74f17a51a9
Reorder variables
2021-10-07 18:25:49 +02:00
be60c1ad4f
Fix README title
2021-10-07 18:22:43 +02:00
1378efde6e
New module for Cloud SQL instances
2021-10-07 18:20:07 +02:00
77c888e302
Always output project_id from net-vpc
2021-10-06 18:21:04 +02:00
a45814f41c
Naming convention module ( #318 )
...
* naming convention module
* tfdoc
* lint fixture
* add optional separator, variable descriptions
* add output descriptions
* fix example tests
2021-10-05 12:21:12 +02:00
127e090511
Update README.md
2021-10-05 08:22:07 +02:00
5001eb49a4
Make dns module resilient to dynamic values ( #317 )
...
* refactor module and fix tests
* account for wildcard records
* account for empty recordset names
* align tests
* align networking end to end examples
* fix behaviour with wildcard and empty names
* Update main.tf
* fix dumb online edit :)
2021-10-04 18:59:14 +02:00
2863d929a5
Remove redundant variable `admin_ranges_enabled`
2021-10-04 14:12:00 +02:00
2a6f662e71
Update firewall README
2021-10-04 12:56:17 +02:00
f5d00d22dd
Fix typo
2021-10-04 12:53:20 +02:00
400a94658d
Allow using named ranges in firewall rules
2021-10-04 12:39:45 +02:00
d3e8b5e35e
Use single resource for custom rules in firwall module
2021-10-04 12:06:31 +02:00
bccda4eb39
Update README.md
2021-10-04 11:09:09 +02:00
262f823464
Refactor compute-vm to remove multiple instance support ( #314 )
...
* first iteration, largely untested
* basic tests pass
* basic tests pass
* nic test
* disk tests, refactor
* fix tests
* update README
* update gcs to bq example
* fix README examples, do not create disks for template
* fix data solutions examples
* update cloud operations examples
* update networking examples, mig and ilb modules examples
* update default image to debian 11
* update README table
2021-10-04 10:46:44 +02:00
a220f2ab1f
Update README.md
2021-09-14 15:12:06 +02:00
10698e1d5c
Update README.md
2021-09-14 14:57:20 +02:00
cb7a41e49f
Merge branch 'master' into feature/vpc-sc-multiple-perimeters
2021-09-14 10:22:19 +02:00
6b24acbbd4
Update README.md
2021-09-14 10:21:36 +02:00
a1152003c6
Output role information from organization module
2021-09-13 17:36:21 +02:00
8ed8d917a9
Update README.md
2021-09-03 18:54:53 +02:00
996b8d2aa6
Update README.md
2021-09-03 18:53:30 +02:00
ae2dddc192
Update README.md
2021-09-03 18:41:51 +02:00
d5fde0e6e1
adjusting code to reflect pr changes request
2021-09-03 18:35:06 +02:00
7b01f3dc08
Updated README.md for net-vpc module ( #299 )
...
* Updated README.md for net-vpc module
Added a recommendation to avoid setting up shared vpcs using the module for prod usage.
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-08-25 16:54:05 +02:00
658eb3b297
Fix typo
2021-08-13 12:35:12 +02:00
5f97d68c0b
Update readmes
2021-08-13 12:33:44 +02:00
1b80085c9b
Create email notification channels automatically
2021-08-13 12:02:46 +02:00
3a8a040ff3
Billing budget module
2021-08-13 12:01:00 +02:00
cb7c65135e
Update CI processes ( #296 )
...
- Upgrade to latest terraform version (1.0.4)
- Remove tflint from linting pipeline (was not doing anything)
- Add terraform fmt check to linting pipeline
- Pass all code through terraform fmt
2021-08-12 17:30:53 +02:00
c2e23001b7
Fix formatting
2021-08-12 10:07:27 +02:00
4f91e3039b
Fixed typo in max_delivery_attempts variable name.
...
Fixed type in max_delivery_attempts variable name.
2021-08-11 15:48:38 -06:00
75418bbbd0
Compute service account email statically
...
Generate the service account output statically based on the service
account name and parent project. This allows, among other things, to use
service accounts as map keys (e.g. to be used in the `iam` argument in
other modules).
