66416ac5f1
Merge branch 'master' into luigi-bitonti/pubsub-gcs-feature
2023-09-13 21:23:10 +02:00
4f5852d3a7
Ran fmt
2023-09-13 19:53:05 +02:00
6d4060f0aa
Fixed typo
2023-09-13 15:59:04 +02:00
008abe4ddc
Merge branch 'master' into apigee-module-fix
2023-09-13 15:25:51 +02:00
f5b657df54
Merge branch 'master' into luigi-bitonti/pubsub-gcs-feature
2023-09-13 15:18:45 +02:00
f2fc67d72d
Added possibility to use gcs push endpoint on pubsub subscription
2023-09-13 15:13:13 +02:00
fdb133f1de
Fixed, added back environments to each instance, that way we can also create instances for already existing environments
2023-09-13 14:43:37 +02:00
ced8e498f8
terraform fmt
2023-09-13 16:58:50 +10:00
09e6e8f4d2
created passing test, fixed logic
2023-09-13 16:49:14 +10:00
83221c16a5
Merge branch 'global_managed_proxy_support' of https://github.com/dgulli/cloud-foundation-fabric into global_managed_proxy_support
2023-09-13 14:11:11 +10:00
3d39a3ecf1
fixed up logic.
2023-09-13 14:11:09 +10:00
f5b9f08183
Merge branch 'master' into global_managed_proxy_support
2023-09-13 05:45:52 +02:00
e9801979a4
Merge branch 'master' into net-vlan-attachment-fix
2023-09-12 14:58:16 +02:00
b512650ad2
fix(compute-mig): add correct type optionality for metrics in autosca… ( #1668 )
...
* fix(compute-mig): add correct type optionality for metrics in autoscaler_config
* feat(compute-mig): regenerate readme via tfdoc
* fix(compute-mig): linting
* fix(compute-mig): attempt #2 at fixing linting error
* fix(compute-mig): tfdoc --no-files
2023-09-12 13:58:09 +02:00
0019328bb4
Fix for partner interconnect, the router interface and the BGP peers are automatically created
2023-09-12 13:02:28 +02:00
3479c40735
fixing tests
2023-09-12 15:53:28 +10:00
9498e740dc
Merge branch 'global_managed_proxy_support' of https://github.com/dgulli/cloud-foundation-fabric into global_managed_proxy_support
2023-09-12 15:01:01 +10:00
5f2bc7fa92
refactored to recommended method
2023-09-12 14:58:49 +10:00
1092f181bd
Merge branch 'master' into global_managed_proxy_support
2023-09-12 12:08:56 +10:00
f225b60b0e
fix(compute-mig): add mode property to compute_region_autoscaler ( #1667 )
...
* fix(compute-mig): add mode property to compute_region_autoscaler
* fix(compute-mig): add mode property to zonal mig
2023-09-11 13:25:31 +02:00
db5030e93f
adding test
2023-09-11 21:08:55 +10:00
3208bcd9d5
matched the period
2023-09-11 20:50:18 +10:00
f76d8fcb52
fixed period
2023-09-11 20:48:26 +10:00
dac76a900b
fixed references
2023-09-11 20:47:05 +10:00
adff09aa24
linting error
2023-09-11 20:45:32 +10:00
c1b52b300c
trying to fix linting
2023-09-11 20:41:25 +10:00
7e0827db53
re-ordered variables per lint error
2023-09-11 20:33:08 +10:00
e1aff29d5c
linting again
2023-09-11 20:30:11 +10:00
3cfabb32c5
fixed linter
2023-09-11 20:29:08 +10:00
3c0391db5c
slight change to readme thanks to tfdoc
2023-09-11 20:24:06 +10:00
8c264da200
small commits to add variables, append tests
2023-09-11 20:14:17 +10:00
a18071ed36
updated for global managed proxy
2023-09-11 17:42:34 +10:00
b49984e1b9
added support for global proxy only subnets
2023-09-11 16:56:09 +10:00
ec3b705f53
Change type of `iam_bindings` variable to allow multiple conditional bindings ( #1658 )
...
* modules
* fast
* dns readme
2023-09-08 08:56:31 +02:00
a6230d2b11
Merge branch 'master' into jccb/apigee-fixes
2023-09-07 16:34:45 +02:00
77c1e69666
New phpIPAM serverless third parties solution in blueprints ( #1642 )
...
