96c1342d55
Add public_access_prevention
2023-10-30 18:23:33 +01:00
b8bb000073
Merge branch 'master' into cmalpe/kms-import-job
2023-10-30 20:32:50 +05:30
671f06a3a4
Billing budget factory ( #1822 )
...
* billing budget factory
* review comment changes
2023-10-29 11:24:52 +01:00
7c6726e79b
[net-address] enable ipv6 ( #1821 )
...
---------
Co-authored-by: Luca Prete <lucaprete@google.com>
2023-10-28 15:36:30 +02:00
b29987bb61
Merge branch 'master' into cmalpe/kms-import-job
2023-10-28 01:29:28 +02:00
022b9f5060
Added iam_bindings and iam_bindings_additive to apigee module
2023-10-27 18:22:07 +02:00
5b17c11d01
Merge branch 'master' into fix/ai-models-support
2023-10-27 10:22:47 +02:00
af339aad15
corrected readme linting
2023-10-27 07:22:59 +00:00
b0e5231f50
Merge branch 'master' into cmalpe/kms-import-job
2023-10-27 07:21:36 +00:00
9a3ac13687
corrected linting and test example
2023-10-27 06:52:55 +00:00
98dde0c57f
review comments
2023-10-27 08:38:37 +02:00
8a76b10161
added test for import job
2023-10-27 11:53:35 +05:30
d0b1ced280
fix logic for default source range in firewall ingress rules ( #1815 )
2023-10-26 15:25:36 +00:00
5d8ff92471
added linting changes for readme file
2023-10-26 15:02:59 +00:00
d9e09bb9c3
removed unneeded variable
2023-10-26 20:23:06 +05:30
c83b6c229f
added tfdoc changes
2023-10-26 14:05:39 +00:00
c2380a88fa
added import job support for kms module
2023-10-26 18:12:58 +05:30
6fc960ea0b
empty gpu sharing config fix
2023-10-26 07:23:13 +02:00
4decc641bb
Stop wrapping yamldecode with try() ( #1812 )
2023-10-25 16:16:05 +02:00
33ce0e1db5
AI models support ( #1750 )
...
* nodepool config
* added gpu driver configuration
* documentation update
* regenerated docs
* review comments
* review comments
* blocks structure
* documentation update
* test fix and doc update
* review comments
* doc
* Extend inventory
* Update README
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-25 09:42:36 +00:00
e28f7c3237
Fix Apigee add-ons configuration ( #1798 )
...
* Revert "Merge pull request #1694 from eddern/eddern/fix-apigee-addons-config"
This reverts commit ec7a7a9605df5daab6cc
2023-10-25 07:37:45 +00:00
1b3a4d627b
allow setting enable_private_nodes in gke nodepool pod range ( #1808 )
2023-10-24 17:34:04 +00:00
019cca735d
net-lb-ext: add option to set IPv6 subnetwork for IPv6 external fw rules
2023-10-24 13:37:33 +00:00
feef3909db
compute-vm: remove old todo ( #1804 )
2023-10-24 10:45:53 +00:00
43f78194e9
use the repository format in the image_path output ( #1803 )
...
* use the repository format in the image_path output
* use local.format_string instead of var.format
2023-10-24 10:24:53 +00:00
b2201f69b7
Fix Internal App LB serverless NEG backend example ( #1801 )
...
* Fix Internal App LB serverless NEG backed example
* Silence linter
2023-10-24 07:25:43 +00:00
f54b4f88b8
net-address: allow users to optionally specify address names ( #1795 )
2023-10-23 15:17:06 +00:00
378960cfc6
Removed unnecessary try statements
2023-10-22 17:50:57 +02:00
a23b3d62ae
net-lb-ext: add support for multiple forwarding rules (IPs) and dual-stack (IPv4/IPv6)
2023-10-21 18:19:18 +02:00
6d89b88149
versions.tf maintenance + copyright notice bump ( #1782 )
...
* Bump copyright notice to 2023
* Delete versions.tf on blueprints
* Pin provider to major version 5
* Remove comment
* Fix lint
* fix bq-ml blueprint readme
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-20 18:17:47 +02:00
d07daf966a
End-to-end tests for terraform modules ( #1751 )
...
Add end-to-end tests (apply, plan, destroy) for examples.
When run, `tests/examples_e2e`:
1. Create an environment for tests to run (folder, project vpc network)
2. For each marked example (with `e2e` tftest directive), run apply, plan, destroy
3. Verify:
* no failure in apply
* empty plan after apply
* no failure during destroy
4. When all tests are done, destroy test environment
More details in `tests/examples_e2e/README.md`
2023-10-20 09:59:52 +02:00
4e439720aa
Added ProtectedApplication feature to GKE Backup ( #1774 )
...
* Added ProtectedApplication feature to GKE Backup
* Fixed location name and added example
* Modified test module
* Changed test
* Changed test
* Changed test
* Restore old "all_namespaces" logic
* Bug fix
* Ran fmt on README example
* Modified variable structure
* Fix test
* Fix
2023-10-19 19:54:22 +02:00
77a4696aa6
Add gcp org policy constraints file to bootstrap stage ( #1775 )
...
* add gcp org policy constraints file to bootstrap
* make the org policy factories more resilient
2023-10-18 18:21:16 +00:00
02ccc576f5
fix resource manager tag bindings in compute-vm module ( #1771 )
2023-10-18 09:24:00 +00:00
c21fa4558f
Remove incompatible balancing_mode ( #1769 )
...
## net-lb-int
* Fix error on apply of example:
```
Error creating RegionBackendService: googleapi: Error 400: Invalid value for field 'resource.backends[0].balancingMode': 'UTILIZATION'. Balancing mode must be CONNECTION for an INTERNAL backend service., invalid
```
* remove unused `balancing_mode` variable, as only one value is possible anyhow
## net-lb-ext
* update in the `backends` description
## net-lb-proxy-int
* update in the `backends` description
## net-lb-app-int
* added validation of `balancing_mode`
* fixed other validations
## net-lb-app-ext
* added validation of `balancing_mode`
* fixed other validations
* removed validation for `locality_lb_policy` as this variable is not used in this module
Closes : #1767
2023-10-18 08:11:32 +02:00
6c48512f7e
[ #1764 ] net-lb-int: add support for dual stack and multiple forwarding rules
2023-10-17 09:30:34 +00:00
82f14fd6c0
Make subnets depend on proxy only subnets ( #1762 )
...
* Make subnets depend on proxy only subnets
* Add dependency to subnet_ids too
* Update readme
2023-10-16 11:39:52 +00:00
f464557525
Add autoclass to GCS ( #1757 )
...
* Add autoclass to GCS
* Fix linting
* Make autoclass block dynamic
* Fix syntax
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-16 07:45:10 +00:00
0195ea6bca
Exposed stack_type variable in compute_vm module ( #1756 )
...