2021-08-10 10:50:44 +02:00
f181c5164d
Update list ==> tolist ( #293 )
2021-08-05 18:03:54 +02:00
a0b3f2fb7f
Apigee tfdoc update
2021-08-05 15:55:23 +02:00
109bd80f43
Apigee module variable description fixes
2021-08-05 15:53:44 +02:00
cb6ded0528
Adding TFDOC to Apigee modules
2021-08-05 14:25:50 +02:00
e8b01064f6
Apigee add paid only variables and examples
2021-08-05 13:21:57 +02:00
9c4bb0562f
apigee module without service networking
2021-08-05 11:57:22 +02:00
24b5e03c80
initial scaffold for an Apigee tf module
2021-08-04 17:09:44 +02:00
202892b344
Add support for lifecycle_rule in gcs module ( #288 ) ( #289 )
...
* Add support for lifecycle_rule in gcs module (#288 )
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* fix docs
* rename unrelated interconnect module tests
* fix doc example test
Co-authored-by: iury <1934268+IuryAlves@users.noreply.github.com>
2021-07-30 12:07:17 +02:00
a1008a83a8
Fix firewall-yaml readme
2021-07-29 11:54:26 +02:00
5197274974
Merge branch 'master' into decentralized-firewall-averbukh
2021-07-28 22:18:20 +02:00
83e469b07f
Update main.tf
2021-07-28 18:47:53 +02:00
804ce9bdc4
Add new variable for flexibility between project id & name ( #287 )
...
* add new variable for flexibility between project id & name
* remove random feature & use new variable
* remove project_id variable & use local descriptive name variable
* fix bad project_id output & avoid confusing name
* update readme
* Update main.tf
Co-authored-by: slaheddine_bejaoui.ext <slaheddine_bejaoui.ext@orange.com>
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-07-28 18:08:51 +02:00
c0aab69bb7
feat: Decenrtalized firewall management example added.
2021-07-26 09:22:40 +02:00
a0e6cfab67
Update README.md
2021-07-22 11:45:02 +02:00
5b88545ca0
Update README.md
2021-07-22 10:41:11 +02:00
4a3464fa7e
Update variables.tf
2021-07-22 10:36:01 +02:00
a604e66cf9
Update README.md
2021-07-22 10:18:18 +02:00
0f10e820f9
Enable multiple vpc-sc perimeters over multiple modules
2021-07-22 09:19:10 +02:00
813ea55d0d
Simplify new CF from onprem via PSC example ( #280 )
...
* add support for PSC addresses to net-address module
* simplify PSC CF example
* update diagram
2021-07-20 15:05:48 +02:00
a793f62bd4
fix logic on module
2021-07-16 09:50:51 +02:00
0ce81743f2
Update CAI example ( #274 )
...
* Add Asset Inventory API to project module
* Create feed from terraform in CAI example
* Fix tests
* sort services
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-07-08 08:57:27 +02:00
46e83d3b59
Autopilot support
2021-06-28 00:54:14 +02:00
3d84897b4b
Create pubsub service identity if service is enabled ( #270 )
...
* Create service identity if service is enabled
* remove dry run mode
* fix tests
* Improve for_each logic
2021-06-25 09:26:33 +02:00
1f5b96b7f1
Update README.md
2021-06-23 12:26:05 +02:00
f3901fc567
module for VLAN attachment+cloud router+bgp ( #254 )
...
* module for VLAN attachment+cloud router+bgp
* fix vlan attachments review comments
* run terraform fmt
* fix code review comment and build errors
* fix for code review comments
* code review changes
* changes after review
* changes after code review
* changes after code review
2021-06-16 13:56:40 +02:00
f3390839ab
Fix dependencies
2021-06-15 09:44:15 +02:00
d03773df46
Fix dependencies
...
Fix role
2021-06-15 00:54:59 +02:00
741de90eed
Fix test
2021-06-14 19:03:02 +02:00
12e69c71e3
Add Service Identity for Secret Manager
2021-06-14 18:35:53 +02:00
1a7fe48c46
Merge pull request #263 from terraform-google-modules/lcaggio-kms-prj
...
