3e67fc00ca
Add default Cloud Build SA to project module
2023-05-22 19:11:33 +02:00
a5bbd09776
Support CMEK encryption in logging-bucket module
...
We have a use case, Local Controls, that requires to configure
CMEK with Logging buckets. This commit adds an optional variable to
configure CMEK in the `logging-bucket` module. By default the Logging
bucket won't use CMEK encryption.
To configure CMEK for Logging buckets it's also required to add the
correct permissions to the bucket service account. For more information
and a Terraform example, see:
https://cloud.google.com/logging/docs/routing/managed-encryption-storage
https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/logging_project_bucket_config#example-usage
2023-05-22 15:12:27 +01:00
6a89d71e96
Update to multiple README.md ( #1379 )
...
- blueprints/data-solutions/data-platform-foundations/README.md
- blueprints/factories/project-factory/README.md
- modules/net-ilb-l7/README.md
- modules/project/README.md
2023-05-16 06:11:34 +00:00
0ad21351c0
Merge branch 'master' into master
2023-05-15 14:25:42 -04:00
2cbd85c8e0
Merge branch 'master' into jccb/nat-rules
2023-05-14 15:29:52 +02:00
dd1e5dc463
added the export_public_ip_routes variable in the net-vpc-peering mod… ( #1374 )
...
* added the export_public_ip_routes variable in the net-vpc-peering module to control the google_compute_network_peering resource created
* adding period to the variable description
2023-05-14 15:29:24 +02:00
87cd83f5c0
Several updates
...
Several updates
2023-05-13 23:51:46 -04:00
8e1e761577
Merge branch 'master' into cloud-functions-cpu
2023-05-13 09:45:10 +02:00
4df6c90d12
Made available CPUs configurable in Cloud Functions module
2023-05-12 21:36:22 +02:00
d20a078134
Cloud NAT rules support
2023-05-12 16:20:38 +02:00
20b8002602
feat(net-cloudnat): add config_port_allocation configuration block
2023-05-11 12:20:43 -07:00
b8b6f0dcc2
Add versions.tf to ncc-spoke-ra module
2023-05-09 16:00:13 +02:00
8c7b6b2410
Update README tfdoc
2023-05-05 19:52:41 +02:00
252be12bd4
Update README showing the Shared VPC use case
2023-05-05 19:38:34 +02:00
aec85a20c9
Add support for Shared VPC in Cloud Run
...
A VPC access connector in a Shared VPC needs to specify the subnet
and subnet project (the host project).
2023-05-05 18:15:19 +02:00
c344606ae5
Add module link to README ( #1357 )
...
* Add dataplex module
* fix dataplex test
* resolve comments
* python test removed
* Change variable desc
* refactor variables
* fix typos
* fix assets & zones resources
* fix linting error
* fix tests
* fix typo
* add module link in README
---------
Co-authored-by: lcaggio <lorenzo.caggioni@gmail.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-05 08:10:09 +00:00
e333b6ffa2
Change serve_while_stale type to a number ( #1329 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-05 07:41:12 +00:00
23299f7bd7
Add cloud dataplex module ( #1308 )
...
* Add dataplex module
* fix dataplex test
* resolve comments
* python test removed
* Change variable desc
* refactor variables
* fix typos
* fix assets & zones resources
* fix linting error
* fix tests
* fix typo
2023-05-05 09:26:46 +02:00
efb0ebe689
Switch FAST networking stages to network policies for Google domains ( #1352 )
...
* peering stage implementation
* vpn stage implementation
* tfdoc
* tests
* add most supported google domains
* align all net stages
* add support for factory to DNS response policy module
* use dns policy factory in network stages
* boilerplate
2023-05-04 07:38:40 +02:00
5763eb53d4
Enhance GKE Backup Configuration Support ( #1349 )
...
* Add more support for backup configuration
* Update docs
* Remove redundant lookups
2023-05-02 14:59:12 +00:00
98c8643886
ignore entire node config in standard cluster ( #1348 )
2023-05-02 15:23:02 +02:00
94589efc34
Fix external documentation links ( #1347 )
2023-05-02 05:26:58 +00:00
8e55374717
Merge branch 'master' into lcaggio/vertex-01
2023-04-24 20:33:03 +02:00
df7cf3d278
Migrate compute-mig tests
2023-04-21 17:51:20 +02:00
eab9053e16
Migrate billing-budget tests
2023-04-21 17:51:20 +02:00
1649787905
Migrate kms tests
2023-04-21 17:51:20 +02:00
1c7f8f5907
Migrate bigquery-dataset tests
2023-04-21 17:51:20 +02:00
230a1034ec
Migrate net-address tests
2023-04-21 17:51:19 +02:00
924230eb12
Migrate gke-hub tests
2023-04-21 17:51:19 +02:00
e881537f87
Separating GKE Standard and Autopilot Modules ( #1330 )
...
