kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,506 Commits 1 Branch 1 Tag
35fcde9fa2c3ac24877f62ee1021c798cbb8530e
Commit Graph

1090 Commits

Author SHA1 Message Date
Simone Ruffilli
35fcde9fa2 Fixes copy-paste error in 2-networking README.md 2025-10-23 17:28:41 +02:00
Simone Ruffilli
bfb7d0c812 2-networking - VPN Dataset (#3458) 
This PR implements a dataset for 2-networking which implements a simple VPN hub and spoke topology with 2 spokes.
 2025-10-23 17:21:39 +02:00
Ludovico Magnocavallo
4bf4047017 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-23 14:51:14 +00:00
Ludovico Magnocavallo
80988c0bbf Fix issues with FAST CI/CD support (#3454) 
* wip, broken

* wip

* streamline locals

* tfdoc

* update yaml files

* refactor
 2025-10-23 16:40:06 +02:00
Wiktor Niesiobędzki
d1f257bcb9 align project-templates to new functions interface 2025-10-23 15:50:17 +02:00
Simone Ruffilli
393e99194a 2-networking - NCC Dataset (#3457) 
Dataset for 2-networking which implements a simple NCC full mesh topology with 2 spokes.
 2025-10-23 12:59:46 +00:00
Simone Ruffilli
23f8326665 Factory based FAST Networking stage (#3435) 
New factory based networking stage, shipping with a single dataset (peering) to keep the PR size somewhat manageable.
 2025-10-23 14:17:44 +02:00
Julio Castillo
cc6570f77c Fix typos (#3453) 2025-10-22 18:52:08 +00:00
Simone Ruffilli
de8ebefe17 Start the deprecation process of the old networking stages (#3451) 
This PR renames `2-networking-foo` stages to `2-networking-legacy-foo` - including references of stages in docs and tests.

**Breaking Changes**

```upgrade-note
`fast/stages/2-networking-a-simple`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-b-nva`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-c-separate-envs`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`modules/net-vpc-factory`:  The module has been deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
```
 2025-10-22 16:31:14 +02:00
Ludovico Magnocavallo
a4cc7cd979 Align schemas (#3447) 
* enforce schema uniqueness

* schemas

* fix tests
 2025-10-21 14:03:40 +02:00
Vannick Trinquier
c60ae3652a Adding hardened datasets for preventive and detective Compliance Controls (#3410) 
* Adding hardened datasets for preventive and detective Compliance Controls in stage 0 and stage 1 VPC-SC

* Move observability to factory file

* Update documentation

* Update local variable for use

* Update observability factory to use other module

* Add raw diagram file for hardened datasets

* Retrofit change

* Rename log_buckets context variable to be consistent across modules

* Update stage 0 documentation to mention hardened dataset

* Update customer ids list

* Update documentation, path to schema add ID to access level

* Comment organization policy gcp.resourceLocation by default

* Prevent duplicate key error by merging principal roles

* Adding ngfw roles files in hardened datasets

* Update script to validate files differences to support folder and datasets

* Format duplicate-diff python script

* Remove .config.yaml from duplicates

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-21 10:34:25 +00:00
Ludovico Magnocavallo
32ca4498ad Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-20 17:56:31 +00:00
Luca Prete
64738a1808 Add Agent Engine module. (#3429) 2025-10-20 17:02:39 +02:00
Ludovico Magnocavallo
5e05044306 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-18 14:22:57 +00:00
Ludovico Magnocavallo
4113da128b Support resource-level factories config in project factory module and FAST stages (#3440) 
* support resource-level factories in project factory module

* align folder and project schemas across modules and fast

* schema docs
 2025-10-18 10:41:19 +00:00
Zsolt Molnar
30ea120dcf Bump Terraform version used in Github CICD templates to match fabric/modules requirements introduced at #3332 (#3439) 2025-10-18 08:00:14 +00:00
Ludovico Magnocavallo
a3b86b9426 Revert "Added audience to workflow local in 0-org-setup (#3418)" (#3432) 
This reverts commit 4dfcb9cf51.
 2025-10-17 12:38:08 +00:00
kovagoadam
84a258e247 Add retention support for project-factory buckets (#3417) 
* Added retention support for project-factory buckets

* Cleanup

* Added retention_policy to project.schema.md in PF stage

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-17 10:30:20 +00:00
Ludovico Magnocavallo
b581c49a31 Revert "Allow overriding organization factories from YAML (#3430)" (#3431) 
This reverts commit 594c106441.
 2025-10-17 11:41:31 +02:00
kovagoadam
4dfcb9cf51 Added audience to workflow local in 0-org-setup (#3418) 
* Added missing audiences to fast_0_org_setup

* Run terraform fmt

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-17 08:13:28 +00:00
Ludovico Magnocavallo
594c106441 Allow overriding organization factories from YAML (#3430) 2025-10-17 08:51:23 +02:00
norbert-loderer
1839a08581 Add missing project number variable to outputs in 0-org-setup stage (#3427) 
* Add missing project number variable to outputs in 0-org-setup stage

