kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,789 Commits 1 Branch 1 Tag
bcca9e44ac58d81dadfc80289fa6bc43d598cf7a
Commit Graph

2653 Commits

Author SHA1 Message Date
Ludovico Magnocavallo
cafb8f8aec Revert "Add support for project templates to projects variable in project fac…" (#3499) 
This reverts commit ecbf890889.
 2025-11-03 11:35:29 +01:00
Ludovico Magnocavallo
ecbf890889 Add support for project templates to projects variable in project factory module (#3498) 
* support project template in projects variable

* variable defined projects go through normalization too
 2025-11-03 09:53:14 +00:00
Ludovico Magnocavallo
8bfc3cf579 Pass email addresses context to organization module in stage 0 (#3496) 
* pass email addresses context to organization module in stage 0

* depend essential contacts on org policy resource
 2025-11-03 08:43:15 +00:00
Ludovico Magnocavallo
0a2cc758ac Essential contacts in schemas, and email context substitutions (#3495) 
* modules

* fast

* duplicate diff

* fix contacts in FAST stage 0 datasets, update contacts in YAML schemas
 2025-11-03 08:53:29 +01:00
Ludovico Magnocavallo
f9f015a692 Implement precondition check in project factory to ensure declared templates exist (#3493) 
* pf template check

* tfdoc

* test inventories
 2025-10-31 15:32:33 +00:00
Ludovico Magnocavallo
90b6e312d3 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-30 16:55:28 +00:00
Ludovico Magnocavallo
c765043c5c add the self project key to service account namespaces (#3490) 2025-10-30 16:42:13 +00:00
Ludovico Magnocavallo
b9f9446e38 exclude folder config files from project factory paths (#3488) 2025-10-30 17:25:14 +01:00
Daniel Strebel
6912df21c0 chore: cleanup remove fleet output (#3482) 2025-10-28 11:40:33 +00:00
Wiktor Niesiobędzki
4f2fbcab94 Align agent-engine with interface for Cloud Functions and Cloud Run 2025-10-27 16:14:37 +01:00
Daniel Strebel
c672298834 feat: add GKE fleet property (#3477) 2025-10-27 09:58:46 +01:00
Wiktor Niesiobędzki
2e42c1b548 service_account_config for Cloud Run v2 
Additional changes:
* align vpc-connector interface to Cloud Functions
* split managed and unmanaged resources into separate files, this makes
  easier to introduce further changes
* add support for contexts
* move `vpc_connector` variable to variables.tf for Cloud Functions
* remove `create` from `vpc_connector` in Cloud Functions as it was
  sharing the meaning with `vpc_connector_create`
 2025-10-27 08:03:53 +01:00
Ludovico Magnocavallo
3801a7c2d1 prep v46.0.0 2025-10-26 16:12:02 +00:00
Ludovico Magnocavallo
b8943cedbc Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-26 15:34:01 +00:00
Ludovico Magnocavallo
43191dbf63 prep v45.1.0 2025-10-26 15:03:03 +00:00
Wiktor Niesiobędzki
6554d18e35 Deprecate cloud-run module 2025-10-26 15:51:46 +01:00
Ludovico Magnocavallo
7b6c152755 Implement proper validation for tag value names in schema (#3470) 
* implement proper validation for tag value names in schema

* fix unrelated typos surfaced by new spell check
 2025-10-26 13:35:56 +01:00
Ludovico Magnocavallo
97596a0e8b Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-26 11:19:18 +00:00
Wiktor Niesiobędzki
7fe999562a codespell fixes 2025-10-26 11:56:41 +01:00
Wiktor Niesiobędzki
269e47a565 Improve linting and fix agent-engine module name 2025-10-26 11:56:41 +01:00
Ludovico Magnocavallo
56b213a047 add fourth folder level to project factory module (#3467) 2025-10-26 10:34:02 +01:00
Ludovico Magnocavallo
6fafdc8780 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-25 08:08:22 +00:00
Wiktor Niesiobędzki
dc8a67b83a yamllint modules 2025-10-24 13:11:17 +02:00
Simone Ruffilli
b13ccfe691 Use context in ilb routes (#3462) 
* Use context in ilb routes

