zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,456 Commits 3 Branches 352 Tags 59 MiB
Commit Graph

749 Commits

Author SHA1 Message Date
Elia 287fee275c
Documented new GCVE design options (#2404) 2024-07-02 16:46:55 +02:00
Sudhir 3bb03c99f8
gitlab workflow fixes #2401 (#2402) 
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-07-01 09:42:54 +00:00
Alejandro Leal 0363e2cb80 Several wording and typos updates 
Several wording and typos updates
 2024-06-27 07:36:19 +02:00
Ludovico Magnocavallo d70cdf8393
add wording for SCC Enterprise to FAST stage 0 (#2378) 2024-06-24 19:03:07 +02:00
Ludovico Magnocavallo e3809e6735
Add main project factory service account (#2353) 
* add main project factory service account

* add main project factory service account
 2024-06-10 12:23:30 +02:00
Ludovico Magnocavallo b13b6032d3
Remove support for source repositories from FAST CI/CD (#2352) 
* stage 0

* stage 1

* stage 1 mt

* remove unused locals from resman

* remove unused locals from resman

* tfdoc
 2024-06-10 09:02:55 +00:00
Alberto Geniola 67754ca58e
Fix typos in documentation (#2344) 
* Fix typos in documentation

* use toc

---------

Co-authored-by: Alberto Geniola <geniola@google.com>
Co-authored-by: Ludo <ludomagno@google.com>
 2024-06-07 14:32:06 +00:00
Alberto Geniola c1e0788957
Fix wrong documentation reference to tfvars (#2340) 2024-06-04 16:23:08 +02:00
Simone Ruffilli 22494c2f68
Update README.md 2024-06-04 07:42:48 +02:00
Simone Ruffilli 3487cb8c71
DNS policy fix (#2337) 2024-06-03 08:25:35 +02:00
Ludovico Magnocavallo f9a433825f
Add perimeter ids in vpc-sc module outputs, fix vpc-sc in project factory module (#2335) 
* add perimeter ids in vpc-sc module outputs, fix vpc-sc in project factory module

* tfdoc
 2024-05-31 20:07:59 +02:00
Ludo 26357d9b0c
update resman IAM 2024-05-31 15:31:51 +02:00
Ludovico Magnocavallo 5cae3fd266
add support for iam to builtin tags (#2334) 2024-05-31 12:57:13 +00:00
Ludovico Magnocavallo d736a06c0b
Fix resman top-level folders variable types (#2333) 
* fix resman top-level folders variable types

* pass logging settings to underlying module

* fix logging settings
 2024-05-31 14:45:31 +02:00
Wiktor Niesiobędzki 1cc028c64b
Fix dns policy (#2332) 2024-05-31 11:27:31 +00:00
Ludovico Magnocavallo 460af6246c
enable hierarchy in fast project factory (#2331) 2024-05-31 11:11:12 +00:00
Julio Castillo ef7083799c
Update PGA domains (#2330) 
* Update PGA domains

* Fix tests
 2024-05-31 10:53:50 +00:00
Simone Ruffilli 4901b4aee8
FAST: Enable networkconnectivity when using NCC-RA in 2-b (#2329) 2024-05-31 08:22:24 +00:00
Luca Prete eb5754e475
[FAST] Rename stage 2-networking-d-separate-envs to 2-netwroking-c-separate-envs (#2328) 
Co-authored-by: Luca Prete <lucaprete@google.com>
 2024-05-31 09:09:31 +03:00
Julio Castillo 23b256ac25
Fix restrictAllowedGenerations org policy example (#2325) 
Fixes #2323
 2024-05-30 12:19:24 +00:00
fulyagonultas 0d60e39aee
resource_labels added to the node_config nodepool (#2317) 
* resource_labels added to the node_config nodepool

* labels added to the gke standard module

* labels set to mandatory

* Updating variables names

* Fix nodepool label variables defaults

* Fix tests

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-05-29 14:56:15 +02:00
Peter Brumblay 772a555b05
Pbrumblay/clarify org policy tags (#2319) 
* fix: clarify org policy tag limitations

* fix: use a more generic term to describe binding possibilities

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-05-29 06:19:39 +00:00
Simone Ruffilli 532f1ecfc4
Merge FAST C and E network stages into a new B stage. (#2309) 
Merge FAST C and E network stages into a new B stage.
 2024-05-28 17:27:28 +02:00
Simone Ruffilli 9e1008dcca
FAST: Obsolete assets cleanup (#2315) 
Remove obsolete assets
 2024-05-28 09:35:13 +00:00
Simone Ruffilli 1f15c5123f
Update README.md 2024-05-27 07:52:28 +02:00
Simone Ruffilli 11050c46cf
FAST MT: Readme updates and more prefix validation (#2305) 
This change documents the process of deploying FAST on a tenant-factory bootstrapped tenant.

It also fixes changes the validation logic for prefix as follows:

- 0-bootstrap: 9 chars or less
- 1-resman/1-tenant-factory: 9 chars or less if ran at org-level, else 11
- else 11

It also uniforms across all stages the variables.tf and variables-fast.tf breakdown.
 2024-05-24 12:01:55 +02:00
Simone Ruffilli 3fe754167e FAST: Clarify max prefix len for tenant factory 2024-05-23 09:43:23 +02:00
Simone Ruffilli b55e9320ca
Update README.md 2024-05-23 08:44:07 +02:00
simonebruzzechesse 10ae9bc824
New extra stage for FAST gitlab setup (#2232) 
* new extra stage for gitlab setup

* removed wrong link

* small fixes README.md

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-05-22 09:17:14 +02:00
Peter Brumblay a04d63e991
Avoid unnecessary terraform plans for closed (unmerged) PRs (#2294) 
* Avoid unnecessary terraform plans for closed (unmerged) PRs

* fix: also update templates copied to avoid Windows symlink problems.

