Ludovico Magnocavallo
789328ff5a
Bump provider versions to v5.0.0 ( #1724 )
...
* bump provider versions to 5.0.0
* fix cloud run, logging and vpc-sc
* Fix secret manager
* fix gke nodepool
* fix gke multitenant stage and blueprint
* Moving alloydb module to experimental.
* Add project to bare resources in examples
* tfdoc
* fix svpc blueprint test
* Revert "fix svpc blueprint test"
This reverts commit 14f02659098070136e64ead600580dd52c23c339.
* Fix GKE peering project
* Disable tests in alloydb module
* Bring back secret ids in secret manager tests
* Remove duplicate key
* last push
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-03 12:15:36 +00:00
Ludovico Magnocavallo
ec3b705f53
Change type of `iam_bindings` variable to allow multiple conditional bindings ( #1658 )
...
* modules
* fast
* dns readme
2023-09-08 08:56:31 +02:00
Ludovico Magnocavallo
819894d2ba
IAM interface refactor ( #1595 )
...
* IAM modules refactor proposal
* policy
* subheading
* Update 20230816-iam-refactor.md
* log Julio's +1
* data-catalog-policy-tag
* dataproc
* dataproc
* folder
* folder
* folder
* folder
* project
* better filtering in test examples
* project
* folder
* folder
* organization
* fix variable descriptions
* kms
* net-vpc
* dataplex-datascan
* modules/iam-service-account
* modules/source-repository/
* blueprints/cloud-operations/vm-migration/
* blueprints/third-party-solutions/wordpress
* dataplex-datascan
* blueprints/cloud-operations/workload-identity-federation
* blueprints/data-solutions/cloudsql-multiregion/
* blueprints/data-solutions/composer-2
* Update 20230816-iam-refactor.md
* Update 20230816-iam-refactor.md
* capture discussion in architectural doc
* update variable names and refactor proposal
* project
* blueprints first round
* folder
* organization
* data-catalog-policy-tag
* re-enable folder inventory
* project module style fix
* dataproc
* source-repository
* source-repository tests
* dataplex-datascan
* dataplex-datascan tests
* net-vpc
* net-vpc test examples
* iam-service-account
* iam-service-account test examples
* kms
* boilerplate
* tfdoc
* fix module tests
* more blueprint fixes
* fix typo in data blueprints
* incomplete refactor of data platform foundations
* tfdoc
* data platform foundation
* refactor data platform foundation iam locals
* remove redundant example test
* shielded folder fix
* fix typo
* project factory
* project factory outputs
* tfdoc
* test workflow: less verbose tests, fix tf version
* re-enable -vv, shorter traceback, fix action version
* ignore github extension warning, re-enable action version
* fast bootstrap IAM, untested
* bootstrap stage IAM fixes
* stage 0 tests
* fast stage 1
* tenant stage 1
* minor changes to fast stage 0 and 1
* fast security stage
* fast mt stage 0
* fast mt stage 0
* fast pf
2023-08-20 09:44:20 +02:00
Ludovico Magnocavallo
def2f476d1
Add support for conditions to `iam_members` module variables ( #1594 )
...
* project
* data-catalog-policy-tag
* dataproc
* folder
* iam-service-account
* kms
* net-vpc
* organization
* source-repository
* dataplex-datascan
2023-08-15 16:28:23 +02:00
Ludovico Magnocavallo
adf2621727
Add new `iam_members` variable to IAM additive module interfaces ( #1589 )
...
* resource management modules
* data catalog policy
* dataproc
* service account
* kms
* net-vpc
* source repository
* dataplex datascan
* service account module variable order
2023-08-14 09:54:50 +00:00
Wiktor Niesiobędzki
4998f1d376
Grant IAM rights to service identities in host project ( #1542 )
...
