kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,015 Commits 1 Branch 1 Tag
2c489cfd328cd038ea0bfc0adbbaf80713ba008e
Commit Graph

1640 Commits

Author SHA1 Message Date
Wiktor Niesiobędzki
d370121245 move c4* tests to c zone 2025-12-07 15:15:44 +01:00
Julio Castillo
8d51ccd491 Add Direct VPC Egress support to modules/cloud-function-v2 (#3567) 
Fixes #3561
 2025-12-05 18:36:52 +01:00
Michael Woodham
bc5732357c Updates to GKE modules to support Secret Sync (#3562) 
* Updates to add secret_sync to GKE module in CFF

* updated READMEs against the python tfdoc command

* updated version for secret_sync to reflect 7.12.0

* update provider versions to 7.12.0

* Updated READMEs which got clobbered by merge with main

* Fixed test errors in secret-manager module

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-12-05 15:30:49 +00:00
Roberto Jung Drebes
229b294886 feat(net-lb-app): support Google-Managed IAP and add tests (#3564) 
Updates the  dynamic block in load balancer modules to make OAuth2 client fields optional.
This allows enabling Google-Managed IAP by omitting these fields or passing .
Supports migration path by passing  as per Google documentation.

Added test case  to  to verify configuration.
 2025-12-04 17:49:01 +01:00
Vannick Trinquier
171a2c6690 Add support for CMEK in logging bucket, big query dataset and gke notifications (#3558) 2025-12-04 10:01:32 +00:00
Vannick Trinquier
33df0bba4a Align locations in networking stage with other stages (#3559) 2025-12-04 14:28:05 +07:00
Ludovico Magnocavallo
26d43d8ec5 re-enable project billing association in project factory, extends to folder (#3554) 2025-11-27 20:51:20 +00:00
Wiktor Niesiobędzki
e623c01d83 fix http2 and ssl health-checks for load balancers 2025-11-26 15:20:08 +01:00
Ludovico Magnocavallo
6f8097d2eb Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-24 09:56:12 +00:00
Ludovico Magnocavallo
3daba73d0b add default routes / delete default (#3549) 2025-11-24 09:28:57 +00:00
Ludovico Magnocavallo
bd4f2e317a prep v49.1.0 2025-11-24 08:37:06 +00:00
Ludovico Magnocavallo
10e29e1eeb Context improvements: "all service accounts" principal in folder, org, project modules; custom roles in factory condition vars for FAST stage 0 (#3548) 
* iam principalsets

* fix folder

* add custom roles to factory condition vars in stage 0

* project shared vpc IAM
 2025-11-24 08:28:41 +00:00
Wiktor Niesiobędzki
5ee09daddc Update service-agents.yaml 2025-11-24 09:06:24 +01:00
Vannick Trinquier
ba4ed1a7a9 Add additional hardened controls for gke, firewall, cloudrun and others (#3541) 2025-11-21 15:38:53 +07:00
Ludovico Magnocavallo
5bef0064a4 Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-21 07:25:51 +00:00
Vannick Trinquier
b686a6f730 Fix org policy service to be enabled before organization policies applied (#3547) 
* Fix org policy service to be enabled before organization policies applied
 2025-11-21 14:22:17 +07:00
Zsolt Molnar
9f51c4b555 Configure ADMIN_READ for sts.googleapis.com to enable Workforce Identity logging (#3545) 
* Configure ADMIN_READ for sts.googleapis.com to enable Workforce Identity logging

* Updated test results
 2025-11-21 07:40:45 +01:00
Ludovico Magnocavallo
a2a9be2593 dataplex aspect types module refactor (#3544) 2025-11-20 15:12:16 +00:00
Yashwant Mahawar
b412fafd6c Add backup vault backup plan module (#3536) 
* ft/adding backup vault backup plan module

* ft/adding missing licence

* resource name updated

* corrected the variable sequece in readme.md

* corrected lint error

* corrected lint error

* addressed the comments

* fixing the lint issues

* addressed comments

* updated readme.md, changed sample project id in example

* updated readme.md

* added other resource [managment server, associations, default backup plan]

* new example added in readme

* ft/pass test cases

* fix: change the variables.tf file sequence

* fix: change module versions

* fix: change module versions

* fix: change module versions

* fix: change module versions

* updated varaible structure

* module name in version.tf

* added missing empyt line

* corrected readme.md tests

* remove project id to genric id

* removed extra file

* corrected syntex error

* applied terraform fmt

* fix/lint issue

* changed as per github comments

* Add inventories

---------

Co-authored-by: Yashwant Mahawar <myashwant@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-20 00:18:37 +05:30
Sergey Shcherbakov
844ef0b44f Add optional secondary read pool support to the alloydb module (#3529) 
* Add optinal secondary read pool support to the alloydb module

* Fix formatting

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-18 23:15:42 +00:00
Ludovico Magnocavallo
3392953188 prep v49.0.0 2025-11-18 13:51:02 +00:00
Ludovico Magnocavallo
da5726324d Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-18 13:49:13 +00:00
Ludovico Magnocavallo
83ebdbbd2d prep v48.1.0 2025-11-18 13:47:16 +00:00
Ludovico Magnocavallo
932fd82fe2 Drop the 2-secops stage and minimally refactor 3-secops-dev (#3537) 
* drop 2-secops and minimally refactor 3-secops

