zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloud-foundation-fabric/blueprints/data-solutions/shielded-folder
History
lcaggio 9a46f06dd0 update readme 2023-01-27 10:05:19 +01:00
..
data VPC-SC 2023-01-18 15:50:49 +01:00
README.md update readme 2023-01-27 10:05:19 +01:00
kms.tf Make KMS and Log sink optionals 2023-01-25 18:22:43 +01:00
log-export.tf Make KMS and Log sink optionals 2023-01-25 18:22:43 +01:00
main.tf Fix 2023-01-25 18:30:21 +01:00
variables.tf Make KMS and Log sink optionals 2023-01-25 18:22:43 +01:00

README.md

Shielded folder

This module implements an opinionated Folder configuration to implement GCP best practices. Configurations implemented on the folder would be beneficial to host Workloads hineriting contrains from the folder they belong to.

In this blueprint, a folder will be created implementing the following features:

  • Organizational policies
  • Hirarckical firewall rules
  • VPC-SC

Withing the folder the following projects will be created:

  • '

#TODO Proper README (after deciding if this is a blueprint or a FAST stage)

Implemented

  • Use of Scoped Policies (create or inherit)
  • VPC SC adding all Folder's project into the perimeter
  • Org policies
  • Hierarchical firewall rules

TODO

  • Log sync
  • KMS