kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,466 Commits 1 Branch 1 Tag
7fe999562a3f9c79f429348b41befc18cb7932a0
Commit Graph

2452 Commits

Author SHA1 Message Date
apichick
077d8719dd Added default compute network tier to project module (#3150) 2025-06-10 21:44:38 +00:00
apichick
108258746b Added network tier to network interfaces in compute-vm module (#3151) 2025-06-10 23:26:44 +02:00
Ludovico Magnocavallo
3c38bc643e add KMS keys interpolation to project factory (#3145) 2025-06-10 10:24:25 +02:00
apichick
12b206a72f Added backend preference to global application load balancers (#3139) 2025-06-10 06:49:47 +00:00
Julio Castillo
df0ed1a73c Fix #3142 (#3144) 2025-06-10 08:08:44 +02:00
apichick
a544c542c2 Fixed mistake in net-vpn-ha module docs (#3143) 2025-06-09 21:45:18 +02:00
Wiktor Niesiobędzki
29c144ac1c Improve SWP transparent gateway example 2025-06-09 09:43:23 +02:00
apichick
665641ba7d Cloud Run with IAP recipe (#3129) 
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-06-08 12:51:08 +00:00
Krzysztof Kluska
6923c2bd1e Return instance ID not IP address (#3137) 
Return correct value for cloudsql primary instance id
 2025-06-06 11:21:34 +00:00
Wiktor Niesiobędzki
aecc4d53b9 Create random passwords only when needed, use write-only attribute for passwords 2025-06-05 16:28:58 +02:00
Jacek Jabłoński
e6ec5de733 fix additional pod networks config creation in GKE node pool (#3134) 
* fix additional pod networks config creation

* fix doc

* Replicate change in gke stage

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-06-05 11:41:51 +00:00
Julio Castillo
77244e9bd1 Add explicit errors when VPC-SC perimeters reference undefined directional policies (#3133) 
* Add explicit errors when VPC-SC perimeters reference undefined directional policies

* Fix try calls

* Update defaults
 2025-06-04 20:50:33 +02:00
apichick
d913a02a7c Added multi-region API Gateway recipe, that was removed by accident (#3128) 2025-06-01 11:26:16 +00:00
Julio Castillo
a5b786c2e0 Interpolate egress_to resources in enforced perimeter config (#3127) 2025-05-31 18:11:07 +02:00
Ludovico Magnocavallo
6b04ce769d Allow multiple types in JSON schema docs tool (#3126) 
* allow multiple types in JSON schema docs tool

* support pattern

* support pattern
 2025-05-31 11:58:20 +02:00
Simone Ruffilli
8a7c796ca6 Document x-referencing HCs in net-lb-int (#3125) 
Adds an extended description to var.health_check to prevent terraform errors being triggered when x-referencing HCs between two net-lb-int.
 2025-05-30 16:34:30 +00:00
Ludovico Magnocavallo
e391a3ff75 Allow explicit definition of automation prefix in project factory (#3124) 
* Allow explicit definition of automation prefix in project factory

* update schema doc
 2025-05-30 14:30:53 +02:00
Julio Castillo
a4e157a237 Expose private_endpoint_enforcement_enabled in gke modules (#3119) 2025-05-29 12:33:03 +02:00
Julio Castillo
271942f2ed Bump Terraform to 1.11 (#3120) 
* Bump Terraform version to 1.11

* Update workflows
 2025-05-29 11:11:39 +02:00
Jai Srivastav
41eaeb8ea0 Remove default values for access_config.ip_config for gke cluster modules (#3083) 
* Change default values for authorized_ranges from {} to null and
gcp_public_cidrs_access_enabled from false to null in the
access_config.ip_access variable. This ensures the dynamic
master_authorized_networks_config block is properly
conditional on user input.

Previously, these fields would never be null due to their
default values, causing the block to always be initialized
even when users didn't intend to configure authorized networks.

* remove explicit null

* Remove all defaults for access_config.ip_access. Fix permadiff.

* Fix tests

* Swap try with coalesce

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-05-28 20:07:36 +00:00
Maciej Sikora
ae5c12a2a3 adds revision label (#3117) 
* adds revision label

* adds revision label
 2025-05-28 18:32:06 +02:00
Ludovico Magnocavallo
d4a9cafda4 add support for binary authorization policy to cloud function v2 module (#3116) 2025-05-28 17:01:42 +02:00
Ludovico Magnocavallo
b9ea8a6c26 Allow creation of regional templates in compute-vm module (#3114) 
* allow creation of regional templates in compute-vm module

* tfdoc

* fix blueprint
 2025-05-27 14:18:40 +02:00
Ludovico Magnocavallo
8af9b4c845 Allow creating disks with no name in compute-vm (#3113) 
* allow creating disks with no name

* update template example

* tfdoc
 2025-05-27 07:19:13 +00:00
Ludovico Magnocavallo
7ce4381ac3 add support for service agent expansion to project factory IAM (#3112) 2025-05-24 12:33:20 +02:00
Alexey Stepanenko
ddfc88ffed Add option to specifi any port on https protocol (#3105) 
Net app lb int support any port at https protocol also.

