Factories refactor (#1843)

* factories refactor doc * Adds file schema and filesystem organization * Update 20231106-factories.md * move factories out of blueprints and create new factories README * align factory in billing-account module * align factory in dataplex-datascan module * align factory in billing-account module * align factory in net-firewall-policy module * align factory in dns-response-policy module * align factory in net-vpc-firewall module * align factory in net-vpc module * align factory variable names in FAST * remove decentralized firewall blueprint * bump terraform version * bump module versions * update top-level READMEs * move project factory to modules * fix variable names and tests * tfdoc * remove changelog link * add project factory to top-level README * fix cludrun eventarc diff * fix README * fix cludrun eventarc diff --------- Co-authored-by: Simone Ruffilli <sruffilli@google.com>
2024-02-26 11:16:52 +01:00
parent 8e86f0e108
commit 6941313c7d
188 changed files with 917 additions and 2292 deletions
--- a/modules/project-factory/variables.tf
+++ b/modules/project-factory/variables.tf
@@ -0,0 +1,95 @@
+/**
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+variable "data_defaults" {
+  description = "Optional default values used when corresponding project data from files are missing."
+  type = object({
+    billing_account            = optional(string)
+    contacts                   = optional(map(list(string)), {})
+    labels                     = optional(map(string), {})
+    metric_scopes              = optional(list(string), [])
+    parent                     = optional(string)
+    prefix                     = optional(string)
+    service_encryption_key_ids = optional(map(list(string)), {})
+    service_perimeter_bridges  = optional(list(string), [])
+    service_perimeter_standard = optional(string)
+    services                   = optional(list(string), [])
+    shared_vpc_service_config = optional(object({
+      host_project                = string
+      network_users               = optional(list(string), [])
+      service_identity_iam        = optional(map(list(string)), {})
+      service_identity_subnet_iam = optional(map(list(string)), {})
+      service_iam_grants          = optional(list(string), [])
+      network_subnet_users        = optional(map(list(string)), {})
+    }), { host_project = null })
+    tag_bindings = optional(map(string), {})
+    # non-project resources
+    service_accounts = optional(map(object({
+      display_name      = optional(string, "Terraform-managed.")
+      iam_project_roles = optional(list(string))
+    })), {})
+  })
+  nullable = false
+  default  = {}
+}
+
+variable "data_merges" {
+  description = "Optional values that will be merged with corresponding data from files. Combines with `data_defaults`, file data, and `data_overrides`."
+  type = object({
+    contacts                   = optional(map(list(string)), {})
+    labels                     = optional(map(string), {})
+    metric_scopes              = optional(list(string), [])
+    service_encryption_key_ids = optional(map(list(string)), {})
+    service_perimeter_bridges  = optional(list(string), [])
+    services                   = optional(list(string), [])
+    tag_bindings               = optional(map(string), {})
+    # non-project resources
+    service_accounts = optional(map(object({
+      display_name      = optional(string, "Terraform-managed.")
+      iam_project_roles = optional(list(string))
+    })), {})
+  })
+  nullable = false
+  default  = {}
+}
+
+variable "data_overrides" {
+  description = "Optional values that override corresponding data from files. Takes precedence over file data and `data_defaults`."
+  type = object({
+    billing_account            = optional(string)
+    contacts                   = optional(map(list(string)))
+    parent                     = optional(string)
+    prefix                     = optional(string)
+    service_encryption_key_ids = optional(map(list(string)))
+    service_perimeter_bridges  = optional(list(string))
+    service_perimeter_standard = optional(string)
+    tag_bindings               = optional(map(string))
+    services                   = optional(list(string))
+    # non-project resources
+    service_accounts = optional(map(object({
+      display_name      = optional(string, "Terraform-managed.")
+      iam_project_roles = optional(list(string))
+    })))
+  })
+  nullable = false
+  default  = {}
+}
+
+variable "factory_data_path" {
+  description = "Path to folder with YAML project description data files."
+  type        = string
+  nullable    = false
+}