Lorenzo Caggioni
a793f62bd4
fix logic on module
2021-07-16 09:50:51 +02:00
Julio Castillo
0ce81743f2
Update CAI example ( #274 )
...
* Add Asset Inventory API to project module
* Create feed from terraform in CAI example
* Fix tests
* sort services
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-07-08 08:57:27 +02:00
Julio Castillo
46e83d3b59
Autopilot support
2021-06-28 00:54:14 +02:00
lcaggio
3d84897b4b
Create pubsub service identity if service is enabled ( #270 )
...
* Create service identity if service is enabled
* remove dry run mode
* fix tests
* Improve for_each logic
2021-06-25 09:26:33 +02:00
Ludovico Magnocavallo
1f5b96b7f1
Update README.md
2021-06-23 12:26:05 +02:00
dsiviglia
f3901fc567
module for VLAN attachment+cloud router+bgp ( #254 )
...
* module for VLAN attachment+cloud router+bgp
* fix vlan attachments review comments
* run terraform fmt
* fix code review comment and build errors
* fix for code review comments
* code review changes
* changes after review
* changes after code review
* changes after code review
2021-06-16 13:56:40 +02:00
Lorenzo Caggioni
f3390839ab
Fix dependencies
2021-06-15 09:44:15 +02:00
Lorenzo Caggioni
d03773df46
Fix dependencies
...
Fix role
2021-06-15 00:54:59 +02:00
Lorenzo Caggioni
741de90eed
Fix test
2021-06-14 19:03:02 +02:00
Lorenzo Caggioni
12e69c71e3
Add Service Identity for Secret Manager
2021-06-14 18:35:53 +02:00
lcaggio
1a7fe48c46
Merge pull request #263 from terraform-google-modules/lcaggio-kms-prj
...
Add IAM cryptDecrypt role to robot service account on specified keys
2021-06-11 18:12:58 +02:00
Lorenzo Caggioni
4a2ba0c36c
Add example
2021-06-11 18:02:35 +02:00
Lorenzo Caggioni
136fe03e1d
Remove extralines
2021-06-11 17:41:19 +02:00
Lorenzo Caggioni
dc01db0426
Update Readme and rename variable
2021-06-11 17:38:27 +02:00
Lorenzo Caggioni
476d2c79e9
Add IAM cryptDecrypt role to robo service account on specified keys
2021-06-11 16:00:20 +02:00
lcaggio
efb52eeb6c
Move `bq` robot service account into the robot service account project output ( #262 )
2021-06-11 13:02:30 +02:00
lcaggio
d1b560c76d
Fix message_retention_duration type ( #261 )
...
* Fix message_retention_duration type
* Fix Readme and update Changelog
* Update CHANGELOG.md
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-06-10 18:46:14 +02:00
Ludovico Magnocavallo
a4158827a6
add BGP peers to vpn-ha outputs ( #257 )
2021-06-04 15:58:39 +02:00
Daniel Marzini
71031efc7c
Dataplane V2 integration ( #256 )
...
* Dataplane V2 integration
* Moving enable_dataplane_v2 outside addons
* Fixing enable_dataplane_v2 position and default value
* Fix README with default value
* Removing enable_dataplane_v2 from addons
* Adding standalone Dataplane V2 Example
2021-06-04 12:29:12 +02:00
Julio Castillo
faa3a1cfe9
Add deletion_protection to bigquery module
2021-06-01 18:36:53 +02:00
lcaggio
cd6e1c254d
Fix min provider version for vpc-sc module ( #252 )
2021-05-31 11:22:56 +02:00
Ludovico Magnocavallo
c1719951a9
Update to Terraform 0.15 ( #248 )
...