* Fixed typo

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-17 06:51:04 +00:00
Ludovico Magnocavallo
489b21f8cc fix ngfw add-on instructions (#3409) 2025-10-13 16:52:54 +00:00
Luca Prete
142ad6488e NGFW Enterprise custom roles (#3408) 2025-10-13 16:29:27 +00:00
Ludovico Magnocavallo
e9b121153a Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-13 09:45:29 +00:00
Ludovico Magnocavallo
5f4c3a0fb2 remove spurious files 2025-10-13 09:38:02 +00:00
Ludovico Magnocavallo
606b86ce7a changelog 2025-10-13 09:37:27 +00:00
Julio Castillo
9b9ad76ced Update gke-hub module to use new Policy Controller API (#3332) 
* Update gke-hub to use new Policy Controller API

Fixes #3287

* Use same config format for servicemesh

* remove useless trys

* use ternaries as in the rest of the repo

* Update docs and fix tests

* Update variables

* Bump tofu version

* Bump terraform version 1.12
 2025-10-13 09:47:39 +02:00
Ludovico Magnocavallo
c996285b26 Support context and add configurations factory to workstation cluster module, add FAST project template (#3401) 
* add context to workstation-cluster module

* context test

* workstations project template
 2025-10-10 18:59:37 +02:00
Ludovico Magnocavallo
9cf67755de Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-10 06:32:03 +00:00
Ludovico Magnocavallo
6a79d0f74c Remove unavailable service from VPC-SC stage services list (#3400) 2025-10-10 05:58:08 +00:00
Ludovico Magnocavallo
2dea1224e5 Align FAST project templates project definitions to new format (#3399) 
* fix os apt registries template

* align project templates to new pf format

* align project templates to new pf format
 2025-10-09 15:36:47 +02:00
Ludovico Magnocavallo
2ab471d236 pf changes (#3398) 2025-10-09 13:37:47 +02:00
Julio Castillo
9004b00f00 Reorder org-setup to support new datasets (#3397) 
* Reorder org-setup to support new datasets

* Fix schema references

* Revert newline removal
 2025-10-09 09:28:33 +00:00
Ludovico Magnocavallo
d3c80ce18b Rationalize location defaults across project factory module and FAST stages (#3392) 
* group default/overrides locations in a single object in pf module

* org setup

* project factory stage

* fix defaults

* pf defaults

* security stage defaults
 2025-10-08 07:12:15 +00:00
Ludovico Magnocavallo
3b3efd57bd Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-08 05:02:49 +00:00
Julio Castillo
e6a2fc981b Use location.bigquery for billing dataset (#3390) 2025-10-07 14:13:01 +02:00
Victor Voisin
452060961a fix: expose missing audiences variable for gitlab workflow file generation (#3385) 
In 0-org-setup, when using gitlab cicd, workflow-gitlab.yaml expects an
audiences variable.

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-07 11:37:20 +00:00
Ludovico Magnocavallo
5d7fadf21a Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-07 08:05:03 +00:00
Julio Castillo
3498338c87 Support iam_by_principals_additive in 0-org-setup (#3387) 
* Support iam_by_principals_additive in 0-org-setup

* Fix typo
 2025-10-07 06:56:35 +00:00
Julio Castillo
6b5226f16e Document log_buckets namespace (#3386) 2025-10-07 07:38:17 +02:00
Ludovico Magnocavallo
51c290c9d7 add support for universe to fast project factory stage (#3384) 2025-10-06 07:00:00 +00:00
Ludovico Magnocavallo
5898327279 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-06 05:45:15 +00:00
Ludovico Magnocavallo
e9c3341323 support universe in fast security stage (#3383) 2025-10-06 07:24:50 +02:00
Ludovico Magnocavallo
b9b62eff89 Delete fast/stages/2-security/data/folders/main.tf 2025-10-05 16:15:47 +02:00
Ludovico Magnocavallo
3cc206bb5b Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-05 14:03:51 +00:00
Ludovico Magnocavallo
ae06160d58 Fix typo in fast stage 0 provider template (#3381) 2025-10-05 11:35:49 +00:00
Ludovico Magnocavallo
7aa4e453d7 allow FAST stage 0 provider template to work with universe (#3379) 2025-10-05 11:17:31 +02:00
Ludovico Magnocavallo
4db29a48eb allow forcing jit service agents generation for universe (#3378) 2025-10-05 10:17:57 +02:00
Ludovico Magnocavallo
7f291e140f Add support for output files to FAST project factory stage (#3373) 
* providers

* providers

* output files

* readme

* refactor

* refactor provider names

* refactor

* gcs folders

* README

* Update fast/stages/2-project-factory/README.md

Co-authored-by: Julio Castillo <jccb@google.com>

* reword doc

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-10-03 12:20:04 +00:00