kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,800 Commits 1 Branch 1 Tag
8ab982cd245aea1b97c1f18226342bdd1b679e0a
Commit Graph

2033 Commits

Author SHA1 Message Date
Joshua Wright
325a997d79 Add Alerts, Logging, Channels Factories (#2758) 
* WIP: Logging Alerts Factory

* Implement Logging Alerts on Remaining Modules

* Documentation & FMT

* Convert To Multiple Factories

* Correct Project

* Update Documentation

* Update modules/project/alerts-factory.tf

Co-authored-by: Julio Castillo <jccb@google.com>

* Update fast/stages/0-bootstrap/data/logging-metrics/compliance.yaml

Co-authored-by: Julio Castillo <jccb@google.com>

* Update Tests, Resources

* tests

* Fix Tests

* Fix formatting

* Reformat metric filters

* Formatting, reordering, and small fixes

* Bring back alerts and metrics documentation

* Revert change bootstrap outputs.tf

* Fix project notification channel vars and factories

* Fix vars and factory for logging alerts

* Complete alert variable and factory

* Reorder fields

* Update readme

* Reorder variables

* Add schemas, update README, and fix some types

* Remove default alerts email from project and project-factory

* Move observability factory to a single file

* Add outputs to project module

* Add factories_config to PF data_defaults and data_overrides

* Reorder PF field processing

* Revert fast/ to master.

We'll do observability stuff in a separate PR

* Remove observability from FAST

* Remove new FAST tests

* Remove unused local

* Fix tests

---------

Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-01-05 19:49:20 +00:00
Julio Castillo
c73f912d43 Fabric e2e fixes (#2791) 
* Try to fix fabric e2e tests. Update service agents

* Fix typo

* Fix syntax

* Delay PSA creation until service agents have roles assigned

* Fix tests
 2024-12-31 15:25:36 +01:00
Wiktor Niesiobędzki
c176ea16be Make PSA connection more robust 2024-12-26 16:37:24 +01:00
Ludovico Magnocavallo
94c5e630e7 fix validation message (#2784) 2024-12-25 08:25:07 +01:00
Harvey Liu
59e3c87034 Update net-lb-app-ext security_settings variables (#2783) 
* updates

- set client_tls_policy as optional
- set subject_alt_names as optional

* update

run cmd ./tools/tfdoc.py modules/net-lb-app-ext to fix linting error
 2024-12-25 07:52:31 +01:00
simonebruzzechesse
bf2995d94b Fix bindplane cos module (#2781) 
Fix bindplane cos module
 2024-12-23 10:37:09 +01:00
Sergio Rodriguez
1e4a3a4bb8 an empty ssl_certificates list should be set to null (#2780) 
An empty `ssl_certificates` list will conflict with a user-defined
`certificate_manager_certificates` value, so exclude it.
 2024-12-21 10:26:29 +00:00
Julio Castillo
f1acc92864 Add support for log views and log scopes (#2776) 
* Add views and tags to logging bucket

* Add logs scopes to project

* Add missing inventory
 2024-12-18 18:29:44 +01:00
Wiktor Niesiobędzki
3337f0be0e Fix for perma-diff when using PSC NEGs. 
Provider issue: https://github.com/hashicorp/terraform-provider-google/issues/20576
 2024-12-17 14:28:48 +01:00
Wiktor Niesiobędzki
6d51c8da4d Use separate versions.tofu for OpenTofu constraints 2024-12-17 12:29:04 +01:00
Ludovico Magnocavallo
0fa257e6b1 Support customizable resource names in FAST stage 0 (#2768) 
* support customizable resource names in FAST stage 0

* tfdoc

* tflint

* remove comment

* use object type

* tfdoc

* bump tf version

* bump terraform version in versions files

* tf version in ci

* trigger workflow
 2024-12-16 17:46:34 +01:00
Ludovico Magnocavallo
d86b8d565c Refactor GKE cluster modules access configurations, add support for DNS endpoint (#2761) 
* stub

* gke standard module and tests

* blueprints

* tfdoc

* autopilot

* blueprints

* tfdoc

* gke hub module examples

* dataproc and gke fixture
 2024-12-12 11:02:24 +01:00
Ludovico Magnocavallo
d59d182456 ignore ssl certificates if none are passed in net-lb-app-int module (#2764) 2024-12-12 10:37:37 +01:00
Luca Prete
07e0fb895b Update net-vlan-attachment module readme (#2757) 
* Update net-vlan-attachment module configuration with the correct link-local IP addresses and interconnect self-link formats.