* Exposed stack_type variable in compute_vm module
* Updated README.md
* align instance template, fix variable ordering
---------
Co-authored-by: Ludo <ludomagno@google.com>
2023-10-16 06:28:56 +00:00
252127bde5
Billing account module ( #1743 )
...
* initial untested draft
* readme and tests
* folder module tfdoc
* remove redundant billing cost manager role in fast stage 0
* fix FAST test
2023-10-15 15:02:50 +00:00
3949fdc283
Add outputs to BigQuery dataset module ( #1752 )
...
* Add outputs
* Fix checks
* Fix order
* Fix order
* Fix var
* Fix outputs
* Fix README.md
2023-10-13 17:02:47 +02:00
85d2b8b093
Fix typo in GKE nodepool taints ( #1754 )
...
* Fix typo in GKE nodepool taints
Fixes #1749
* fix windows taints
2023-10-12 12:04:15 +00:00
55fc3e226d
Revert "fix windows taints"
...
This reverts commit 661b543e08
2023-10-12 13:39:42 +02:00
661b543e08
fix windows taints
2023-10-12 13:38:37 +02:00
3503e028ae
Module autopilot bug fixes ( #1746 )
...
* Removed unused variables and bug fix
* Ran fmt
* Fix README.md
* Added comments to code
2023-10-12 12:40:28 +02:00
4f91523a08
Add missing fields to Cloud Storage bucket ( #1745 )
...
* Add new featrures
* Terraform fmt
* Fix README.md
* Delete not allowed validation
* Fix README.md
* Fix README.md
* update var
* update var
* Update var
2023-10-10 22:40:30 +02:00
64d88d90d1
Append "s" to backoff times ( #1744 )
2023-10-10 13:32:19 +03:00
9ab3b49f69
Add PSA peered domains support to `net-vpc` ( #1741 )
...
* Add PSA peered domains support to `net-vpc`
* Fix tests
2023-10-06 15:31:32 +00:00
ef290c1c8d
Enforce mandatory types in all variables ( #1737 )
2023-10-06 09:44:33 +00:00
bb76878d0d
Added FQDN Network Policy feature on GKE Cluster ( #1732 )
...
* Added FQDN Network Policy feature on GKE Cluster
* Fix README.md. Added validation into variable.
* README.md updated
---------
Co-authored-by: Bitonti, Luigi <luigi.bitonti@nttdata.com>
2023-10-06 10:05:54 +02:00
dfc5023e0b
Make deletion protection consistent across all modules ( #1735 )
...
* Expose deletion_protection in GKE modules
* Make deletion protection consistent across all modules
* Add deletion_protection option to blueprints
* Fix blueprints tests
* Fix types
* Update READMEs
* Fix dp readme
* Fix cmek blueprint default deletion_protection
* Fix blueprints tests
2023-10-05 17:31:07 +02:00
7503bceaed
Add materialized views for bigquery ( #1726 )
...
* add field and partition filter to time_partitioning for bq table
* add materialized view
* set optional fields for table
* Fix README.md
* Update README.md
* Fix README.md
* Replace explicit dependencies with implicit ones
* Fix indexes
* Update table_id(s) values
* Try to fix tests
* Update tests
* Restore explicit dependencies
* Update README.md
* Update README.md
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-10-04 12:25:56 +00:00
20dd3df27c
Support multiple protocols (L3_DEFAULT) through net-ilb-int
2023-10-04 08:30:11 +00:00
45673f5468
Update iam.tf
2023-10-04 08:19:31 +02:00
e7c31cb83a
Merge branch 'master' into gcs-iam
2023-10-04 08:15:00 +02:00
c10eb72a8f
Changes in IAM to GCS module
2023-10-04 08:13:45 +02:00
4b15605711
Fix dnssec keys lookup ( #1728 )
...
* Fix dnssec keys lookup
* Fix DNS examples
* Fix FAST and blueprints resource counts
2023-10-03 21:37:21 +02:00
789328ff5a
Bump provider versions to v5.0.0 ( #1724 )
...
* bump provider versions to 5.0.0
* fix cloud run, logging and vpc-sc
* Fix secret manager
* fix gke nodepool
* fix gke multitenant stage and blueprint
* Moving alloydb module to experimental.
* Add project to bare resources in examples
* tfdoc
* fix svpc blueprint test
* Revert "fix svpc blueprint test"
This reverts commit 14f02659098070136e64ead600580dd52c23c339.
* Fix GKE peering project
* Disable tests in alloydb module
* Bring back secret ids in secret manager tests
* Remove duplicate key
* last push
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-10-03 12:15:36 +00:00
4d3b0508cc
Add storage billing model ( #1723 )
...
* Add storage billing model
* Fix README.md
2023-10-02 19:37:40 +02:00
046575b7c6
GLB HTTP to HTTPS redirect example ( #1719 )
2023-10-02 10:10:24 +00:00
0ecd223038
Merge branch 'master' into apigee-module-fix-try
2023-09-29 17:01:01 +02:00
60906b66d8
Fixed problem with try in apigee module
2023-09-29 16:46:34 +02:00
1aa5e3a6dc
Add retry policy for subscriptions ( #1716 )
...
* Add retry policy for subscriptions
* Update vars name
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-09-29 14:46:26 +00:00
3d2285a5ab
Fixed problem with try in apigee module
2023-09-29 16:33:21 +02:00
be5d9b8fe0
Add bug fix in bucket local variable ( #1709 )
...
Fix bucket name reference in Cloud Functions if bucket is created and prefix is used.
2023-09-28 10:17:53 +00:00
1c2f0c6b14
Tests for secrets for CF
2023-09-26 11:22:35 +02:00
15b7215f61
Add bug fix to allow to use Secret Manager secrets to mount files in Cloud Function
2023-09-25 14:51:00 +02:00
d78616b6c3
add support for default nodepool sa in GKE cluster module
2023-09-22 10:15:22 +02:00
79b0dc9751
Add deletion_protection_enabled attribute to cloudsql-instance to enable the GCP native deletion protection flag ( #1696 )
2023-09-20 15:09:38 +02:00
c4c851c1dc
remove duplicate variable members
2023-09-20 10:53:44 +02:00
9345901598
Merge branch 'master' into instance-attachment-bc
2023-09-20 10:22:48 +02:00
d7857f26e9
Merge branch 'master' into eddern/fix-apigee-addons-config
2023-09-19 21:15:56 +02:00
36d030f61b
simplify values assertion
2023-09-19 19:28:22 +02:00
df5daab6cc
Allow using no service account in compute-vm ( #1692 )
...
* module and tests
* align blueprints
* tfdoc
* remove stale variables
* fix blueprint
* variable description
2023-09-19 16:56:51 +00:00
9a893114b9
flip return of conditional expression
2023-09-19 18:42:29 +02:00
b9a8b534e4
updating docs
2023-09-18 15:12:25 -04:00
8469c86e63
reversing instance attachment names
2023-09-18 13:02:09 -04:00
10b9c9e2a6
resolving merge:
...
