kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,719 Commits 1 Branch 1 Tag
ca413b8aa81fbcca4d92e70ab4e17e728efc815c
Commit Graph

832 Commits

Author SHA1 Message Date
Vannick Trinquier
ca413b8aa8 Add support to VPC flow logs for PSC subnet (#3639) 2026-01-12 15:56:14 +07:00
Ludovico Magnocavallo
da29af53c9 Revert "Use additive resource for perimeter resources in vpc-sc module when i…" (#3631) 
This reverts commit a3e09197c7.
 2026-01-08 14:29:40 +01:00
Ludovico Magnocavallo
12d0bbf2fc Revert "fix previous change to vpc sc module (#3629)" (#3630) 
This reverts commit dc35ce15ee.
 2026-01-08 14:28:57 +01:00
Ludovico Magnocavallo
dc35ce15ee fix previous change to vpc sc module (#3629) 2026-01-08 12:53:05 +00:00
Ludovico Magnocavallo
a3e09197c7 Use additive resource for perimeter resources in vpc-sc module when ignore changes is set (#3628) 
* module changes

* fix module
 2026-01-08 12:09:09 +00:00
David Liebert
5374899b36 added support for labels with google_compute_global_address resource (#3622) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2026-01-07 13:19:48 +00:00
ooshrioo
ccad5654d9 Fix workforce identity federation provider configuration (#3626) 
* Fix workforce identity federation provider configuration

Remove redundant 'organizations/' prefix from parent parameter as
var.organization_id already contains the full organization path.

* Update test to match corrected parent parameter

The test expected the redundant 'organizations/' prefix, but the fix
correctly removes this duplication.

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2026-01-07 14:02:13 +01:00
Ludovico Magnocavallo
cb68dfda2a Merge remote-tracking branch 'origin/master' into fast-dev 2026-01-06 08:42:25 +00:00
Suryansh Singhal
ba304518f1 Prevent recreation for key_revocation_action in compute-vm module (#3620) 
* fix(compute-vm): prevent instance recreation for key_revocation_action_type

The `key_revocation_action_type` attribute in the `google_compute_instance`
resource defaults to `NONE` on the provider side.

When this optional attribute was not explicitly set in the module's
`options` variable, it resolved to `null` in the Terraform configuration.
This caused Terraform to detect a change from `null` to `NONE` on every
plan, leading to unnecessary instance recreation.

This change applies `coalesce` to
`var.options.key_revocation_action_type` in the resource definition so
that it defaults to `NONE` when unset, aligning the configuration with
provider behavior and preventing a permadiff.

* updated the regional compute template too with the key_revocation_action_type

* fixed the formatting
 2026-01-05 11:53:47 +01:00
Ludovico Magnocavallo
502d953d03 Merge remote-tracking branch 'origin/master' into fast-dev 2026-01-04 11:23:59 +00:00
Luca Prete
d0d7c64670 Refactor Agent Engine module to support new source based deployments (#3609) 
* Refactor Agent Engine module to support new source based deployments

* Fix linting

* Fix tests

* Fix tests

* Remove generated_pickle line from examples

* Fix indentation

* Delete modules/agent-engine/terraform.atfvars

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2026-01-04 08:11:46 +00:00
Ludovico Magnocavallo
fedf90d25f Add support for pubsub to project factory (#3608) 
* add support for pubsub to project factory