* fix example formatting

---------

Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-12-11 08:00:28 +00:00
Jason Steenblik
90360c591e Add confidential compute support to google_dataproc_cluster in the da… (#2736) 
* Add confidential compute support to google_dataproc_cluster in the dataproc module

* fix parent id lookup for networking and security stages (#2744)

* Add optional automated MD5 generation in net-vlan-attachment module (#2745)

* Bump path-to-regexp and express in /blueprints/gke/binauthz/image (#2749)

Bumps [path-to-regexp](https://github.com/pillarjs/path-to-regexp) to 0.1.12 and updates ancestor dependency [express](https://github.com/expressjs/express). These dependencies need to be updated together.


Updates `path-to-regexp` from 0.1.10 to 0.1.12
- [Release notes](https://github.com/pillarjs/path-to-regexp/releases)
- [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md)
- [Commits](https://github.com/pillarjs/path-to-regexp/compare/v0.1.10...v0.1.12)

Updates `express` from 4.21.1 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.21.1...4.21.2)

---
updated-dependencies:
- dependency-name: path-to-regexp
  dependency-type: indirect
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Add ability to autogenerate md5 keys in net-vpn-ha (#2748)

* Add ability to optionally generate MD5 secrets in VPN module

* Add ability to autogenerate MD5 keys in net-vpn-ha module

* restore missing output

* fix test counts

---------

Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>

* update changelog

* Bump path-to-regexp and express (#2752)

Bumps [path-to-regexp](https://github.com/pillarjs/path-to-regexp) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.

Updates `path-to-regexp` from 0.1.10 to 0.1.12
- [Release notes](https://github.com/pillarjs/path-to-regexp/releases)
- [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md)
- [Commits](https://github.com/pillarjs/path-to-regexp/compare/v0.1.10...v0.1.12)

Updates `express` from 4.21.1 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.21.1...4.21.2)

---
updated-dependencies:
- dependency-name: path-to-regexp
  dependency-type: indirect
- dependency-name: express
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* add support for routing mode to net-swp module (#2751)

Co-authored-by: Julio Castillo <jccb@google.com>

* remove default location in tag value - cloud-run-v2 tags.tf (#2755)

The Parent resource has a default to europe-west1 when it should be for the resource block from where the cloud run actually is.

Changed to use the var.region instead

* Add path_template_match and path_template_rewrite support to net-lb-app-ext (required for React apps for example).

* Add rest of load balancers.

* Add path_template_match and path_template_rewrite support to internal load balancers

* Add disk encyption key to the google_compute_instance_template - Sovereign support (#2750)

* add disk encyption key to the google_compute_instance_template

* add a condition to the kms_key_self_link

* use dynamic variable for disk_encryption_key

* remove the getpip from the repo

---------

Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>

* Add support for password validation policy to cloudsql module (#2740)

* add support for password validation policy to cloudsql module

* fix defaults

* update changelog

* bump provider version constraint

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Luca Prete <preteluca@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Matthew Callinan <47421139+Mattible@users.noreply.github.com>
Co-authored-by: Taneli Leppä <taneli@google.com>
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Kovács Dávid <david-kovacs@t-systems.com>
 2024-12-10 16:39:48 +01:00
Ludovico Magnocavallo
f3b14f5e69 Add support for password validation policy to cloudsql module (#2740) 
* add support for password validation policy to cloudsql module

* fix defaults
 2024-12-09 09:44:15 +00:00
Kovács Dávid
2defaed545 Add disk encyption key to the google_compute_instance_template - Sovereign support (#2750) 
* add disk encyption key to the google_compute_instance_template

* add a condition to the kms_key_self_link

* use dynamic variable for disk_encryption_key

* remove the getpip from the repo

---------

Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-12-09 10:30:58 +01:00
Wiktor Niesiobędzki
3f86056c78 Add path_template_match and path_template_rewrite support to internal load balancers 2024-12-09 09:32:48 +01:00
Taneli Leppä
c27da296b1 Add rest of load balancers. 2024-12-09 09:32:48 +01:00
Taneli Leppä
73b6088132 Add path_template_match and path_template_rewrite support to net-lb-app-ext (required for React apps for example). 2024-12-09 09:32:48 +01:00
Matthew Callinan
817df69ff8 remove default location in tag value - cloud-run-v2 tags.tf (#2755) 
The Parent resource has a default to europe-west1 when it should be for the resource block from where the cloud run actually is.