* don't use deprecated list() function
* don't use deprecated map() function
* update Terraform version in CI files
2021-05-22 15:58:55 +02:00
Ludovico Magnocavallo
3d7cc9810d
Fix output
2021-05-20 21:34:24 +02:00
lcaggio
585b3a79ee
Merge branch 'master' into vpc-sc-02
2021-05-18 09:52:45 +02:00
lcaggio
a7d58a73cf
Fix README
2021-05-17 20:41:59 +02:00
lcaggio
722b3f59f8
Fix link
2021-05-17 18:41:37 +02:00
lcaggio
4ecd13225a
Fix variable
2021-05-17 18:38:46 +02:00
lcaggio
f306f01fbc
Fix and change variable
2021-05-16 08:31:55 +02:00
sruffilli
654e171b32
Update resource name of google_dns_policy on net-vpc
2021-05-12 16:40:56 +02:00
sruffilli
36d253f1d3
DNS Policies in net-vpc module ( #238 )
2021-05-12 15:02:27 +02:00
lcaggio
628ab41c33
Add Support for Ingress Egress policy
2021-05-07 09:07:36 +02:00
Julio Castillo
875b786171
Optional create for service accounts
2021-05-06 12:07:39 +02:00
Chinmay Dorlikar
9c0b37f100
Added CORS dynamic block for gcs : feature/cors for gcs ( #232 )
...
* Added a dynamic CORS block for gcs module. Changed main.tf and variables.tf
* Updated the README for the CORS block
* Ran tfdoc for /modules/gcs/README.md
Co-authored-by: Chinmay Dorlikar <chinmay.dorlikar@quantiphi.com>
2021-04-23 17:58:58 +02:00
Julio Castillo
047ce9551e
Include VPC name in PSC reserved address name
2021-04-21 17:17:25 +02:00
Julio Castillo
140378f2f5
Add support for private service connect
2021-04-21 13:55:00 +02:00
Ludovico Magnocavallo
f8413cc98e
Add support for group-based IAM to resource management modules ( #229 )
...
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
2021-04-11 14:48:16 +02:00
Luca Prete
fbbe88eb23
[ #221 ] Add master_global_access_config to gke module ( #222 )
2021-04-07 09:50:40 +02:00
Luca Prete
aebb9dc1fe
[ #219 ] Specify VPC module key output format in docs ( #220 )
...
* [#219 ] Specify VPC module key output format in docs
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-04-01 15:23:57 +02:00
Ludovico Magnocavallo
3597769e8e
Support one group per zone in compute-vm ( #218 )
...
* support multiple groups per zone in compute-vm
* fix ilb as next hop example
2021-04-01 08:27:38 +02:00
Ludovico Magnocavallo
5149795bec
Allow using a non-suffixed name in compute-vm ( #217 )
...
* allow using a non-suffixed name in compute-vm
* update README
2021-03-31 20:01:10 +02:00
Julio Castillo
7ca2e60399
Fix tests
2021-03-31 10:45:35 +02:00
Julio Castillo
94b1a439ee
Fix IAM bindings for logging sinks
...
- Move to non-authoritative bindings to allow multiple sinks to write to
the same destination
- Allow automatically adding logging bucket IAM bindings
2021-03-31 09:59:28 +02:00
Julio Castillo
37935cee3a
Add project parameter to bigquery iam bindings.
2021-03-30 17:02:20 +02:00
lcaggio
eee06bd5dc
Remove device_policy, it requires BeyondCorp Enterprise Premium. we will implement it in future iterations. ( #215 )
2021-03-29 12:17:11 +02:00
Ludovico Magnocavallo
7052cfdb08
allow DNS zones with no vpcs ( #214 )
2021-03-27 09:08:54 +01:00
Ludovico Magnocavallo
3155bd7349
Update main.tf ( #213 )
2021-03-20 12:56:11 +01:00
lcaggio
2916f4e078
Project Module: add VPC-SC support ( #212 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
* Add VPC-SC support in the project module.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-19 20:12:29 +01:00
lcaggio
de5a9d747a
Add VPC-SC support for Regions, device policy and access policy dependency ( #210 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-18 13:04:37 +01:00
averbukh
5a796f3637
Shorten env names
2021-03-14 10:23:52 +01:00
averbukh
16e11fa7c1
Adjust FW rule name with network name to prevent name clashing within the same project.
2021-03-14 10:14:39 +01:00
averbukh
3428e9d562
Fix typo.
2021-03-14 03:10:16 +01:00
averbukh
fcd44c2b78
Added FW-Yaml module for distributed-firewall network example.
