VPC-SC as separate FAST stage 1 (#2460)

* initial commit * README * boilerplate * tflint * tfdoc * fix security stage tests * vpc-sc stage tests * tflint * fix resman stage test inventories * security README * stage-level README * Update README.md * flexible perimeter variable * remove diagram * change default to dry run * default to dry run
2024-08-02 18:04:36 +02:00
parent 01a17ca491
commit 345716e576
36 changed files with 1178 additions and 251 deletions
--- a/tests/modules/vpc_sc/examples/factory.yaml
+++ b/tests/modules/vpc_sc/examples/factory.yaml
@@ -59,6 +59,7 @@ values:
    - egress_policies:
      - egress_from:
        - identities:
+          - serviceAccount:bar@myproject.iam.gserviceaccount.com
          - serviceAccount:foo@myproject.iam.gserviceaccount.com
          identity_type: null
          source_restriction: null
@@ -75,7 +76,8 @@ values:
      ingress_policies:
      - ingress_from:
        - identities:
-          - serviceAccount:test-tf@myproject.iam.gserviceaccount.com
+          - serviceAccount:test-tf-0@myproject.iam.gserviceaccount.com
+          - serviceAccount:test-tf-1@myproject.iam.gserviceaccount.com
          identity_type: null
          sources:
          - access_level: '*'
--- a/tests/modules/vpc_sc/examples/regular.yaml
+++ b/tests/modules/vpc_sc/examples/regular.yaml
@@ -66,7 +66,8 @@ values:
      ingress_policies:
      - ingress_from:
        - identities:
-          - serviceAccount:test-tf@myproject.iam.gserviceaccount.com
+          - serviceAccount:test-tf-0@myproject.iam.gserviceaccount.com
+          - serviceAccount:test-tf-1@myproject.iam.gserviceaccount.com
          identity_type: null
          sources:
          - resource: null