* Added new phpIPAM serverless third parties solution in blueprints
* added jit to iap.googleapis.com service in project module
* updated tests
2023-09-07 15:30:22 +02:00
3e069ea16a
changed from merge to length-based if statement
2023-09-07 08:26:40 -04:00
b98537689c
add tests and update readme for apigee psc peering
2023-09-07 16:55:16 +05:30
34b37a0dc2
Remove unneeded try
2023-09-07 12:09:42 +02:00
46f4d22c87
Examples and tests
2023-09-07 11:31:40 +02:00
d7dcec3389
Fix error message
2023-09-07 10:52:30 +02:00
0822531b78
Allow creating organizations/instances without VPC Peering
2023-09-07 10:51:43 +02:00
6f5a6aa06d
Allow user to override instance names
2023-09-07 09:05:49 +02:00
3941129a68
still testing
2023-09-06 17:12:31 -04:00
822dfc0110
replaced coalesce with merge
2023-09-06 17:08:39 -04:00
35ff529b9c
swapping coalesce variables for test
2023-09-06 17:02:04 -04:00
b4979fd451
Added coalesce to local variable and to the attachment resource
2023-09-06 16:59:30 -04:00
e64cd90d4c
just trying the old way first
2023-09-06 15:29:25 -04:00
c1c99a0a79
back to coalesce
2023-09-06 14:54:30 -04:00
c32e2763f0
Changed instance loop to a coalescelist function
2023-09-06 14:30:43 -04:00
7ceaf9b513
Added environments back to instances variable
2023-09-06 13:58:41 -04:00
401c3478ea
Fixed copy/paste error from earlier commit
2023-09-06 13:48:38 -04:00
46be7c0c1d
Added original attachment loop block as local for backwards compatibility
2023-09-06 13:25:58 -04:00
a6640e5959
Make net-vpc variables nullable
2023-09-06 09:57:34 +02:00
7acb4966b2
Added optional name value to instances variable and added it to the instance resource
2023-09-05 17:23:45 -04:00
3d4cc7164a
Bump provider version to 4.80.0
2023-09-05 09:48:15 +02:00
9f23d504ec
gke-cluster-autopilot: add monitoring configuration ( #1646 )
...
* gke-cluster-autopilot: add monitoring configuration block (monitoring_config)
2023-09-04 16:43:59 +01:00
42ebbccad9
gke-cluster-autopilot: validation for release_channel ( #1645 )
2023-09-03 00:37:49 +00:00
988fd2ee05
gke-cluster-standard: change logging configuration ( #1638 )
...
* Update logging configuration of this module to use object interface in harmony with `gke-cluster-autopilot` module.
* Update blueprints that use this module.
* Add "WORKLOADS" log source to logging configuration of the blueprints where the README files say so.
* Update FAST stage 3 because it uses this module.
2023-08-31 12:49:15 +01:00
80e85ad343
gke-cluster-autopilot: add logging configuration ( #1625 )
...
Although one cannot disable Cloud Logging and Cloud Monitoring integration in GKE Autopilot clusters, one has some flexibility over which control plane components' logs should be ingested. This commit adds a new variable and a block to the cluster resource to facilitate that.
* gke-cluster-autopilot: update logging configuration and add an example to module README
2023-08-31 12:06:57 +01:00
b784e85c60
Regenerated cloud run README tables with tfdoc.py
...
Updated documentation with tfdoc.py
2023-08-30 12:16:21 +01:00
a4dfd7f201
fixed grcp to grpc typo in cloud run module
2023-08-30 11:04:10 +01:00
c558d9b753
Vpc sc allow null for identity type ( #1632 )
...
* vpc-sc : allow null for identity_type
* cloudsql-instance : fmt
* vpc-sc: tfdoc
* modules/vpc-sc: update the test result for the identity_type field
* cloudsql-instance: remove empty line
2023-08-29 04:28:57 +02:00
9d0fd744a8
Do not set default ASN number ( #1633 )
2023-08-28 15:06:31 +00:00
9eb768357e
Switch to count
2023-08-28 16:00:48 +02:00
04721a35ef
Allow single hfw policy association in folder and organization modules
2023-08-28 16:00:48 +02:00
ce96ac31e7
[Fix] Add explicit dependency between CR peers and NCC RA spoke creation ( #1630 )
2023-08-28 15:50:46 +02:00
befbd190a3
Cloud SQL activation policy selectable ( #1613 )
...