Changed to use the var.region instead
 2024-12-09 08:48:23 +01:00
Ludovico Magnocavallo
36b70bd8b8 add support for routing mode to net-swp module (#2751) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2024-12-08 13:26:01 +00:00
Luca Prete
c6c6bbfffa Add ability to autogenerate md5 keys in net-vpn-ha (#2748) 
* Add ability to optionally generate MD5 secrets in VPN module

* Add ability to autogenerate MD5 keys in net-vpn-ha module

* restore missing output

* fix test counts

---------

Co-authored-by: Luca Prete <lucaprete@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-12-06 07:34:56 +00:00
Luca Prete
747b62b1e3 Add optional automated MD5 generation in net-vlan-attachment module (#2745) 2024-12-05 16:55:16 +00:00
Ludovico Magnocavallo
e3cdde35b6 Add support for secret manager config to gke cluster modules (#2741) 
* add secret manager config to gke cluster

* fix variable default
 2024-11-29 09:24:18 +01:00
Rob Rankin
20a1689637 Allow override of GKE Nodepool SA Display Name (#2734) 
* Allow override of Nodepool SA Display Name

* Remove comment

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-11-28 06:47:16 +00:00
simonebruzzechesse
d277c47a35 manage switchover (#2738) 
* manage switchover

* manage switchover
 2024-11-27 16:57:33 +01:00
Luca Prete
9d2b50eceb Add basename to SWP policy rules factory (#2739) 2024-11-27 14:42:32 +00:00
Ludovico Magnocavallo
5e0878903c SWP module refactor (#2737) 
* new swp interface and factory

* outputs

* tests and fixes
 2024-11-27 12:54:59 +00:00
Ludo
477cdc55fd Prepare v36.0.1 2024-11-23 09:38:39 +01:00
Ludo
2552146e69 fix versions 2024-11-22 17:01:02 +01:00
Ludo
a6b0540c38 merge fast-dev 2024-11-22 16:02:23 +01:00
Ludo
c97b6192f5 prepare v35.1.0 2024-11-22 15:54:25 +01:00
Ludo
028721059c Merge remote-tracking branch 'origin/master' into fast-dev 2024-11-22 15:45:35 +01:00
fulyagonultas
be0f2e58b2 enable_private_path_for_google_cloud_services added to CloudSQL (#2726) 
* enable_private_path_for_google_cloud_services added to CloudSQL

* name of the variable changed

* new feature added to the replica as well

* Update simple.yaml enable_private_path_for_google_cloud_services: false
 2024-11-22 13:08:33 +00:00
simonebruzzechesse
2c6bc642d4 fix typo on maintenance config (#2727) 2024-11-22 10:35:45 +01:00
Ludo
a3bffbbcbf Merge remote-tracking branch 'origin/master' into fast-dev 2024-11-22 07:39:09 +01:00
apichick
587edfd8d5 Added min_instances, max_instances, min_throughput and max_throughtpu… (#2706) 
* Added min_instances, max_instances, min_throughput and max_throughtput to connector configuration

* refactor interface, also implement in v1 module

* fix blueprint

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2024-11-21 08:05:12 +00:00
Luca Prete
904cf5a1c3 Allow net-vpc-firewall factory files to be empty (#2719) 2024-11-21 07:41:24 +00:00
Wiktor Niesiobędzki
472c5866c5 Fix not setting user defined password 2024-11-20 10:54:59 +01:00
Tirthankar17
a90fe65b8b Add support for workload_metadata_config in Standard GKE clusters (#2716) 
* Added workload_metadata_config option

* tfdoc

* Update autopilot and nodepool modeules. Generate READMEs

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-11-20 09:36:10 +00:00
Luca Prete
404e5a3b3e Add location to cert-manager issuance config and fix issuance config reference (#2720) 2024-11-19 13:27:11 +01:00
Ludovico Magnocavallo
5af0f90929 Allow setting GCS location default/override in project factory (#2715) 
* allow setting GCS location default/override in project factory

* tflint
 2024-11-18 17:45:52 +01:00
ooshrioo
ef597a30c0 add GPU options to compute-vm module (#2689) 
* add GPU options to comute-vm module

* Fixed tf according ludo's comments

* Added GPU type validation  (by specific values)

* fix validation + README

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-11-18 16:40:38 +01:00
Julio Castillo
8714b7a713 Merge branch 'master' into fast-dev 2024-11-18 15:19:55 +01:00
Julio Castillo
c60d152f4a Add hierarchical namespace support to GCS module (#2712) 
* Add hierarchical namespace support to GCS module

* remove empty iap block from inventories

* Fix tests

* Add new hns inventory

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2024-11-18 11:41:49 +00:00
Wiktor Niesiobędzki
9f7505d061 Allow providing network for Direct VPC access 2024-11-18 10:25:19 +01:00
Julio Castillo
bb65920b4b Merge branch 'master' into fast-dev 2024-11-17 22:01:21 +01:00
Joshua Wright
2676010629 Add Automation Service Accounts Output (#2640) 
* Add Automation Service Accounts Output

* Add Automation Service Accounts Output

* Add Projects Output, Along with Docs

* Fix output

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-11-17 17:29:06 +00:00
Ludo
104306e0c2 Merge remote-tracking branch 'origin/master' into fast-dev 2024-11-17 16:31:59 +01:00