zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,125 Commits 3 Branches 352 Tags 58 MiB
Commit Graph

5125 Commits

Author SHA1 Message Date
Julio Diez fd451c3451 Align with default versions file 2023-12-22 11:01:41 +01:00
Julio Diez f784f47528
Merge branch 'master' into 1849-implement-cloud-run-module-version-2 2023-12-21 22:11:20 +01:00
Julio Diez d08541159d Update README 2023-12-21 22:09:47 +01:00
Luca Prete df5c02aa1e
Minor fix to GCVE module readme (#1946) 
Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Simone Ruffilli <sruffilli@google.com>
 2023-12-21 18:29:30 +01:00
Ludovico Magnocavallo a2263da1f3
fix GitHub CI/CD provider (#1945) 2023-12-21 17:10:50 +00:00
Simone Ruffilli 87548f9739
Networking Sandbox Blueprint (#1939) 
This blueprint creates a networking playground showing a number of different VPC connectivity options:

Hub and spoke via HA VPN
Hub and spoke via VPC peering
Interconnecting two networks via a network virtual appliance (aka NVA)
On top of that, this blueprint implements Policy Based Routing (aka PBR) to show how to force all traffic within a VPC to be funneled through an internal network passthrough load balancer, to implement an Intrusion Prevention System (IPS). PBR is enabled in the hub VPC, matching all traffic originating from within that VPC.
 2023-12-21 17:50:38 +01:00
simonebruzzechesse 717f7ecad1
Blueprints naming convention update (#1942) 
* update network-dashboard and quota-monitoring naming convention
 2023-12-21 17:02:25 +01:00
Ludovico Magnocavallo e592996ba0
Revert "Add debug step for JWT tokens" (#1943) 
This reverts commit d95280081f.
 2023-12-21 14:50:27 +01:00
Luca Prete c4123044b7
Use new resources in GCVE module, bump up provider versions (#1941) 2023-12-21 13:23:38 +00:00
Wiktor Niesiobędzki 110fd798a7
Fix always succeding test (#1937) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2023-12-21 11:01:08 +00:00
Julio Diez a04f59852f
Merge branch 'master' into 1849-implement-cloud-run-module-version-2 2023-12-20 18:17:15 +01:00
simonebruzzechesse c9a8d777ba
Add kernels.googleusercontent.com zone in dns response policy (#1940) 
* Add kernels.googleusercontent.com zone in dns response policy
* update fast tests
 2023-12-20 11:18:11 +01:00
Wiktor Niesiobędzki d95280081f Add debug step for JWT tokens 2023-12-20 09:26:55 +01:00
Ludo a82d1e8122
update changelog 2023-12-20 09:05:05 +01:00
Simone Ruffilli 0255c80e90
Move squid to __need_fixing (#1936) 
* Moved `modules/cloud-config-container/squid` to __need_fixing
* Moved `blueprints/networking/filtering-proxy{,-psc}` to __need_fixing
 2023-12-19 14:27:37 +00:00
Wiktor Niesiobędzki 0d486fb34e E2E tests fixes 2023-12-19 11:01:03 +01:00
Julio Castillo 01bd0b7b01
Add project-scoped secure tags (#1933) 2023-12-18 18:24:05 +01:00
Julio Castillo b6e0557bbb
Simplify organization tags.tf locals (#1932) 
* Simplify organization tags.tf locals

* Fix boilerplate

* Override github provider version for tests
 2023-12-18 16:09:22 +00:00
Simone Ruffilli c5da6b99c3
Fixes typo in README.md 2023-12-18 15:40:16 +01:00
Ludo f368165ea7
update github provider 2023-12-18 12:25:22 +01:00
Julio Diez 88b91cdaee Move VPC connector management to specific files 2023-12-18 11:53:28 +01:00
Julio Diez 4c9243017c Rename attribute secret.secret to secret.name 2023-12-18 11:42:57 +01:00
Julio Diez bc4f89d9dc Remove 'traffic' variable, the module is not intended to manage rollouts 2023-12-18 11:39:28 +01:00
Ludovico Magnocavallo 21562eefbe
don't fail quota fetch on deleted project (#1931) 2023-12-15 20:20:49 +01:00
simonebruzzechesse c50b732c79
Allow granting network user role on host project from project module and factory (#1930) 
* Update shared vpc config for project factory and project module for more granular Shared VPC configuration

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2023-12-15 14:39:21 +01:00
Simone Ruffilli db31c1b8aa Fixes example in cloud-config-container/squid 2023-12-15 12:31:08 +01:00
Julio Diez c599717856 Refactor the interface 2023-12-14 08:44:51 +01:00
Ludovico Magnocavallo 537237edd6
Fix health check autocreation and id output in passthrough LB modules (#1928) 
* fix health check autocreation and id output