* Update main.tf
added activation policy
* Update variables.tf
added activation_policy variable defaulted as ALWAYS for non regression
* corrections requested by @juliocc
* Regeneration of README.md on cloudsql-instance mod
* terraform fmt changes
* bug correctionand activation_policy on replicas
* activation_policy description change and README.md
* Bug correction
2023-08-25 12:12:08 +02:00
44c1cec041
Fix tests
2023-08-24 20:09:23 +02:00
25aa29e463
Merge remote-tracking branch 'origin/master' into billabongrob/add-nat
2023-08-24 19:52:06 +02:00
9188603365
Update key name
2023-08-24 19:46:39 +02:00
d50355b01a
Only create nat IP when requested
2023-08-24 19:42:20 +02:00
67c2597bcc
Fix output order
2023-08-24 19:38:44 +02:00
add1ac2dcc
Update README
2023-08-24 19:36:42 +02:00
57d5e05d69
Merge branch 'master' into richard/nfw-policy-remove-match-var-validation
2023-08-24 19:29:13 +02:00
bff5e46460
Fix apigee instance nat
2023-08-24 19:27:34 +02:00
3fdf0dfe99
Make apigee variables non-nullable
2023-08-24 18:15:15 +02:00
6c33d34c28
Adding support for NAT in Apigee
2023-08-24 09:36:15 -05:00
10aeb6615a
readme update
2023-08-24 20:01:47 +10:00
d36c53bbae
Update README.md
2023-08-24 11:29:03 +02:00
35aae372b2
remove existing validation
2023-08-24 19:06:43 +10:00
2f4b141d7a
switch default behaviour for ingress
2023-08-23 21:17:47 +10:00
def012d32e
customisable rule action
2023-08-23 21:08:23 +10:00
18af929331
add name to factory rules
2023-08-23 20:58:07 +10:00
4885b8a7f9
objects non-nullable
2023-08-22 09:40:50 -06:00
9a0f9f607f
objects output
2023-08-22 09:35:39 -06:00
2f3d29395f
remove validation
2023-08-22 09:09:37 -06:00
95a0c76b18
Merge branch 'master' into ehorning/support-gcs-object-upload
2023-08-22 09:48:32 +02:00
ff8eef6a6f
use cloud run bindings for cf v2 invoker role, refactor iam handling in cf v2 and cloud run ( #1609 )
2023-08-22 07:23:49 +00:00
33d51dbee4
Merge branch 'master' into ehorning/support-gcs-object-upload
2023-08-21 16:36:35 -06:00
6f1f6f5085
add additional parameters
2023-08-21 16:35:47 -06:00
49a4550b5d
Merge branch 'master' into elia-gcve
2023-08-21 08:44:37 +02:00
0d17af7967
Update 20230816-iam-refactor.md
2023-08-21 07:11:24 +02:00
e7eeed12f8
Update 20230816-iam-refactor.md
2023-08-21 07:10:29 +02:00
63b0480499
Update 20230816-iam-refactor.md
2023-08-21 07:09:54 +02:00
e43be5b387
Update README.md
2023-08-21 07:01:06 +02:00
5cb4accbd0
Merge branch 'master' into elia-gcve
2023-08-20 10:19:14 +02:00
819894d2ba
IAM interface refactor ( #1595 )
...
* IAM modules refactor proposal
* policy
* subheading
* Update 20230816-iam-refactor.md
* log Julio's +1
* data-catalog-policy-tag
* dataproc
* dataproc
* folder
* folder
* folder
* folder
* project
* better filtering in test examples
* project
* folder
* folder
* organization
* fix variable descriptions
* kms
* net-vpc
* dataplex-datascan
* modules/iam-service-account
* modules/source-repository/
* blueprints/cloud-operations/vm-migration/
* blueprints/third-party-solutions/wordpress
* dataplex-datascan
* blueprints/cloud-operations/workload-identity-federation
* blueprints/data-solutions/cloudsql-multiregion/
* blueprints/data-solutions/composer-2
* Update 20230816-iam-refactor.md
* Update 20230816-iam-refactor.md
* capture discussion in architectural doc
* update variable names and refactor proposal
* project
* blueprints first round
* folder
* organization
* data-catalog-policy-tag
* re-enable folder inventory
* project module style fix
* dataproc
* source-repository
* source-repository tests
* dataplex-datascan
* dataplex-datascan tests
* net-vpc
* net-vpc test examples
* iam-service-account
* iam-service-account test examples
* kms
* boilerplate
* tfdoc
* fix module tests
* more blueprint fixes
* fix typo in data blueprints
* incomplete refactor of data platform foundations
* tfdoc
* data platform foundation
* refactor data platform foundation iam locals
* remove redundant example test
* shielded folder fix
* fix typo
* project factory
* project factory outputs
* tfdoc