:
2023-09-18 12:18:20 -04:00
96c28e605b
fix repd disk attachment in compute-vm module ( #1688 )
2023-09-18 13:02:28 +00:00
7e7981a1b5
Add IAM variables template to ADR
2023-09-17 10:50:03 +02:00
415bc14d7b
Update Pub/Sub readme
2023-09-17 00:21:36 +02:00
9d61c6e26d
Update IAM for pubsub topics and subscriptions
2023-09-17 00:21:36 +02:00
45203fe86c
Make kms iam non-nullable
2023-09-17 00:21:36 +02:00
9c878dc9cf
Fix tests for new KMS IAM interface
2023-09-17 00:21:36 +02:00
da883bab8c
Update kms module key-level IAM
2023-09-17 00:21:36 +02:00
39264f5edd
I think it's all back
2023-09-15 16:59:13 -04:00
b285deca96
Putting it back how it was and flipping the attachment name
2023-09-15 16:48:13 -04:00
bd7b9b4dd1
Merge branch 'master' into jccb/fix-subnet-iam-bindings
2023-09-15 14:31:28 +02:00
616c6fbc48
Fix subnet iam_bindings to use arbitrary keys
2023-09-15 14:30:27 +02:00
6eb862a775
GKE cluster modules: add optional kube state metrics ( #1682 )
...
* `gke-cluster-standard`: add optional kube state metrics
* `gke-cluster-autopilot`: add optional kube state metrics
* FAST: add kube state metrics support for GKE
* blueprints/gke: add kube state metrics support
* Bump up the provider version to `v4.82.0`
2023-09-15 12:18:45 +01:00
f3be29cbc9
Fix tests
2023-09-15 00:27:55 +02:00
f19ab4872f
Embed subnet-level IAM in the variables controlling creation of subnets
...
This moves the top-level `iam`, `iam_bindings` and
`iam_bindings_additive` variables into subnet-level attributes. This
change also allows setting permissions to PSC or proxy-only subnets
As part of this change, the factory interface is more aligned with the
rest of the modules using a `factories_config` variable. In the future
we can add a cidrs template similar to the firewall policy module
2023-09-15 00:27:55 +02:00
b3dc91b5cd
Upgrades to `monitoring_config` in `gke-cluster-*`, docs update, and cosmetics fixes to GKE cluster modules ( #1680 )
...
* gke-cluster-standard: upgrade `monitoring_config` to use object style. Add tests.
* gke-cluster-standard: update docs
* gke-cluster-autopilot: move gateway_api_config block (cosmetic change)
* gke-cluster-autopilot: update docs and fix typos
* Update blueprints due to `monitoring_config` changes in `gke-cluster-standard`.
* Update FAST due to `monitoring_config` changes in `gke-cluster-standard`.
* Update docs for affected blueprints and FAST stages
2023-09-14 23:25:57 +01:00
1caf394661
Add example reserving blocks with cluster creation
2023-09-14 13:08:43 +02:00
433a0f0541
Update readmes
2023-09-14 12:57:41 +02:00
94e99fe339
Fix formatting
2023-09-14 12:56:17 +02:00
7516a778ed
Remove useless try()
2023-09-14 12:52:43 +02:00
c1be435b09
Fix range names definition of GKE clusters
...
Fixes #1677
2023-09-14 12:51:43 +02:00
05c0195a06
GKE Autopilot module: add network tags ( #1675 )
...
* gke-cluster-autopilot: add support for network tags
* gke-cluster-autopilot: add validation for network tags
* gke-cluster-autopilot: expand README and fix some typos
* gke-cluster-autopilot: fix Cloud DNS section in README
Removed a reference to Standard clusters and updated the section to include a warning because the new versions of Autopilot clusters can only use Cloud DNS and it is pre-configured by default so the example in the README does not apply to them.
* gke-cluster-autopilot: cosmetic fixes in README
* gke-cluster-autopilot: rollback validation on network tags var
* gke-cluster-autopilot: rollback docs string update for network tags var
* gke-cluster-autopilot: rollback some updates to README
* gke-cluster-autopilot: remove dead code
* gke-cluster-autopilot: add a tftest for network tags
* gke-cluster-autopilot: fix a tftest
2023-09-14 09:34:51 +00:00
819b4aab5c
fixed up nit from PR 1666
2023-09-14 13:15:00 +10:00
66416ac5f1
Merge branch 'master' into luigi-bitonti/pubsub-gcs-feature
2023-09-13 21:23:10 +02:00
4f5852d3a7
Ran fmt
2023-09-13 19:53:05 +02:00
6d4060f0aa
Fixed typo
2023-09-13 15:59:04 +02:00
008abe4ddc
Merge branch 'master' into apigee-module-fix
2023-09-13 15:25:51 +02:00
f5b657df54
Merge branch 'master' into luigi-bitonti/pubsub-gcs-feature
2023-09-13 15:18:45 +02:00
f2fc67d72d
Added possibility to use gcs push endpoint on pubsub subscription
2023-09-13 15:13:13 +02:00
fdb133f1de
Fixed, added back environments to each instance, that way we can also create instances for already existing environments
2023-09-13 14:43:37 +02:00
ced8e498f8
terraform fmt
2023-09-13 16:58:50 +10:00
09e6e8f4d2
created passing test, fixed logic
2023-09-13 16:49:14 +10:00
83221c16a5
Merge branch 'global_managed_proxy_support' of https://github.com/dgulli/cloud-foundation-fabric into global_managed_proxy_support
2023-09-13 14:11:11 +10:00
3d39a3ecf1
fixed up logic.
2023-09-13 14:11:09 +10:00
f5b9f08183
Merge branch 'master' into global_managed_proxy_support
2023-09-13 05:45:52 +02:00
e9801979a4
Merge branch 'master' into net-vlan-attachment-fix
2023-09-12 14:58:16 +02:00
b512650ad2
fix(compute-mig): add correct type optionality for metrics in autosca… ( #1668 )
...
* fix(compute-mig): add correct type optionality for metrics in autoscaler_config
* feat(compute-mig): regenerate readme via tfdoc
* fix(compute-mig): linting
* fix(compute-mig): attempt #2 at fixing linting error
* fix(compute-mig): tfdoc --no-files
2023-09-12 13:58:09 +02:00
0019328bb4
Fix for partner interconnect, the router interface and the BGP peers are automatically created
2023-09-12 13:02:28 +02:00
3479c40735
fixing tests
2023-09-12 15:53:28 +10:00
9498e740dc
Merge branch 'global_managed_proxy_support' of https://github.com/dgulli/cloud-foundation-fabric into global_managed_proxy_support
2023-09-12 15:01:01 +10:00
5f2bc7fa92
refactored to recommended method
2023-09-12 14:58:49 +10:00
1092f181bd
Merge branch 'master' into global_managed_proxy_support
2023-09-12 12:08:56 +10:00
f225b60b0e
fix(compute-mig): add mode property to compute_region_autoscaler ( #1667 )
...
