 15:16:09 +02:00
Ludovico Magnocavallo
bd00eec1be
decouple cloudrun from istio in gke cluster module ( #144 )
2020-09-25 22:02:17 +02:00
Julio Castillo
5fd8720c7a
Add service project configuration options to project module ( #142 )
2020-09-24 10:41:44 +02:00
Luca Prete
f2c80e17f1
[ #138 ] Update copyright headers to 2020 ( #139 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2020-09-23 11:07:03 +02:00
Sumeet Chaurasia
bbb14886fd
provider version update ( #140 )
2020-09-23 10:09:41 +02:00
vanessabodard-voi
435d64d81a
Change bucket_policy_only into uniform_bucket_level_access in GCS module ( #135 )
...
* Change bucket_policy_only into bucket_policy_only
* Update changelog
2020-09-15 19:33:40 +02:00
Ludovico Magnocavallo
120e1be1d9
extend gcs module tests to cover new variables
2020-09-03 19:19:41 +02:00
Ludovico Magnocavallo
9e32b32b3d
reformat GCS module and update README
2020-09-03 19:08:29 +02:00
vanessabodard-voi
e8c227fdd6
Add bucket logging ( #134 )
...
* Add logging
* Improve syntax
* Add example
* Improve type for retention policy
2020-09-03 19:06:35 +02:00
Ludovico Magnocavallo
0265ba0951
Refactor net-address variables, add support for internal address purpose
...
* add support for internal address purpose
* update gcs module README
* refactor net address module interface and add tests
* add more examples in net-address README
2020-09-01 18:49:21 +02:00
vanessabodard-voi
daf3dc41e7
Add retention policy ( #133 )
2020-09-01 17:48:02 +02:00
Aleksandr Averbukh
d45934e544
Merge pull request #132 from terraform-google-modules/vpn-ha-optional-gateway
...
Make VPN Gateway creation optional for the net-vpn-ha module
2020-09-01 16:32:14 +02:00
Aleksandr Averbukh
4626dafcc8
Make VPN Gateway creation optional for the module.
2020-09-01 12:38:25 +02:00
Julio Castillo
21aee6f0aa
Reference VPC name from module variable
2020-08-31 14:54:05 +02:00
Julio Castillo
067f072c26
Make VPC creation optional in `net-vpc` module
2020-08-31 14:09:28 +02:00
Ludovico Magnocavallo
86bee0ff70
update input variable table in dns module README
2020-08-29 11:16:42 +02:00
vanessabodard-voi
9c59a03052
Add the option to not create a DNS managed zone ( #126 )
...
* Add zone_create variable
* Update readme
* Update dns_keys
2020-08-29 11:09:57 +02:00
Julio Castillo
5ae489f50d
Add alias IP support in `compute-vm` ( #127 )
...
* Add alias IP support in `compute-vm`
* Fix tests
* add end to end tests for data solutions examples and fix example errors
* update changelog
* add missing boilerplate
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2020-08-29 10:12:30 +02:00
Julio Castillo
1c0dd4dd13
Fix project outputs.tf
2020-08-26 12:15:44 +02:00
Ludovico Magnocavallo
849b50b95b
don't raise error on incremental destroys in cf module outputs
2020-08-17 12:46:04 +02:00
Ludovico Magnocavallo
2e644a3333
streamline gke module peering project id
2020-08-16 20:36:52 +02:00
Roberto Rojas
a3962dcaf7
#123 : Proposal to extend gke-module ( #124 )
...
* allows the use of shared VPC network
* adds configuration block for host project id and shared vpc
* changes based on issue discussion
* changes based on issue discussion
2020-08-16 20:32:36 +02:00
Ludovico Magnocavallo
f62b9362a2
ILB for appliances example ( #122 )
...