* test workflow: less verbose tests, fix tf version
* re-enable -vv, shorter traceback, fix action version
* ignore github extension warning, re-enable action version
* fast bootstrap IAM, untested
* bootstrap stage IAM fixes
* stage 0 tests
* fast stage 1
* tenant stage 1
* minor changes to fast stage 0 and 1
* fast security stage
* fast mt stage 0
* fast mt stage 0
* fast pf
2023-08-20 09:44:20 +02:00
3a8071d93c
Merge branch 'master' into elia-gcve
2023-08-20 08:18:53 +02:00
126d75a311
fixed typo
2023-08-18 17:01:12 +02:00
103443dc30
fixed typo
2023-08-18 16:57:35 +02:00
1b93197b87
fixed typo
2023-08-18 16:56:21 +02:00
c4ada40275
fixed typo
2023-08-18 16:52:58 +02:00
bf26580b9d
fixed variables order
2023-08-18 15:52:56 +02:00
9452a14ac7
output cleanup
2023-08-18 15:49:20 +02:00
81b567684b
outputs cleaup
2023-08-18 15:41:06 +02:00
87e82244af
fixed tests
2023-08-18 15:38:35 +02:00
e1e3826f6d
fix(cloud-run): move cpu boost annotation to revision
2023-08-18 13:53:00 +01:00
d568408331
fixed variable name and regex
2023-08-18 11:20:27 +02:00
476d6eaf30
Update variables.tf
2023-08-18 10:07:23 +02:00
dc78ad3493
Update outputs.tf
2023-08-18 10:06:32 +02:00
ea0de3adbb
Fixing some typos
2023-08-18 05:51:00 +00:00
574c7548d8
feat(cloud-run): add startup cpu boost option
2023-08-17 14:43:27 -07:00
6a5739bf91
gcve net requirements link
2023-08-17 12:25:33 +02:00
c6f5d47c66
fixed variable name
2023-08-17 12:19:47 +02:00
739bbf1aef
fixed variable name
2023-08-17 12:11:42 +02:00
3feaad0c1c
fixed variable name
2023-08-17 12:10:44 +02:00
0e2ee8bceb
fixed typo
2023-08-17 12:05:44 +02:00
1e54ddd710
Merge branch 'elia-gcve' of github.com:GoogleCloudPlatform/cloud-foundation-fabric into elia-gcve
2023-08-17 09:39:50 +02:00
e927bf3858
Fixed typo
2023-08-17 09:37:48 +02:00
a7fd3e2616
fixed file name
2023-08-17 09:25:44 +02:00
def2f476d1
Add support for conditions to `iam_members` module variables ( #1594 )
...
* project
* data-catalog-policy-tag
* dataproc
* folder
* iam-service-account
* kms
* net-vpc
* organization
* source-repository
* dataplex-datascan
2023-08-15 16:28:23 +02:00
acc191c58e
Merge branch 'master' into elia-gcve
2023-08-15 09:41:00 +02:00
6fee2a9eb3
Merge branch 'elia-gcve' of github.com:GoogleCloudPlatform/cloud-foundation-fabric into elia-gcve
2023-08-14 14:46:16 +02:00
f3d5dd8e34
Added link to GCVE module
2023-08-14 14:41:33 +02:00
b6b660f4f3
feat: 🎸 (modules/cloudsql-instance):add project_id for ssl cert ( #1591 )
2023-08-14 12:40:25 +02:00
5689aacac2
Merge branch 'master' into elia-gcve
2023-08-14 11:56:47 +02:00
adf2621727
Add new `iam_members` variable to IAM additive module interfaces ( #1589 )
...
* resource management modules
* data catalog policy
* dataproc
* service account
* kms
* net-vpc
* source repository
* dataplex datascan
* service account module variable order
2023-08-14 09:54:50 +00:00
a509756f1b
GCVE module first release
2023-08-14 11:48:27 +02:00
f9509ad6b7
feat: 🎸 (modules/cloudsql-instance): enable require_ssl cert support ( #1588 )
2023-08-14 11:37:03 +02:00
841459a059
Fix factory rules key in net firewall policy module ( #1587 )
...
* fix factory rules key in net firewall policy
* fix test
2023-08-14 07:52:36 +02:00
10faf82b8d
linting
2023-08-11 11:20:06 -06:00
2fa6369ba0
Merge branch 'master' of https://github.com/GoogleCloudPlatform/cloud-foundation-fabric into ehorning/support-gcs-object-upload
2023-08-11 11:19:21 -06:00
b1679ad21a
Fix: Instance level stateful disk config ( #1578 )
...
* update doco
* fix bug in TF code
* change instance name in README to fix test
* revert disk name
* Update stateful.yaml
* fix examples and tests
---------
Co-authored-by: Julio Castillo <juliocc@gmail.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-08-11 15:25:17 +00:00
df1fded669
add support for object upload to gcs module
2023-08-10 21:43:53 -06:00
78095063f7
feat(modules/cloud-run): add gen2 exec env support ( #1582 )
2023-08-09 23:04:16 +02:00
79373721df
Remove firewall policy management from resource management modules ( #1581 )
...
