kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,919 Commits 1 Branch 1 Tag
51bd19bc30349f9fefbeb8e14c3c9c8adf52c66c
Commit Graph

1124 Commits

Author SHA1 Message Date
Julio Castillo
51bd19bc30 Update default FAST org policies (#2906) 
* Update org default org policies

* Update default FAST org policies
 2025-02-18 16:34:44 +01:00
Julio Castillo
348e4df081 Fix default compute.restrictProtocolForwardingCreationForTypes value (#2904) 2025-02-18 14:28:33 +01:00
Ludo
8f6cd6dedc Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-18 08:36:34 +01:00
jacklever-hub24
a8d7d401d6 Add support for locality policies to net-lb-app-ext module (#2898) 
* Fix the missing locality_lb_policy value and add validation for it

* Added variables, dynamic blocks and validation to support locality_lb_policy/ies

* Formatting

* tfdoc generation

* Fix net-lb-app-ext readme

* Fixes for Ludo, coalesce and brevity

* fmt

* Revert null check due to failing tests

---------

Co-authored-by: Jack Lever <jack@thelevers.com.au>
Co-authored-by: Ludo <ludomagno@google.com>
 2025-02-18 06:25:45 +00:00
Ludovico Magnocavallo
1a4b298cc9 Project factory additions, project module reuse implementation (#2899) 
* add support for buckets

* add project-level interpolation for own SAs

* docs

* project reuse changes

* fix example

* tfdoc

* update check documentation tool

* fast tests

* blueprints

* typo
 2025-02-15 20:37:45 +01:00
Ludovico Magnocavallo
87383a1569 FAST project templates example (#2897) 
* wip

* project factory providers

* working example

* copyright, tfdoc

* rewording

* rewording

* tfdoc

* tfdoc

* tfdoc again

* fix tests

* tests
 2025-02-14 19:14:27 +00:00
Julio Castillo
d0c3f04c10 Make service agents work in different universes (#2894) 
* Make service agents work in different universes

* Use templatestring and two passes for service agent emails

* Fix tests
 2025-02-14 12:16:07 +00:00
Ludovico Magnocavallo
9148e76087 Add support for project-level log sinks to FAST stage 0 (#2893) 
* Fix ipv6 and align loadbalancer address types

* Release v37.3.0

* add support for project-level log sinks to stage 0

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-02-14 11:58:18 +01:00
Julio Castillo
a15f97db67 Add universe support to iam-service-accounts (#2892) 
* Make service account universe aware

* Add service account universe tests
 2025-02-14 09:06:23 +01:00
Julio Castillo
fd9f92324b Update VPC-SC module and FAST stage (#2887) 
* Update VPC-SC module to support vpc subnets

* Update FAST VPC-SC variables

* Fix tests
 2025-02-13 18:04:09 +00:00
Ludovico Magnocavallo
f22d783cf7 Address DNS issues with googleapis RPZ and forwarding (#2891) 
* add empty DNS zone for googleapis to net stages

* add ipv6 records for private/restricted

* avoid permadiff in rpz ipv6 addresses
 2025-02-13 16:08:27 +00:00
Julio Castillo
d43c624f9e Add new set of org policies with managed constraints to FAST bootstrap (#2884) 
* Managed org policies example

* Add folder with managed org policies

* Add tests for managed org policies

* Document new managed org policy set
 2025-02-12 19:38:44 +00:00
Wiktor Niesiobędzki
5e31633f34 Release v37.3.0 2025-02-12 13:16:16 +00:00
Wiktor Niesiobędzki
62665f2475 Fix ipv6 and align loadbalancer address types 2025-02-12 14:09:31 +01:00
Ludo
2e63bf1029 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-12 06:47:44 +01:00
Ludo
c7262a7a87 prepare v37.2.0 release 2025-02-11 18:15:19 +01:00
Ludovico Magnocavallo
7f2ff08997 Address outstanding load balancer FRs (#2879) 
* fix #2877

* fix #2866

* fixes #2865

* fixes #2865

* moved block

* fix standalone test

* blueprints
 2025-02-11 18:09:02 +01:00
Julio Castillo
121ec17ca1 Merge branch 'master' into fast-dev 2025-02-10 23:26:47 +01:00
Julio Castillo
3ffe838e06 Add context to organization policiy factories (#2876) 2025-02-10 22:24:01 +00:00
Ludo
d15f1d9f43 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-10 10:14:00 +01:00
Wiktor Niesiobędzki
58f22ce647 Add prefix to KMS ring, to allow easy recreate 2025-02-10 00:56:19 +01:00
karpok78
e4f55fb7ff Add bucket IAM policy read (#2872) 
Allow the Project factory read only SA to retrieve buckets IAM policy for buckets created by the PF
 2025-02-09 23:55:54 +00:00
Julio Castillo
97f194e37e Make id and project_id match when universe is set 2025-02-10 00:30:13 +01:00
Julio Castillo
e08698a410 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
36c776ad78 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
3fc7144c4f Update examples and tests 2025-02-07 10:55:05 +01:00
Julio Castillo
e4a1218d46 Bump provider version 2025-02-07 10:55:05 +01:00
Ludo
2d7d6a277e Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-01 09:14:46 +01:00
Julio Castillo
e0a3a3c7bb Expose custom constraint factory in bootstrap (#2854) 
* Expose custom constraint factory in bootstrap

