kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,071 Commits 1 Branch 1 Tag
2a66fcab2e9d3cb45e1f168c82b9c3cb3bcba5aa
Commit Graph

840 Commits

Author SHA1 Message Date
Wiktor Niesiobędzki
6e24898850 Add proxy networks to e2e harness 2024-01-06 12:05:53 +01:00
Wiktor Niesiobędzki
a6e377fad2 Rename compute-mig-bc.tf to compute-vm-group-bc.tf 2024-01-06 12:05:53 +01:00
Julio Castillo
8beb621e07 New module for external regional application load balancer (#1892) 
* Initial version of regional external application load balancer.

* Fix tests

* Remove unsupported features in regional app lbs

* update readme with fixtures

* Add ssl-certificate fixture

* Switch examples to regions b c

* Remove redundant NEG examples

* Update README

* Update versions.tf

* Add missing boilerplate
 2024-01-05 16:59:27 +01:00
Stefano Tribioli
a4def10c19 Add PNA support to Service Directory module 
Endpoints in Service Directory can be *associated* with a
VPC. In this case, they can be used by supported Google
Cloud products to send requests directly to resources inside
a VPC. This feature is called Private Network Access.

The `google_service_directory_endpoint` resource supports
this configuration with a new argument `network`.
Unfortunately, this argument has an unusual format: it
is similar to a standard VPC ID, but instead of the project ID,
it expects the project number.
 2024-01-05 15:05:32 +00:00
Julio Castillo
c13a192755 Use zones b and c for MIG fixture (#1961) 2024-01-05 15:02:12 +00:00
Andy Bubune Amewuda
3edacd0aba Add e2e test for net_lb_app_ext module 2024-01-05 10:02:23 +01:00
Julio Castillo
fde7b76036 Allow per-module terraform fixtures (#1914) 
* Allow terraform fixtures for examples

* Allow defining multiple fixtures, and named fixtures under tests/fixtures/

* Enable e2e for wiktorn

* Fix prepare_files call for e2e

* Move fixture to separate file, fix test

* Revert shallow-copying symlinks, performane penalty - 20%

* Update tfdoc.py to list used fixtures

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2023-12-29 09:43:44 +00:00
andybubu
2ad109ae23 Fix variable region (#1953) 
This PR changes variable region's default value in example tests to real region value.

Some of the modules parse the region name to decide whether to create regional or zonal resources.
 2023-12-28 15:04:15 +01:00
Ludovico Magnocavallo
9d6e61428b (WIP) Read-only service accounts for automation and CI/CD (#1899) 
* add design doc for the new CI/CD sa

* describe the actual implementation

* specify which files will need to be changed

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Update 0-cicd-plan-sa.md

* Fix typo

* stage 0 read-only service accounts

* stage 0 IAM map

* linting

* cicd read-only service accounts

* tweak workflow templates

* roles and github workflow fixes

* tfdoc

* Ad-hoc custom role factory for FAST bootstrap

* use factory variable for custom roles data path

* custom roles factory in org/project modules

* tfdoc

* rename custom roles factory variable, fix gitlab template

* gitlab workflow fixes

* fix merge

* output plan results on failed assertion

* update stage 0 expected values

* data platform branch

* gke

* networking

* security

* project factory

* outputs

* workflow templates

* resman apply fixes

* tfdoc

* fix stage 1 test fixture

* fix gh workflow

* read-only resman sa roles

* fix test

* read-only resman sa roles

* read-only resman sa roles

* read-only resman sa roles

* read-only resman sa roles

* fix test variables

* rename wif principal attribute names

* rename wif principal variables

* multitenant stages

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2023-12-27 11:33:16 +00:00
dibaskar-google
969111f0cf dns e2e tests (#1944) 2023-12-23 10:29:32 +00:00
Luca Prete
44b1115b9f Fix GCVE network policy (#1948) 
Co-authored-by: Luca Prete <lucaprete@google.com>
 2023-12-22 10:29:43 +00:00
Luca Prete
06b2a97291 GCVE: add network policy configuration 2023-12-22 10:02:12 +00:00
Luca Prete
c4123044b7 Use new resources in GCVE module, bump up provider versions (#1941) 2023-12-21 13:23:38 +00:00
simonebruzzechesse
c9a8d777ba Add kernels.googleusercontent.com zone in dns response policy (#1940) 
* Add kernels.googleusercontent.com zone in dns response policy
* update fast tests
 2023-12-20 11:18:11 +01:00
Wiktor Niesiobędzki
0d486fb34e E2E tests fixes 2023-12-19 11:01:03 +01:00
Julio Castillo
b6e0557bbb Simplify organization tags.tf locals (#1932) 
* Simplify organization tags.tf locals

* Fix boilerplate

* Override github provider version for tests
 2023-12-18 16:09:22 +00:00
simonebruzzechesse
c50b732c79 Allow granting network user role on host project from project module and factory (#1930) 
* Update shared vpc config for project factory and project module for more granular Shared VPC configuration