2021-03-14 03:03:36 +01:00
Julio Castillo
f5fb28b4b2
Merge pull request #203 from terraform-google-modules/jccb/log-buckets
...
Support for Cloud Logging buckets
2021-03-05 08:43:38 +01:00
Ludovico Magnocavallo
86b88e0634
fix modules version constraints ( #206 )
2021-03-05 08:41:59 +01:00
Ludovico Magnocavallo
8e44734fe5
set version for google-beta provider ( #205 )
2021-03-05 08:20:48 +01:00
Ludovico Magnocavallo
605ec7c4d1
depend org module resources for policy etc from IAM bindings ( #204 )
2021-03-05 08:19:39 +01:00
Julio Castillo
ad68fc4dfa
Support for cloud logging buckets
2021-03-03 14:23:59 +01:00
Ludovico Magnocavallo
54955b3e6d
Add support for per-tunnel routers to VPN dynamic and HA ( #202 )
...
* add optional per-tunnel router to vpn dynamic module
* add support for per-tunnel router to VPN HA
* fix onprem tests
2021-03-02 07:36:06 +01:00
Julio Castillo
2d9d81e061
Add support for essential contacts
2021-02-24 18:34:17 +01:00
Ludovico Magnocavallo
7e429425fe
Fix IAM additive ( #200 )
...
* Fix wrong iam_addictive variable input (#197 )
iam_additive variable from Project module expect { "roles" = list(string) } input
Co-authored-by: Emre Turan <emre@unl.global>
* fix project example
Co-authored-by: Emre Turan <turan.emre@gmail.com>
Co-authored-by: Emre Turan <emre@unl.global>
2021-02-16 20:01:18 +01:00
Julio Castillo
abf61fa7e2
Add support for allow- and deny-lists
2021-02-15 17:32:39 +01:00
Julio Castillo
d32937f263
Add Squid Docker images
2021-02-15 17:32:39 +01:00
Julio Castillo
1e11c670f5
Update copyright to 2021
2021-02-15 09:38:10 +01:00
Julio Castillo
5e983f55a7
Make `project_id` output non-dynamic
2021-02-15 09:22:19 +01:00
Julio Castillo
be8c61ac2c
Cloud Identity Group module ( #182 )
...
* New Cloud Identity module
* Add tests to cloud-identity-group module
* Fix boilerplate
* Fix outputs
* Remove support for creating managers and admins
* Update cloud-identity-group README
* Small fix to cloud-identity-group README
2021-02-13 06:55:22 +01:00
Ludovico Magnocavallo
e3a03a76ff
Add support for rePD and existing disk attachment to compute VM ( #194 )
...
* initial untested support for repd in compute-vm
* fix repd reference in instance disks
* add support for snapshot source, change disk variable
* fix attach existing disk to instance
* fix examples, add documentation on disk sources
* fix attaching disk for instance templates, add examples
* fix data e2e examples
* update vars table in README
2021-02-03 08:00:08 +01:00
averbukh
aec1f3df96
Adjusting second region for on-prem-in-a-box for testing more use cases
2021-01-29 18:43:53 +01:00
Ludovico Magnocavallo
0ce058e04f
Fix tests for 0.14 compatibility ( #191 )
...
* remove sensitive attribute from VPN modules key output
* fix type error in service account example
* update CI Terraform version
* update VPN modules docs
* require version in compute mig module
* require version in compute mig module for scaling_schedules
* update compute mig test, move provider version requirement in fixture
2021-01-29 14:55:50 +01:00
Ludovico Magnocavallo
2aa72c91f5
add provider constraint for net-vpc, fixes #185
2021-01-15 19:01:28 +01:00
Ludovico Magnocavallo
4e8fbbc54a
fix dns peering example in doc
2021-01-11 12:29:29 +01:00
Aurélien Legrand
dcbbf924f3
Update README.md in modules/dns
...
Adding an example for DNS Peering zones.