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-05-21 13:03:07 +00:00
Wiktor Niesiobędzki 3368be51bd Adjust list of policies to official docs 2024-05-21 11:27:57 +02:00
Ludovico Magnocavallo be9214f99a
add support for tenant factory CI/CD (#2297) 2024-05-21 10:39:47 +02:00
Luca Prete 0afaa84026
[FAST] fix: tenant-factory logging bucket project (#2292) 2024-05-20 16:51:12 +00:00
simonebruzzechesse 79af34b69e
Add wif permissions to bootstrap tf SA (#2290) 
* add wif permissions to bootstrap tf SA
 2024-05-20 18:15:23 +02:00
Ludovico Magnocavallo 98126f2ab8
Update README.md 2024-05-20 07:55:42 +02:00
Ludovico Magnocavallo 8e8ff7825c
Update README.md 2024-05-20 07:54:31 +02:00
Ludovico Magnocavallo 116c1292ab
Update README.md 2024-05-20 07:54:03 +02:00
Ludovico Magnocavallo 32907924e1
update diagrams (#2289) 2024-05-18 23:53:49 +02:00
Ludovico Magnocavallo db44be9803
Ignore test resource data in new network stage, split out fast variables (#2288) 
* ignore test resource data, split out fast vars

* tfdoc
 2024-05-17 15:30:57 +02:00
Ludovico Magnocavallo 8014121be1
switch stages 0-1s to excalidraw diagrams (#2286) 2024-05-17 09:10:13 +00:00
Simone Ruffilli 21f3b733ab
FAST: Cleanup/harmonization of Simple and NVA net stages (#2287) 
Cleanup/harmonization of Simple and NVA net stages
 2024-05-16 16:49:15 +03:00
Simone Ruffilli 887c7e7926
Unify VPN and Peering FAST stages (#2284) 
* Unify VPN and Peering FAST stages
 2024-05-16 12:18:32 +03:00
Ludovico Magnocavallo 7a5dd4e6db
FAST: add top-level folders and restructure teams/tenants in resman (#2254) 
* remove teams and tenants from resman

* move fast features to stage 1, fix test inventories

* folders

* fix factory, add top level folder resources to outputs

* tfdoc

* stage 0 log sink defs

* tfdoc

* enable toc in resman readme

* simple tenants

* fast compatibility automation and logging

* testing fast-compatible tenants

* testing fast-compatible tenants

* tfdoc

* remove mt stages

* remove tests, fix links

* disable tflint

* fast tests

* make organization conditional in resman

* check names tool

* export real prefix to tfvars, prevent destroy errors

* prefix validation

* fix billing account export format

* tfdoc

* root node folder

* resman changes

* tenant resman roles

* first apply of tenant resman

* tenant log sinks in stage 1

* fix test vars

* tfdoc

* tenant vpc-sc access policy

* fix tests expected values

* tenant CI/CD

* identity providers

* wif

* tfdoc

* add comments to identity locals

* full-feature tenant resman apply

* tenant billing IAM

* stage test

* fix CI/CD comments

* tenant net stage verified

* tenant sec stage verified

* fix test

* README work

* tfdoc

* README

* README rewording

* README rewording

* tfdoc

* FAST excalidraw

* review comments

* diagram review changes

* add iam log sink for tenants

* remove redundant try from security stage

* Implement tflint-fast in Python driven by tftest.yaml files

* tflint

* test ci changes

* revert linting changes

* disable tflint for fast

* Create junit-style report for FAST tflint

* Remove junit-reporter

* YAPF tflint-fast.py

* Output tflint FAST to job summary

* Step summary

* Disable step_summary as output is not useful

* ignore tflint warning

* re-enable tflint on FAST

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-05-15 09:17:13 +00:00
Wiktor Niesiobędzki af253c9702
Fix 0-bootstrap iam_by_principals not taking into account all principals (#2267) 
* Fix 0-bootstrap iam_by_principals not taking into account all principals
* Add test-case for iam_by_principals for 0-bootstrap stage

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-05-12 21:02:04 +02:00
Wiktor Niesiobędzki 2b6c81f73d Update docs - gcp-network-admins -> gcp-vpc-network-admins 2024-05-10 10:04:24 +02:00
Ludovico Magnocavallo c9503d5ac5
Remove data source from folder module (#2260) 
* remove data source from folder module

* fix fast tfdoc

* fix locals type error

* fix folder test

* fix fast test
 2024-05-09 13:09:54 +00:00
Julio Castillo 7aa6c7e059 Style fixes to FAST log sinks expressions 2024-05-02 22:11:33 +02:00
Julio Castillo 94c32c1d71
Misc FAST fixes (#2253) 
* Misc FAST fixes

* Fix readme

* Fix FAST nva bgp tests
 2024-05-02 06:56:26 +00:00
Julio Castillo 99129d54a3
Update FAST logging (#2235) 
* Update FAST logging

* Fix readme

* Fix tests
 2024-04-25 08:31:51 +02:00
Luca Prete dd213ea9a9
Fix permissions for branch network dev - read sa (#2233) 
Co-authored-by: Luca Prete <lucaprete@google.com>
 2024-04-23 15:19:38 +02:00