kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,881 Commits 1 Branch 1 Tag
03288f2b35287c16a86065bcd122ed6fbbbf516b
Commit Graph

1284 Commits

Author SHA1 Message Date
Ludovico Magnocavallo
0d0e086cfc prep v47.1.0 2025-11-11 08:59:19 +00:00
Vannick Trinquier
1f0940a716 Update yaml controls to match max line-length (#3520) 
* Update yaml controls to match max line-length

* Add test for stage 0 with hardened datasets

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-11 07:00:49 +00:00
Ludovico Magnocavallo
192788cdb4 Update README.md 2025-11-11 07:40:55 +01:00
Ludovico Magnocavallo
fc7aa71ada Add support for KMS key creation to project factory (#3518) 
* initial implementation

* context

* tfdoc

* add support for autokey to projects

* fix typo
 2025-11-11 07:23:50 +01:00
Vannick Trinquier
15a5486a1e Add hardened controls for gke, networking and monitoring alerts recommended in CIS Benchmarks for GCP (#3484) 2025-11-10 11:06:25 +00:00
Ludovico Magnocavallo
ba77c6170c Allow configuring data access logs from org/folder/project schemas (#3516) 
* modules and FAST support

* module tests

* fast stage 0 dataset

* tfdoc
 2025-11-10 10:19:21 +00:00
Ludovico Magnocavallo
7e32058010 [WIP] Add support for KMS autokey (#3515) 
* wip

* folder module

* project factory schema

* remove spurious project template

* gcs and compute-vm modules

* variable order
 2025-11-09 10:46:28 +01:00
Ludovico Magnocavallo
16da9ffaad Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-08 17:07:49 +00:00
Ludovico Magnocavallo
81010a97c0 Rename project and VPC resources in net stage datasets (#3513) 
* vpcsc tfvars optional in net

* net project/vpc renames

* fix provider diffs in inventories
 2025-11-08 13:38:28 +01:00
Simone Ruffilli
1363d2f765 Sets a default for delete_default_routes_on_create in 2-networking (#3511) 2025-11-07 08:31:45 +00:00
Luca Prete
e25d5881f9 [FAST] fix host project names in sample yaml files in project factory (#3508) 2025-11-06 23:02:20 +01:00
Ludovico Magnocavallo
6f644c886f Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-06 17:20:17 +00:00
Julio Castillo
002349c35b Allow defining org-level pam_entitlements in 0-org-setup (#3506) 2025-11-05 19:27:59 +01:00
Ludovico Magnocavallo
68c8538fd6 Refactor FAST VPC-SC docs, ensure cooperative VPC-SC resource control works (#3504) 
* stage README

* vpc-sc in security stage

* vpc-sc for networking

* vpc-sc for net

* vpc-sc for pf

* vpc-sc for pf

* spelling

* inventory
 2025-11-05 13:19:02 +00:00
Ludovico Magnocavallo
5946433737 prep v47.0.0 2025-11-05 08:28:44 +00:00
Ludovico Magnocavallo
fc538a15cc Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-05 08:26:53 +00:00
Ludovico Magnocavallo
adec737e2a prep v46.1.0 2025-11-05 08:24:06 +00:00
Ludovico Magnocavallo
dddea78e49 add resource set for org setup projects to vpc sc stage (#3497) 2025-11-03 10:36:40 +01:00
Ludovico Magnocavallo
8bfc3cf579 Pass email addresses context to organization module in stage 0 (#3496) 
* pass email addresses context to organization module in stage 0

* depend essential contacts on org policy resource
 2025-11-03 08:43:15 +00:00
Ludovico Magnocavallo
0a2cc758ac Essential contacts in schemas, and email context substitutions (#3495) 
* modules

* fast

* duplicate diff

* fix contacts in FAST stage 0 datasets, update contacts in YAML schemas
 2025-11-03 08:53:29 +01:00
lhoet-google
153046307f Okta as Workload identity provider (#3494) 
* Explain cursed Create Before Destroy

* okta for workload idenitty provider

* changed readme with okta wif

* fix readme for okta wif

* 0 org setup readme passing check_documentation.py

* fix error in readme for 0-org-setup

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Leonardo Hoet <leohoet98@gmail.com>
Co-authored-by: mwillig <mwillig@google.com>
 2025-11-01 09:00:06 +01:00
Ludovico Magnocavallo
90b6e312d3 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-30 16:55:28 +00:00
fenyvesi-levi
e5eb13c6e4 Fenyvesi levi/fix essential contact (#3486) 
* Added line to make organization module process essential contacts

