kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,647 Commits 1 Branch 1 Tag
3cc44ad646588f1b55a52e5d76a13c8889b5cb8e
Commit Graph

5647 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ludovico Magnocavallo
3cc44ad646 fix moved blocks, support environment name in top-level folder automation (#2652) 2024-10-31 17:47:11 +01:00
Ludovico Magnocavallo
50ac3a5013 Refactor of FAST resource management and subsequent stages (#2648) 
* untested

* pllan testing

* fix stage 2s

* move providers to their own file

* single-environment stage 3

* fixes and moved blocks

* stage3 factory

* doc

* review comments

* review comments

* tfdoc

* fasts tage 1 tests

* netsec as stage 2

* fix backported roles

* fix backported roles

* tfdoc

* fixes

* fix tag value roles in stage 1

* remove checklist, fix stage 1 tests

* inventory

* Small bugfix

* refactor context tag values

* fix previous merge

* fix previous merge

* fix previous merge

* support short names for top level automation resources, change top level context variable

* fix new top level context

* roll back merge changes to stage 0 outputs

* roll back more merge changes

* linting errors

* tfdoc

* fix tests, roll back merge in tenants stage

* tfdoc

* fix inventory

* optional stage 2 env folders and tag bindings

* tflint

* damn tflint

* damn tflint

* tfdoc

* fix networking tests

* tflint

* fix test inventories

* tfdoc

* use coalesce for project parents

* fix billing role conditions

* fix billing role conditions

* security stage tested (ngw resources need fixing/porting)

* boilerplate

* fix inventory

* stage envs and stage linking script

* initial work on resman docs, update diagram, improve teams folder

* resman README

* fix stage 2 IAM delegation

* remove checklist from bootstrap

* stage 1 tests

* stage 0 1 and 2 tests

* tflint

* tflint

* tfdoc

* GCVE stage refactor (untested)

* GCVE stage refactor (untested)

* GCVE stage 3

* gcve tests

* tflint

* tfdoc

* fix links

* module tests

* stages README

* move network security to stage 2

* network security tests

* replace stage links in README files

* minimal netsec stage refactor

* use factory for iac org policies, add configurable drs org policy for iac

* test mt stage

* tfdoc

* fix cicd workflows

* fix cicd workflows

* gke-dev stage

* tflint

* remove data platform stage

* exclude provider files via tfdoc opts

* remove data platform tests and links

* fix merge

* fix resman inventory

* boilerplate

* inventory

---------

Co-authored-by: Simone Ruffilli <sruffilli@google.com>
 2024-10-31 16:55:54 +01:00
Ludo
2fcb81c05c Merge remote-tracking branch 'origin/master' into fast-dev 2024-10-30 15:23:03 +01:00
Ludo
f5189cef2d tag v35.0.0 2024-10-30 15:16:29 +01:00
Ludo
e7e1c63f60 update changelog 2024-10-30 15:14:40 +01:00
Ludo
60b7130d10 update changelog 2024-10-30 15:11:03 +01:00
Julio Castillo
6340ca1347 Clarify fast-dev purpose (#2649) 2024-10-30 15:08:04 +01:00
Ludo
006b381bd5 update changelog 2024-10-30 14:25:06 +01:00
Ludo
5cd2f891a1 update changelog 2024-10-30 14:21:28 +01:00
Julio Castillo
f5d05b3c3f Reorganize ADRs and new versioning ADR (#2642) 
* Reorganize ADRs and new versioning ADR

* Workflow examples

* Fix ADR links

* Changes discussed with ludoo

* Fix image reference

* Update image

* Fix typo

* Complet decision section

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-10-30 12:39:53 +01:00
Ludovico Magnocavallo
abde265998 extend tests to fast-dev (#2646) 2024-10-30 10:39:36 +00:00
Wiktor Niesiobędzki
dafb8d246d Do not run codespell on CHANGELOG.md 2024-10-30 10:30:37 +01:00
Wiktor Niesiobędzki
8b7607af63 Codespell / whitespace fixes 2024-10-30 10:30:37 +01:00
Wiktor Niesiobędzki
30d1deceee Skip tflint on fast stages as it requires extra config 2024-10-30 10:30:37 +01:00
Wiktor Niesiobędzki
a2ce318d11 Add spellchecker to pre-commit 2024-10-30 10:30:37 +01:00
Frits
b9fbdbcf7b feat(modules/secret-manager): add support for version_destroy_ttl 
Closes #2644
 2024-10-30 09:54:31 +01:00
Aurélien Legrand
d4b594f83a Adding DNS for GKE control plane to private google access APIs (#2641) 
* Adding DNS for GKE control plane to private google access APIs