Add IAM cryptDecrypt role to robot service account on specified keys
2021-06-11 18:12:58 +02:00
4a2ba0c36c
Add example
2021-06-11 18:02:35 +02:00
136fe03e1d
Remove extralines
2021-06-11 17:41:19 +02:00
dc01db0426
Update Readme and rename variable
2021-06-11 17:38:27 +02:00
476d2c79e9
Add IAM cryptDecrypt role to robo service account on specified keys
2021-06-11 16:00:20 +02:00
efb52eeb6c
Move `bq` robot service account into the robot service account project output ( #262 )
2021-06-11 13:02:30 +02:00
d1b560c76d
Fix message_retention_duration type ( #261 )
...
* Fix message_retention_duration type
* Fix Readme and update Changelog
* Update CHANGELOG.md
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-06-10 18:46:14 +02:00
a4158827a6
add BGP peers to vpn-ha outputs ( #257 )
2021-06-04 15:58:39 +02:00
71031efc7c
Dataplane V2 integration ( #256 )
...
* Dataplane V2 integration
* Moving enable_dataplane_v2 outside addons
* Fixing enable_dataplane_v2 position and default value
* Fix README with default value
* Removing enable_dataplane_v2 from addons
* Adding standalone Dataplane V2 Example
2021-06-04 12:29:12 +02:00
faa3a1cfe9
Add deletion_protection to bigquery module
2021-06-01 18:36:53 +02:00
cd6e1c254d
Fix min provider version for vpc-sc module ( #252 )
2021-05-31 11:22:56 +02:00
c1719951a9
Update to Terraform 0.15 ( #248 )
...
* don't use deprecated list() function
* don't use deprecated map() function
* update Terraform version in CI files
2021-05-22 15:58:55 +02:00
3d7cc9810d
Fix output
2021-05-20 21:34:24 +02:00
585b3a79ee
Merge branch 'master' into vpc-sc-02
2021-05-18 09:52:45 +02:00
a7d58a73cf
Fix README
2021-05-17 20:41:59 +02:00
722b3f59f8
Fix link
2021-05-17 18:41:37 +02:00
4ecd13225a
Fix variable
2021-05-17 18:38:46 +02:00
f306f01fbc
Fix and change variable
2021-05-16 08:31:55 +02:00
654e171b32
Update resource name of google_dns_policy on net-vpc
2021-05-12 16:40:56 +02:00
36d253f1d3
DNS Policies in net-vpc module ( #238 )
2021-05-12 15:02:27 +02:00
628ab41c33
Add Support for Ingress Egress policy
2021-05-07 09:07:36 +02:00
875b786171
Optional create for service accounts
2021-05-06 12:07:39 +02:00
9c0b37f100
Added CORS dynamic block for gcs : feature/cors for gcs ( #232 )
...
* Added a dynamic CORS block for gcs module. Changed main.tf and variables.tf
* Updated the README for the CORS block
* Ran tfdoc for /modules/gcs/README.md
Co-authored-by: Chinmay Dorlikar <chinmay.dorlikar@quantiphi.com>
2021-04-23 17:58:58 +02:00
047ce9551e
Include VPC name in PSC reserved address name
2021-04-21 17:17:25 +02:00
140378f2f5
Add support for private service connect
2021-04-21 13:55:00 +02:00
f8413cc98e
Add support for group-based IAM to resource management modules ( #229 )
...
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
2021-04-11 14:48:16 +02:00
fbbe88eb23
[ #221 ] Add master_global_access_config to gke module ( #222 )
2021-04-07 09:50:40 +02:00
aebb9dc1fe
[ #219 ] Specify VPC module key output format in docs ( #220 )
...
* [#219 ] Specify VPC module key output format in docs
* Update README.md
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-04-01 15:23:57 +02:00
3597769e8e
Support one group per zone in compute-vm ( #218 )
...
* support multiple groups per zone in compute-vm
* fix ilb as next hop example
2021-04-01 08:27:38 +02:00
5149795bec
Allow using a non-suffixed name in compute-vm ( #217 )
...
* allow using a non-suffixed name in compute-vm
* update README
2021-03-31 20:01:10 +02:00
7ca2e60399
Fix tests
2021-03-31 10:45:35 +02:00
94b1a439ee
Fix IAM bindings for logging sinks
...
- Move to non-authoritative bindings to allow multiple sinks to write to
the same destination
- Allow automatically adding logging bucket IAM bindings
2021-03-31 09:59:28 +02:00
37935cee3a
Add project parameter to bigquery iam bindings.