* separating GKE Standard and Autopilot Modules
* Changes for Updating the terraform and provide versions
* Changes for Autopilot Readme
* Changes for Autopilot Variable
* Changes for Autopilot Readme
* Changes for Autopilot Readme
* Changes for Blueprint
* Changes for Blueprint ReadMe
* Changes for gke-standard-cluster dependency
* Changes for gke-standard-cluster in gke-fleet
* Changes for gke-standard-cluster in cluster-mesh-gke-fleet-api
* python formatting
* python formatting
* python formatting
* GKE module naming convention
* Readme Changes
* test module
* Removing comment code from Autopilot
2023-04-21 12:08:13 +00:00
15a4dcdd71
Merge branch 'master' into lcaggio/vertex-01
2023-04-19 11:51:53 +02:00
e24b993550
Add lifecycle for create certificate before destroy
2023-04-19 09:24:35 +01:00
edf67fc5d0
First commit
2023-04-18 17:32:15 +02:00
5807c03d88
Certifiate
2023-04-18 13:15:02 +01:00
e1ebfeecad
Fix the tf error: Inconsistent conditional result types
...
The conditional statement, with tomap({}) will cause the following error under terraform 1.4.5
Error: Inconsistent conditional result types
│
│ on ../../../modules/net-vpc/subnets.tf line 20, in locals:
│ 20: _factory_data = var.data_folder == null ? tomap({}) : {
│ 21: for f in fileset(var.data_folder, "**/*.yaml") :
│ 22: trimsuffix(basename(f), ".yaml") => yamldecode(file("${var.data_folder}/${f}"))
│ 23: }
│ ├────────────────
│ │ var.data_folder is "data/subnets/common"
│
│ The false result value has the wrong type: element types must all match for conversion to map.
2023-04-18 19:54:37 +10:00
306b38295e
Add CMEK support
2023-04-17 23:32:13 +02:00
e8ff5080b9
Fix linting
2023-04-17 09:17:54 +02:00
4770cb06fd
Migrate cloudsql-instance examples
2023-04-17 09:17:54 +02:00
461f7780c2
Migrate bigtable-instance tests
2023-04-17 09:17:54 +02:00
5f82938739
Migrate cloud-identity-group tests
2023-04-17 09:17:54 +02:00
771dd02b18
Migrate logging-bucket tests
2023-04-17 09:17:54 +02:00
0150e97e51
Migrate endpoints tests
2023-04-17 09:17:54 +02:00
01b9921f5c
Migrate PubSub tests
2023-04-17 09:17:54 +02:00
1927b138d6
Migrate secret-manager tests
2023-04-17 09:17:54 +02:00
a2bffc7302
Migrate service-directory tests
2023-04-17 09:17:54 +02:00
ed49f3db39
Migrate source repository tests
2023-04-17 09:17:54 +02:00
f5e1717319
Migrate VPC-SC tests to examples
2023-04-17 09:17:54 +02:00
2d4bd5a244
Remove net-interconnect-attachment-direct
2023-04-14 11:01:54 +02:00
eca0a9583e
Add inventories to net-vpc-firewall tests
2023-04-12 14:04:58 +02:00
063c5061c8
lowercase text
2023-04-12 08:25:33 +00:00
df789db9bd
updated spaces
2023-04-11 21:59:36 +00:00
b4156eff41
Merge branch 'GoogleCloudPlatform:master' into ajln-firewall
2023-04-11 22:58:22 +02:00
3673dc2774
Merge branch 'master' into fawzihmouda/firewall-enforcement-order
2023-04-11 23:44:56 +10:00
ebf93a66ad
add new test to README
2023-04-11 23:38:16 +10:00
4722efea40
bump provider versions
2023-04-11 22:18:31 +10:00
3c4254fc1f
update firewall_policy_enforcement_order variable
2023-04-11 22:08:41 +10:00
6db1a5f5d3
updated variables doc
2023-04-11 11:39:47 +00:00
d150f03b41
included link to the tf resource bug in a comment
2023-04-11 11:30:12 +00:00
4e426a990a
correct naming in source destination egress fw rule
2023-04-11 10:48:56 +00:00
6f1e531af0
added example for source&destination ranges usage in fw rules
2023-04-11 10:45:45 +00:00
b809b315f6
added example for source&destination ranges usage in fw rules
2023-04-11 10:43:32 +00:00
660da5b585
Merge branch 'GoogleCloudPlatform:master' into ajln-firewall
2023-04-11 12:24:06 +02:00
4ccf9f9361
included an empty list as default in the ingress_rules.destination_ranges variable
2023-04-11 10:22:08 +00:00
33e8b42842
Use labels var in cloud-run module ( #1310 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-04-11 03:06:13 +00:00
adb88d8a87
allow destination_range variable in ingress rules and source_range in egress rules
2023-04-10 14:00:55 +00:00
18f1e8ebb1
added source and destination ranges to both ingress and egress fw rules
2023-04-10 10:47:51 +00:00
db3c48736c
add firewall enforcement variable to VPC
2023-04-10 01:28:12 +10:00
865ef463bb
Support new fields in bigquery module, bump provider versions, unpin local provider ( #1306 )
...