* updating tests

* updating tests
 2024-10-29 14:09:26 +01:00
Usama Shujaat
6db881da34 Add option to attach multiple snapshot schedule to disks (#2639) 
* Add changes to link mutiple Snapshot Schedule to a disk/boot disk

* Update Readme and fix for boot snapshot schedule

* Updating for_each expression, fix linting error

---------

Co-authored-by: usamashujaat <155731944+usamashujaat@users.noreply.github.com>
 2024-10-28 18:53:43 +01:00
Ludovico Magnocavallo
601f137c9b Fix ipv6 output in net-vpc module, add support for extra volumes in cloud run v2 module (#2638) 
* fix #2637

* fix #2635
 2024-10-24 08:36:20 +02:00
Luca Prete
24d78de373 [FAST] Fix stage 2 simple NVA wrong location - causing test failures (#2630) 2024-10-18 14:43:03 +02:00
Joshua Wright
d4cff3eafa Add Project Factory Logging Data Option (#2625) 
* Add Logging Data Defaults to Data Defaults and Data Overrides

* Run TFDoc & FMT

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-10-17 10:54:42 +00:00
dependabot[bot]
cdb26b45e7 Bump cookie and express (#2629) 
Bumps [cookie](https://github.com/jshttp/cookie) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.

Updates `cookie` from 0.6.0 to 0.7.1
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.1)

Updates `express` from 4.21.0 to 4.21.1
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.21.0...4.21.1)

---
updated-dependencies:
- dependency-name: cookie
  dependency-type: indirect
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-17 09:11:44 +02:00
Liam Nesteroff
f14cd9f948 Add TFE integration for backend and CICD (#2611) 
* added option for tfe_cicd

* formatting and readme

* formatting

* added terraform option for cicd_repos

* update readme

* modified provider templating for tf

* added missing resman gsa

* updated readmes

* added options for tf style write/branch structure

* added cicf_backends to tests

* added cicd_backends to tests

* Updated readme
 2024-10-16 17:01:39 +11:00
dependabot[bot]
47e74a1c52 Bump cookie and express in /blueprints/gke/binauthz/image (#2623) 
Bumps [cookie](https://github.com/jshttp/cookie) to 0.7.1 and updates ancestor dependency [express](https://github.com/expressjs/express). These dependencies need to be updated together.


Updates `cookie` from 0.6.0 to 0.7.1
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.1)

Updates `express` from 4.21.0 to 4.21.1
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.21.0...4.21.1)

---
updated-dependencies:
- dependency-name: cookie
  dependency-type: indirect
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-10-15 16:05:51 +02:00
Liam Nesteroff
f65dc88b6f added output for tfvars_globals (#2620) 2024-10-15 18:39:09 +11:00
Elia
81a6ff30d2 GCVE network mode for 2-networking-b-nva stage (#2544) 
* GCVE network mode

* optional landing routes

* net option renamed

* minor fix

* added stage tests

* test fix

* regional-vpc mode

* fixed api

* fix readme

* drawing updated

* stage test fix

* stage test fix

* stage test fix

* stage test fix

* fix

---------

Co-authored-by: Simone Ruffilli <sruffilli@google.com>
 2024-10-15 08:28:15 +02:00
Benoît Sauvère
ce09c07ced fix(artifact-registry): fix a move issue with tf>1.7 (#2617) 
The TF 1.8 has introduced a new feature that makes the move failing:
> Providers can now transfer the ownership of a remote object between resources of different types, for situations where there are two different resource types that represent the same remote object type.
> This extends the moved block behavior to support moving between two resources of different types only if the provider for the target resource type declares that it can convert from the source resource type. Refer to provider documentation for details on which pairs of resource types are supported.
https://github.com/hashicorp/terraform/blob/v1.8/CHANGELOG.md#180-april-10-2024
 2024-10-11 11:41:05 +02:00
Ludovico Magnocavallo
8101a26652 support log exclusions in bootstrap log sinks (#2616) 2024-10-09 09:22:28 +02:00
Ludovico Magnocavallo
74427386b9 Add support for bundling net monitoring tool in a Docker image, and deploying via CR Job (#2609) 
* dockerfile and reqs update