* rename firewall policy module, fix outputs
* add TOC to firewall policy module
* don't depend policy on parent id
* remove firewall policy from resource management modules
* remove factory conditionals
* fast net a and b
* fast stages
* fast tfdoc
* fast tfdoc
* remove unused test
* fix shielded folder blueprint
* fix shielded folder blueprint
2023-08-09 11:23:07 +00:00
6a13742e3c
Apigee addons
2023-08-09 08:12:06 +02:00
80ada0e8dd
Refactor firewall policy module ( #1576 )
...
* refactor module interface
* hierarchical attachment and example
* hierarchical rules and TODO
* split rules resources
* additional fields
* keep using a single resource for rules
* factory
* factory test
* boilerplate
* Prefix ingress and egress rule ids
* Tests for other firewall policy types
* Fix rule id and names
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-08-08 16:57:59 +00:00
9ec38581d7
Update README.md
2023-08-07 14:33:54 +01:00
dd3a298892
Moved allow_net_admin to enable_features flag. Bumped provider version to 4.76
2023-08-07 14:27:20 +01:00
69ea9dd3be
Linting with terraform fmt
2023-08-07 12:46:54 +01:00
10e3184451
Expose allow_net_admin feature in gke-cluster-autopilot
2023-08-07 12:44:59 +01:00
9c75aa469c
More module descriptions ( #1572 )
...
* bigquery dataset
* data catalog policy tag
* net-address
* fix data catalog callers
* bigquery dataset views
* fix data catalog callers
* logging bucket
* net vpn ha
2023-08-06 09:25:45 +00:00
83d2976949
add support for cost management to GKE module ( #1569 )
2023-08-05 11:46:52 +00:00
aecba0bbd0
Add support for ipv6 to net-vpc module ( #1568 )
...
* add support for ipv6
* fix test
2023-08-05 13:07:26 +02:00
ce510583bf
Fix default routes
2023-08-04 18:24:41 +02:00
bbe778e095
Allow custom route descriptions in net-vpc module
...
Related: #1491
2023-08-04 14:13:03 +02:00
702c428da4
Update Readme
2023-08-04 13:06:59 +02:00
a0bd0d4414
Merge branch 'master' into feature/apigee-add-retention
2023-08-03 14:28:40 +02:00
fe0a9ed138
Fixed error of inconsistent conditional result types when evaluating local peer_gateway variable
2023-08-02 23:22:26 +02:00
0906ddb8df
feat(apigee): add retention variable
2023-08-02 15:13:43 +02:00
22b661fe93
Removed unused attribute in peer_gateway_config variable
2023-08-02 15:07:05 +02:00
43e73aba9a
add dataplex datascan base module ( #1545 )
2023-08-02 11:16:32 +00:00
3b7e62990c
Added IPSEC_INTERCONNECT addresses to net-address module
2023-08-02 12:12:14 +02:00
4bb51a42ce
renaming net-vpc-swp to net-swp
2023-08-01 16:23:12 +02:00
7acd9f624e
coalesce instead of ternary operator
2023-08-01 15:07:37 +02:00
f09d32a703
Merge branch 'master' into net-vpc-swp-optional-description
2023-08-01 13:05:04 +02:00
bcf191ab5a
description: only one main variable
2023-08-01 13:04:47 +02:00
915f09461e
optional description for the gateway security policy - separately
2023-08-01 10:27:26 +02:00
bd0fe1f928
Fix tests
2023-07-31 18:04:07 +02:00
3df98c8feb
Fix permadiff in artifact-registry
2023-07-31 18:04:07 +02:00
75bd7d7c2d
Merge branch 'master' into net-lb-proxy-int
2023-07-31 17:43:07 +02:00
63ac5710ac
Added module for Regional Internal Proxy Load Balancer
2023-07-31 17:21:57 +02:00
51bc31ae21
Fix in IAM bindings of cloud function v2 module
2023-07-31 12:39:08 +02:00
09c9e291a0
Merge branch 'master' into net-lb-hc-fix
2023-07-31 11:55:47 +02:00
fe3e8a3941
Add image path output to ar module ( #1552 )
...
* Add image path output to ar module
* tfdoc
2023-07-31 09:34:01 +00:00
f49515495c
Fix in validation of healthchecks variable
2023-07-31 10:23:32 +02:00
47a9947b18
Fix in validation of healthchecks variable
2023-07-31 10:01:35 +02:00
b524aa137c
Peering module refactor ( #1547 )
...