* add support for new attributes to bigquery module
* bump provider versions
2023-04-05 14:22:52 +00:00
70aefc2ddb
Add ability to run vtysh from simple-nva vm directly when frr is active ( #1301 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 21:37:02 +02:00
07f60fb0b9
Fix vtysh ( #1300 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 14:37:46 +00:00
bc2d9372aa
Fix urlmap in ILB L7 module ( #1299 )
...
* port tests to new format
* add test to catch error and fix urlmap
* boilerplate
* boilerplate
2023-04-03 15:47:37 +02:00
bf14d2da23
Add sample vtysh file to remove warnings ( #1298 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-04-03 15:10:46 +02:00
92b71a5098
Refactor cloud run module to use optionals and support all features ( #1293 )
...
* refactor cloud run resource and variables
* vpc connector variables and resource
* refactor env variable, combine and fix env examples
* fix volume example
* fix traffic split example
* fix eventarc/pubsub example
* fix eventarc/audit log example
* fix SA examples, fix examples formatting
* refactor eventarc variable
* tfdoc
* add IAM to example
* add examples for revision annotations and serverless connector
* fix new examples
* remove legacy module tests
* blueprint tests
* Add tests to cloud-run module
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-04-01 14:06:29 +02:00
c5db50d1d7
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
6204787226
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
0a20bc4f2d
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
1fb7e114fd
fixing tests and refactoring default
2023-03-30 12:47:39 +02:00
596acb63e4
removing deprecated field from gke-hub
2023-03-30 12:47:39 +02:00
44d2e9e50e
removing deprecated field from gke-hub
2023-03-30 12:47:39 +02:00
64a9952656
add Backup for GKE support
2023-03-30 12:47:39 +02:00
7135c9015f
Add boilerplate
2023-03-30 09:36:14 +03:00
b503bde544
Load all service agents identities from yaml
...
Source: https://cloud.google.com/iam/docs/service-agents
2023-03-30 09:36:14 +03:00
c76e95e7e8
Add Cloud Batch service identity ( #1294 )
2023-03-30 08:05:12 +02:00
d64b5779e4
Merge branch 'master' into dataplex
2023-03-27 21:44:24 +02:00
039d10b287
Merge branch 'master' into dataplex
2023-03-27 16:18:38 +02:00
dfa1fce274
Merge branch 'master' into bruzz/nva-firewall-mgmt
2023-03-27 16:04:55 +02:00
d68476ba07
fixes
2023-03-27 15:46:37 +02:00
cf2fd119b5
small fixes
2023-03-27 15:35:00 +02:00
9005a51a95
Use example testing instead custom test
2023-03-27 14:13:38 +02:00
d105ed59d3
Resolve review comments
2023-03-27 14:13:38 +02:00
082301c09c
Use unique bundle name for Cloud Function
...
When cloud-function module is used multiple times within project and
default `bundle_config.output_path` is used then all the instances try
to use filename and result is undefined without guarantee to converge to
desired state (i.e. multiple functions may share the same code).