* rename infrastructure folder to networking
* example WIP: VPCs
* move ip forwarding to its own variable in compute-vm module
* add per-instance metadata support to compute-vm module
* ipip tunnels on linux savepoint
* simple multinic gateways example
* remove stale files
* resolve conflicts
* update diagram
* rename folder
* use a template for gw cloud config, rename some resources and files
* Update README.md
* Update README.md
* add basic plan tests for all networking e2e examples
* fix test for foundations/environments e2e example
* fix shared vpc e2 example count error in gke node service account permissions
* use module path for assets in onprem e2e example
* use project id from module in ilb e2e example
* add mising boilerplates in tests
* run examples tests in ci
* update module's README
* rename ilb example
* Update README.md
* fix rp_filter configuration
* README
* Update README.md
* Update README.md
* Update README.md
* update CHANGELOG
* update CHANGELOG
* Update README.md
2020-08-15 10:12:43 +02:00
Ludovico Magnocavallo
a008b1a561
Update README.md
2020-08-08 11:04:53 +02:00
Ludovico Magnocavallo
482f4464f8
depend feed id from IAM roles in pubsub module
2020-07-30 18:11:42 +02:00
chinmaydorlikar
e6867b3486
Added google-beta provider for dataset-access resource and formatted the file ( #118 )
...
Co-authored-by: Chinmay Dorlikar <chinmay_dorlikar_ex@kdrp.com>
2020-07-28 18:28:59 +02:00
Ludovico Magnocavallo
9197093cb9
Update README.md
2020-07-24 15:06:11 +02:00
Ludovico Magnocavallo
3cad63285f
Add support for vpc connector and ingress settings to cloud-function ( #116 )
...
* add support for ingress/egress/vpc connector to cloud function
* refactor vpc connector support
* refactor ingress settings support
* fix vpc connector value
* fix vpc connector value
2020-07-24 08:55:58 +02:00
Ludovico Magnocavallo
fc99ade009
Add support for logging in net-cloudnat ( #115 )
...
* add logging support to net-cloudnat
* use default for logging filter
2020-07-23 09:29:24 +02:00
Ludovico Magnocavallo
dce2fca740
Support multiple zones in compute-vm module ( #114 )
...
* support multiple zones in compute-vm module
* update compute-vm variables in end-to-end examples
* update README examples
2020-07-18 06:39:14 +02:00
Julio Castillo
036b9ea950
Obey var.iam_billing_config.grant ( #113 )
...
* Update main.tf
* Update main.tf
2020-07-15 13:18:42 +02:00
Ludovico Magnocavallo
370eb67242
fix external IP reservation in compute-vm module
2020-07-10 17:04:53 +02:00
lcaggio
ea72d4a884
Merge branch 'master' into vpc-sc
2020-07-10 07:29:21 +02:00
Lorenzo Caggioni
7cf3990d27
- Fixes based on PR comments
...
- Movig module under Security
- Formatting TF files
2020-07-10 07:22:57 +02:00
Ludovico Magnocavallo
67d03fd07c
support Shared VPC in project module ( #112 )
2020-07-09 15:15:14 +02:00
Julio Castillo
569e52e12a
Add Shielded VM config option to compute-vm ( #111 )
...
* Add shielded config option to compute-vm
* Update CHANGELOG
2020-07-09 08:09:47 +02:00
Ludovico Magnocavallo
4beedc5ba8
Update README.md
2020-07-08 21:39:50 +02:00
lcaggio
e07d45d407
Merge branch 'master' into vpc-sc
2020-07-07 11:00:09 +02:00
Lorenzo Caggioni
9073703a25
Update READMEs and CHANGELOG
2020-07-07 10:56:11 +02:00
Lorenzo Caggioni
31ac6ee094
Remove Project level VPC-SC handling. The configuration option is too
...
limited (for example: no dry_run mode supported).
2020-07-07 10:49:06 +02:00
Lorenzo Caggioni
39d2d90bcd
Move VPC-SC to a separate module.
2020-07-07 10:23:26 +02:00
Lorenzo Caggioni
0d7f35b0ae
Fix variable name based on PR feedback
2020-07-06 21:58:40 +02:00
Lorenzo Caggioni
43e4ffc95d
Support Access Levels - Perimeters mapping
2020-07-06 18:35:42 +02:00
Ludovico Magnocavallo
9f547266e9
really fix external address reservation in compute-vm module
2020-07-06 18:32:41 +02:00
Ludovico Magnocavallo
6af350341f
fix external address reservation in compute-vm module
2020-07-06 18:28:57 +02:00
Lorenzo Caggioni
3e2706be10
Add basic Access Level support
2020-07-06 18:12:25 +02:00
Lorenzo Caggioni
96808b89ff
Add dry run mode support
2020-07-06 16:53:02 +02:00
Lorenzo Caggioni
35571096ca
Update READMEs
2020-07-06 15:30:29 +02:00
Lorenzo Caggioni
07b3b5f4d0
Remove create/no_create logic. I will add it in a future PR.