* fix health check exclusion
 2023-12-13 23:39:55 +00:00
Simone Ruffilli ca3c86cb5c
Add support for policy based routes to net-vpc (#1926) 
* Add support for PBR to net-vpc
 2023-12-13 15:19:40 +00:00
Ludo 5f323a767a
update changelog 2023-12-12 20:42:36 +01:00
Thomas Colomb 201ff284f6
gke-cluster-standard : Support upgrade_settings for node auto provisioner (#1905) 
* gke-cluster-standard : Support upgrade_settings for node auto provisionner

* implement suggestions

* tfdoc

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2023-12-12 19:17:51 +00:00
luigi-bitonti ef4095f000
Removed deprecated variable and added labels (#1923) 
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2023-12-12 18:32:48 +00:00
maunope 1dc6965694
Update quota monitor blueprint to support project discovery (#1924) 
* fist test

* dev complete

* update tf with permissions, enabled APIs and discovery root management

* updated readme

* moved projects discovery to a separate method

* reviewed Mauri's changes

* add missing lines from last change

* - fixed discovery page size to 100
- removed last_asset_page_reached var from discover_projects
- added cast to list for projects var in _main, to make the script work both using CLI and pub/sub

* fixed discovery_root default value to work when no value is passed

* fixed tfdoc

* fixed tftest resources #

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2023-12-12 19:17:01 +01:00
Simone Ruffilli f293847077
can_ip_forward in simple-nva examples (#1922) 2023-12-12 13:09:58 +00:00
Wiktor Niesiobędzki c24d023c23 Sync tf version to version used by tests 2023-12-12 09:43:09 +01:00
Ludovico Magnocavallo b65c57bcc2
bump tf version (#1920) 2023-12-12 09:19:46 +01:00
Ludovico Magnocavallo e2c526c6a2
Merge branch 'master' into 1849-implement-cloud-run-module-version-2 2023-12-12 07:26:56 +01:00
luigi-bitonti 6cb3eb5390
Added missing parameters in kubelet and linux node conf (#1918) 2023-12-11 20:05:23 +01:00
Francesco Pavan d2d62b71e2
Added the possibility to configure maintenance window and deny maintenance period in Cloud SQL module module (#1917) 
* added maintenance window configuration to cloud sql

* Formatted code + generated readme

* Fixed readme errors (missing dots at the end of variables' description)

* Fixed typos + regenerated docs

* Added correct readme

* Collapsed "deny_maintenance_period" and "maintenance_window" variables into a single variable called "maintenance_config"

* Added input validation + some minor fixes

* Add trigger configuration for Composer (#1916)

* Added update_track variable validation

* Formatted variables + regenerated readme

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2023-12-11 16:59:00 +00:00
Ludovico Magnocavallo bba814c091
Custom role factories for organization and project modules (#1912) 
* backport custom role factories

* backport from fast ci/cd branch

* indent

* tfdoc

* fix module tests
 2023-12-11 14:16:39 +00:00
Wiktor Niesiobędzki 886734e1e9
Add trigger configuration for Composer (#1916) 2023-12-11 12:54:49 +01:00
dibaskar-google c65e242685
net_lb_ext module e2e and example testing changes (#1909) 
E2E tests for net_lb_ext
 2023-12-08 10:04:07 +01:00
Wiktor Niesiobędzki 861df24ee0
Merge pull request #1908 from GoogleCloudPlatform/wiktorn_project_iam_subnet_readme 
README fixes for #1907
 2023-12-07 11:05:27 +01:00
Wiktor Niesiobędzki 84a15c4d77 README fixes for #1907 2023-12-07 09:51:48 +00:00
Thomas Colomb e4c55bc4c9
gke-cluster-standard : Set optional shielded_instance_config block in cluster_autoscaling.auto_provisioning_defaults (#1906) 
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2023-12-07 09:37:13 +00:00
Ludovico Magnocavallo f548b65b1c
Add support for subnet-level service network user grants to project module, improve docs (#1907) 
* improve project factory example

* light refactor of project modules shared vpc internals and docs

* add support for subnet-level grants on host project
 2023-12-07 09:07:48 +00:00
Ludo 0feb131964
update changelog 2023-12-07 07:36:48 +01:00
Thomas Colomb b92389066e
gke-cluster-standard : Add possibility to enable image streaming feature at cluster level (#1904) 2023-12-07 06:36:21 +01:00
Luca Prete fa7664434b
Enable sole tenancy (`node_affinities`) on compute_vm (#1903) 2023-12-05 18:05:23 +01:00
Luca Prete 7916cd2081
Add IPv6 to HA VPN module + test inventories (#1901) 
---------

Co-authored-by: Luca Prete <lucaprete@google.com>
 2023-12-04 23:38:41 +01:00