2023-03-27 14:13:38 +02:00
a93b80cf95
linting
2023-03-27 11:49:01 +02:00
41570d2840
update documentation
2023-03-27 11:42:17 +02:00
021fb84765
add firewall mgmt on simple-nva module
2023-03-27 09:54:01 +02:00
58bc576ddb
Add dataplex SA
2023-03-27 07:37:40 +00:00
987ea34d93
DNS policy module fixes ( #1278 )
...
* dns response policy module
* tfdoc
* Add dns policy tests
* fix copyright, var description, initial wording
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-03-26 18:39:07 +02:00
28da881c3f
DNS Response Policy module ( #1276 )
...
* dns response policy module
* tfdoc
2023-03-26 17:42:57 +02:00
60261a6352
add static gateway id to outputs ( #1270 )
2023-03-21 18:08:45 +01:00
3d425b7d9c
Ignore changes to metadata.0.annotations in Cloud Run module
...
Fixes #1173
2023-03-21 11:54:07 +01:00
3b20d617dc
Improvements to NCC-RA spoke module. ( #1267 )
2023-03-21 07:07:44 +00:00
6e49e94749
simple-nva: add ability to parse BGP configs as strings. ( #1268 )
...
* Add ability to parse BGP configs as strings.
* Fix var name
* Refresh tfdoc
---------
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-03-21 07:41:12 +01:00
4b15fe4744
Add backend service names to outputs for net-glb and net-ilb-l7 (some things like ( #1258 )
...
autoneg require names).
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-03-17 10:40:11 +00:00
8a8b7ea35f
Add support for `iam_additive` and simplify factory interface in net VPC module ( #1259 )
...
* initial implementation, no tests
* change interface, align tests
* add examples ToC
* fix variable type, test module-level variable
2023-03-17 10:12:34 +00:00
50adf1da2a
change target_vpcs variable to support dynamic values ( #1255 )
2023-03-17 07:14:09 +00:00
21fa6d1f13
Fixes related to boot_disk in compute-vm module
2023-03-16 15:58:39 +01:00
79a6e9b191
pin local provider ( #1256 )
2023-03-16 10:59:06 +00:00
c82f142d2d
Delay creation of SVPC host bindings until APIs and JIT SAs are done
2023-03-14 14:51:17 +01:00
112d9a8d9c
Allow using existing boot disk in compute-vm module ( #1241 )
...
* allow using existing boot disk in compute-vm module
* allow setting initialize params to null
* tests
* fast
* blueprints
2023-03-12 10:53:59 +01:00
6ba0f8b0ba
allow overriding name in net-vpc subnet factory ( #1239 )
2023-03-11 09:30:42 +01:00
510db1b36f
Fix policy_based_routing.sh script on simple-nva module ( #1226 )
2023-03-10 18:36:07 +01:00
1c3645f3a3
Fix dataproc modules variables
2023-03-10 16:54:09 +01:00
7595508bd4
fix variable
2023-03-10 12:03:54 +01:00
3ffda9c8c9
terraform fmt
2023-03-10 10:45:39 +01:00
f688b9a47d
realign logic to boolean variable
2023-03-10 10:43:37 +01:00
7781b72690
replace track_per_session with tracking_mode and fixed connection tracking conf for backends
2023-03-10 10:03:45 +01:00
45c12e233b
Network firewall policy module ( #1232 )
...
* validated, untested
* tested
* typo in README
2023-03-10 08:21:49 +00:00
d0f346f6c6
Add resources created as outputs
2023-03-09 15:35:52 +01:00
f82b5284c9
Change semantics of custom_advertise
2023-03-09 15:35:52 +01:00
7eb9fbf676
Merge branch 'master' into ncc
2023-03-09 13:10:36 +01:00
3e85175f67
Adapt README examples to the variables config
2023-03-09 13:06:02 +01:00
0cf254f91e
Update variable and output tables
2023-03-09 13:06:02 +01:00
7e6635f535
Alphabetical order and better naming
2023-03-09 13:06:02 +01:00
eef6a48876
Make ip_interfaceX not optional
...
These IP values are optional, if you don't specify a value Google will try to
find a free IP address. But this is a bad idea because setting them to 'null'
forces a replacement even without any changes to make.
