kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
5,890 Commits 1 Branch 1 Tag
c1ab3bf7100c0978833cfa8112e60177767dcdcd
Commit Graph

2077 Commits

Author SHA1 Message Date
Wiktor Niesiobędzki
c1ab3bf710 Remove Service Account key generation 2025-02-18 18:02:38 +01:00
Simon Roberts
642ebfe9e9 Increase the default complexity of Cloud SQL DB passwords (#2886) 
* Increase the default complexity of DB passwords in order to meet password_validation_policy.default_complexity

* Use password_validation_policy.min_length if provided

* Explicitly generate a root_password if not provided

* Use object (password, random_password) for root_password config

* Make root_password non-nullable, and add validation against specifying both a password and `random_password`.
Fix test for stronger password generation.

* Add example for root_password and password_validation_policy

* Rerun tfdoc.py

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-02-18 10:46:29 +00:00
Ludovico Magnocavallo
aee6d1e27a add chain output (#2901) 2025-02-18 07:05:28 +00:00
jacklever-hub24
a8d7d401d6 Add support for locality policies to net-lb-app-ext module (#2898) 
* Fix the missing locality_lb_policy value and add validation for it

* Added variables, dynamic blocks and validation to support locality_lb_policy/ies

* Formatting

* tfdoc generation

* Fix net-lb-app-ext readme

* Fixes for Ludo, coalesce and brevity

* fmt

* Revert null check due to failing tests

---------

Co-authored-by: Jack Lever <jack@thelevers.com.au>
Co-authored-by: Ludo <ludomagno@google.com>
 2025-02-18 06:25:45 +00:00
Wiktor Niesiobędzki
5e31633f34 Release v37.3.0 2025-02-12 13:16:16 +00:00
Wiktor Niesiobędzki
62665f2475 Fix ipv6 and align loadbalancer address types 2025-02-12 14:09:31 +01:00
Ludo
c7262a7a87 prepare v37.2.0 release 2025-02-11 18:15:19 +01:00
Ludovico Magnocavallo
7f2ff08997 Address outstanding load balancer FRs (#2879) 
* fix #2877

* fix #2866

* fixes #2865

* fixes #2865

* moved block

* fix standalone test

* blueprints
 2025-02-11 18:09:02 +01:00
Julio Castillo
3ffe838e06 Add context to organization policiy factories (#2876) 2025-02-10 22:24:01 +00:00
Wiktor Niesiobędzki
58f22ce647 Add prefix to KMS ring, to allow easy recreate 2025-02-10 00:56:19 +01:00
Wiktor Niesiobędzki
7c5b84f33e Add dependency for compute-vm schedule 2025-02-07 12:02:40 +01:00
Julio Castillo
e08698a410 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
3fc7144c4f Update examples and tests 2025-02-07 10:55:05 +01:00
Julio Castillo
e4a1218d46 Bump provider version 2025-02-07 10:55:05 +01:00
Julio Castillo
68a5a701e7 Expose parameters module in org policy variables 2025-02-07 10:55:05 +01:00
Ludo
e5a5aa0196 add toc to dns module readme 2025-02-06 11:59:11 +01:00
Wiktor Niesiobędzki
8a9a5b5237 Disable E2E test for direct VPC Egress 
Resources in subnet are in use for ~1-2h after removal of Cloud Run
instance (see: https://cloud.google.com/run/docs/configuring/vpc-direct-vpc#delete-subnet)

b/332419038
 2025-02-05 09:56:04 +01:00
Ludovico Magnocavallo
a002ead06b Add support for advanced machine features to compute-vm (#2855) 
* add support for advanced machine features to compute-vm

* fix validation

* Update modules/compute-vm/variables.tf

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-01-31 09:27:29 +00:00
HeiglAnna
efa1ef6f7e Add cAdvisor Metrics to Autopilot/Standard GKE Cluster (#2841) 
* Add cAdvisor Metrics to Autopilot/Standard GKE Cluster

* Fix tests

---------

Co-authored-by: AnnaHeigl <85624888+AnnaHeigl@users.noreply.github.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-30 13:29:07 +00:00
Julio Castillo
c73035f4e5 Allow universe-bound projects to exclude services (#2852) 
* Allow universe-bound projects to exclude services

* Update README
 2025-01-30 08:48:58 +01:00
Julio Castillo
29e7669385 Support project creation in different universes (#2848) 
* Support project creation in different universes

* Fix typo

* Revert prefix validation

* Add test

* Call new test

* Do not override project name
 2025-01-29 12:40:41 +01:00
Ludovico Magnocavallo
1009dd248b refactor (#2842) 2025-01-28 10:30:42 +01:00
Ludo
25bacee2e6 prepare for v37.1.0 2025-01-26 10:41:13 +01:00
Julio Castillo
680d68411a Fix versions.tf 2025-01-24 17:05:34 +01:00
Ludo
15c8669188 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-24 16:55:46 +01:00
Julio Castillo
752b77f52e Update module metadata format and prep v36.2.0 (#2837) 
* Update module metadata format and prep v36.2.0

* Fix pattern
 2025-01-24 16:45:17 +01:00
Ludo
fd7292710a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-23 08:51:07 +01:00
frits-v
43e6daca8f fix(certificate-manager): reference dns_authz by fully qualified id (#2833) 2025-01-22 22:49:12 +01:00
Julio Castillo
8a2320311d Add bucket_create to modules/gcs (#2827) 
* Add `bucket_create` to `modules/gcs`