* [module/project] Grant IAM rights to service identities based on used services in host project
* [blueprints/factories/project-factory] enable granting IAM permissions in host VPC for service identities directly or by specifying services in use
2023-07-29 20:07:21 +02:00
Ludovico Magnocavallo
551dc581e8
Implement proper support for data access logs in resource manager modules ( #1497 )
...
* organization module
* rename iam_bindings_authoritative to iam_policy, fix tests
* add support for data access logs and iam policy to folder module
* test inventories
* add support for data access logs and iam policy to project module
2023-07-10 08:08:02 +00:00
Julio Castillo
6b767c9035
Simplify org policies data model in resman modules.
2023-02-21 15:49:16 +01:00
Julio Castillo
c83a7de076
Remove as_logging_destination
2022-11-12 19:24:41 +01:00
Julio Castillo
8fe19ad7c2
Rename bigquery_use_partitioned_table
2022-11-12 11:30:34 +01:00
Julio Castillo
486d398c7d
Update logging sink to tf1.3 in resman modules
2022-11-11 19:22:05 +01:00
Natalia Strelkova
d96f95c2b6
cannot instead of can not
2022-11-11 11:56:47 +00:00
Natalia Strelkova
d5d1d9eb34
terraform formatting fixed
2022-11-10 15:11:38 +00:00
Natalia Strelkova
68c3b13d6a
prefix variable consistency across modules
2022-11-10 15:05:53 +00:00
Julio Castillo
4b278a1533
Update variable description
2022-11-03 12:35:50 +01:00
Julio Castillo
3e18575fad
Add factory support for new org policies
2022-11-03 11:41:53 +01:00
Julio Castillo
b23d07b0c6
Update project/folder/module to use new org policies API and tf1.3 optionals.
2022-10-28 17:49:44 +02:00
Julio Castillo
1955a61159
Make project shared vpc fields optional
2022-10-06 15:48:37 +02:00
ddaluka
9c2a53f7a9
Management of GCP project default service accounts ( #844 )
...
* Added change for default service account deprivilege setting
* Updated readme and variable name
* Updated readme and variable name
2022-09-29 15:10:07 +02:00
Julio Castillo
67c031c41c
Change `modules/project` service_config default
2022-09-09 09:23:09 +02:00
Ludovico Magnocavallo
0b5ed8b7ef
Add support for resource management tags and tag bindings ( #552 )
...
* organization module
* folder module
* project module
* fix project binding
* use id instead of name for references
* kms module
* compute-vm
* fix compute-vm
2022-02-20 11:14:18 +01:00
Ludovico Magnocavallo
40cb46e1cc
Add support for Shared VPC service IAM to project module ( #525 )
...
* project module changes
* fix examples
* add comments in module code
* re-enable nullable on svpc variables
* project factory
* Tests still failing (#526 )
* fix pf
* tfdoc
* pf test boilerplate
Co-authored-by: Simone Ruffilli <sruffilli@google.com>
2022-02-09 11:06:51 +01:00
Simone Ruffilli
abb6b50a46
Add periods at the end of each description field where missing ( #478 )
2022-01-31 10:45:34 +01:00
Julio Castillo
e2abd772f2
Update resman modules ( #475 )
...
* Make logging sinks in different resources use the same API
* Split resman modules in multiple files. Add nullables where applicable
2022-01-29 19:35:33 +01:00
Ludovico Magnocavallo
3717548c25
edit variable description so table does not overflow
2022-01-22 16:12:03 +01:00
Simone Ruffilli
ee25965c89
Copyright bump ( #410 )
2022-01-01 15:52:31 +01:00
Julio Castillo
0c21fecff8
Add metric scopes support ( #397 )
...
* Add metric scopes support
* Fix typo
* new tfdoc block in README
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-12-21 09:22:10 +01:00
Christopher Avila
e42383eab9
update var to skip_delete per feedback
2021-11-01 11:33:24 -05:00
Christopher Avila
3663151465
format project variables
2021-11-01 11:22:30 -05:00
Christopher Avila
88c6af3dbb
Add a project_skip_delete variable to optionally let the project stick around after the resources are destroyed.