* deployment via cloud run jobs

* README

* boilerplate
 2024-10-07 12:56:09 +00:00
Ludovico Magnocavallo
bbe84a5ca8 add extra job revision attributes (#2608) 2024-10-07 11:45:59 +02:00
Ludo
d832361a15 update changelog 2024-10-07 10:25:56 +02:00
simonebruzzechesse
77b8f639ed alloydb variables refactor (#2599) 2024-10-06 11:49:15 +02:00
Benoît Sauvère
cb234fd35b feat: implement the new iam interface in artifact-registry (#2606) 
Co-authored-by: Julio Castillo <juliocc@users.noreply.github.com>
 2024-10-04 13:49:48 +00:00
Liam Nesteroff
c2780fa7b0 fixed tfe wif definition variables (#2604) 
* fixed tfe wif definition variables

* Added additional attributes for tfe

* kept workspaceid for google.subject as per gcp docs
 2024-10-03 13:41:31 +00:00
Simone Ruffilli
fbf5ad5a8f FAST: Adds support for PSC transitivity to 2-a (#2600) 2024-10-02 11:39:23 +02:00
Liam Nesteroff
999c3acca3 added tf def to wif providers (#2598) 2024-10-02 09:12:49 +10:00
Liam Nesteroff
163a0eab2b Allow manage existing SSM instance (#2595) 
* added option to manage an existing SSM instance

* switched depends on to try for instance iam

* added resource instance keys

* add instance keys to tests

* changed label default to null

* updated readme

* replaced try functions with conditional expressions for IAM
 2024-09-27 12:13:30 +02:00
apichick
3fad96436c Added biglake-catalog module (#2572) 2024-09-24 17:39:29 +02:00
apichick
bb9a085b10 Apigee x foundations certificate manager (#2585) 
* Added forward_proxy_uri to apigee environments in apigee-x-foundations blueprint

* Update to create required certificate-manager resources for cross-region LB in the blueprint using module, added more outputs and ability to pass IP addresses for LB forwarding rules

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-09-24 06:49:35 +00:00
simonebruzzechesse
7cf83842a7 Fix looker README and add custom url for looker instance module (#2593) 
* fix README and add custom url for looker instance
 2024-09-23 11:12:23 +02:00
Elia
dca6e383b7 Fix permadiff on iap attribute in net-lb-app-int module (#2590) 
* fixed attribute default

* fix blueprint inventory

* fix outputs

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2024-09-20 11:35:18 +00:00
simonebruzzechesse
1f2bdd0033 New looker core module (#2565) 
* new looker core module
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-09-20 12:12:09 +02:00
Artem Bogdantsev
4bacbf5748 Project Module CMEK: added CloudRun (#2587) 
Added CloudRun to the list so that CloudRun service agent gets encryptor/decryptor role on CMEK
 2024-09-20 08:30:06 +00:00
Liam Nesteroff
9817d17c35 Add location for each IAM resource (#2586) 
Location field was missing causing an error
 2024-09-20 07:30:46 +00:00
Natalia Strelkova
923a1e41dc Nstrelkova/small readme fixes (#2584) 
* typo (old rename of 00-bootstrap to 0-bootstrap)

* resman purpose: not org policies, but tags

* GCVE: several typos

---------

Co-authored-by: Natalia Strelkova <nstrelkova@google.com>
 2024-09-19 13:23:40 +00:00
apichick
0f28d266dd Secure source manager (#2569) 
* Added secure-source-manager-instance module

* Fixes after review
 2024-09-19 10:29:01 +00:00
Ludo
7a90f497e9 update changelog 2024-09-19 11:59:31 +02:00
apichick
8e0dac84f9 Bigquery dataset routines (#2570) 
* Added routines to bigquery-dataset module

* Fixes after review
 2024-09-19 09:13:32 +00:00
Ludovico Magnocavallo
cf5bba8b7f support secret-level expire time in secret manager module (#2583) 2024-09-19 10:35:43 +02:00
Ludovico Magnocavallo
c2a9cb7d09 make it explicit that stages need to be run once before CI/CD setup (#2582) 2024-09-19 09:43:35 +02:00