kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,063 Commits 1 Branch 1 Tag
2b0a9db8edb5d2ec936cb0ce53ef99fdb291ed93
Commit Graph

6063 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
simonebruzzechesse
b0021cc0f1 New SecOps anonymization pipeline (#2794) 
* new secops anonymization pipeline

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-02-17 19:23:19 +01:00
Ludovico Magnocavallo
1a4b298cc9 Project factory additions, project module reuse implementation (#2899) 
* add support for buckets

* add project-level interpolation for own SAs

* docs

* project reuse changes

* fix example

* tfdoc

* update check documentation tool

* fast tests

* blueprints

* typo
 2025-02-15 20:37:45 +01:00
Ludovico Magnocavallo
87383a1569 FAST project templates example (#2897) 
* wip

* project factory providers

* working example

* copyright, tfdoc

* rewording

* rewording

* tfdoc

* tfdoc

* tfdoc again

* fix tests

* tests
 2025-02-14 19:14:27 +00:00
Ludo
261e4137ba Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-14 16:14:34 +01:00
Julio Castillo
d0c3f04c10 Make service agents work in different universes (#2894) 
* Make service agents work in different universes

* Use templatestring and two passes for service agent emails

* Fix tests
 2025-02-14 12:16:07 +00:00
Ludovico Magnocavallo
9148e76087 Add support for project-level log sinks to FAST stage 0 (#2893) 
* Fix ipv6 and align loadbalancer address types

* Release v37.3.0

* add support for project-level log sinks to stage 0

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-02-14 11:58:18 +01:00
Julio Castillo
a15f97db67 Add universe support to iam-service-accounts (#2892) 
* Make service account universe aware

* Add service account universe tests
 2025-02-14 09:06:23 +01:00
Julio Castillo
fd9f92324b Update VPC-SC module and FAST stage (#2887) 
* Update VPC-SC module to support vpc subnets

* Update FAST VPC-SC variables

* Fix tests
 2025-02-13 18:04:09 +00:00
Ludovico Magnocavallo
f22d783cf7 Address DNS issues with googleapis RPZ and forwarding (#2891) 
* add empty DNS zone for googleapis to net stages

* add ipv6 records for private/restricted

* avoid permadiff in rpz ipv6 addresses
 2025-02-13 16:08:27 +00:00
Julio Castillo
e5c6045de1 Add compute.restrictProtocolForwardingCreationForTypes to importable policy set (#2888) 2025-02-13 13:00:25 +00:00
Julio Castillo
d43c624f9e Add new set of org policies with managed constraints to FAST bootstrap (#2884) 
* Managed org policies example

* Add folder with managed org policies

* Add tests for managed org policies

* Document new managed org policy set
 2025-02-12 19:38:44 +00:00
Wiktor Niesiobędzki
5e31633f34 Release v37.3.0 2025-02-12 13:16:16 +00:00
Wiktor Niesiobędzki
62665f2475 Fix ipv6 and align loadbalancer address types 2025-02-12 14:09:31 +01:00
Ludo
2e63bf1029 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-12 06:47:44 +01:00
Ludo
c7262a7a87 prepare v37.2.0 release 2025-02-11 18:15:19 +01:00
Ludovico Magnocavallo
7f2ff08997 Address outstanding load balancer FRs (#2879) 
* fix #2877

* fix #2866

* fixes #2865

* fixes #2865

* moved block

* fix standalone test

* blueprints
 2025-02-11 18:09:02 +01:00
Julio Castillo
4dc61aafda Move DRS and essential contact domains to factory (#2878) 
* Move DRS and essential contact domains to factory