2021-11-01 10:59:27 -05:00
Julio Castillo
1d13e3e624
Add more validations to linter
...
- Ensure all variables and outputs are sorted
- Ensure all variables and outputs have a description
- Add data-solutions/data-platform-foundations to linter
Fix all modules to follow these new conventions.
2021-10-08 18:26:04 +02:00
sly92
804ce9bdc4
Add new variable for flexibility between project id & name ( #287 )
...
* add new variable for flexibility between project id & name
* remove random feature & use new variable
* remove project_id variable & use local descriptive name variable
* fix bad project_id output & avoid confusing name
* update readme
* Update main.tf
Co-authored-by: slaheddine_bejaoui.ext <slaheddine_bejaoui.ext@orange.com>
Co-authored-by: Ludovico Magnocavallo <ludo@qix.it>
2021-07-28 18:08:51 +02:00
Lorenzo Caggioni
136fe03e1d
Remove extralines
2021-06-11 17:41:19 +02:00
Lorenzo Caggioni
476d2c79e9
Add IAM cryptDecrypt role to robo service account on specified keys
2021-06-11 16:00:20 +02:00
Ludovico Magnocavallo
f8413cc98e
Add support for group-based IAM to resource management modules ( #229 )
...
* group_iam support for organization
* group_iam support for folder
* fix typo in variable description
* add group_iam to project module
* update project module README
2021-04-11 14:48:16 +02:00
lcaggio
2916f4e078
Project Module: add VPC-SC support ( #212 )
...
* Add VPC-SC support for Regions, device policy and access policy dependency.
* fix compute mig module test
* Fixes
* Fix example
* Add VPC-SC support in the project module.
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2021-03-19 20:12:29 +01:00
Julio Castillo
ad68fc4dfa
Support for cloud logging buckets
2021-03-03 14:23:59 +01:00
Julio Castillo
2d9d81e061
Add support for essential contacts
2021-02-24 18:34:17 +01:00
Julio Castillo
1e11c670f5
Update copyright to 2021
2021-02-15 09:38:10 +01:00
Julio Castillo
1af70c748c
Rename "grant" to "iam" in sink variables
2020-12-05 12:39:06 +01:00
Julio Castillo
2c0f949f07
Logging sinks and exclusions ( #178 )
...
* Add sink support to folder module
* Make folder creation optional.
* Add logging sinks to the organization module
* Add logging sink support to project module
* Update readme
2020-12-05 08:31:35 +01:00
Ludovico Magnocavallo
6610b79b6c
Revert iam_additive behaviour ( #160 )
...
* revert iam_additive format, add iam_additive_members
* revert iam_additive format, add iam_additive_members
* update CHANGELOG
2020-11-09 11:29:08 +01:00
Ludovico Magnocavallo
d47478a466
rename iam members variable in project module
2020-11-04 16:22:00 +01:00
Ludovico Magnocavallo
d0ed3b7614
rename iam additive variable in project module
2020-11-04 16:17:12 +01:00
Ludovico Magnocavallo
8dc131550f
fix variable validation in project module to allow for null values
2020-11-04 12:06:01 +01:00
Julio Castillo
7bd31ccf52
Added some basic variable validation
2020-11-03 08:12:11 +01:00
Julio Castillo
78efb63b4a
Remove iam_roles from project module
2020-10-29 23:51:34 +01:00
Julio Castillo
5fd8720c7a
Add service project configuration options to project module ( #142 )
2020-09-24 10:41:44 +02:00
Luca Prete
f2c80e17f1
[ #138 ] Update copyright headers to 2020 ( #139 )
...
Co-authored-by: Luca Prete <lucaprete@google.com>
2020-09-23 11:07:03 +02:00
Ludovico Magnocavallo
67d03fd07c
support Shared VPC in project module ( #112 )
2020-07-09 15:15:14 +02:00