* refactor net-vpc-peering module
* hub and spoke peering blueprint
* fast stages
* boilerplate
* fast tfdoc
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-07-29 21:33:57 +02:00
4998f1d376
Grant IAM rights to service identities in host project ( #1542 )
...
* [module/project] Grant IAM rights to service identities based on used services in host project
* [blueprints/factories/project-factory] enable granting IAM permissions in host VPC for service identities directly or by specifying services in use
2023-07-29 20:07:21 +02:00
0415cf64f1
rename cloud-dataplex to dataplex ( #1546 )
2023-07-29 14:31:18 +02:00
32bb69caa5
Merge branch 'master' into jccb/toc
2023-07-28 17:23:18 +02:00
a89e0dac31
Fixes in cloud function v2 module for trigger service account
2023-07-28 17:02:36 +02:00
408e4eedd0
Fix artifact-registry readme
2023-07-28 16:38:26 +02:00
e6be368367
Simplify whitespace handling
2023-07-28 16:32:38 +02:00
1fdec356e2
Update large TOCs
2023-07-28 15:43:51 +02:00
4f123ccc74
Extend tfdoc to generate TOCs
2023-07-28 14:18:28 +02:00
5a534edf5c
update and refactor artifact registry module ( #1536 )
2023-07-28 09:54:36 +00:00
960c84b347
Fixed wrong ASN when using partner_interconnect. ( #1537 )
2023-07-28 09:16:03 +00:00
a8d9d80d5b
Renamed output.tf in net-vlan-attachment ( #1535 )
...
* Renamed output.tf in net-vlan-attachment
2023-07-28 08:35:48 +00:00
cf567b0c43
Fix in event_filters of trigger_config
2023-07-25 16:22:09 +02:00
d46312a7f1
Improve Dataplex ( #1519 )
...
* First commit.
* Implement fixes.
* fix google_dataplex_zone_iam_binding
2023-07-24 10:52:07 +02:00
ec74f351f5
feat(cloudsql-instance): Add query insights config ( #1520 )
2023-07-21 20:14:34 +02:00
fde498800c
optional description attribute in variables
2023-07-20 12:14:39 +02:00
a8c27b1b6e
optional description in modules/net-vpc-swp
2023-07-20 08:45:18 +02:00
bad5748be4
enable-logging flag can only be true for public zones
2023-07-19 16:16:56 +02:00
cacb0c02e2
Refactoring of dns module
2023-07-19 12:57:44 +02:00
74c50f95a8
Add output to org module with custom constraint details and depends_on
2023-07-17 18:49:36 +02:00
cc0b278df3
Move IAM grant to function level for trigger SA
2023-07-12 16:19:34 +02:00
dd37d07955
Update ncc-spoke-ra module to explicity request ncc hub id when referencing existing hubs ( #1479 )
...
* Updated ncc-spoke-ra module to explicity requesting ncc hub id when referencing existing hub
* fix documentation
* updated hub variable description
* more explicit validation condition on hub variable
2023-07-10 16:18:42 +02:00
973a8594b6
add support for custom description in net-address ( #1499 )
2023-07-10 13:04:54 +02:00
551dc581e8
Implement proper support for data access logs in resource manager modules ( #1497 )
...
* organization module
* rename iam_bindings_authoritative to iam_policy, fix tests
* add support for data access logs and iam policy to folder module
* test inventories
* add support for data access logs and iam policy to project module
2023-07-10 08:08:02 +00:00
d9f7cef1e7
allow using a separate resource for boot disk ( #1496 )
2023-07-07 15:40:13 +00:00
86cc6eee4c
disable googleapi routes creation when vpc is not created ( #1489 )
2023-07-03 09:10:12 +02:00
31f7a9ecca
allow external editing of group instances in lb modules ( #1486 )
2023-06-30 17:34:09 +00:00
10e15356ea
Add bigquery authorized resources ( #1480 )
...
* add bq authorized views, datasets, and routines
* fmt
* add backwards compatible test case
* minor docs clarification
* add docs table and fix lint tests
* fix docs
* fix tests
* fix more lint issues
* fix lint issue
* fix tests
* fix lint
* fix tests
* alphabetical order
* add detailed example to docs and corresponding test
* clarify docs for variables
* remove unnecessary depends_on
2023-06-30 18:44:57 +02:00
ac9417b82d
align group names in lb modules ( #1485 )
2023-06-30 10:18:06 +00:00
925a288316
Update README
2023-06-28 20:09:18 +02:00
55062fe66f
Merge branch 'master' into patch-1
2023-06-28 20:05:06 +02:00
6fcb010ff2
Add ToCs to resource manager modules ( #1471 )
...