2023-03-09 13:06:02 +01:00
84d3b83f81
Group router information under router_config
2023-03-09 13:06:02 +01:00
b25ee97d15
Group vpc and subnet under vpc_config
2023-03-09 13:06:02 +01:00
e9312e4dba
var ras -> router_appliances
2023-03-09 13:06:02 +01:00
cc6ee44759
Add aiplatform robot service account
2023-03-09 08:17:26 +01:00
5489162b75
Merge branch 'master' into ncc
2023-03-08 20:33:53 +01:00
96f35c53a5
Fix README variables to pass pytest
2023-03-08 20:00:55 +01:00
93bb809a40
Rename module net-ncc -> ncc-spoke-ra
2023-03-08 20:00:55 +01:00
62539508a5
Update README for the new implementation
2023-03-08 20:00:55 +01:00
6196851d3f
Output the name of the hub if created
2023-03-08 20:00:55 +01:00
34c6a6aee1
Make creation of the hub optional
2023-03-08 20:00:55 +01:00
1b4ba11dcd
Make IPs for the CR interfaces optional
2023-03-08 20:00:55 +01:00
0da0f33525
Make keepalive optional
2023-03-08 20:00:55 +01:00
81121f4aa6
data_transfer default to false
2023-03-08 20:00:55 +01:00
d5d743174e
Make custom_advertise optional
2023-03-08 20:00:55 +01:00
2f64fcd5f4
Reimplement the module to manage only one spoke
2023-03-08 20:00:55 +01:00
e213f156ad
Fix Jit notebook service account.
2023-03-08 16:06:27 +01:00
fd07c444cb
Extended simple-nva module to manage BGP service running on FR routing docker container ( #1195 )
2023-03-08 09:43:13 +01:00
6eb82a2214
Merge pull request #16 from juliodiez/master
...
Sync branch
2023-03-07 13:13:35 +01:00
d9eaa59862
Generated variable table via tfdoc
2023-03-07 13:04:15 +01:00
ac224ad11c
Add tftest to README
2023-03-07 12:29:20 +01:00
94f3a08129
Add example of custom route advertisements
2023-03-07 11:54:34 +01:00
9b5bc407ba
Add image for load-balanced router appliances example
2023-03-07 11:10:19 +01:00
58c90feca2
Add example of load-balanced router appliances
2023-03-07 11:06:23 +01:00
3e0a8c4c0a
Add image for site to two VPCs example
2023-03-07 10:43:51 +01:00
76972d5804
Add example of site to two VPCs
2023-03-07 10:37:58 +01:00
449f5cbb56
Adapt example to use only allowed chars for resource names
2023-03-07 10:28:29 +01:00
87107ba3e0
Set a unique name to CRs linked to spokes
2023-03-07 10:11:02 +01:00
e7963eb630
Set a unique name to spokes
2023-03-07 10:01:07 +01:00
71cb18f808
Replace map key derived from resource attributes
2023-03-07 09:52:34 +01:00
0f4919a771
Add image for site to VPC example
2023-03-06 20:55:36 +01:00
69493d8a40
Add README with first example
2023-03-06 20:47:18 +01:00
65671647e7
Make optional some router config fields
2023-03-06 20:45:08 +01:00
25b14465b2
Simplify some naming
2023-03-06 19:21:09 +01:00
e835730665
Add router BGP peers
2023-03-06 18:02:50 +01:00
02707eb275
Initial commit for NCC module
2023-03-06 14:09:14 +01:00
8fc9549c58
add support for proxy and psc subnets to module factory ( #1211 )
2023-03-05 17:08:43 +01:00
88ecdbe671
Merge branch 'master' into lcaggio/dataproc-03
2023-03-02 12:18:52 +01:00
99d19d5ec8
Fix issue with GKE cluster notifications topic, change pubsub module output to static.
2023-03-02 11:23:05 +01:00
b7793f69a2
Dataproc module. Fix output.
2023-03-02 10:39:08 +01:00
2ebb21e4cc
Fix url_redirect issue on net-glb module ( #1204 )
2023-03-02 07:51:39 +01:00
b39b486cd4
Fix README
2023-03-01 10:48:33 +01:00
c4d8175d9a
Merge branch 'master' into lcaggio/dataproc-02
2023-03-01 10:44:31 +01:00
0d37fe8338
Update README
2023-03-01 10:44:01 +01:00
3a2d6e1b46
Fix secondary ranges in net-vpc readme ( #1198 )
...
Fixes #1197
2023-03-01 08:08:07 +01:00
dad3c49012
Fix linting
2023-03-01 08:00:52 +01:00
6629e5cd06
Merge branch 'master' into lcaggio/dataproc-02
2023-03-01 07:57:21 +01:00
dc37783022
Fix Variables
2023-03-01 07:54:10 +01:00
4b3b5ad1cb
Merge branch 'master' into fix-test-compute-vm-kms
2023-02-28 16:13:48 +01:00
52eb83758f
Fix compute-vm:CloudKMS test for provider>=4.54.0
...
