Luca Prete
bc506795f2
compute-vm: add resource manager tags support for instance templates ( #1982 )
2024-01-16 17:40:15 +00:00
apichick
5ba54aeaf7
Added Cross-region internal application load balancer module
2024-01-16 17:54:50 +01:00
Wiktor Niesiobędzki
af41e0fe38
Use fixtures in net-lb-ext
2024-01-06 17:09:49 +01:00
Wiktor Niesiobędzki
b92135a56d
Remove null address for PSC
...
null address results in following error:
Error creating GlobalAddress: googleapi: Error 400: Invalid value for field 'resource.address': ''. The field is not a valid IP address or does not match the given prefix length, invalid
2024-01-06 14:02:52 +01:00
Wiktor Niesiobędzki
3470661993
IPv6 address reservation not supported for ILB
...
Error creating Address: googleapi: Error 400: Invalid value for field 'resource.purpose': 'SHARED_LOADBALANCER_VIP'. Shared LoadBalancer VIP IPv6 address reservation is not supported., invalid
2024-01-06 14:02:52 +01:00
Wiktor Niesiobędzki
8afdf66a09
Add end-to-end tests for net-address
2024-01-06 14:02:52 +01:00
Wiktor Niesiobędzki
6e24898850
Add proxy networks to e2e harness
2024-01-06 12:05:53 +01:00
Wiktor Niesiobędzki
a6e377fad2
Rename compute-mig-bc.tf to compute-vm-group-bc.tf
2024-01-06 12:05:53 +01:00
Julio Castillo
8beb621e07
New module for external regional application load balancer ( #1892 )
...
* Initial version of regional external application load balancer.
* Fix tests
* Remove unsupported features in regional app lbs
* update readme with fixtures
* Add ssl-certificate fixture
* Switch examples to regions b c
* Remove redundant NEG examples
* Update README
* Update versions.tf
* Add missing boilerplate
2024-01-05 16:59:27 +01:00
Stefano Tribioli
a4def10c19
Add PNA support to Service Directory module
...
Endpoints in Service Directory can be *associated* with a
VPC. In this case, they can be used by supported Google
Cloud products to send requests directly to resources inside
a VPC. This feature is called Private Network Access.
The `google_service_directory_endpoint` resource supports
this configuration with a new argument `network`.
Unfortunately, this argument has an unusual format: it
is similar to a standard VPC ID, but instead of the project ID,
it expects the project number.
2024-01-05 15:05:32 +00:00
Julio Castillo
c13a192755
Use zones b and c for MIG fixture ( #1961 )
2024-01-05 15:02:12 +00:00
Andy Bubune Amewuda
3edacd0aba
Add e2e test for net_lb_app_ext module
2024-01-05 10:02:23 +01:00
Julio Castillo
fde7b76036
Allow per-module terraform fixtures ( #1914 )
...
* Allow terraform fixtures for examples
* Allow defining multiple fixtures, and named fixtures under tests/fixtures/
* Enable e2e for wiktorn
* Fix prepare_files call for e2e
* Move fixture to separate file, fix test
* Revert shallow-copying symlinks, performane penalty - 20%
* Update tfdoc.py to list used fixtures
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
2023-12-29 09:43:44 +00:00
andybubu
2ad109ae23
Fix variable region ( #1953 )
...
This PR changes variable region's default value in example tests to real region value.
Some of the modules parse the region name to decide whether to create regional or zonal resources.
2023-12-28 15:04:15 +01:00
Ludovico Magnocavallo
9d6e61428b
(WIP) Read-only service accounts for automation and CI/CD ( #1899 )
...
* add design doc for the new CI/CD sa
* describe the actual implementation
* specify which files will need to be changed
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Update 0-cicd-plan-sa.md
* Fix typo
* stage 0 read-only service accounts
* stage 0 IAM map
* linting
* cicd read-only service accounts
* tweak workflow templates
* roles and github workflow fixes
* tfdoc
* Ad-hoc custom role factory for FAST bootstrap
* use factory variable for custom roles data path
* custom roles factory in org/project modules
* tfdoc
* rename custom roles factory variable, fix gitlab template
* gitlab workflow fixes
* fix merge
* output plan results on failed assertion
* update stage 0 expected values
* data platform branch
* gke
* networking
* security
* project factory
* outputs
* workflow templates
* resman apply fixes
* tfdoc
* fix stage 1 test fixture
* fix gh workflow
* read-only resman sa roles
* fix test
* read-only resman sa roles
* read-only resman sa roles
* read-only resman sa roles
* read-only resman sa roles
* fix test variables
* rename wif principal attribute names
* rename wif principal variables
* multitenant stages
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
2023-12-27 11:33:16 +00:00
dibaskar-google
969111f0cf
dns e2e tests ( #1944 )
2023-12-23 10:29:32 +00:00
Luca Prete
44b1115b9f
Fix GCVE network policy ( #1948 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-12-22 10:29:43 +00:00
Luca Prete
06b2a97291
GCVE: add network policy configuration
2023-12-22 10:02:12 +00:00
Luca Prete
c4123044b7
Use new resources in GCVE module, bump up provider versions ( #1941 )
2023-12-21 13:23:38 +00:00
simonebruzzechesse
c9a8d777ba
Add kernels.googleusercontent.com zone in dns response policy ( #1940 )
...