2021-03-30 17:02:20 +02:00
eee06bd5dc
Remove device_policy, it requires BeyondCorp Enterprise Premium. we will implement it in future iterations. ( #215 )
2021-03-29 12:17:11 +02:00
7052cfdb08
allow DNS zones with no vpcs ( #214 )
2021-03-27 09:08:54 +01:00
3155bd7349
Update main.tf ( #213 )
2021-03-20 12:56:11 +01:00
2916f4e078
Project Module: add VPC-SC support ( #212 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
* Add VPC-SC support in the project module.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-19 20:12:29 +01:00
de5a9d747a
Add VPC-SC support for Regions, device policy and access policy dependency ( #210 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-18 13:04:37 +01:00
5a796f3637
Shorten env names
2021-03-14 10:23:52 +01:00
16e11fa7c1
Adjust FW rule name with network name to prevent name clashing within the same project.
2021-03-14 10:14:39 +01:00
3428e9d562
Fix typo.
2021-03-14 03:10:16 +01:00
fcd44c2b78
Added FW-Yaml module for distributed-firewall network example.
2021-03-14 03:03:36 +01:00
f5fb28b4b2
Merge pull request #203 from terraform-google-modules/jccb/log-buckets
...
Support for Cloud Logging buckets
2021-03-05 08:43:38 +01:00
86b88e0634
fix modules version constraints ( #206 )
2021-03-05 08:41:59 +01:00
8e44734fe5
set version for google-beta provider ( #205 )
2021-03-05 08:20:48 +01:00
605ec7c4d1
depend org module resources for policy etc from IAM bindings ( #204 )
2021-03-05 08:19:39 +01:00
ad68fc4dfa
Support for cloud logging buckets
2021-03-03 14:23:59 +01:00
54955b3e6d
Add support for per-tunnel routers to VPN dynamic and HA ( #202 )
...
* add optional per-tunnel router to vpn dynamic module
* add support for per-tunnel router to VPN HA
* fix onprem tests
2021-03-02 07:36:06 +01:00
2d9d81e061
Add support for essential contacts
2021-02-24 18:34:17 +01:00
7e429425fe
Fix IAM additive ( #200 )
...
* Fix wrong iam_addictive variable input (#197 )
iam_additive variable from Project module expect { "roles" = list(string) } input
Co-authored-by: Emre Turan <emre@unl.global>
* fix project example
Co-authored-by: Emre Turan <turan.emre@gmail.com>
Co-authored-by: Emre Turan <emre@unl.global>
2021-02-16 20:01:18 +01:00
abf61fa7e2
Add support for allow- and deny-lists
2021-02-15 17:32:39 +01:00
d32937f263
Add Squid Docker images
2021-02-15 17:32:39 +01:00
1e11c670f5
Update copyright to 2021
2021-02-15 09:38:10 +01:00
5e983f55a7
Make `project_id` output non-dynamic
2021-02-15 09:22:19 +01:00
be8c61ac2c
Cloud Identity Group module ( #182 )
...
* New Cloud Identity module
* Add tests to cloud-identity-group module
* Fix boilerplate
* Fix outputs
* Remove support for creating managers and admins
* Update cloud-identity-group README
* Small fix to cloud-identity-group README
2021-02-13 06:55:22 +01:00
e3a03a76ff
Add support for rePD and existing disk attachment to compute VM ( #194 )
...
* initial untested support for repd in compute-vm
* fix repd reference in instance disks
* add support for snapshot source, change disk variable
* fix attach existing disk to instance
* fix examples, add documentation on disk sources
* fix attaching disk for instance templates, add examples
* fix data e2e examples
* update vars table in README
2021-02-03 08:00:08 +01:00
aec1f3df96
Adjusting second region for on-prem-in-a-box for testing more use cases
2021-01-29 18:43:53 +01:00
0ce058e04f
Fix tests for 0.14 compatibility ( #191 )
...