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2023-12-15 14:39:21 +01:00
Simone Ruffilli
ca3c86cb5c Add support for policy based routes to net-vpc (#1926) 
* Add support for PBR to net-vpc
 2023-12-13 15:19:40 +00:00
Wiktor Niesiobędzki
c24d023c23 Sync tf version to version used by tests 2023-12-12 09:43:09 +01:00
Ludovico Magnocavallo
b65c57bcc2 bump tf version (#1920) 2023-12-12 09:19:46 +01:00
Ludovico Magnocavallo
bba814c091 Custom role factories for organization and project modules (#1912) 
* backport custom role factories

* backport from fast ci/cd branch

* indent

* tfdoc

* fix module tests
 2023-12-11 14:16:39 +00:00
dibaskar-google
c65e242685 net_lb_ext module e2e and example testing changes (#1909) 
E2E tests for net_lb_ext
 2023-12-08 10:04:07 +01:00
Ludovico Magnocavallo
f548b65b1c Add support for subnet-level service network user grants to project module, improve docs (#1907) 
* improve project factory example

* light refactor of project modules shared vpc internals and docs

* add support for subnet-level grants on host project
 2023-12-07 09:07:48 +00:00
Luca Prete
fa7664434b Enable sole tenancy (node_affinities) on compute_vm (#1903) 2023-12-05 18:05:23 +01:00
Luca Prete
7916cd2081 Add IPv6 to HA VPN module + test inventories (#1901) 
---------

Co-authored-by: Luca Prete <lucaprete@google.com>
 2023-12-04 23:38:41 +01:00
Wiktor Niesiobędzki
4668b90e8a Fix inventory for project 2023-12-03 10:37:23 +00:00
Thangaraju R
e2d170c1a6 e2e tests for net-vpc-firewall module (#1896) 
e2e tests for net-vpc-firewall module
 2023-12-01 13:50:56 +01:00
Thomas Colomb
3a2484843c artifact-registry: Support cleanup policies (#1891) 2023-12-01 10:33:02 +00:00
Thangaraju R
da5371b391 e2e test fix for iam-service-account module (#1894) 2023-12-01 09:23:37 +01:00
Wiktor Niesiobędzki
e36b4fcec8 Merge branch 'master' into wiktorn-e2e-setup-fixes 2023-11-30 19:51:03 +01:00
Wiktor Niesiobędzki
6d68b50bc8 Review fixes 2023-11-30 17:12:12 +00:00
Thangaraju Rajasekaran
224b98c786 removed prefix and updated net-vpc shared-vpc for e2e test 2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
d9cd46d8a7 fixed e2e test for shared-vpc and subnet-iam 2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
a259d2cbdb formatted the file 2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
0af5e31ca3 E2E tests for net-vpc module 2023-11-30 14:03:49 +00:00
Wiktor Niesiobędzki
3557ed8a95 Pin provider version also for setup module to prevent test failures 2023-11-30 07:44:23 +00:00
Wiktor Niesiobędzki
c5c127b9df Use TFTEST_E2E_ instead of TF_VAR variables 
Use of TF_VAR variables modified results of `tests/examples` and
required setting different environment to run `tests/examples` and
`tests/examples_e2e` tests. No both can be run using the same
environment.
 2023-11-30 07:43:46 +00:00
apichick
66bd9d5160 Added workstation-cluster module 2023-11-30 07:02:28 +01:00
Wiktor Niesiobędzki
55f308cbea Fix failing E2E tests for folders (#1884) 
* Run tests requiring uniqueness on org level serially (organization tags, firewall policies)
* make gcs bucket name globally unique

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2023-11-24 08:09:13 +00:00
Ludovico Magnocavallo
637926fb68 Support boot disk KMS key in GKE cluster modules (#1881) 
* gke cluster standard

* tfdoc

* gke cluster autopilot

* fix autopilot tags test
 2023-11-23 11:52:13 +00:00
Luca Prete
642f65b841 F5 blueprint (#1787) 
---------

Co-authored-by: Luca Prete <lucaprete@google.com>
 2023-11-22 19:48:13 +01:00
dibaskar-google
2d70bb8db2 E2E tests for folder module (#1876) 
E2E tests for folder module
 2023-11-22 10:25:11 +01:00
Wiktor Niesiobędzki
28b8edced5 Add end-to-end tests to Cloud Run 2023-11-18 10:00:25 +00:00
Wiktor Niesiobędzki
7dd76c1003 Additional services for Cloud Run 2023-11-18 09:58:51 +00:00
Wiktor Niesiobędzki
86cf5dfc84 Fix reporting non-empty plan after apply 2023-11-17 11:47:44 +00:00
Wiktor Niesiobędzki
6ca688d694 terraform fmt 2023-11-16 11:16:26 +00:00
Wiktor Niesiobędzki
985569fa83 Allow running E2E tests that are skipped in examples 2023-11-15 09:33:03 +00:00
Wiktor Niesiobędzki
1498696b6b JIT service account for storage 2023-11-15 09:33:03 +00:00
Wiktor Niesiobędzki
1fbd018f5f E2E tests for GCS 2023-11-15 09:33:03 +00:00
Wiktor Niesiobędzki
03bf0b15b3 Organization module end-to-end tests (#1860) 
* added tag serial to mark tests to be run serially
* always run tests using loadgroup distribution to make use of serial tag
* added end-to-end tests for organization, not adding to custom constraints as the name has to be unique
* fixed granting custom roles created in the same module call
 2023-11-14 18:54:59 +01:00