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-05-24 06:31:17 +00:00
Ludovico Magnocavallo
e38a82f36f Support iam_sa_roles in project factory service accounts (#3110) 
* support iam_sa_roles to project factory service accounts

* README
 2025-05-22 08:22:31 +00:00
Julio Castillo
1eeaf21b14 Prep release 40.1.0 2025-05-21 16:20:42 +02:00
Julio Castillo
94cdce4467 Add fast_version.txt to FAST stages (#3107) 
* Add fast_versions.txt file

* Fix versions.tf module path

* Fix linter
 2025-05-21 15:10:57 +02:00
Ludovico Magnocavallo
4195c3a5af Revert "Make automation project in project factory module optional (#3091)" (#3106) 
This reverts commit 33493b3597.
 2025-05-21 15:01:39 +02:00
Ludo
e4f83431bc prep v40.0.0 2025-05-21 10:25:45 +02:00
Ludo
4a66fbf680 prep v39.2.0 2025-05-21 09:23:49 +02:00
apichick
a5895d4e7c Added auto-provisioning-locations to gke-cluster-standard module (#3103) 2025-05-20 15:42:03 +00:00
Maciej Sikora
ece9887050 feat: enables blue-green upgrades (#3102) 2025-05-20 14:43:04 +00:00
Luca Prete
13a236bca2 Project Factory: fix reference to automation SAs in IAM block for service accounts (#3100) 
* PF: fix reference to automation SAs in IAM block in service accounts for PF

* add test

---------

Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Ludo <ludomagno@google.com>
 2025-05-20 14:01:50 +02:00
apichick
bf2814653e Simplify Cloud SQL backup enablement logic 2025-05-20 11:24:18 +00:00
Ludovico Magnocavallo
2a5e5833a9 Fix net vpc firewall module schema (#3099) 
* fix ports in net vpc firewall module schema

* default ports to []
 2025-05-20 10:59:34 +02:00
Luca Prete
33493b3597 Make automation project in project factory module optional (#3091) 2025-05-20 08:19:58 +02:00
Maciej Sikora
2e3335630a Enable multi-network GKE (#3096) 
* feat: enable multi networking feature

* enable multi nerworking

* enable multi nerworking

* fmt

* regenerate docs

* feat: enables multinetwork in autopilot clusters
 2025-05-19 16:43:59 +00:00
Ludovico Magnocavallo
7cf936dc87 Enable context replacements for IAM principals in project factory module (#3094) 
* enable context replacements for iam principals in pf module

* test changes
 2025-05-19 11:57:26 +00:00
6uellerBpanda
c0afa55b3b feat(gke): add kubelet_readonly_port_enabled (#3092) 
Thanks for this!
 2025-05-19 11:07:15 +02:00
Ludovico Magnocavallo
e50b02d404 Add support for additive perimeter resources to vpc-sc module (#3093) 
* add support for additive perimeter resources

* FAST stage variable
 2025-05-19 11:05:05 +02:00
Ludovico Magnocavallo
212e587f77 Fix permadiff in FAST bootstrap IAM (#3089) 
* Add ability to optionally update Cloud Run job containers outside Terraform.

Co-authored-by: Luca Prete <lucaprete@google.com>

* bug: mark policy_controller as optional (#3086)

* bug: mark policy_controller as optional

* Fix documentation

---------

Co-authored-by: Julio Castillo <jccb@google.com>

* fix bootstrap permadiff

* inventory

* inventory

---------

Co-authored-by: Luca Prete <preteluca@gmail.com>
Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Falcon Taylor-Carter <falconertc@gmail.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-05-16 09:10:39 +02:00
Falcon Taylor-Carter
3a62175918 bug: mark policy_controller as optional (#3086) 
* bug: mark policy_controller as optional

* Fix documentation

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-05-15 16:16:13 +00:00
Luca Prete
e937a562c7 Add ability to optionally update Cloud Run job containers outside Terraform. 
Co-authored-by: Luca Prete <lucaprete@google.com>
 2025-05-10 15:36:34 +02:00
Julio Castillo
7ceb814986 VPC SC module refactor (#3062) 
* Remove bridge perimeters

* Update FAST stages

* Allow project ids in perimeter definitions

* Preserve order order for ingress/egress policies

* Use CAI

* Use CAI

* Fix tests
 2025-05-09 14:37:03 +02:00
Julio Castillo
ac2193082d Merge branch 'master' into fast-dev 2025-05-09 14:23:43 +03:00
Viliam Pucik
2ce8363812 AlloyDB read poll support and various usability fixes (#3061) 
* AlloyDB read poll support and various usability fixes

* Added support for read poll instances.
* Added support for public (outbound) IPs.
* Added new arguments: `machine_type`, `skip_await_major_version_upgrade`, and `subscription_type`.
* Added outputs for key cluster attributes, including ID and name.
* Improved input variable validations and simplified configurations.
* Fixed bug where AlloyDB user accounts always had null passwords.
* Resolved Terraform state drift issues for `network_config` and `psc_config`.
* Fixed `continuous_backup_config` always being implicitly or explicitly enabled.
* Fixed `automated_backup_policy` and `maintenance_update_policy`, which do not support non-zero minutes, seconds and nanos.
* Fixed various typos.
* Aligned the format of test examples.

* Fixed invalid condition: authorized external networks require enabled public IP, however enabled public IP can have empty authorized external networks

* Formatting

* Fix PSA block

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-05-09 13:03:58 +02:00
Julio Castillo
54b444f812 Merge branch 'master' into fast-dev 2025-05-09 12:44:17 +03:00
Charles Salmon
ee468514b0 [cloud-run-v2] Add ability to deploy OpenTelemetry Collector sidecar (#3071) 
* [cloud-run-v2] Add ability to deploy OpenTelemetry Collector sidecar

- Adds `depends_on` flag to container definition
- Adds `port` to HTTP liveness & startup probes

* fix: add port to unmanaged resource's startup & liveness probes

* fix: add copyright boilerplate

* Fix README

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-05-08 09:05:58 +00:00