* Update docs
 2025-02-11 16:36:16 +00:00
Julio Castillo
c4758af0d7 Update pull_request_template.md 2025-02-11 14:01:02 +01:00
Julio Castillo
121ec17ca1 Merge branch 'master' into fast-dev 2025-02-10 23:26:47 +01:00
Julio Castillo
3ffe838e06 Add context to organization policiy factories (#2876) 2025-02-10 22:24:01 +00:00
Ludovico Magnocavallo
7909abe833 redraw cross-stage diagram (#2875) 2025-02-10 13:39:27 +00:00
Ludo
d15f1d9f43 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-10 10:14:00 +01:00
Simon Roberts
cfe8c130f0 Add note about the use of n-stagename/moved/ files during upgrade (#2874) 2025-02-10 07:34:37 +00:00
Wiktor Niesiobędzki
4e5c0ac9da Create var.prefix in sandbox, copy all files for setup 2025-02-10 00:56:19 +01:00
Wiktor Niesiobędzki
58f22ce647 Add prefix to KMS ring, to allow easy recreate 2025-02-10 00:56:19 +01:00
karpok78
e4f55fb7ff Add bucket IAM policy read (#2872) 
Allow the Project factory read only SA to retrieve buckets IAM policy for buckets created by the PF
 2025-02-09 23:55:54 +00:00
Julio Castillo
97f194e37e Make id and project_id match when universe is set 2025-02-10 00:30:13 +01:00
Wiktor Niesiobędzki
7c5b84f33e Add dependency for compute-vm schedule 2025-02-07 12:02:40 +01:00
Julio Castillo
e08698a410 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
36c776ad78 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
3fc7144c4f Update examples and tests 2025-02-07 10:55:05 +01:00
Julio Castillo
e4a1218d46 Bump provider version 2025-02-07 10:55:05 +01:00
Julio Castillo
68a5a701e7 Expose parameters module in org policy variables 2025-02-07 10:55:05 +01:00
Ludo
e5a5aa0196 add toc to dns module readme 2025-02-06 11:59:11 +01:00
Wiktor Niesiobędzki
8a9a5b5237 Disable E2E test for direct VPC Egress 
Resources in subnet are in use for ~1-2h after removal of Cloud Run
instance (see: https://cloud.google.com/run/docs/configuring/vpc-direct-vpc#delete-subnet)

b/332419038
 2025-02-05 09:56:04 +01:00
Julio Castillo
d7b5069a29 Make id and project_id match for project module 2025-02-03 18:20:16 +01:00
ZoranBatman
276ef62e62 update docs: clarify 0-bootstrap.auto.tfvars creation and outputs_location use (#2862) 
Co-authored-by: Zoran Zaric <mr.zoranzaric@gmail.com>
 2025-02-03 15:44:47 +00:00
karpok78
66926bbd0c Workflow templating fix (#2864) 
Fixed some issue with WIF and providers templating in workflows.
 2025-02-03 16:31:59 +01:00
Wiktor Niesiobędzki
5593192466 Deprecate composer-2 blueprint 2025-02-03 11:27:14 +01:00
Ludo
2d7d6a277e Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-01 09:14:46 +01:00
Ludo
a425dd98a1 update changelog 2025-02-01 09:14:34 +01:00
Ludovico Magnocavallo
a002ead06b Add support for advanced machine features to compute-vm (#2855) 
* add support for advanced machine features to compute-vm

* fix validation

* Update modules/compute-vm/variables.tf

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-01-31 09:27:29 +00:00
Julio Castillo
e0a3a3c7bb Expose custom constraint factory in bootstrap (#2854) 
* Expose custom constraint factory in bootstrap

* Silence linter

* Fix tests
 2025-01-31 07:03:29 +01:00
Julio Castillo
059cedcd64 Allow addons to any flex stage 2 (#2853) 2025-01-30 19:04:28 +01:00
HeiglAnna
efa1ef6f7e Add cAdvisor Metrics to Autopilot/Standard GKE Cluster (#2841) 
* Add cAdvisor Metrics to Autopilot/Standard GKE Cluster

* Fix tests

---------

Co-authored-by: AnnaHeigl <85624888+AnnaHeigl@users.noreply.github.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-30 13:29:07 +00:00
Julio Castillo
ca5f28b0fd Support mulitple universes in bootstrap (#2851) 
* Initial support for universes in bootstrap

* Add var description

* Add universe to globals output

* Fix typo

* Update README

* Allow universes to exclude services

* Move service exclusion to project module

* Move service exclusion loging to the project module

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-01-30 11:35:57 +00:00
Ludo
6c79bcba9a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-30 08:51:21 +01:00
Ludo
276100b715 update changelog 2025-01-30 08:51:08 +01:00
Julio Castillo
c73035f4e5 Allow universe-bound projects to exclude services (#2852) 
* Allow universe-bound projects to exclude services

* Update README
 2025-01-30 08:48:58 +01:00
Ludo
b5b9850b03 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-29 17:51:16 +01:00