* fix(compute-mig): add mode property to compute_region_autoscaler
* fix(compute-mig): add mode property to zonal mig
2023-09-11 13:25:31 +02:00
db5030e93f
adding test
2023-09-11 21:08:55 +10:00
3208bcd9d5
matched the period
2023-09-11 20:50:18 +10:00
f76d8fcb52
fixed period
2023-09-11 20:48:26 +10:00
dac76a900b
fixed references
2023-09-11 20:47:05 +10:00
adff09aa24
linting error
2023-09-11 20:45:32 +10:00
c1b52b300c
trying to fix linting
2023-09-11 20:41:25 +10:00
7e0827db53
re-ordered variables per lint error
2023-09-11 20:33:08 +10:00
e1aff29d5c
linting again
2023-09-11 20:30:11 +10:00
3cfabb32c5
fixed linter
2023-09-11 20:29:08 +10:00
3c0391db5c
slight change to readme thanks to tfdoc
2023-09-11 20:24:06 +10:00
8c264da200
small commits to add variables, append tests
2023-09-11 20:14:17 +10:00
a18071ed36
updated for global managed proxy
2023-09-11 17:42:34 +10:00
b49984e1b9
added support for global proxy only subnets
2023-09-11 16:56:09 +10:00
ec3b705f53
Change type of `iam_bindings` variable to allow multiple conditional bindings ( #1658 )
...
* modules
* fast
* dns readme
2023-09-08 08:56:31 +02:00
a6230d2b11
Merge branch 'master' into jccb/apigee-fixes
2023-09-07 16:34:45 +02:00
77c1e69666
New phpIPAM serverless third parties solution in blueprints ( #1642 )
...
* Added new phpIPAM serverless third parties solution in blueprints
* added jit to iap.googleapis.com service in project module
* updated tests
2023-09-07 15:30:22 +02:00
3e069ea16a
changed from merge to length-based if statement
2023-09-07 08:26:40 -04:00
b98537689c
add tests and update readme for apigee psc peering
2023-09-07 16:55:16 +05:30
34b37a0dc2
Remove unneeded try
2023-09-07 12:09:42 +02:00
46f4d22c87
Examples and tests
2023-09-07 11:31:40 +02:00
d7dcec3389
Fix error message
2023-09-07 10:52:30 +02:00
0822531b78
Allow creating organizations/instances without VPC Peering
2023-09-07 10:51:43 +02:00
6f5a6aa06d
Allow user to override instance names
2023-09-07 09:05:49 +02:00
3941129a68
still testing
2023-09-06 17:12:31 -04:00
822dfc0110
replaced coalesce with merge
2023-09-06 17:08:39 -04:00
35ff529b9c
swapping coalesce variables for test
2023-09-06 17:02:04 -04:00
b4979fd451
Added coalesce to local variable and to the attachment resource
2023-09-06 16:59:30 -04:00
e64cd90d4c
just trying the old way first
2023-09-06 15:29:25 -04:00
c1c99a0a79
back to coalesce
2023-09-06 14:54:30 -04:00
c32e2763f0
Changed instance loop to a coalescelist function
2023-09-06 14:30:43 -04:00
7ceaf9b513
Added environments back to instances variable
2023-09-06 13:58:41 -04:00
401c3478ea
Fixed copy/paste error from earlier commit
2023-09-06 13:48:38 -04:00
46be7c0c1d
Added original attachment loop block as local for backwards compatibility
2023-09-06 13:25:58 -04:00
a6640e5959
Make net-vpc variables nullable
2023-09-06 09:57:34 +02:00
7acb4966b2
Added optional name value to instances variable and added it to the instance resource
2023-09-05 17:23:45 -04:00
3d4cc7164a
Bump provider version to 4.80.0
2023-09-05 09:48:15 +02:00
9f23d504ec
gke-cluster-autopilot: add monitoring configuration ( #1646 )
...
* gke-cluster-autopilot: add monitoring configuration block (monitoring_config)
2023-09-04 16:43:59 +01:00
42ebbccad9
gke-cluster-autopilot: validation for release_channel ( #1645 )
2023-09-03 00:37:49 +00:00
988fd2ee05
gke-cluster-standard: change logging configuration ( #1638 )
...
* Update logging configuration of this module to use object interface in harmony with `gke-cluster-autopilot` module.
* Update blueprints that use this module.
* Add "WORKLOADS" log source to logging configuration of the blueprints where the README files say so.
* Update FAST stage 3 because it uses this module.
2023-08-31 12:49:15 +01:00
80e85ad343
gke-cluster-autopilot: add logging configuration ( #1625 )
...
Although one cannot disable Cloud Logging and Cloud Monitoring integration in GKE Autopilot clusters, one has some flexibility over which control plane components' logs should be ingested. This commit adds a new variable and a block to the cluster resource to facilitate that.
* gke-cluster-autopilot: update logging configuration and add an example to module README
2023-08-31 12:06:57 +01:00
b784e85c60
Regenerated cloud run README tables with tfdoc.py
...
Updated documentation with tfdoc.py
2023-08-30 12:16:21 +01:00
a4dfd7f201
fixed grcp to grpc typo in cloud run module
2023-08-30 11:04:10 +01:00
c558d9b753
Vpc sc allow null for identity type ( #1632 )
...
* vpc-sc : allow null for identity_type
* cloudsql-instance : fmt
* vpc-sc: tfdoc
* modules/vpc-sc: update the test result for the identity_type field
* cloudsql-instance: remove empty line
2023-08-29 04:28:57 +02:00
9d0fd744a8
Do not set default ASN number ( #1633 )
2023-08-28 15:06:31 +00:00
9eb768357e
Switch to count
2023-08-28 16:00:48 +02:00
04721a35ef
Allow single hfw policy association in folder and organization modules
2023-08-28 16:00:48 +02:00
ce96ac31e7
[Fix] Add explicit dependency between CR peers and NCC RA spoke creation ( #1630 )
2023-08-28 15:50:46 +02:00
befbd190a3
Cloud SQL activation policy selectable ( #1613 )
...