* Create local with bucket name

* Update variable description

* Fix bucket output

* Fix tests

* Fix tests

* Bump OpenTofu to 1.9.0 (needed for multi-var validations)
 2025-01-21 23:48:36 +01:00
frits-v
bb1325403e feat(certificate-manager): add dns_authorizations output (#2830) 2025-01-21 22:14:45 +00:00
Ludo
0b6bcdccf8 prepare v37.0.0-rc2 release 2025-01-18 08:36:26 +01:00
Ludo
98c8697a08 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-18 08:18:05 +01:00
Ludovico Magnocavallo
f646e85301 FAST SWP networking add-on (#2821) 
* prototype implementation, untested

* halfway through refactor

* refactor cas module pool variable

* apply cas module refactor to ngfw fast addon

* untested

* test

* tflint

* tflint

* tfdoc

* fix brainfarts

* tfdoc

* update ca pool type in security stage
 2025-01-18 07:12:40 +00:00
Ludovico Magnocavallo
0a72d26f49 don't create resources for aservice agents not in services (#2820) 2025-01-17 16:55:41 +01:00
Wiktor Niesiobędzki
10cc3d8079 modules/compute-vm end-to-end tests and fixes 2025-01-16 10:54:52 +01:00
Ludo
206fd28419 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-14 17:04:18 +01:00
Julio Castillo
c59470a4fb Update logging_data_access type (#2816) 
* Update logging_data_access variables to use types

* Fix dependencies

* fix schema

* Add missing comma

* Fix try
 2025-01-14 16:00:35 +00:00
Julio Castillo
7eff7b19dc Add iam_by_principals_additive to project, organization and folder modules (#2814) 
* First attempt at iam_by_principals_additive

* Remove validation

* Update IAM ADR

* Apply to organization and project modules

* Update READMEs

* Add tests

* Remove "cycle errors"
 2025-01-14 12:32:19 +00:00
Ludo
d250c4e726 prepare v37.0.0-rc1 2025-01-10 17:09:08 +01:00
Ludo
21045cb333 prepare for v36.1.0 2025-01-10 16:56:01 +01:00
rshokati2
b4abbfe9d0 Add intercepting sinks to the organization and folder modules (#2799) 
* RS-469: add support for intercept child on audit logging

* RS-469: add validation to ensure sink is set to project

* RS-469: add further validation to ensure include_children is also set to true when intercept is selected

* Update README

* RS-469: include optional flag for include and intercept

* RS-469: add intercept feature to folder module

* Fix organization README

* Fix condition

---------

Co-authored-by: Emile Hofsink <72841492+EmileHofsink@users.noreply.github.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-10 10:36:08 +00:00
apichick
1ce9aff3b5 ASN should be optional in router_config variable as it is not necessary if the router is passed and not created by the net-vpn-ha module (#2806) 2025-01-09 14:46:42 +00:00
Julio Castillo
cf173701b6 New tool versions.py to manage versions.tf/tofu (#2803) 
* Add provider_metadata to all modules

* Fix linting version check

* Another way

* Fix syntax

* Add fabric prefix to all provider meta

* Fix linting.yml
 2025-01-09 09:57:48 +01:00
apichick
9723cc2a57 Added BGP priority variable for dedicated interconnect because it was harcoded to 100 and removed default bgp range, so it can be automatically picked up if not specified (#2802) 2025-01-07 18:07:55 +01:00
Joshua Wright
325a997d79 Add Alerts, Logging, Channels Factories (#2758) 
* WIP: Logging Alerts Factory

* Implement Logging Alerts on Remaining Modules

* Documentation & FMT

* Convert To Multiple Factories

* Correct Project

* Update Documentation

* Update modules/project/alerts-factory.tf

Co-authored-by: Julio Castillo <jccb@google.com>

* Update fast/stages/0-bootstrap/data/logging-metrics/compliance.yaml

Co-authored-by: Julio Castillo <jccb@google.com>

* Update Tests, Resources

* tests

* Fix Tests

* Fix formatting

* Reformat metric filters

* Formatting, reordering, and small fixes

* Bring back alerts and metrics documentation

* Revert change bootstrap outputs.tf

* Fix project notification channel vars and factories

* Fix vars and factory for logging alerts

* Complete alert variable and factory

* Reorder fields

* Update readme

* Reorder variables

* Add schemas, update README, and fix some types

* Remove default alerts email from project and project-factory

* Move observability factory to a single file

* Add outputs to project module

* Add factories_config to PF data_defaults and data_overrides

* Reorder PF field processing

* Revert fast/ to master.

We'll do observability stuff in a separate PR

* Remove observability from FAST

* Remove new FAST tests

* Remove unused local

* Fix tests

---------

Co-authored-by: Julio Castillo <jccb@google.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-01-05 19:49:20 +00:00
Julio Castillo
c73f912d43 Fabric e2e fixes (#2791) 
* Try to fix fabric e2e tests. Update service agents

* Fix typo

* Fix syntax

* Delay PSA creation until service agents have roles assigned

* Fix tests
 2024-12-31 15:25:36 +01:00
Wiktor Niesiobędzki
c176ea16be Make PSA connection more robust 2024-12-26 16:37:24 +01:00
Ludovico Magnocavallo
94c5e630e7 fix validation message (#2784) 2024-12-25 08:25:07 +01:00
Harvey Liu
59e3c87034 Update net-lb-app-ext security_settings variables (#2783) 
* updates

- set client_tls_policy as optional
- set subject_alt_names as optional

* update

run cmd ./tools/tfdoc.py modules/net-lb-app-ext to fix linting error
 2024-12-25 07:52:31 +01:00
simonebruzzechesse
bf2995d94b Fix bindplane cos module (#2781) 
Fix bindplane cos module
 2024-12-23 10:37:09 +01:00