* TF provider >= 4.54.0 now returns `rsa_encrypted_key` for
`google_compute_disk.disks["attached-disk"]` (see
hashicorp/terraform-provider-google#4448 )
* Add this field to expected model to fix test assertion failure
* Update required TF provider to 4.55.0 (latest) since the assertion
will now fail with <4.54.0, which do not return `rsa_encrypted_key`
* Updated the whole repo on advice from @ludoo
2023-02-28 15:10:22 +00:00
6bf2fb4c06
Fix https health check mismapped to http ( #1194 )
2023-02-28 15:48:13 +01:00
0f504f6b8e
Fix output variable order.
2023-02-28 10:50:58 +01:00
ac0a140011
Fix outputs
2023-02-28 10:35:44 +01:00
1a685e7b83
Update README.md
2023-02-28 07:49:28 +01:00
3d2f1182d2
Update README.md
2023-02-28 07:48:47 +01:00
7ece884422
Fix examples.
2023-02-28 06:52:10 +01:00
46a99b9a9b
Merge branch 'master' into lcaggio/dataproc
2023-02-28 06:36:21 +01:00
e098568b6e
fix external gateway ( #1191 )
2023-02-28 00:46:50 +01:00
fdb4f2a9fd
Fix variables
2023-02-27 22:23:45 +01:00
51579ac7e7
Fix linting
2023-02-27 22:18:07 +01:00
05a85e753c
First commit
2023-02-27 22:14:07 +01:00
cbe85e0605
fixing workloadidentity for anthos service mesh - authority was not created
2023-02-27 14:17:16 +00:00
6320c53baf
Allow multiple peer gateways in vpn ha module ( #1184 )
...
* allow multiple peer gateways in vpn ha module
* align blueprints
* fast
2023-02-27 10:18:59 +00:00
aecb6fd543
Implemented conditional dynamic blocks for `google_access_context_manager_service_perimeter` `spec` and `status` ( #1177 )
...
* implemented conditional dynamic blocks
* Fix linting
* avoid setting spec in bridge perimeters if no resources are set
---------
Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-02-25 16:04:19 +00:00
899960c247
Fix tests
2023-02-24 19:14:43 +01:00
36e6367a5c
adding meshconfig.googleapis.com to JIT list.
2023-02-24 16:11:35 +00:00
7670a6009f
adding meshconfig.googleapis.com to JIT list.
2023-02-24 16:05:11 +00:00
3b0223458b
Don't define nor use health checks with SNEGs
...
SNEGs don't use health checks and it's an error to add one in their backend services. 'terraform plan' doesn't detect it, only 'apply'.
2023-02-24 11:13:55 +01:00
5a44baa82f
Merge branch 'master' into juliodiez-patch-1
2023-02-24 10:22:07 +01:00
ae6080ebf7
Modifications related to autopilot and workload identity. Added workload_identity_pool output to module
2023-02-24 09:59:23 +01:00
08ba94aebc
Allow to not use any health check
...
Internet / serverless NEGs (Cloud Run) don't use them and it's an error to add one in their backend services.
2023-02-24 09:55:26 +01:00
a5e905cb80
Update remaining org policies
2023-02-21 15:49:16 +01:00
62834ca83a
Update READMEs
2023-02-21 15:49:16 +01:00
6b767c9035
Simplify org policies data model in resman modules.
2023-02-21 15:49:16 +01:00
4a9ce1c5ce
Update README
...
Remove unused field
2023-02-21 14:05:03 +01:00
0ca0b2e99b
Fix variable name
2023-02-20 14:37:33 +01:00
3085922cea
Fix tests
2023-02-20 12:19:36 +01:00
840abd60e7
Merge branch 'master' into master
2023-02-20 08:14:58 +01:00
f16511b8da
Fix typo in readme
2023-02-19 15:22:48 +01:00
ff4b2fffe2
Regenerate docs
2023-02-18 22:11:44 +01:00
8174890331
Sort variables
2023-02-18 22:04:40 +01:00
1c302c7ab3
TF formatting
2023-02-18 21:48:05 +01:00
d970db0c79
Merge branch 'master' into projects-ds-new-version
2023-02-18 21:38:53 +01:00
a497aef707
feat: new version of projects-data-source based on AssetInventory ds
2023-02-18 21:36:51 +01:00
e64e8db20d
Allow additive IAM grants by robots name
...