* remove duplicate data access log definitions from folders

* tfdoc

* schemas

* fix example

* add pubsub topics context to org in stage 0
 2025-12-23 10:24:33 +00:00
Ludovico Magnocavallo
a554971563 Merge remote-tracking branch 'origin/master' into fast-dev 2025-12-22 06:36:05 +00:00
Wiktor Niesiobędzki
2687dd2b97 make a test self-link look like a self-link and fix tests 2025-12-19 11:05:25 +01:00
Wiktor Niesiobędzki
73664615a4 Correct test for Direct VPC egress for CFv2 2025-12-19 11:05:25 +01:00
Luca Prete
0ac51b6050 Password for initial_user for AlloyDB is no longer required (#3596) 2025-12-18 11:57:32 +01:00
Luca Prete
c193fb37ee Upgrade Terraform provider to 7.13 (#3600) 2025-12-18 11:29:48 +01:00
Vannick Trinquier
cc24046be8 Add CMEK support to FAST and controls for CMEK encryption (#3556) 2025-12-14 12:14:08 +07:00
Ludovico Magnocavallo
ab0f55216a Add support for descriptive name to projects (#3591) 
* add support for descriptive name to projects

* boilerplate

* fmt
 2025-12-12 09:06:47 +01:00
Ludovico Magnocavallo
7cc12da6b3 Merge remote-tracking branch 'origin/master' into fast-dev 2025-12-10 18:19:11 +00:00
kovagoadam
4e88bec299 Use project numbers in billing budget filter (#3555) 
* Fixed project level billing budget filter

* Moved project_numbers local to concat block

* Fixed with try block

* fix project replacement

* tfdoc

* fix test

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-12-10 17:35:06 +00:00
Ludovico Magnocavallo
66b9106e6e Merge remote-tracking branch 'origin/master' into fast-dev 2025-12-08 08:09:55 +00:00
Wiktor Niesiobędzki
d370121245 move c4* tests to c zone 2025-12-07 15:15:44 +01:00
Julio Castillo
8d51ccd491 Add Direct VPC Egress support to modules/cloud-function-v2 (#3567) 
Fixes #3561
 2025-12-05 18:36:52 +01:00
Roberto Jung Drebes
229b294886 feat(net-lb-app): support Google-Managed IAP and add tests (#3564) 
Updates the  dynamic block in load balancer modules to make OAuth2 client fields optional.
This allows enabling Google-Managed IAP by omitting these fields or passing .
Supports migration path by passing  as per Google documentation.

Added test case  to  to verify configuration.
 2025-12-04 17:49:01 +01:00
Vannick Trinquier
171a2c6690 Add support for CMEK in logging bucket, big query dataset and gke notifications (#3558) 2025-12-04 10:01:32 +00:00
Ludovico Magnocavallo
26d43d8ec5 re-enable project billing association in project factory, extends to folder (#3554) 2025-11-27 20:51:20 +00:00
Wiktor Niesiobędzki
e623c01d83 fix http2 and ssl health-checks for load balancers 2025-11-26 15:20:08 +01:00
Ludovico Magnocavallo
6f8097d2eb Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-24 09:56:12 +00:00
Ludovico Magnocavallo
10e29e1eeb Context improvements: "all service accounts" principal in folder, org, project modules; custom roles in factory condition vars for FAST stage 0 (#3548) 
* iam principalsets

* fix folder

* add custom roles to factory condition vars in stage 0

* project shared vpc IAM
 2025-11-24 08:28:41 +00:00
Wiktor Niesiobędzki
5ee09daddc Update service-agents.yaml 2025-11-24 09:06:24 +01:00
Ludovico Magnocavallo
5bef0064a4 Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-21 07:25:51 +00:00
Vannick Trinquier
b686a6f730 Fix org policy service to be enabled before organization policies applied (#3547) 
* Fix org policy service to be enabled before organization policies applied
 2025-11-21 14:22:17 +07:00
Ludovico Magnocavallo
a2a9be2593 dataplex aspect types module refactor (#3544) 2025-11-20 15:12:16 +00:00
Yashwant Mahawar
b412fafd6c Add backup vault backup plan module (#3536) 
* ft/adding backup vault backup plan module

* ft/adding missing licence

* resource name updated

* corrected the variable sequece in readme.md

* corrected lint error

* corrected lint error

* addressed the comments

* fixing the lint issues

* addressed comments

* updated readme.md, changed sample project id in example

* updated readme.md

* added other resource [managment server, associations, default backup plan]