* Add kernels.googleusercontent.com zone in dns response policy
* update fast tests
2023-12-20 11:18:11 +01:00
Wiktor Niesiobędzki
0d486fb34e
E2E tests fixes
2023-12-19 11:01:03 +01:00
Julio Castillo
b6e0557bbb
Simplify organization tags.tf locals ( #1932 )
...
* Simplify organization tags.tf locals
* Fix boilerplate
* Override github provider version for tests
2023-12-18 16:09:22 +00:00
simonebruzzechesse
c50b732c79
Allow granting network user role on host project from project module and factory ( #1930 )
...
* Update shared vpc config for project factory and project module for more granular Shared VPC configuration
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-12-15 14:39:21 +01:00
Simone Ruffilli
ca3c86cb5c
Add support for policy based routes to net-vpc ( #1926 )
...
* Add support for PBR to net-vpc
2023-12-13 15:19:40 +00:00
Wiktor Niesiobędzki
c24d023c23
Sync tf version to version used by tests
2023-12-12 09:43:09 +01:00
Ludovico Magnocavallo
b65c57bcc2
bump tf version ( #1920 )
2023-12-12 09:19:46 +01:00
Ludovico Magnocavallo
bba814c091
Custom role factories for organization and project modules ( #1912 )
...
* backport custom role factories
* backport from fast ci/cd branch
* indent
* tfdoc
* fix module tests
2023-12-11 14:16:39 +00:00
dibaskar-google
c65e242685
net_lb_ext module e2e and example testing changes ( #1909 )
...
E2E tests for net_lb_ext
2023-12-08 10:04:07 +01:00
Ludovico Magnocavallo
f548b65b1c
Add support for subnet-level service network user grants to project module, improve docs ( #1907 )
...
* improve project factory example
* light refactor of project modules shared vpc internals and docs
* add support for subnet-level grants on host project
2023-12-07 09:07:48 +00:00
Luca Prete
fa7664434b
Enable sole tenancy (`node_affinities`) on compute_vm ( #1903 )
2023-12-05 18:05:23 +01:00
Luca Prete
7916cd2081
Add IPv6 to HA VPN module + test inventories ( #1901 )
...
---------
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-12-04 23:38:41 +01:00
Wiktor Niesiobędzki
4668b90e8a
Fix inventory for project
2023-12-03 10:37:23 +00:00
Thangaraju R
e2d170c1a6
e2e tests for net-vpc-firewall module ( #1896 )
...
e2e tests for net-vpc-firewall module
2023-12-01 13:50:56 +01:00
Thomas Colomb
3a2484843c
artifact-registry: Support cleanup policies ( #1891 )
2023-12-01 10:33:02 +00:00
Thangaraju R
da5371b391
e2e test fix for iam-service-account module ( #1894 )
2023-12-01 09:23:37 +01:00
Wiktor Niesiobędzki
e36b4fcec8
Merge branch 'master' into wiktorn-e2e-setup-fixes
2023-11-30 19:51:03 +01:00
Wiktor Niesiobędzki
6d68b50bc8
Review fixes
2023-11-30 17:12:12 +00:00
Thangaraju Rajasekaran
224b98c786
removed prefix and updated net-vpc shared-vpc for e2e test
2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
d9cd46d8a7
fixed e2e test for shared-vpc and subnet-iam
2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
a259d2cbdb
formatted the file
2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
0af5e31ca3
E2E tests for net-vpc module
2023-11-30 14:03:49 +00:00
Wiktor Niesiobędzki
3557ed8a95
Pin provider version also for setup module to prevent test failures
2023-11-30 07:44:23 +00:00
Wiktor Niesiobędzki
c5c127b9df
Use TFTEST_E2E_ instead of TF_VAR variables
...
Use of TF_VAR variables modified results of `tests/examples` and
required setting different environment to run `tests/examples` and
`tests/examples_e2e` tests. No both can be run using the same
environment.
2023-11-30 07:43:46 +00:00
apichick
66bd9d5160
Added workstation-cluster module
2023-11-30 07:02:28 +01:00
Wiktor Niesiobędzki
55f308cbea
Fix failing E2E tests for folders ( #1884 )
...
* Run tests requiring uniqueness on org level serially (organization tags, firewall policies)
* make gcs bucket name globally unique
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-11-24 08:09:13 +00:00
Ludovico Magnocavallo
637926fb68
Support boot disk KMS key in GKE cluster modules ( #1881 )
...
* gke cluster standard
* tfdoc
* gke cluster autopilot
* fix autopilot tags test
2023-11-23 11:52:13 +00:00
Luca Prete
642f65b841
F5 blueprint ( #1787 )
...
---------
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-11-22 19:48:13 +01:00
dibaskar-google
2d70bb8db2
E2E tests for folder module ( #1876 )
...
E2E tests for folder module
2023-11-22 10:25:11 +01:00
Wiktor Niesiobędzki
28b8edced5
Add end-to-end tests to Cloud Run
2023-11-18 10:00:25 +00:00
Wiktor Niesiobędzki
7dd76c1003
Additional services for Cloud Run
2023-11-18 09:58:51 +00:00