* remove sensitive attribute from VPN modules key output
* fix type error in service account example
* update CI Terraform version
* update VPN modules docs
* require version in compute mig module
* require version in compute mig module for scaling_schedules
* update compute mig test, move provider version requirement in fixture
2021-01-29 14:55:50 +01:00
2aa72c91f5
add provider constraint for net-vpc, fixes #185
2021-01-15 19:01:28 +01:00
4e8fbbc54a
fix dns peering example in doc
2021-01-11 12:29:29 +01:00
dcbbf924f3
Update README.md in modules/dns
...
Adding an example for DNS Peering zones.
2021-01-11 12:11:20 +01:00
177a4d7f2c
update README.md for org module with new parameters
2020-12-10 09:36:32 +00:00
91febe4cd1
Authoritative IAM for organization
2020-12-09 22:58:17 +00:00
452669fed1
Update README and CHANGELOG
2020-12-06 18:05:57 +01:00
c6691a6140
Add include_children option folder and organization sinks
2020-12-06 17:56:27 +01:00
d4201c740d
Update environments e2e example with new sinks
2020-12-05 13:24:44 +01:00
1af70c748c
Rename "grant" to "iam" in sink variables
2020-12-05 12:39:06 +01:00
7aaf24afd3
Add support for confidential compute to compute-vm module ( #179 )
...
* add support for confidential compute
* add support for confidential compute to instance template
2020-12-05 09:14:12 +01:00
2c0f949f07
Logging sinks and exclusions ( #178 )
...
* Add sink support to folder module
* Make folder creation optional.
* Add logging sinks to the organization module
* Add logging sink support to project module
* Update readme
2020-12-05 08:31:35 +01:00
ca82d71468
Fix organization tests
2020-11-25 18:47:11 +01:00
f56c36e2d0
Rename org_id variable to organization_id in organization module
2020-11-25 18:36:19 +01:00
0e535a3675
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 18:07:16 +01:00
dc038ad71f
Add tests for hierarchical firewall policy
2020-11-25 18:06:25 +01:00
c8958c548f
monitoring is automatically enabled when monitoring.writer is enabled ( #177 )
2020-11-25 17:32:53 +01:00
ce6311f684
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:45:55 +01:00
b2d8052b0e
Update modules/project/README.md
...
Remove `project_create = false` to all tests to run
2020-11-25 14:44:31 +01:00
1c3451cc35
Merge remote-tracking branch 'origin/master' into hierarchical-firewall
2020-11-25 14:37:36 +01:00
e0a45b61c5
fix README ( #176 )
2020-11-25 14:21:22 +01:00
6bd299190f
Update variable documentation.
2020-11-23 19:10:42 +01:00
254efdd799
Hierarchical firewall support for organizations
2020-11-23 19:01:02 +01:00
779f585d1d
Hierarchical firewall policies for folders
2020-11-23 18:45:18 +01:00
cffc823f48
refactor access in bq module, add iam ( #172 )
2020-11-21 09:45:56 +01:00
27aa0aa64c
Add support for forwarding path to dns module ( #171 )
...
* add support for forwarding path to dns module
* update README
2020-11-20 08:35:58 +01:00
f611e99e46
add mtu ( #170 )
2020-11-19 16:48:08 +01:00
dda715670c
Minor vpc-sc module corrections ( #167 )
...
* Fix #158
* fix variable type
2020-11-16 18:04:12 +01:00
2ddfaad4bc
Merge branch 'master' of github.com:terraform-google-modules/cloud-foundation-fabric
2020-11-16 17:39:59 +01:00
4cd351fa3b
align firewall module README with variables
2020-11-16 17:39:51 +01:00
5bfba15acf
Add boot_disk_kms_key to node_config ( #166 )
...
* Add support for CMEK to encrypt boot disks
* Fix typo in variable name
Co-authored-by: Niccolo Raspa <niccolo@sighup.io>
2020-11-16 17:37:10 +01:00
42a865b8fa
fix provider version pinning
2020-11-14 17:47:07 +01:00
Julio Castillo
Ludovico Magnocavallo
Daniel Marzini
sruffilli
Julio Castillo
Noah Dungey
vanessabodard-voi
Daniel Strebel
averbukh
sly92
Lorenzo Caggioni
lcaggio
dsiviglia
Daniel Marzini
sruffilli
Chinmay Dorlikar
Luca Prete
Aurélien Legrand
Roberto Jung Drebes
Andras Gyömrey
Andras Gyömrey
nikever