2020-07-06 15:28:23 +02:00
Lorenzo Caggioni
ccc4e0076a
Merge branch 'vpc-sc' of https://github.com/terraform-google-modules/cloud-foundation-fabric into vpc-sc
2020-07-06 14:37:13 +02:00
Lorenzo Caggioni
c414ca5505
Fixes based on PR comments:
...
- fix typos
- use for_each
- fix code layout
2020-07-06 14:30:25 +02:00
Ludovico Magnocavallo
29b34c0a2d
Update README.md
2020-07-04 10:07:45 +02:00
Ludovico Magnocavallo
b4affad49d
Update README.md
2020-07-04 10:06:34 +02:00
Ludovico Magnocavallo
f045d4334c
Update README.md
2020-07-04 10:04:53 +02:00
lcaggio
7acdfdc53b
Merge branch 'master' into vpc-sc
2020-07-02 19:07:17 +02:00
Lorenzo Caggioni
bef0f77e67
Add Project level support for VPC-SC
2020-07-02 19:01:36 +02:00
Lorenzo Caggioni
b0bb441df5
Add VPC-SC perimeters support
2020-07-02 18:12:34 +02:00
Sumeet Chaurasia
ceb725bb84
Reserved External IP-Compute VM ( #107 )
2020-07-02 11:41:42 +02:00
Ludovico Magnocavallo
5fa4ea5518
regenerate variables/outputs tables in modules
2020-07-02 08:29:38 +02:00
vanessabodard-voi
5af022a3ee
refactor IAM additive bindings variables ( #103 )
...
* Invert the list for role/member mapping so that member is the key
* Add iam_additive_bindings to replace iam_additive_members and iam_additive_roles, change test suite accordingly
* attribute 'mode' added as it would error without
* Update Readme to reflect the new variable iam_additive_bindings
* test branch access
* iam_additive_bindings to replace iam_additive roles and iam_additive_members
* update foundation samples to new additive bindings format
* set bq dataset options in foundation environments to allow destroying
* trap exceptions raised during destroy in project module
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2020-07-02 08:28:26 +02:00
Lorenzo Caggioni
8b252fc261
Fix
2020-06-30 18:05:37 +02:00
lcaggio
22f3451573
Merge branch 'master' into gcs-to-bq
2020-06-30 16:58:57 +02:00
Ludovico Magnocavallo
c4850b8391
Cloud functions module ( #102 )
...
* wip
* cloud function module
* wip
* cloud function module
* update top-level READMEs and CHANGELOG
* update top-level READMEs and CHANGELOG
* remove duplicate boilerplate in variables
* implement suggestions in PR review
2020-06-29 08:05:44 +02:00
Ludovico Magnocavallo
21758f399d
Update README.md
2020-06-28 12:11:54 +02:00
Ludovico Magnocavallo
d3fe52ef3a
fix minimum required version of google-beta provider in dns module
2020-06-28 11:19:15 +02:00
Lorenzo Caggioni
9a4ec24093
First commit.
...
TODO:
- fix error on destroy
- improve robot service account handling
2020-06-26 21:45:41 +02:00
Ludovico Magnocavallo
ec765857cb
Make project creation optional in project module ( #99 )
...
* make project creation optional in project module
* add variable to optionally configure project activation
* add explicit dependency on custom roles to additive bindings
* make parent variable optional
* add test for null parent
* fix custom roles output
2020-06-25 10:04:57 +02:00
lcaggio
c5fc3798c6
Merge branch 'master' into endpoints
2020-06-24 18:19:03 +02:00
Lorenzo Caggioni
72c2b9a54a
Fix Variable description
2020-06-24 18:13:45 +02:00
Lorenzo Caggioni
c1eb78c746
Fix Example
2020-06-24 18:12:10 +02:00
Lorenzo Caggioni
9c85f9e647
Delete old folder
2020-06-24 18:08:09 +02:00
Lorenzo Caggioni
825a159990
Correct typos
...
Rename module to be consistent with the real name of the GCP service
Add link to the module on READMEs
2020-06-24 17:59:57 +02:00