* Silence linter

* Fix tests
 2025-01-31 07:03:29 +01:00
HeiglAnna
efa1ef6f7e Add cAdvisor Metrics to Autopilot/Standard GKE Cluster (#2841) 
* Add cAdvisor Metrics to Autopilot/Standard GKE Cluster

* Fix tests

---------

Co-authored-by: AnnaHeigl <85624888+AnnaHeigl@users.noreply.github.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-30 13:29:07 +00:00
Ludo
6c79bcba9a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-30 08:51:21 +01:00
Julio Castillo
c73035f4e5 Allow universe-bound projects to exclude services (#2852) 
* Allow universe-bound projects to exclude services

* Update README
 2025-01-30 08:48:58 +01:00
Julio Castillo
e7cc8377df Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-29 15:08:39 +01:00
Ludovico Magnocavallo
95ec5ee3b5 Flexible stage 2s in FAST resource manager (#2840) 
* wip

* WIP

* wip

* wip

* apply untested

* tests

* support tag expansion for tenant-level installations in IAM conditions

* fix stage config output

* inventories

* remove dev files

* tfdoc

* enable org policies for stage folders

* resman README

* tfdoc

* stage 3 documentation

* inventory

* support extra_dirs in testing franework

* remove org policy files from stage 1

* Add principal interpolation to iam_by_principals (#2847)

* Add principal interpolation to iam_by_principals

* Fix tests

* relax schemas

* relax schemas

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-29 12:16:35 +00:00
Julio Castillo
29e7669385 Support project creation in different universes (#2848) 
* Support project creation in different universes

* Fix typo

* Revert prefix validation

* Add test

* Call new test

* Do not override project name
 2025-01-29 12:40:41 +01:00
Ludo
25bacee2e6 prepare for v37.1.0 2025-01-26 10:41:13 +01:00
Julio Castillo
680d68411a Fix versions.tf 2025-01-24 17:05:34 +01:00
Ludo
15c8669188 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-24 16:55:46 +01:00
Julio Castillo
752b77f52e Update module metadata format and prep v36.2.0 (#2837) 
* Update module metadata format and prep v36.2.0

* Fix pattern
 2025-01-24 16:45:17 +01:00
Ludo
fd7292710a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-23 08:51:07 +01:00
frits-v
43e6daca8f fix(certificate-manager): reference dns_authz by fully qualified id (#2833) 2025-01-22 22:49:12 +01:00
Julio Castillo
8a2320311d Add bucket_create to modules/gcs (#2827) 
* Add `bucket_create` to `modules/gcs`

* Create local with bucket name

* Update variable description

* Fix bucket output

* Fix tests

* Fix tests

* Bump OpenTofu to 1.9.0 (needed for multi-var validations)
 2025-01-21 23:48:36 +01:00
Ludovico Magnocavallo
6aed84f070 FAST add-on for networking test resources (#2825) 
* needs testing

* add-on README, test, remove test resources from net stages

* tfdoc
 2025-01-20 09:41:35 +01:00
Ludo
0b6bcdccf8 prepare v37.0.0-rc2 release 2025-01-18 08:36:26 +01:00
Ludo
98c8697a08 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-18 08:18:05 +01:00
Ludovico Magnocavallo
f646e85301 FAST SWP networking add-on (#2821) 
* prototype implementation, untested

* halfway through refactor

* refactor cas module pool variable

* apply cas module refactor to ngfw fast addon

* untested

* test

* tflint

* tflint

* tfdoc

* fix brainfarts

* tfdoc

* update ca pool type in security stage
 2025-01-18 07:12:40 +00:00
Wiktor Niesiobędzki
10cc3d8079 modules/compute-vm end-to-end tests and fixes 2025-01-16 10:54:52 +01:00
Simone Ruffilli
8b31a006c7 Top level folder factory support for automation SA IAM (#2818) 
* Top level folder factory support for automation SA IAM

* Fixes iam_bindings and iam_bindings_additive for top-level-folder

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-01-16 10:32:59 +01:00
Ludovico Magnocavallo
b608e3756e Fix permadiff in stage 0 vpc-sc service account, add schemas to hierarchical policy YAML files (#2817) 
* fix permadiff in stage 0

* add missing schema

* update test inventories
 2025-01-15 09:47:04 +00:00
Ludo
206fd28419 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-14 17:04:18 +01:00