* organization module
* folder
* project module
2023-06-27 09:36:28 +00:00
638841c8d1
Rename network load balancer modules ( #1466 )
...
* update LB modules to new names
* update LB modules names
* update test paths
2023-06-26 07:50:10 +00:00
ce647647cc
Add support for resource policies to compute vm module ( #1467 )
...
* instance schedule
* snapshot resource policy variable and resource
* tfdoc
* snapshot schedules
2023-06-26 06:49:05 +00:00
32b347b104
modules/vpc-sc: add support for method_selectors/permission ( #1439 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-06-25 06:45:37 +00:00
ad25b1a31c
Added validation for edge_availability_domain value
2023-06-23 12:11:06 +02:00
15ae95df90
Fixing typos
...
- modules/organization/variables.tf
- modules/organization/README.md
- blueprints/data-solutions/shielded-folder/main.tf
2023-06-23 00:14:02 -04:00
9c26760773
add missing variable image_uri
...
For master_config, the variable image_uri is missing
2023-06-21 16:19:48 -06:00
f6e918ffbd
Merge branch 'master' into dns-managed-zone-iam
2023-06-20 12:19:13 +02:00
97d6e48bde
Re-order variables
2023-06-20 17:30:23 +10:00
1f6f0c306d
Formatting
2023-06-20 17:27:15 +10:00
c05bc41b69
feat(artifact-registry): Add support for CMEK
2023-06-20 17:27:15 +10:00
2830e4b9e2
Split Cloud Function module in separate v1 and v2 modules ( #1450 )
...
* split v1
* v2
* blueprints
* remove _http
2023-06-20 17:27:15 +10:00
ddfab0a0e4
Added iam for DNS managed zone to dns module
2023-06-19 12:53:38 +02:00
a424635221
Refactored apigee module and adjusted the blueprints accordingly
2023-06-19 09:01:32 +02:00
064d86511f
enable_logging variable was not being used
2023-06-14 19:22:04 +02:00
30ae108c89
Ignore Cloud Run system annotations/labels
...
Ignore explicitly:
* metadata.0.annotations["run.googleapis.com/operation-id"],
* template.0.metadata.0.labels["run.googleapis.com/startupProbeType"]
To remove permdiff in terraform plan. Not ignoring all changes in
annotations as it implements some of the functionality and it prevents
detecting drift.
Related: #1435 , #1269
2023-06-13 10:07:04 +02:00
81285065ca
Added module for Secure Web Proxy.
2023-06-13 08:49:58 +02:00
500179f02f
Move net-dedicated-vlan-attachment module to net-vlan-attachment and added support for Partner interconnect
2023-06-12 14:21:01 +02:00
50d8d4b8b8
Add subnets id output, expand net-address outputs
2023-06-12 10:24:30 +02:00
e900e9c951
Make internal/external addresses optional in compute-vm
...
Fixes 1431
2023-06-08 14:00:10 +02:00
d248f799d9
Merge branch 'master' into net-ilb-l7-psc-negs
2023-06-08 12:35:17 +02:00
a7b944aa8e
fix serverless neg example ( #1430 )
2023-06-08 12:05:54 +02:00
ebeace21dd
Added support for PSC negs in net-ilb-l7 module
2023-06-08 11:18:32 +02:00
c024eca320
Add custom tag support to FAST ( #1426 )
...
* initial implementation of custom tags
* depend org policies on tags
* fix test
* integrate default and custom org policy tags
2023-06-07 22:10:27 +00:00
39b27ac25e
Add support for Log Analytics on logging-bucket module and bump provider version ( #1423 )
...
* first commit
* Bump provider versions
* Fix tests
2023-06-07 23:23:28 +02:00
7bd6e5d57b
Small fixes ( #1425 )
...
* fix serverless connector plugin outputs
* add internal and lb to allowed ingress org policy
* add validation condition on cloud run ingress settings
* tfdoc
* plugin tfdoc
* allow disabling googleapis routes with a single instruction in net-vpc
* fix variable def
* fix variable description
* fix cr variable validation
* fix usage of create_googleapis_routes in examples and stages
2023-06-07 17:37:46 +00:00
fedb894f97
Fix NLB module ( #1419 )
...
* net-nlb fixes
* formatting
2023-06-05 19:42:32 +02:00
ea4c00756b
Network Load Balancer module ( #1418 )
...
* wip
* example tests passing
2023-06-05 13:21:40 +02:00
0d6751a5f4
Remove hardcoded description from instance groups created under net-ilb ( #1417 )
2023-06-05 09:35:17 +00:00
c439a66b27
Add notice to net-ilb module on routes ( #1415 )
...