* Update main.tf
added activation policy
* Update variables.tf
added activation_policy variable defaulted as ALWAYS for non regression
* corrections requested by @juliocc
* Regeneration of README.md on cloudsql-instance mod
* terraform fmt changes
* bug correctionand activation_policy on replicas
* activation_policy description change and README.md
* Bug correction
2023-08-25 12:12:08 +02:00
44c1cec041
Fix tests
2023-08-24 20:09:23 +02:00
25aa29e463
Merge remote-tracking branch 'origin/master' into billabongrob/add-nat
2023-08-24 19:52:06 +02:00
9188603365
Update key name
2023-08-24 19:46:39 +02:00
d50355b01a
Only create nat IP when requested
2023-08-24 19:42:20 +02:00
67c2597bcc
Fix output order
2023-08-24 19:38:44 +02:00
add1ac2dcc
Update README
2023-08-24 19:36:42 +02:00
57d5e05d69
Merge branch 'master' into richard/nfw-policy-remove-match-var-validation
2023-08-24 19:29:13 +02:00
bff5e46460
Fix apigee instance nat
2023-08-24 19:27:34 +02:00
3fdf0dfe99
Make apigee variables non-nullable
2023-08-24 18:15:15 +02:00
6c33d34c28
Adding support for NAT in Apigee
2023-08-24 09:36:15 -05:00
10aeb6615a
readme update
2023-08-24 20:01:47 +10:00
d36c53bbae
Update README.md
2023-08-24 11:29:03 +02:00
35aae372b2
remove existing validation
2023-08-24 19:06:43 +10:00
2f4b141d7a
switch default behaviour for ingress
2023-08-23 21:17:47 +10:00
def012d32e
customisable rule action
2023-08-23 21:08:23 +10:00
18af929331
add name to factory rules
2023-08-23 20:58:07 +10:00
4885b8a7f9
objects non-nullable
2023-08-22 09:40:50 -06:00
9a0f9f607f
objects output
2023-08-22 09:35:39 -06:00
2f3d29395f
remove validation
2023-08-22 09:09:37 -06:00
95a0c76b18
Merge branch 'master' into ehorning/support-gcs-object-upload
2023-08-22 09:48:32 +02:00
ff8eef6a6f
use cloud run bindings for cf v2 invoker role, refactor iam handling in cf v2 and cloud run ( #1609 )
2023-08-22 07:23:49 +00:00
33d51dbee4
Merge branch 'master' into ehorning/support-gcs-object-upload
2023-08-21 16:36:35 -06:00
6f1f6f5085
add additional parameters
2023-08-21 16:35:47 -06:00
49a4550b5d
Merge branch 'master' into elia-gcve
2023-08-21 08:44:37 +02:00
0d17af7967
Update 20230816-iam-refactor.md
2023-08-21 07:11:24 +02:00
e7eeed12f8
Update 20230816-iam-refactor.md
2023-08-21 07:10:29 +02:00
63b0480499
Update 20230816-iam-refactor.md
2023-08-21 07:09:54 +02:00
e43be5b387
Update README.md
2023-08-21 07:01:06 +02:00
5cb4accbd0
Merge branch 'master' into elia-gcve
2023-08-20 10:19:14 +02:00
819894d2ba
IAM interface refactor ( #1595 )
...
* IAM modules refactor proposal
* policy
* subheading
* Update 20230816-iam-refactor.md
* log Julio's +1
* data-catalog-policy-tag
* dataproc
* dataproc
* folder
* folder
* folder
* folder
* project
* better filtering in test examples
* project
* folder
* folder
* organization
* fix variable descriptions
* kms
* net-vpc
* dataplex-datascan
* modules/iam-service-account
* modules/source-repository/
* blueprints/cloud-operations/vm-migration/
* blueprints/third-party-solutions/wordpress
* dataplex-datascan
* blueprints/cloud-operations/workload-identity-federation
* blueprints/data-solutions/cloudsql-multiregion/
* blueprints/data-solutions/composer-2
* Update 20230816-iam-refactor.md
* Update 20230816-iam-refactor.md
* capture discussion in architectural doc
* update variable names and refactor proposal
* project
* blueprints first round
* folder
* organization
* data-catalog-policy-tag
* re-enable folder inventory
* project module style fix
* dataproc
* source-repository
* source-repository tests
* dataplex-datascan
* dataplex-datascan tests
* net-vpc
* net-vpc test examples
* iam-service-account
* iam-service-account test examples
* kms
* boilerplate
* tfdoc
* fix module tests
* more blueprint fixes
* fix typo in data blueprints
* incomplete refactor of data platform foundations
* tfdoc
* data platform foundation
* refactor data platform foundation iam locals
* remove redundant example test
* shielded folder fix
* fix typo
* project factory
* project factory outputs
* tfdoc
* test workflow: less verbose tests, fix tf version
* re-enable -vv, shorter traceback, fix action version
* ignore github extension warning, re-enable action version
* fast bootstrap IAM, untested
* bootstrap stage IAM fixes
* stage 0 tests
* fast stage 1
* tenant stage 1
* minor changes to fast stage 0 and 1
* fast security stage
* fast mt stage 0
* fast mt stage 0
* fast pf
2023-08-20 09:44:20 +02:00
3a8071d93c
Merge branch 'master' into elia-gcve
2023-08-20 08:18:53 +02:00
126d75a311
fixed typo
2023-08-18 17:01:12 +02:00
103443dc30
fixed typo
2023-08-18 16:57:35 +02:00
1b93197b87
fixed typo
2023-08-18 16:56:21 +02:00
c4ada40275
fixed typo
2023-08-18 16:52:58 +02:00
bf26580b9d
fixed variables order
2023-08-18 15:52:56 +02:00
9452a14ac7
output cleanup
2023-08-18 15:49:20 +02:00
81b567684b
outputs cleaup
2023-08-18 15:41:06 +02:00
87e82244af
fixed tests
2023-08-18 15:38:35 +02:00
e1e3826f6d
fix(cloud-run): move cpu boost annotation to revision
2023-08-18 13:53:00 +01:00
d568408331
fixed variable name and regex
2023-08-18 11:20:27 +02:00
476d6eaf30
Update variables.tf
2023-08-18 10:07:23 +02:00
dc78ad3493
Update outputs.tf
2023-08-18 10:06:32 +02:00
ea0de3adbb
Fixing some typos
2023-08-18 05:51:00 +00:00
574c7548d8
feat(cloud-run): add startup cpu boost option
2023-08-17 14:43:27 -07:00
6a5739bf91
gcve net requirements link
2023-08-17 12:25:33 +02:00
c6f5d47c66
fixed variable name
2023-08-17 12:19:47 +02:00
739bbf1aef
fixed variable name
2023-08-17 12:11:42 +02:00
3feaad0c1c
fixed variable name
2023-08-17 12:10:44 +02:00
0e2ee8bceb
fixed typo
2023-08-17 12:05:44 +02:00
1e54ddd710
Merge branch 'elia-gcve' of github.com:GoogleCloudPlatform/cloud-foundation-fabric into elia-gcve
2023-08-17 09:39:50 +02:00
e927bf3858
Fixed typo
2023-08-17 09:37:48 +02:00
a7fd3e2616
fixed file name
2023-08-17 09:25:44 +02:00
def2f476d1
Add support for conditions to `iam_members` module variables ( #1594 )
...