* delete unnecessary line
 2025-10-29 13:15:53 +00:00
Ludovico Magnocavallo
4a9085675e Align network stage defaults/outputs to other stages, add defaults schema (#3481) 
* networking stage

* implement defaults for vpc defaults :)

* Rename peering test to simple

This enables tflint on 2-networking stage

* tflint

* bring peering test back

* bring peering test back

* yaml lint

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-10-28 07:47:28 +00:00
Ludovico Magnocavallo
b4049e0ae1 tflint 2025-10-28 07:33:15 +01:00
Ludovico Magnocavallo
717803e977 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-27 18:21:35 +00:00
Wiktor Niesiobędzki
0ec0813166 fix tflint errors for 0-org-setup 2025-10-27 15:42:37 +01:00
Simone Ruffilli
4a41a4237a Removes legacy FAST networking stages (#3479) 
Removes the legacy networking stages, superseded by 2-networking.

**Breaking Changes**

```upgrade-note
`fast/stages/2-networking-legacy-a-simple`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-legacy-b-nva`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-legacy-c-separate-envs`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
```
 2025-10-27 14:38:28 +00:00
Ludovico Magnocavallo
4b15741144 Streamline stage variables and output files for vpc-sc and security stages (#3471) 
* implement fast context output var, remove tflint errors from security stage

* tfdoc

* defaults-based outputs for security stage

* fix tests

* implement defaults in vpc sc stage

* tflint
 2025-10-27 13:27:09 +00:00
Vannick Trinquier
0bb490a1b1 Add CIS Benchmarks for GCP 3.0 mapping to documentation of controls (#3478) 2025-10-27 09:23:16 +00:00
Ludovico Magnocavallo
9b862c383b remove legacy security stage (#3474) 2025-10-26 16:49:52 +00:00
Ludovico Magnocavallo
3801a7c2d1 prep v46.0.0 2025-10-26 16:12:02 +00:00
Ludovico Magnocavallo
f1043a5aac fix versions file 2025-10-26 15:50:56 +00:00
Ludovico Magnocavallo
b8943cedbc Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-26 15:34:01 +00:00
Ludovico Magnocavallo
43191dbf63 prep v45.1.0 2025-10-26 15:03:03 +00:00
Ludovico Magnocavallo
7b6c152755 Implement proper validation for tag value names in schema (#3470) 
* implement proper validation for tag value names in schema

* fix unrelated typos surfaced by new spell check
 2025-10-26 13:35:56 +01:00
Ludovico Magnocavallo
97596a0e8b Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-26 11:19:18 +00:00
Wiktor Niesiobędzki
7fe999562a codespell fixes 2025-10-26 11:56:41 +01:00
Simone Ruffilli
da3860a908 2-networking - NVA Dataset (#3463) 
This PR implements a dataset for 2-networking which implements a NVA hub and spoke topology with 2 spokes.
 2025-10-26 09:51:00 +00:00
Ludovico Magnocavallo
08e6c4196a fix yaml linting (#3466) 2025-10-25 11:15:25 +02:00
Ludovico Magnocavallo
6fafdc8780 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-25 08:08:22 +00:00
Wiktor Niesiobędzki
380b75926e Make classic dataet link to hub-and-spokes-peerings 2025-10-24 15:08:17 +02:00
Wiktor Niesiobędzki
b27b8f8291 yamllint fast 2025-10-24 13:11:17 +02:00
Simone Ruffilli
885ba2fb05 Consistent subnetting across datasets + contexts (#3460) 2025-10-23 21:14:05 +02:00
Simone Ruffilli
35fcde9fa2 Fixes copy-paste error in 2-networking README.md 2025-10-23 17:28:41 +02:00
Simone Ruffilli
bfb7d0c812 2-networking - VPN Dataset (#3458) 
This PR implements a dataset for 2-networking which implements a simple VPN hub and spoke topology with 2 spokes.
 2025-10-23 17:21:39 +02:00
Ludovico Magnocavallo
4bf4047017 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-23 14:51:14 +00:00
Ludovico Magnocavallo
80988c0bbf Fix issues with FAST CI/CD support (#3454) 
* wip, broken

* wip

* streamline locals

* tfdoc

* update yaml files

* refactor
 2025-10-23 16:40:06 +02:00
Wiktor Niesiobędzki
d1f257bcb9 align project-templates to new functions interface 2025-10-23 15:50:17 +02:00
Simone Ruffilli
393e99194a 2-networking - NCC Dataset (#3457) 
Dataset for 2-networking which implements a simple NCC full mesh topology with 2 spokes.
 2025-10-23 12:59:46 +00:00