* new example added in readme

* ft/pass test cases

* fix: change the variables.tf file sequence

* fix: change module versions

* fix: change module versions

* fix: change module versions

* fix: change module versions

* updated varaible structure

* module name in version.tf

* added missing empyt line

* corrected readme.md tests

* remove project id to genric id

* removed extra file

* corrected syntex error

* applied terraform fmt

* fix/lint issue

* changed as per github comments

* Add inventories

---------

Co-authored-by: Yashwant Mahawar <myashwant@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-20 00:18:37 +05:30
Sergey Shcherbakov
844ef0b44f Add optional secondary read pool support to the alloydb module (#3529) 
* Add optinal secondary read pool support to the alloydb module

* Fix formatting

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-11-18 23:15:42 +00:00
Ludovico Magnocavallo
897c6ef8c3 Add support for Workload Identity to project module and project factory (#3531) 
* module-level support

* fast stage 0

* fix inventory, add outputs/tfvars

* wip

* project factory

* pf outputs

* iam templates will be added where ci/cd configs are managed

* fix merge conflicts
 2025-11-17 07:31:21 +00:00
Ludovico Magnocavallo
87ed19bc47 Add support for Workforce Identity to organization module and org setup stage (#3530) 
* module-level support

* fast stage 0

* fix inventory, add outputs/tfvars
 2025-11-17 08:00:30 +01:00
Simone Ruffilli
e44b23111e Adds support for custom learned routes to net-vpn-ha (#3523) 2025-11-11 13:55:23 +00:00
Ludovico Magnocavallo
76eec666ea Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-11 09:10:56 +00:00
apichick
0fd01c6552 Added missing parameters in trigger (#3519) 2025-11-11 06:40:32 +00:00
Ludovico Magnocavallo
fc7aa71ada Add support for KMS key creation to project factory (#3518) 
* initial implementation

* context

* tfdoc

* add support for autokey to projects

* fix typo
 2025-11-11 07:23:50 +01:00
Vannick Trinquier
15a5486a1e Add hardened controls for gke, networking and monitoring alerts recommended in CIS Benchmarks for GCP (#3484) 2025-11-10 11:06:25 +00:00
Ludovico Magnocavallo
ba77c6170c Allow configuring data access logs from org/folder/project schemas (#3516) 
* modules and FAST support

* module tests

* fast stage 0 dataset

* tfdoc
 2025-11-10 10:19:21 +00:00
Ludovico Magnocavallo
7e32058010 [WIP] Add support for KMS autokey (#3515) 
* wip

* folder module

* project factory schema

* remove spurious project template

* gcs and compute-vm modules

* variable order
 2025-11-09 10:46:28 +01:00
Wiktor Niesiobędzki
b3df16fee8 Add support for ARM based VMs 2025-11-07 08:46:11 +01:00
Wiktor Niesiobędzki
6567d63d92 Add support for hyperdisk performance options 2025-11-07 08:46:11 +01:00
Wiktor Niesiobędzki
2a03c1b97e Password for initial_user for AlloyDB is now rquired 
Details: https://github.com/GoogleCloudPlatform/magic-modules/pull/15596

Note: as of now, validation doesn't allow `known after apply` values for
passwords
 2025-11-05 13:08:11 +01:00
Ludovico Magnocavallo
a4ff84838a Merge remote-tracking branch 'origin/master' into fast-dev 2025-11-05 06:53:32 +00:00
Wiktor Niesiobędzki
d5bc59a238 Fix E2E tests. 
* Disable tests for VPC connector and Cloud Functions, CFs are not
  supporrted in the default region
* fix permissions to secrets for Cloud Run
* add permissions admin permissions to any SA within project to
  `var.bucket`
* add permissions to access the secret to any SA within project to
  secrets created by fixture
* disable custom roles in E2E tests, as `var.organization_id` is not the
  same org, within which projects are created in E2E
 2025-11-04 10:23:55 +01:00