* project
* data-catalog-policy-tag
* dataproc
* folder
* iam-service-account
* kms
* net-vpc
* organization
* source-repository
* dataplex-datascan
2023-08-15 16:28:23 +02:00
acc191c58e
Merge branch 'master' into elia-gcve
2023-08-15 09:41:00 +02:00
6fee2a9eb3
Merge branch 'elia-gcve' of github.com:GoogleCloudPlatform/cloud-foundation-fabric into elia-gcve
2023-08-14 14:46:16 +02:00
f3d5dd8e34
Added link to GCVE module
2023-08-14 14:41:33 +02:00
b6b660f4f3
feat: 🎸 (modules/cloudsql-instance):add project_id for ssl cert ( #1591 )
2023-08-14 12:40:25 +02:00
5689aacac2
Merge branch 'master' into elia-gcve
2023-08-14 11:56:47 +02:00
adf2621727
Add new `iam_members` variable to IAM additive module interfaces ( #1589 )
...
* resource management modules
* data catalog policy
* dataproc
* service account
* kms
* net-vpc
* source repository
* dataplex datascan
* service account module variable order
2023-08-14 09:54:50 +00:00
a509756f1b
GCVE module first release
2023-08-14 11:48:27 +02:00
f9509ad6b7
feat: 🎸 (modules/cloudsql-instance): enable require_ssl cert support ( #1588 )
2023-08-14 11:37:03 +02:00
841459a059
Fix factory rules key in net firewall policy module ( #1587 )
...
* fix factory rules key in net firewall policy
* fix test
2023-08-14 07:52:36 +02:00
10faf82b8d
linting
2023-08-11 11:20:06 -06:00
2fa6369ba0
Merge branch 'master' of https://github.com/GoogleCloudPlatform/cloud-foundation-fabric into ehorning/support-gcs-object-upload
2023-08-11 11:19:21 -06:00
b1679ad21a
Fix: Instance level stateful disk config ( #1578 )
...
* update doco
* fix bug in TF code
* change instance name in README to fix test
* revert disk name
* Update stateful.yaml
* fix examples and tests
---------
Co-authored-by: Julio Castillo <juliocc@gmail.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-08-11 15:25:17 +00:00
df1fded669
add support for object upload to gcs module
2023-08-10 21:43:53 -06:00
78095063f7
feat(modules/cloud-run): add gen2 exec env support ( #1582 )
2023-08-09 23:04:16 +02:00
79373721df
Remove firewall policy management from resource management modules ( #1581 )
...
* rename firewall policy module, fix outputs
* add TOC to firewall policy module
* don't depend policy on parent id
* remove firewall policy from resource management modules
* remove factory conditionals
* fast net a and b
* fast stages
* fast tfdoc
* fast tfdoc
* remove unused test
* fix shielded folder blueprint
* fix shielded folder blueprint
2023-08-09 11:23:07 +00:00
6a13742e3c
Apigee addons
2023-08-09 08:12:06 +02:00
80ada0e8dd
Refactor firewall policy module ( #1576 )
...
* refactor module interface
* hierarchical attachment and example
* hierarchical rules and TODO
* split rules resources
* additional fields
* keep using a single resource for rules
* factory
* factory test
* boilerplate
* Prefix ingress and egress rule ids
* Tests for other firewall policy types
* Fix rule id and names
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-08-08 16:57:59 +00:00
9ec38581d7
Update README.md
2023-08-07 14:33:54 +01:00
dd3a298892
Moved allow_net_admin to enable_features flag. Bumped provider version to 4.76
2023-08-07 14:27:20 +01:00
69ea9dd3be
Linting with terraform fmt
2023-08-07 12:46:54 +01:00
10e3184451
Expose allow_net_admin feature in gke-cluster-autopilot
2023-08-07 12:44:59 +01:00
9c75aa469c
More module descriptions ( #1572 )
...
* bigquery dataset
* data catalog policy tag
* net-address
* fix data catalog callers
* bigquery dataset views
* fix data catalog callers
* logging bucket
* net vpn ha
2023-08-06 09:25:45 +00:00
83d2976949
add support for cost management to GKE module ( #1569 )
2023-08-05 11:46:52 +00:00
aecba0bbd0
Add support for ipv6 to net-vpc module ( #1568 )
...
* add support for ipv6
* fix test
2023-08-05 13:07:26 +02:00
ce510583bf
Fix default routes
2023-08-04 18:24:41 +02:00
bbe778e095
Allow custom route descriptions in net-vpc module
...
Related: #1491
2023-08-04 14:13:03 +02:00
702c428da4
Update Readme
2023-08-04 13:06:59 +02:00
a0bd0d4414
Merge branch 'master' into feature/apigee-add-retention
2023-08-03 14:28:40 +02:00
fe0a9ed138
Fixed error of inconsistent conditional result types when evaluating local peer_gateway variable
2023-08-02 23:22:26 +02:00
0906ddb8df
feat(apigee): add retention variable
2023-08-02 15:13:43 +02:00
22b661fe93
Removed unused attribute in peer_gateway_config variable
2023-08-02 15:07:05 +02:00
43e73aba9a
add dataplex datascan base module ( #1545 )
2023-08-02 11:16:32 +00:00
3b7e62990c
Added IPSEC_INTERCONNECT addresses to net-address module
2023-08-02 12:12:14 +02:00
4bb51a42ce
renaming net-vpc-swp to net-swp
2023-08-01 16:23:12 +02:00
7acd9f624e
coalesce instead of ternary operator
2023-08-01 15:07:37 +02:00
f09d32a703
Merge branch 'master' into net-vpc-swp-optional-description
2023-08-01 13:05:04 +02:00
bcf191ab5a
description: only one main variable
2023-08-01 13:04:47 +02:00
915f09461e
optional description for the gateway security policy - separately
2023-08-01 10:27:26 +02:00
bd0fe1f928
Fix tests
2023-07-31 18:04:07 +02:00
3df98c8feb
Fix permadiff in artifact-registry
2023-07-31 18:04:07 +02:00
75bd7d7c2d
Merge branch 'master' into net-lb-proxy-int
2023-07-31 17:43:07 +02:00
63ac5710ac
Added module for Regional Internal Proxy Load Balancer
2023-07-31 17:21:57 +02:00
51bc31ae21
Fix in IAM bindings of cloud function v2 module
2023-07-31 12:39:08 +02:00
09c9e291a0
Merge branch 'master' into net-lb-hc-fix
2023-07-31 11:55:47 +02:00
fe3e8a3941
Add image path output to ar module ( #1552 )
...
* Add image path output to ar module
* tfdoc
2023-07-31 09:34:01 +00:00
f49515495c
Fix in validation of healthchecks variable
2023-07-31 10:23:32 +02:00
47a9947b18
Fix in validation of healthchecks variable
2023-07-31 10:01:35 +02:00
b524aa137c
Peering module refactor ( #1547 )
...
* refactor net-vpc-peering module
* hub and spoke peering blueprint
* fast stages
* boilerplate
* fast tfdoc
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-07-29 21:33:57 +02:00
4998f1d376
Grant IAM rights to service identities in host project ( #1542 )
...