* add support for routes
* boilerplate
* revert and add notice to README
* revert
* revert
* Fix README
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-06-05 09:40:34 +02:00
f2fe406a62
add alloydb module ( #1403 )
...
* add alloydb module
* fix typos
* fix typos
* Add default googleapi route creation to net-vpc
* Reuse existing logic to create default routes
* Update net-vpc README
* Fix modules and blueprints tests
* Rename to `create_googleapis_routes`
* Fix FAST tests
* Fix nva stages tests
* update changelog
* fix typos
* fix version
* rearrange variables
* fix lint
* fix lint
* fix README
* fix README
* fix comments
* fix variables
* fix READMEs
---------
Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludo <ludomagno@google.com>
2023-06-04 10:12:32 +00:00
87db60de1f
Add networksecurity to JIT identity list.
2023-06-02 16:11:16 +02:00
884cb8b4bf
Ensure all modules have an `id` output ( #1410 )
...
* net-vpc
* a-d
* complete modules
* fix error
2023-06-02 16:07:22 +02:00
f069562998
Added comment in the dns module, saying that inbound/outbound server policies are set in the net-vpc module ( #1405 )
...
Co-authored-by: Luca Prete <preteluca@gmail.com>
2023-06-02 11:35:25 +02:00
6c11527762
Multiple Updates
...
modules/net-dedicated-vlan-attachment/variables.tf
modules/net-dedicated-vlan-attachment/README.md
CHANGELOG.md
blueprints/networking/ha-vpn-over-interconnect/README.md
2023-05-31 13:26:22 -04:00
fda4daecff
Cosmetic documentation fixes
2023-05-31 13:51:15 +02:00
7f561565e7
HA VPN over Interconnect modules and blueprint ( #1390 )
...
Two new modules, net-ipsec-over-interconnect to establish HA VPN over existing VLAN attachments, and net-dedicated-vlan-attachment to create (optionally encrypted) vlan attachments, as well as the ha-vpn-over-interconnect blueprint that shows how to compose such modules to create a 99.9% encrypted interconnect.
2023-05-31 10:53:38 +00:00
3ac6ceac1e
Add trigger SA for Cloud Run
2023-05-30 17:08:37 +02:00
0888cce3a5
Rename to `create_googleapis_routes`
2023-05-26 16:43:43 +02:00
cecbd2072c
Fix modules and blueprints tests
2023-05-26 16:38:41 +02:00
563b5fa0cb
Update net-vpc README
2023-05-26 12:46:16 +02:00
1e8c58c88e
Reuse existing logic to create default routes
2023-05-26 12:01:38 +02:00
7a91a7e41c
Add default googleapi route creation to net-vpc
2023-05-26 10:55:35 +02:00
e479d9815b
Merge branch 'master' into juliocc-patch-1
2023-05-24 12:46:04 +02:00
aa80109081
allow to configure `stack_type` in the GKE modules ( #1395 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-24 10:19:43 +00:00
4aa99ea829
allow setting identities in egress policies ( #1394 )
2023-05-24 12:05:16 +02:00
d22bf2ec6b
Update README.md
2023-05-24 11:34:21 +02:00
fddf8b52bc
Fix sort order
2023-05-22 19:11:33 +02:00
3e67fc00ca
Add default Cloud Build SA to project module
2023-05-22 19:11:33 +02:00
a5bbd09776
Support CMEK encryption in logging-bucket module
...
We have a use case, Local Controls, that requires to configure
CMEK with Logging buckets. This commit adds an optional variable to
configure CMEK in the `logging-bucket` module. By default the Logging
bucket won't use CMEK encryption.
To configure CMEK for Logging buckets it's also required to add the
correct permissions to the bucket service account. For more information
and a Terraform example, see:
https://cloud.google.com/logging/docs/routing/managed-encryption-storage
https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/logging_project_bucket_config#example-usage
2023-05-22 15:12:27 +01:00
Julio Castillo
Luigi Bitonti
apichick
luigi-bitonti
Dave Gulli
Ludovico Magnocavallo
Arpit Sharma
simonebruzzechesse
John Inama
g-greatdevaks
Oliver Frolovs
Zachary
LudovicEmo
Luca Prete
Carlo Maria Valla
Rob Heckel
Richard Olson
Erin Horning
Erin Horning
eliamaldini
Michael
Alejandro Leal
Jay Schwerberg
erabusi
Sam Bentley
Eunan Hardy
Daniel Strebel
Thinh Ha
Natalia Strelkova
Wiktor Niesiobędzki
Simone Ruffilli
lcaggio
Alejandro Leal
Jose Luis Bermudez
Albert Lloveras
Taneli Leppä
Prabha Arya
Benoît Sauvère
Ana Fernandez del Alamo