2021-01-11 12:11:20 +01:00
Roberto Jung Drebes
177a4d7f2c
update README.md for org module with new parameters
2020-12-10 09:36:32 +00:00
Roberto Jung Drebes
91febe4cd1
Authoritative IAM for organization
2020-12-09 22:58:17 +00:00
Julio Castillo
452669fed1
Update README and CHANGELOG
2020-12-06 18:05:57 +01:00
Julio Castillo
c6691a6140
Add include_children option folder and organization sinks
2020-12-06 17:56:27 +01:00
Julio Castillo
d4201c740d
Update environments e2e example with new sinks
2020-12-05 13:24:44 +01:00
Julio Castillo
1af70c748c
Rename "grant" to "iam" in sink variables
2020-12-05 12:39:06 +01:00
Ludovico Magnocavallo
7aaf24afd3
Add support for confidential compute to compute-vm module ( #179 )
...
* add support for confidential compute
* add support for confidential compute to instance template
2020-12-05 09:14:12 +01:00
Julio Castillo
2c0f949f07
Logging sinks and exclusions ( #178 )
...
* Add sink support to folder module
* Make folder creation optional.
* Add logging sinks to the organization module
* Add logging sink support to project module
* Update readme
2020-12-05 08:31:35 +01:00
Julio Castillo
ca82d71468
Fix organization tests
2020-11-25 18:47:11 +01:00
Julio Castillo
f56c36e2d0
Rename org_id variable to organization_id in organization module
2020-11-25 18:36:19 +01:00
Julio Castillo
0e535a3675
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 18:07:16 +01:00
Julio Castillo
dc038ad71f
Add tests for hierarchical firewall policy
2020-11-25 18:06:25 +01:00
Andras Gyömrey
c8958c548f
monitoring is automatically enabled when monitoring.writer is enabled ( #177 )
2020-11-25 17:32:53 +01:00
Julio Castillo
ce6311f684
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:45:55 +01:00
Julio Castillo
b2d8052b0e
Update modules/project/README.md
...
Remove `project_create = false` to all tests to run
2020-11-25 14:44:31 +01:00
Julio Castillo
1c3451cc35
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:37:36 +01:00
Andras Gyömrey
e0a45b61c5
fix README ( #176 )
2020-11-25 14:21:22 +01:00
Julio Castillo
6bd299190f
Update variable documentation.
2020-11-23 19:10:42 +01:00
Julio Castillo
254efdd799
Hierarchical firewall support for organizations
2020-11-23 19:01:02 +01:00
Julio Castillo
779f585d1d
Hierarchical firewall policies for folders
2020-11-23 18:45:18 +01:00
Ludovico Magnocavallo
cffc823f48
refactor access in bq module, add iam ( #172 )
2020-11-21 09:45:56 +01:00
Ludovico Magnocavallo
27aa0aa64c
Add support for forwarding path to dns module ( #171 )
...
* add support for forwarding path to dns module
* update README
2020-11-20 08:35:58 +01:00
Ludovico Magnocavallo
f611e99e46
add mtu ( #170 )
2020-11-19 16:48:08 +01:00
Ludovico Magnocavallo
dda715670c
Minor vpc-sc module corrections ( #167 )
...
* Fix #158
* fix variable type
2020-11-16 18:04:12 +01:00
Ludovico Magnocavallo
2ddfaad4bc
Merge branch 'master' of github.com:terraform-google-modules/cloud-foundation-fabric
2020-11-16 17:39:59 +01:00
Ludovico Magnocavallo
4cd351fa3b
align firewall module README with variables
2020-11-16 17:39:51 +01:00
nikever
5bfba15acf
Add boot_disk_kms_key to node_config ( #166 )
...
* Add support for CMEK to encrypt boot disks
* Fix typo in variable name
Co-authored-by: Niccolo Raspa <niccolo@sighup.io>
2020-11-16 17:37:10 +01:00
Ludovico Magnocavallo
42a865b8fa
fix provider version pinning
2020-11-14 17:47:07 +01:00
Ludovico Magnocavallo
80acb607c2
Add NLB health checks source ranges
...
https://cloud.google.com/load-balancing/docs/health-checks#fw-netlb
2020-11-12 13:57:56 +01:00