kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,466 Commits 1 Branch 1 Tag
7fe999562a3f9c79f429348b41befc18cb7932a0
Commit Graph

2452 Commits

Author SHA1 Message Date
Wiktor Niesiobędzki
7fe999562a codespell fixes 2025-10-26 11:56:41 +01:00
Wiktor Niesiobędzki
269e47a565 Improve linting and fix agent-engine module name 2025-10-26 11:56:41 +01:00
Wiktor Niesiobędzki
dc8a67b83a yamllint modules 2025-10-24 13:11:17 +02:00
Viliam Pucik
bc31714f68 Fix identity handling in service perimeter when identity is null (#3461) 2025-10-24 07:00:06 +02:00
Wiktor Niesiobędzki
8080192c39 Dont use provider functions, because OpenTofu doesnt like them 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
d9029e47a0 VPC Connector alignment to Cloud Run v2 + contexts 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
d1f257bcb9 align project-templates to new functions interface 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
36f2e65465 Cloud Function v2 - contexts and interface refactor 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
e17d2d1dc5 Cloud Function v1 - contexts and service account interface refactor 2025-10-23 15:50:17 +02:00
Julio Castillo
772d064e1c Skip IAM grants for service agents that are not created on API activation (#3448) 
* Skip IAM grants for service agents that are not created on API activation

* Fix tests
 2025-10-21 14:31:32 +00:00
Julio Castillo
367184561b Few more typos 2025-10-21 15:13:51 +02:00
Julio Castillo
8598496f7a Fix typo 2025-10-21 14:45:53 +02:00
Julio Castillo
792003ff97 Remove Netsec Authz Service Agent (#3445) 
* Remove Netsec Authz Service Agent

* fix tests
 2025-10-20 19:36:03 +00:00
Luca Prete
64738a1808 Add Agent Engine module. (#3429) 2025-10-20 17:02:39 +02:00
Julio Castillo
48f6b4cd49 Add PAM support (#3438) 
* PAM first pass

* Add factory and extend to organization

* Extend to project, add examples

* Add additionalProperties to all objects

* Fix boilerplate

* Expose pam_entitlements to project-factory

* Fix readme

* Move entitlements to second folder/project pass

* extend tests

* Fix readme

* Remove timeouts from inventories
 2025-10-20 12:50:37 +00:00
Vannick Trinquier
30f46f09d6 Apply alerts and log based metrics after log buckets creation (#3442) 2025-10-20 06:13:42 +00:00
Ludovico Magnocavallo
4113da128b Support resource-level factories config in project factory module and FAST stages (#3440) 
* support resource-level factories in project factory module

* align folder and project schemas across modules and fast

* schema docs
 2025-10-18 10:41:19 +00:00
Julio Castillo
1566711c3a Add service agent outputs to folder and organization (#3436) 
* Add service agent outputs to folder and organization

* Fix tests
 2025-10-17 17:23:08 +02:00
lcaggio
9bbd453024 bigquery-connection module (#3423) 
Implement bq-connection module
 2025-10-16 15:15:36 +00:00
Taneli Leppä
7c6211a494 bigquery-dataset: fix issues (#3425) 
* bigquery-dataset: add missing return_type to routines, fix view schema
encode, add dependency between routines and views

* Fix test.

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-10-16 13:12:23 +00:00
Simone Ruffilli
5be136e2ea Always use local.project_id in net-vpc 2025-10-16 14:37:07 +02:00
Ludovico Magnocavallo
8e8be1eda5 Support CIDR range sets in firewall modules context (#3424) 2025-10-16 09:01:05 +00:00
Simone Ruffilli
509b715a09 Adds network_id to net-vpc outputs (#3421) 
* Adds network_id to net-vpc outputs

* Fixes description
 2025-10-16 09:44:33 +02:00
Ludovico Magnocavallo
45d4674ae8 net-vpn-ha (#3420) 2025-10-16 09:08:17 +02:00
Ludovico Magnocavallo
7c920d7d35 Add support for context to net-lb-int net-vpc-firewall and net-vpc module (#3419) 
* net-lb-int

* net-vpc-firewall

* net-vpc

* net-vpc
 2025-10-16 05:54:14 +00:00
Ludovico Magnocavallo
ecdc248f3f Add support for context to net-cloudnat, net-firewall-policy modules (#3414) 
* net-cloudnat

* net firewall policy
 2025-10-15 13:59:51 +02:00
Julio Castillo
9c61b1c30c Make SSM gitignores a list (#3413) 
Fixes #3395
 2025-10-15 11:35:44 +02:00
Ludovico Magnocavallo
6e02fd1136 Add support for context to DNS modules (#3412) 
* dns-response-policy