Regreatablly member name will be known after apply, hence changes in the
tests
2023-02-16 14:39:21 +01:00
e8334857ff
Update main.tf ( #1158 )
...
replaced .secondary_pod_range by var.pod_range.secondary_pod_range that is the object which contins create, cidr an name attributes.
2023-02-15 06:28:47 +01:00
7bbeac805e
Add 'max_time_travel_hours ' on BQ module
2023-02-14 08:43:15 +01:00
15487078d4
add missing iam properties to factory_subnets
2023-02-13 10:00:50 +01:00
3a0a1e2f6d
net-ilb: add example about ref existing MIG example ( #1151 )
2023-02-11 17:45:16 +01:00
98a08c159a
Update README.md
2023-02-11 15:52:47 +01:00
9395fbc822
Add documentation about JIT-ed service accounts
2023-02-11 15:52:47 +01:00
e8c0b66aee
Remove unnecessary ternaries
2023-02-10 07:00:12 -05:00
695b34efe9
fmt
2023-02-10 07:00:12 -05:00
c3a7760a49
Autopilot fix
...
Support cluster_autoscaling configuration when using autopilot
2023-02-10 07:00:12 -05:00
42514436d7
Update docs
2023-02-10 05:34:58 -05:00
cc7f749c2e
Add defaults for backup_configuration
...
Mark not nullable
2023-02-10 05:34:58 -05:00
560af8b02b
Use optional for backup configuration map
...
Addition of new parameters will be backwards compatible
Better reflects the underlying resource requirements
2023-02-10 05:34:58 -05:00
d00f3ee0cb
Add support for point_in_time_recovery in backup settings
2023-02-10 05:34:58 -05:00
d6e3716815
Fix gke-cluster dns config feature
...
Fixes #1141
2023-02-10 11:14:07 +01:00
fab2ad08b9
Fixes for service-mesh example in gke-hub
2023-02-09 17:56:55 +01:00
3395464754
Update TOC
2023-02-07 16:17:16 +01:00
1aba238c99
Remove empty section
2023-02-07 15:59:29 +01:00
bb565b72f1
Add Disk examples
2023-02-07 15:59:29 +01:00
08f2540872
Bump provider version
2023-02-07 15:59:29 +01:00
fa064ddf4d
Fix typo
2023-02-07 15:59:29 +01:00
04602353ce
New compute-vm examples and tests
2023-02-07 15:59:29 +01:00
5453c585e0
FAST multitenant bootstrap and resource management, rename org-level FAST stages ( #1052 )
...
* rename stages
* remove support for external org billing, rename output files
* resman: make groups optional, align on new billing account variable
* bootstrap: multitenant outputs
* tenant bootstrap stage, untested
* fix folder name
* fix stage 0 output names
* optional creation for tag keys in organization module
* single tenant bootstrap minus tag
* rename output files, add tenant tag key
* fix organization module tag values output
* test skipping creation for tags in organization module
* single tenant bootstrap plan working
* multitenant bootstrap
* tfdoc
* fix check links error messages
* fix links
* tfdoc
* fix links
* rename fast tests, fix bootstrap tests
* multitenant stages have their own folder, simplify stage numbering
* stage renumbering
* wip
* rename tests
* exclude fast providers in fixture
* stage 0 tests
* stage 1 tests
* network stages tests
* stage tests
* tfdoc
* fix links
* tfdoc
* multitenant tests
* remove local files
* stage links command
* fix links script, TODO
* wip
* wip single tenant bootstrap
* working tenant bootstrap
* update gitignore
* remove local files
* tfdoc
* remove local files
* allow tests for tenant bootstrap stage
* tenant bootstrap proxies stage 1 tfvars
* stage 2 and 3 service accounts and IAM in tenant bootstrap
* wip
* wip
* wip
* drop multitenant bootstrap
* tfdoc
* add missing stage 2 SAs, fix org-level IAM condition
* wip
* wip
* optional tag value creation in organization module
* stage 1 working
* linting
* linting
* READMEs
* wip
* Make stage-links script work in old macos bash
* stage links command help
* fix output file names
* diagrams
* fix svg
* stage 0 skeleton and diagram
* test svg
* test svg
* test diagram
* diagram
* readme
* fix stage links script
* stage 0 readme
* README changes
* stage readmes