* remove stage 2 tests

* tfdoc
 2025-11-18 14:32:06 +01:00
Ludovico Magnocavallo
8c29512890 Leverage project-level workload identity in FAST CI/CD (#3535) 
* Leverage project-level WIF in FAST CI/CD

* add new context namespace, improve outputs, fix tests and inventories

* make YAML linter happy

* README
 2025-11-18 10:49:44 +00:00
Ludovico Magnocavallo
0ff2e8c56b Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-17 19:00:17 +00:00
Ludovico Magnocavallo
09367404a8 remove log buckets from security stage projects (#3534) 2025-11-17 14:24:58 +00:00
Ludovico Magnocavallo
6035fe89d7 assign service usage roles on iac project to automation service accounts (#3532) 2025-11-17 14:58:57 +01:00
Ludovico Magnocavallo
897c6ef8c3 Add support for Workload Identity to project module and project factory (#3531) 
* module-level support

* fast stage 0

* fix inventory, add outputs/tfvars

* wip

* project factory

* pf outputs

* iam templates will be added where ci/cd configs are managed

* fix merge conflicts
 2025-11-17 07:31:21 +00:00
Ludovico Magnocavallo
87ed19bc47 Add support for Workforce Identity to organization module and org setup stage (#3530) 
* module-level support

* fast stage 0

* fix inventory, add outputs/tfvars
 2025-11-17 08:00:30 +01:00
Vannick Trinquier
03521a5780 Prettify yaml controls (#3525) 2025-11-13 14:21:36 +07:00
Simone Ruffilli
e44b23111e Adds support for custom learned routes to net-vpn-ha (#3523) 2025-11-11 13:55:23 +00:00
Ludovico Magnocavallo
3289a6ff27 prep v48.0.0 2025-11-11 09:13:44 +00:00
Ludovico Magnocavallo
76eec666ea Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-11 09:10:56 +00:00
Ludovico Magnocavallo
0d0e086cfc prep v47.1.0 2025-11-11 08:59:19 +00:00
Vannick Trinquier
1f0940a716 Update yaml controls to match max line-length (#3520) 
* Update yaml controls to match max line-length

* Add test for stage 0 with hardened datasets

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-11 07:00:49 +00:00
apichick
0fd01c6552 Added missing parameters in trigger (#3519) 2025-11-11 06:40:32 +00:00
Ludovico Magnocavallo
fc7aa71ada Add support for KMS key creation to project factory (#3518) 
* initial implementation

* context

* tfdoc

* add support for autokey to projects

* fix typo
 2025-11-11 07:23:50 +01:00
Vannick Trinquier
15a5486a1e Add hardened controls for gke, networking and monitoring alerts recommended in CIS Benchmarks for GCP (#3484) 2025-11-10 11:06:25 +00:00
Ludovico Magnocavallo
ba77c6170c Allow configuring data access logs from org/folder/project schemas (#3516) 
* modules and FAST support

* module tests

* fast stage 0 dataset

* tfdoc
 2025-11-10 10:19:21 +00:00
Ludovico Magnocavallo
7e32058010 [WIP] Add support for KMS autokey (#3515) 
* wip

* folder module

* project factory schema

* remove spurious project template

* gcs and compute-vm modules

* variable order
 2025-11-09 10:46:28 +01:00
Ludovico Magnocavallo
16da9ffaad Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-08 17:07:49 +00:00
Ludovico Magnocavallo
81010a97c0 Rename project and VPC resources in net stage datasets (#3513) 
* vpcsc tfvars optional in net

* net project/vpc renames

* fix provider diffs in inventories
 2025-11-08 13:38:28 +01:00
Wiktor Niesiobędzki
b3df16fee8 Add support for ARM based VMs 2025-11-07 08:46:11 +01:00
Wiktor Niesiobędzki
6567d63d92 Add support for hyperdisk performance options 2025-11-07 08:46:11 +01:00
Ludovico Magnocavallo
68c8538fd6 Refactor FAST VPC-SC docs, ensure cooperative VPC-SC resource control works (#3504) 
* stage README

* vpc-sc in security stage

* vpc-sc for networking

* vpc-sc for net

* vpc-sc for pf

* vpc-sc for pf

* spelling

* inventory
 2025-11-05 13:19:02 +00:00
Wiktor Niesiobędzki
2a03c1b97e Password for initial_user for AlloyDB is now rquired 
Details: https://github.com/GoogleCloudPlatform/magic-modules/pull/15596

Note: as of now, validation doesn't allow `known after apply` values for
passwords
 2025-11-05 13:08:11 +01:00
Ludovico Magnocavallo
5946433737 prep v47.0.0 2025-11-05 08:28:44 +00:00
Ludovico Magnocavallo
fc538a15cc Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-05 08:26:53 +00:00
Ludovico Magnocavallo
adec737e2a prep v46.1.0 2025-11-05 08:24:06 +00:00