* feat: add GCS bucket trigger support for Cloud Run services 🌟
* feat: add examples for Cloud Run service with Eventarc storage triggers
* fix: update bucket name in Eventarc storage trigger example and clean up service account configuration
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* feat: Changes for migrating resources to GLB module
* Updated Readme
* Added support for null description
* Added support for empty string
* Added default optional values
* Changed Readme
* Corrected description according to readme
* Added name and description changes for net-lb-app-ext-regional
* Added name and description changes for net-lb-app-int
* Added name and description changes for net-lb-app-int-cross-region
* Added name and description changes for net-lb-proxy-int
* Added name and description changes for net-lb-ext
* Added name and description changes for net-lb-int
* Changed Readme docs
* Added tag factory option for organization module
* added tags-factory tests
* added tag factory for project module
* missing header
* added lookup catch for org tag values and fixed incorrect link in doco
* fixed factory locals from copy/paste
* added full doco/tests for project tags factory. fixed failed test looking for ID in yamls
* added context option for factories_config to configure existing K/Vs
---------
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
* Change default values for authorized_ranges from {} to null and
gcp_public_cidrs_access_enabled from false to null in the
access_config.ip_access variable. This ensures the dynamic
master_authorized_networks_config block is properly
conditional on user input.
Previously, these fields would never be null due to their
default values, causing the block to always be initialized
even when users didn't intend to configure authorized networks.
* remove explicit null
* Remove all defaults for access_config.ip_access. Fix permadiff.
* Fix tests
* Swap try with coalesce
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* PF: fix reference to automation SAs in IAM block in service accounts for PF
* add test
---------
Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Ludo <ludomagno@google.com>
* Remove bridge perimeters
* Update FAST stages
* Allow project ids in perimeter definitions
* Preserve order order for ingress/egress policies
* Use CAI
* Use CAI
* Fix tests
* AlloyDB read poll support and various usability fixes
* Added support for read poll instances.
* Added support for public (outbound) IPs.
* Added new arguments: `machine_type`, `skip_await_major_version_upgrade`, and `subscription_type`.
* Added outputs for key cluster attributes, including ID and name.
* Improved input variable validations and simplified configurations.
* Fixed bug where AlloyDB user accounts always had null passwords.
* Resolved Terraform state drift issues for `network_config` and `psc_config`.
* Fixed `continuous_backup_config` always being implicitly or explicitly enabled.
* Fixed `automated_backup_policy` and `maintenance_update_policy`, which do not support non-zero minutes, seconds and nanos.
* Fixed various typos.
* Aligned the format of test examples.
* Fixed invalid condition: authorized external networks require enabled public IP, however enabled public IP can have empty authorized external networks
* Formatting
* Fix PSA block
---------
Co-authored-by: Julio Castillo <jccb@google.com>
* Add deletion_policy to project-factory module
* Use project deletion_policy in object normalization
* Replicate changes in net-vpc-factory
---------
Co-authored-by: Julio Castillo <jccb@google.com>
This pull request introduces the `net-vpc-factory` module. This new factory handles:
* Project setup (most of what's supported by the `project` module)
* VPC setup
* Routing
* Subnets
* Connectivity options
* NCC (hub, VPC spokes and VPN hybrid spokes)
* Peerings
* VPN (GCP-to-onprem and GCP-to-GCP)
* NAT (everything supported by the `net-cloudnat` module)
* DNS (everything supported by the `dns` module)
* Firewall (everything supported by the `net-vpc-firewall` module)
* Added variable for activating nat and implementation in google_apigee_net_address resource
* Regenerated readme
* Added tests for nat & activation
* Removed unnecessary coalesce
* Fixed test params
* Added test to confirm activate is working
* Remove service account key upload. Add create_ignore_already_exists
* Add tag bindings to service accounts
* Add description to create_ignore_already_exists
* Remove broken links
* Allow disabling IP access to GKE control plane
* Add additive VPC scope DNS domain to gke clusters
* Fix typo
* Bump provider to 6.27.0
* Update readme
* Staging the New Variable change and the flag endablement for 'invoker_iam_disabled' in the 'google_cloud_run_v2_service' resouece associated with the 'cloud-run-v2' module.
* Updating tfdocs to include the new variables for the 'invoker_iam_disabled' flag in the 'google_cloud_run_v2_service' resource in module 'cloud-run-v2'
* Updating the testing in the readme for the cloud-run-v2 module.
* Fixing an issue with links in README.md Docs
* Fixing README.md linting.