* fix outputs order
* fix link
* fix tests
* stage 1 test
* skip stage example
* boilerplate
* fix tftest skip
* default bootstrap stage log sinks to log buckets
* add logging to tenant bootstrap
* move iam variables out of tenant config
* fix cicd, reintroduce missing variable
* use optional in stage 1 cicd variable
* rename extras stage
* rename and move identity providers local, use optional for cicd variable
* tfdoc
* add support for wif pool and providers, ci/cd
* tfdoc
* fix links
* better handling of modules repository
* add missing role on logging project
* fix cicd pools in locals, test cicd
* fix workflow extension
* fix module source replacement
* allow tenant bootstrap cicd sa to impersonate resman sa
* tenant workflow templates fix for no providers file
* fix output files, push github workflow template to new repository
* remove try from outpout files
* align stage 1 cicd internals to stage 0
* tfdoc
* tests
* fix tests
* tests
* improve variable descriptions
* use optional in fast features
* actually create tenant log sinks, and allow the resman sa to do it
* test
* tests
* aaaand tests again
* fast features tenant override
* fast features tenant override
* fix wording
* add missing comment
* configure pf service accounts
* add missing comment
* tfdoc
* tests
* IAM docs
* update copyright
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-02-04 15:00:45 +01:00
46ba8f5691
Skip node config for autopilot ( #1127 )
2023-02-02 16:13:56 +01:00
824f873327
Added mesh_certificates setting in GKE cluster.
2023-02-02 11:02:59 +01:00
e962d07e04
Fix tests/linting
2023-01-31 14:37:13 +01:00
0337b85747
Merge branch 'master' into elia-glb-mig
2023-01-31 13:19:17 +00:00
1204b0077e
Merge branch 'master' into mci_gateway
2023-01-31 11:54:31 +00:00
1a2745b632
In the apigee module now both the /22 and /28 peering IP ranges are passed at instance creation
2023-01-31 11:32:53 +01:00
1a657b31d3
Bump beta provider to 4.48
...
This is the first version that supports `gateway_api_config` block
2023-01-29 15:50:24 +01:00
37626c8ac7
Adapt example to optional default
2023-01-29 15:50:24 +01:00
2976df596e
Fix tests (add JIT-ed SA for multiclusteringress.googleapis.com)
2023-01-29 15:50:24 +01:00
e47242b5c8
tfdoc
2023-01-29 15:50:24 +01:00
135f01f191
Add aditional Multi-Cluster related services
2023-01-29 15:50:24 +01:00
0af5399389
Add gateway_api_config, change workload_identity default value
...
Make the default value on `enable_features` inline with what is set by
optionals.
2023-01-29 15:50:24 +01:00
46c52776d0
Make features optional
2023-01-29 15:50:24 +01:00
181b072d16
Update README.md
2023-01-29 12:56:07 +01:00
b0f177a2cf
Update README.md
2023-01-29 12:35:58 +01:00
b4b2555910
Merge branch 'master' into elia-glb-mig
2023-01-29 12:32:10 +01:00
edd3a82453
Include cloudbuild API in project module ( #1116 )
...
* Include cloudbuild API in project module
* Increase number of resources
2023-01-27 21:38:01 +01:00
22c26e319f
fix: remove unuseful ternary
2023-01-27 17:08:35 +01:00
bed7e05d09
add support for deployment_type and api_proxy_type in google_apigee_environment resource
2023-01-27 15:37:57 +01:00
4d6561712e
Fix tftest and format
2023-01-26 17:56:20 +01:00
793596c61d
Add HTTPS frontend with SNEG example
2023-01-26 12:25:54 +01:00
Julio Castillo
Ana Fernandez del Alamo
Alejandro Leal
Ludovico Magnocavallo
Manuel Aller
Miren Esnaola
Jay Schwerberg
Julio Diez
Prabha Arya
Toby Archer
Brent Walker
Bob Idle
Avinash Jha
lcaggio
bjohnrl
bjohnrl
jamesmao-xyz
ajlopezn
Antonio Lopez
Fawzi
Mikhail Filipchuk
Luca Prete
Valerio Ponza
Wiktor Niesiobędzki
bruzzechesse
Taneli Leppä
simonebruzzechesse
erabusi
Dan Farmer
Joshua Goldberg
Carlos Alexandre
Aleksandr Averbukh
Chema Polo
James D'Alfonso
Ludovico Magnocavallo
Brent Walker
Ayman Farhat
fdhaussy