* add context to dns modules
 2025-10-14 16:07:29 +00:00
Wiktor Niesiobędzki
5bc9d831be Pass deletion_protection to secondary instance 2025-10-13 18:58:52 +02:00
Wiktor Niesiobędzki
9f2beb1ee6 Use fixture custom role for modules/project tests 2025-10-13 18:58:52 +02:00
Wiktor Niesiobędzki
849e856437 Use email from variables in tests 2025-10-13 18:58:52 +02:00
Wiktor Niesiobędzki
6673cba773 Fix provider failure when appling example 2025-10-13 18:58:52 +02:00
Wiktor Niesiobędzki
b10d31ef98 Add unique suffix to custom role 2025-10-13 18:58:52 +02:00
Ludovico Magnocavallo
6045cf6ae2 Add support for contexts to compute-vm module (#3406) 2025-10-13 16:54:13 +02:00
Julio Castillo
9b9ad76ced Update gke-hub module to use new Policy Controller API (#3332) 
* Update gke-hub to use new Policy Controller API

Fixes #3287

* Use same config format for servicemesh

* remove useless trys

* use ternaries as in the rest of the repo

* Update docs and fix tests

* Update variables

* Bump tofu version

* Bump terraform version 1.12
 2025-10-13 09:47:39 +02:00
Ludovico Magnocavallo
8749683850 fix incorrect cloudservices agent email for global universe (#3402) 2025-10-12 11:13:50 +00:00
Ludovico Magnocavallo
7b70177459 add context to bigquery module (#3388) 2025-10-07 07:57:42 +00:00
Nishant Raghav
81c7213f92 feat(bigquery-dataset): add optional schema support for views (#3377) 
* feat: add optional schema to BigQuery views for descriptions

* feat: add schema support for view definitions in BigQuery dataset module

* fix: encode schema as JSON for BigQuery views

* feat: add population schema and update query for population view in BigQuery dataset

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-06 05:40:39 +00:00
Ludovico Magnocavallo
07d7a85da1 Lightly refactor service agents locals in project module (#3380) 
* lightly refactor project module service agent locals

* remove debug block

* tfdoc

* revert templatestring to format for universe kms

* reinstate moved block
 2025-10-05 10:25:04 +00:00
Ludovico Magnocavallo
4db29a48eb allow forcing jit service agents generation for universe (#3378) 2025-10-05 10:17:57 +02:00
Ludovico Magnocavallo
d1fbed59d2 allow project id with universe prefix in project module (#3376) 2025-10-04 11:57:27 +02:00
Ludovico Magnocavallo
43a2c8bce3 fix service account module datasource when universe is set (#3375) 2025-10-04 10:37:29 +02:00
Julio Castillo
66fac180a9 Fix admin_approval field access in VPC-SC module (#3374) 2025-10-03 17:10:38 +00:00
Vannick Trinquier
cfe2e21ce7 feat: add support for SCC Custom Security Health Analytics module in … (#3372) 
* feat: add support for SCC Custom Security Health Analytics module in organization, folder and project modules

* fix: update description and docs

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-10-03 13:47:50 +02:00
Ram J A
5fb76628f6 Adding support for managed connection pooling in CloudSQL (#3365) 
* added support for managed connection pooling for postgres in cloudsql

* updated readme.md and fixed formatting in variables.tf

* changed variable declaration to handle defaults and resource to remove redandent null check

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-10-03 09:32:08 +00:00
Ludovico Magnocavallo
08ccec3922 Make project id optional in GCS module (#3369) 
* make project id optional in GCS module

* tfdoc
 2025-10-02 16:23:23 +00:00
kovagoadam
505ee02fef Add support for billing export in 0-org-setup (#3347) 
* Add support for billing export in 0-org-setup

* Merge branch 'master' into add-billing-export-support

* Refactored billing export with adding support for bigquery_datasets in project_factory

* Renamed bigquery_dataset to datasets

* Fixed defaults.schema.md

* Fixed default.schema.md again

* Cleanup md's

* Fixed boilerplate

* Fixed JSON schema

* reword README, rename project file

* Moved dataset_id to the key of the map

---------

Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-01 10:12:45 +00:00
Patrick Lubach
9651e39e17 Add custom error response policy for route rules to external application load balancer module. (#3353) 
* feat: Add custom_error_response_policy support for route_rules

* feat: Add custom_error_response_policy support for route_rules

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-09-27 07:38:13 +00:00
kovagoadam
c334e3c60f Fixed small typo in project-factory module with log-buckets (#3357) 
* Fixed small typo in project-factory module

* Add log_analytics and retention to log_buckets
 2025-09-27 07:21:48 +00:00
Ludovico Magnocavallo
90ee0ccf12 Expose project factory stage defaults via a YAML file (#3354) 
* initial implementation

* README

* tfdoc
 2025-09-24 09:59:11 +00:00