* Tests context
 2025-10-24 11:06:54 +02:00
Viliam Pucik
bc31714f68 Fix identity handling in service perimeter when identity is null (#3461) 2025-10-24 07:00:06 +02:00
Ludovico Magnocavallo
4bf4047017 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-23 14:51:14 +00:00
Wiktor Niesiobędzki
8080192c39 Dont use provider functions, because OpenTofu doesnt like them 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
d9029e47a0 VPC Connector alignment to Cloud Run v2 + contexts 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
d1f257bcb9 align project-templates to new functions interface 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
36f2e65465 Cloud Function v2 - contexts and interface refactor 2025-10-23 15:50:17 +02:00
Wiktor Niesiobędzki
e17d2d1dc5 Cloud Function v1 - contexts and service account interface refactor 2025-10-23 15:50:17 +02:00
Ludovico Magnocavallo
b0bc896a68 Allow null project id in service account module when reusing service account (#3452) 
* allow null project id for service account reuse

* fix pf
 2025-10-22 16:51:06 +00:00
Simone Ruffilli
de8ebefe17 Start the deprecation process of the old networking stages (#3451) 
This PR renames `2-networking-foo` stages to `2-networking-legacy-foo` - including references of stages in docs and tests.

**Breaking Changes**

```upgrade-note
`fast/stages/2-networking-a-simple`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-b-nva`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-c-separate-envs`: The stage is being deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
`modules/net-vpc-factory`:  The module has been deprecated, and superseded the `2-networking` FAST stage, introduced in #3435 
```
 2025-10-22 16:31:14 +02:00
Ludovico Magnocavallo
7ea9612b07 Allow skipping data source in service account module (#3450) 
* test implementation

* wip

* service account reuse

* fix fast stage test

* revert cicd changes

* remove unused dep

* add comment on extra condition
 2025-10-22 13:04:00 +02:00
Ludovico Magnocavallo
7b272da6b6 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-21 18:38:50 +00:00
Julio Castillo
772d064e1c Skip IAM grants for service agents that are not created on API activation (#3448) 
* Skip IAM grants for service agents that are not created on API activation

* Fix tests
 2025-10-21 14:31:32 +00:00
Julio Castillo
367184561b Few more typos 2025-10-21 15:13:51 +02:00
Julio Castillo
8598496f7a Fix typo 2025-10-21 14:45:53 +02:00
Ludovico Magnocavallo
a4cc7cd979 Align schemas (#3447) 
* enforce schema uniqueness

* schemas

* fix tests
 2025-10-21 14:03:40 +02:00
Vannick Trinquier
c60ae3652a Adding hardened datasets for preventive and detective Compliance Controls (#3410) 
* Adding hardened datasets for preventive and detective Compliance Controls in stage 0 and stage 1 VPC-SC

* Move observability to factory file

* Update documentation

* Update local variable for use

* Update observability factory to use other module

* Add raw diagram file for hardened datasets

* Retrofit change

* Rename log_buckets context variable to be consistent across modules

* Update stage 0 documentation to mention hardened dataset

* Update customer ids list

* Update documentation, path to schema add ID to access level

* Comment organization policy gcp.resourceLocation by default

* Prevent duplicate key error by merging principal roles

* Adding ngfw roles files in hardened datasets

* Update script to validate files differences to support folder and datasets

* Format duplicate-diff python script

* Remove .config.yaml from duplicates

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-10-21 10:34:25 +00:00
Julio Castillo
b8aa4b5578 Merge branch 'master' into fast-dev 2025-10-21 08:14:42 +02:00
Julio Castillo
792003ff97 Remove Netsec Authz Service Agent (#3445) 
* Remove Netsec Authz Service Agent

* fix tests
 2025-10-20 19:36:03 +00:00
Ludovico Magnocavallo
32ca4498ad Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-20 17:56:31 +00:00
Luca Prete
64738a1808 Add Agent Engine module. (#3429) 2025-10-20 17:02:39 +02:00
Ludovico Magnocavallo
6fe142608d fix merge 2025-10-20 13:59:18 +00:00
Ludovico Magnocavallo
ec09414823 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-20 13:58:44 +00:00
Julio Castillo
48f6b4cd49 Add PAM support (#3438) 
* PAM first pass

* Add factory and extend to organization

* Extend to project, add examples

* Add additionalProperties to all objects

* Fix boilerplate

* Expose pam_entitlements to project-factory

* Fix readme

* Move entitlements to second folder/project pass

* extend tests

* Fix readme

* Remove timeouts from inventories
 2025-10-20 12:50:37 +00:00
Ludovico Magnocavallo
a4f9924680 Merge remote-tracking branch 'origin/master' into fast-dev 2025-10-20 06:33:53 +00:00
Vannick Trinquier
30f46f09d6 Apply alerts and log based metrics after log buckets creation (#3442) 2025-10-20 06:13:42 +00:00
Ludovico Magnocavallo
ff71c9f1a3 fix pf merge 2025-10-18 14:30:57 +00:00