* [module/project] Grant IAM rights to service identities based on used services in host project
* [blueprints/factories/project-factory] enable granting IAM permissions in host VPC for service identities directly or by specifying services in use
2023-07-29 20:07:21 +02:00
0415cf64f1
rename cloud-dataplex to dataplex ( #1546 )
2023-07-29 14:31:18 +02:00
32bb69caa5
Merge branch 'master' into jccb/toc
2023-07-28 17:23:18 +02:00
a89e0dac31
Fixes in cloud function v2 module for trigger service account
2023-07-28 17:02:36 +02:00
408e4eedd0
Fix artifact-registry readme
2023-07-28 16:38:26 +02:00
e6be368367
Simplify whitespace handling
2023-07-28 16:32:38 +02:00
1fdec356e2
Update large TOCs
2023-07-28 15:43:51 +02:00
4f123ccc74
Extend tfdoc to generate TOCs
2023-07-28 14:18:28 +02:00
5a534edf5c
update and refactor artifact registry module ( #1536 )
2023-07-28 09:54:36 +00:00
960c84b347
Fixed wrong ASN when using partner_interconnect. ( #1537 )
2023-07-28 09:16:03 +00:00
a8d9d80d5b
Renamed output.tf in net-vlan-attachment ( #1535 )
...
* Renamed output.tf in net-vlan-attachment
2023-07-28 08:35:48 +00:00
cf567b0c43
Fix in event_filters of trigger_config
2023-07-25 16:22:09 +02:00
d46312a7f1
Improve Dataplex ( #1519 )
...
* First commit.
* Implement fixes.
* fix google_dataplex_zone_iam_binding
2023-07-24 10:52:07 +02:00
ec74f351f5
feat(cloudsql-instance): Add query insights config ( #1520 )
2023-07-21 20:14:34 +02:00
fde498800c
optional description attribute in variables
2023-07-20 12:14:39 +02:00
a8c27b1b6e
optional description in modules/net-vpc-swp
2023-07-20 08:45:18 +02:00
bad5748be4
enable-logging flag can only be true for public zones
2023-07-19 16:16:56 +02:00
cacb0c02e2
Refactoring of dns module
2023-07-19 12:57:44 +02:00
74c50f95a8
Add output to org module with custom constraint details and depends_on
2023-07-17 18:49:36 +02:00
cc0b278df3
Move IAM grant to function level for trigger SA
2023-07-12 16:19:34 +02:00
dd37d07955
Update ncc-spoke-ra module to explicity request ncc hub id when referencing existing hubs ( #1479 )
...
* Updated ncc-spoke-ra module to explicity requesting ncc hub id when referencing existing hub
* fix documentation
* updated hub variable description
* more explicit validation condition on hub variable
2023-07-10 16:18:42 +02:00
973a8594b6
add support for custom description in net-address ( #1499 )
2023-07-10 13:04:54 +02:00
551dc581e8
Implement proper support for data access logs in resource manager modules ( #1497 )
...
* organization module
* rename iam_bindings_authoritative to iam_policy, fix tests
* add support for data access logs and iam policy to folder module
* test inventories
* add support for data access logs and iam policy to project module
2023-07-10 08:08:02 +00:00
d9f7cef1e7
allow using a separate resource for boot disk ( #1496 )
2023-07-07 15:40:13 +00:00
86cc6eee4c
disable googleapi routes creation when vpc is not created ( #1489 )
2023-07-03 09:10:12 +02:00
31f7a9ecca
allow external editing of group instances in lb modules ( #1486 )
2023-06-30 17:34:09 +00:00
10e15356ea
Add bigquery authorized resources ( #1480 )
...
* add bq authorized views, datasets, and routines
* fmt
* add backwards compatible test case
* minor docs clarification
* add docs table and fix lint tests
* fix docs
* fix tests
* fix more lint issues
* fix lint issue
* fix tests
* fix lint
* fix tests
* alphabetical order
* add detailed example to docs and corresponding test
* clarify docs for variables
* remove unnecessary depends_on
2023-06-30 18:44:57 +02:00
ac9417b82d
align group names in lb modules ( #1485 )
2023-06-30 10:18:06 +00:00
925a288316
Update README
2023-06-28 20:09:18 +02:00
55062fe66f
Merge branch 'master' into patch-1
2023-06-28 20:05:06 +02:00
6fcb010ff2
Add ToCs to resource manager modules ( #1471 )
...
* organization module
* folder
* project module
2023-06-27 09:36:28 +00:00
638841c8d1
Rename network load balancer modules ( #1466 )
...
* update LB modules to new names
* update LB modules names
* update test paths
2023-06-26 07:50:10 +00:00
ce647647cc
Add support for resource policies to compute vm module ( #1467 )
...
* instance schedule
* snapshot resource policy variable and resource
* tfdoc
* snapshot schedules
2023-06-26 06:49:05 +00:00
32b347b104
modules/vpc-sc: add support for method_selectors/permission ( #1439 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-06-25 06:45:37 +00:00
ad25b1a31c
Added validation for edge_availability_domain value
2023-06-23 12:11:06 +02:00
15ae95df90
Fixing typos
...
- modules/organization/variables.tf
- modules/organization/README.md
- blueprints/data-solutions/shielded-folder/main.tf
2023-06-23 00:14:02 -04:00
9c26760773
add missing variable image_uri
...
For master_config, the variable image_uri is missing
2023-06-21 16:19:48 -06:00
f6e918ffbd
Merge branch 'master' into dns-managed-zone-iam
2023-06-20 12:19:13 +02:00
97d6e48bde
Re-order variables
2023-06-20 17:30:23 +10:00
1f6f0c306d
Formatting
2023-06-20 17:27:15 +10:00
c05bc41b69
feat(artifact-registry): Add support for CMEK
2023-06-20 17:27:15 +10:00
2830e4b9e2
Split Cloud Function module in separate v1 and v2 modules ( #1450 )
...
* split v1
* v2
* blueprints
* remove _http
2023-06-20 17:27:15 +10:00
ddfab0a0e4
Added iam for DNS managed zone to dns module
2023-06-19 12:53:38 +02:00
a424635221
Refactored apigee module and adjusted the blueprints accordingly
2023-06-19 09:01:32 +02:00
064d86511f
enable_logging variable was not being used
2023-06-14 19:22:04 +02:00
30ae108c89
Ignore Cloud Run system annotations/labels
...
Ignore explicitly:
* metadata.0.annotations["run.googleapis.com/operation-id"],
* template.0.metadata.0.labels["run.googleapis.com/startupProbeType"]
To remove permdiff in terraform plan. Not ignoring all changes in
annotations as it implements some of the functionality and it prevents
detecting drift.
Related: #1435 , #1269
2023-06-13 10:07:04 +02:00
81285065ca
Added module for Secure Web Proxy.
2023-06-13 08:49:58 +02:00
500179f02f
Move net-dedicated-vlan-attachment module to net-vlan-attachment and added support for Partner interconnect
2023-06-12 14:21:01 +02:00
50d8d4b8b8
Add subnets id output, expand net-address outputs
2023-06-12 10:24:30 +02:00
e900e9c951
Make internal/external addresses optional in compute-vm
...
Fixes 1431
2023-06-08 14:00:10 +02:00
d248f799d9
Merge branch 'master' into net-ilb-l7-psc-negs
2023-06-08 12:35:17 +02:00
a7b944aa8e
fix serverless neg example ( #1430 )
2023-06-08 12:05:54 +02:00
ebeace21dd
Added support for PSC negs in net-ilb-l7 module
2023-06-08 11:18:32 +02:00
c024eca320
Add custom tag support to FAST ( #1426 )
...
* initial implementation of custom tags
* depend org policies on tags
* fix test
* integrate default and custom org policy tags
2023-06-07 22:10:27 +00:00
39b27ac25e
Add support for Log Analytics on logging-bucket module and bump provider version ( #1423 )
...
* first commit
* Bump provider versions
* Fix tests
2023-06-07 23:23:28 +02:00
7bd6e5d57b
Small fixes ( #1425 )
...
* fix serverless connector plugin outputs
* add internal and lb to allowed ingress org policy
* add validation condition on cloud run ingress settings
* tfdoc
* plugin tfdoc
* allow disabling googleapis routes with a single instruction in net-vpc
* fix variable def
* fix variable description
* fix cr variable validation
* fix usage of create_googleapis_routes in examples and stages
2023-06-07 17:37:46 +00:00
fedb894f97
Fix NLB module ( #1419 )
...
* net-nlb fixes
* formatting
2023-06-05 19:42:32 +02:00
ea4c00756b
Network Load Balancer module ( #1418 )
...
* wip
* example tests passing
2023-06-05 13:21:40 +02:00
0d6751a5f4
Remove hardcoded description from instance groups created under net-ilb ( #1417 )
2023-06-05 09:35:17 +00:00
c439a66b27
Add notice to net-ilb module on routes ( #1415 )
...
* add support for routes
* boilerplate
* revert and add notice to README
* revert
* revert
* Fix README
---------
Co-authored-by: Julio Castillo <jccb@google.com>
2023-06-05 09:40:34 +02:00
f2fe406a62
add alloydb module ( #1403 )
...
* add alloydb module
* fix typos
* fix typos
* Add default googleapi route creation to net-vpc
* Reuse existing logic to create default routes
* Update net-vpc README
* Fix modules and blueprints tests
* Rename to `create_googleapis_routes`
* Fix FAST tests
* Fix nva stages tests
* update changelog
* fix typos
* fix version
* rearrange variables
* fix lint
* fix lint
* fix README
* fix README
* fix comments
* fix variables
* fix READMEs
---------
Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludo <ludomagno@google.com>
2023-06-04 10:12:32 +00:00
87db60de1f
Add networksecurity to JIT identity list.
2023-06-02 16:11:16 +02:00
884cb8b4bf
Ensure all modules have an `id` output ( #1410 )
...
* net-vpc
* a-d
* complete modules
* fix error
2023-06-02 16:07:22 +02:00
f069562998
Added comment in the dns module, saying that inbound/outbound server policies are set in the net-vpc module ( #1405 )
...
Co-authored-by: Luca Prete <preteluca@gmail.com>
2023-06-02 11:35:25 +02:00
6c11527762
Multiple Updates
...
modules/net-dedicated-vlan-attachment/variables.tf
modules/net-dedicated-vlan-attachment/README.md
CHANGELOG.md
blueprints/networking/ha-vpn-over-interconnect/README.md
2023-05-31 13:26:22 -04:00
fda4daecff
Cosmetic documentation fixes
2023-05-31 13:51:15 +02:00
7f561565e7
HA VPN over Interconnect modules and blueprint ( #1390 )
...
Two new modules, net-ipsec-over-interconnect to establish HA VPN over existing VLAN attachments, and net-dedicated-vlan-attachment to create (optionally encrypted) vlan attachments, as well as the ha-vpn-over-interconnect blueprint that shows how to compose such modules to create a 99.9% encrypted interconnect.
2023-05-31 10:53:38 +00:00
3ac6ceac1e
Add trigger SA for Cloud Run
2023-05-30 17:08:37 +02:00
0888cce3a5
Rename to `create_googleapis_routes`
2023-05-26 16:43:43 +02:00
cecbd2072c
Fix modules and blueprints tests
2023-05-26 16:38:41 +02:00
563b5fa0cb
Update net-vpc README
2023-05-26 12:46:16 +02:00
1e8c58c88e
Reuse existing logic to create default routes
2023-05-26 12:01:38 +02:00
7a91a7e41c
Add default googleapi route creation to net-vpc
2023-05-26 10:55:35 +02:00
e479d9815b
Merge branch 'master' into juliocc-patch-1
2023-05-24 12:46:04 +02:00
aa80109081
allow to configure `stack_type` in the GKE modules ( #1395 )
...
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2023-05-24 10:19:43 +00:00
4aa99ea829
allow setting identities in egress policies ( #1394 )
2023-05-24 12:05:16 +02:00
d22bf2ec6b
Update README.md
2023-05-24 11:34:21 +02:00
fddf8b52bc
Fix sort order
2023-05-22 19:11:33 +02:00
3e67fc00ca
Add default Cloud Build SA to project module
2023-05-22 19:11:33 +02:00
a5bbd09776
Support CMEK encryption in logging-bucket module
...
We have a use case, Local Controls, that requires to configure
CMEK with Logging buckets. This commit adds an optional variable to
configure CMEK in the `logging-bucket` module. By default the Logging
bucket won't use CMEK encryption.
To configure CMEK for Logging buckets it's also required to add the
correct permissions to the bucket service account. For more information
and a Terraform example, see:
https://cloud.google.com/logging/docs/routing/managed-encryption-storage
https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/logging_project_bucket_config#example-usage
2023-05-22 15:12:27 +01:00
devuonocar
cmalpe
Ludovico Magnocavallo
Luca Prete
apichick
Wiktor Niesiobędzki
cmalpe
Ewa Wojtach
Simone Ruffilli
Ewa Wojtach
mwarm2
Pierre Formont
Julio Castillo
luigi-bitonti
jeroenmonteban
devuonocar
Ludovico Magnocavallo
Luigi Bitonti
Jason Steenblik
eddern
John Inama
John Inama
Oliver Frolovs
Dave Gulli
Arpit Sharma
simonebruzzechesse
g-greatdevaks
Zachary
LudovicEmo
Carlo Maria Valla
Rob Heckel
Richard Olson
Erin Horning
Erin Horning
eliamaldini
Michael
Alejandro Leal
Jay Schwerberg
erabusi
Sam Bentley
Eunan Hardy
Daniel Strebel
Thinh Ha
Natalia Strelkova
lcaggio
Alejandro Leal
Jose Luis Bermudez
Albert Lloveras
Taneli Leppä
Prabha Arya
Benoît Sauvère
Ana Fernandez del Alamo