kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,461 Commits 1 Branch 1 Tag
dc8a67b83adc1dfaa96111e5d31d771f007c9d83
Commit Graph

1333 Commits

Author SHA1 Message Date
Julio Castillo
21253a1768 Add title to VPC-SC directional policies (#2909) 
* Add title to VPC-SC directional policies

* Ignore versions.tf in diffs

* Update versions.tf

* Fail if a perimeter uses unknown directional policies
 2025-02-20 08:48:08 +00:00
Ludo
411b2f6e6c Merge branch 'master' into fast-dev 2025-02-20 07:58:33 +01:00
Ludovico Magnocavallo
5312767be4 Add provider output files to project factory stage, single automation bucket in module (#2914) 
* single automation bucket, provider output files for project factory

* tfdoc

* fix outputs
 2025-02-19 17:45:56 +00:00
Daniel Strebel
aab282bf19 feat: adding generated_id for backends to net-lb-app-ext (#2913) 2025-02-19 18:16:05 +01:00
Wiktor Niesiobędzki
58051e48e7 Fix tests 2025-02-19 16:47:15 +01:00
Wiktor Niesiobędzki
fd07db5000 Add tftests for project factory 2025-02-19 16:47:15 +01:00
Wiktor Niesiobędzki
0a1b6c6e0f Add ability to refer to other project service accounts in Project Factory 2025-02-19 16:47:15 +01:00
Wiktor Niesiobędzki
3ddfd59b88 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-18 20:30:14 +00:00
Julio Castillo
51bd19bc30 Update default FAST org policies (#2906) 
* Update org default org policies

* Update default FAST org policies
 2025-02-18 16:34:44 +01:00
Julio Castillo
348e4df081 Fix default compute.restrictProtocolForwardingCreationForTypes value (#2904) 2025-02-18 14:28:33 +01:00
Simon Roberts
642ebfe9e9 Increase the default complexity of Cloud SQL DB passwords (#2886) 
* Increase the default complexity of DB passwords in order to meet password_validation_policy.default_complexity

* Use password_validation_policy.min_length if provided

* Explicitly generate a root_password if not provided

* Use object (password, random_password) for root_password config

* Make root_password non-nullable, and add validation against specifying both a password and `random_password`.
Fix test for stronger password generation.

* Add example for root_password and password_validation_policy

* Rerun tfdoc.py

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-02-18 10:46:29 +00:00
Ludo
8f6cd6dedc Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-18 08:36:34 +01:00
jacklever-hub24
a8d7d401d6 Add support for locality policies to net-lb-app-ext module (#2898) 
* Fix the missing locality_lb_policy value and add validation for it

* Added variables, dynamic blocks and validation to support locality_lb_policy/ies

* Formatting

* tfdoc generation

* Fix net-lb-app-ext readme

* Fixes for Ludo, coalesce and brevity

* fmt

* Revert null check due to failing tests

---------

Co-authored-by: Jack Lever <jack@thelevers.com.au>
Co-authored-by: Ludo <ludomagno@google.com>
 2025-02-18 06:25:45 +00:00
Ludovico Magnocavallo
1a4b298cc9 Project factory additions, project module reuse implementation (#2899) 
* add support for buckets

* add project-level interpolation for own SAs

* docs

* project reuse changes

* fix example

* tfdoc

* update check documentation tool

* fast tests

* blueprints

* typo
 2025-02-15 20:37:45 +01:00
Ludovico Magnocavallo
87383a1569 FAST project templates example (#2897) 
* wip

* project factory providers

* working example

* copyright, tfdoc

* rewording

* rewording

* tfdoc

* tfdoc

* tfdoc again

* fix tests

* tests
 2025-02-14 19:14:27 +00:00
Julio Castillo
d0c3f04c10 Make service agents work in different universes (#2894) 
* Make service agents work in different universes

* Use templatestring and two passes for service agent emails

* Fix tests
 2025-02-14 12:16:07 +00:00
Ludovico Magnocavallo
9148e76087 Add support for project-level log sinks to FAST stage 0 (#2893) 
* Fix ipv6 and align loadbalancer address types

* Release v37.3.0

* add support for project-level log sinks to stage 0

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2025-02-14 11:58:18 +01:00
Julio Castillo
a15f97db67 Add universe support to iam-service-accounts (#2892) 
* Make service account universe aware

* Add service account universe tests
 2025-02-14 09:06:23 +01:00
Julio Castillo
fd9f92324b Update VPC-SC module and FAST stage (#2887) 
* Update VPC-SC module to support vpc subnets

* Update FAST VPC-SC variables

* Fix tests
 2025-02-13 18:04:09 +00:00
Ludovico Magnocavallo
f22d783cf7 Address DNS issues with googleapis RPZ and forwarding (#2891) 
* add empty DNS zone for googleapis to net stages

* add ipv6 records for private/restricted

* avoid permadiff in rpz ipv6 addresses
 2025-02-13 16:08:27 +00:00
Julio Castillo
d43c624f9e Add new set of org policies with managed constraints to FAST bootstrap (#2884) 
* Managed org policies example

* Add folder with managed org policies

* Add tests for managed org policies

* Document new managed org policy set
 2025-02-12 19:38:44 +00:00
Wiktor Niesiobędzki
5e31633f34 Release v37.3.0 2025-02-12 13:16:16 +00:00
Wiktor Niesiobędzki
62665f2475 Fix ipv6 and align loadbalancer address types 2025-02-12 14:09:31 +01:00
Ludo
2e63bf1029 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-12 06:47:44 +01:00
Ludo
c7262a7a87 prepare v37.2.0 release 2025-02-11 18:15:19 +01:00
Ludovico Magnocavallo
7f2ff08997 Address outstanding load balancer FRs (#2879) 
* fix #2877

* fix #2866

* fixes #2865

* fixes #2865

* moved block

* fix standalone test

* blueprints
 2025-02-11 18:09:02 +01:00
Julio Castillo
121ec17ca1 Merge branch 'master' into fast-dev 2025-02-10 23:26:47 +01:00
Julio Castillo
3ffe838e06 Add context to organization policiy factories (#2876) 2025-02-10 22:24:01 +00:00
Ludo
d15f1d9f43 Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-10 10:14:00 +01:00
Wiktor Niesiobędzki
58f22ce647 Add prefix to KMS ring, to allow easy recreate 2025-02-10 00:56:19 +01:00
karpok78
e4f55fb7ff Add bucket IAM policy read (#2872) 
Allow the Project factory read only SA to retrieve buckets IAM policy for buckets created by the PF
 2025-02-09 23:55:54 +00:00
Julio Castillo
97f194e37e Make id and project_id match when universe is set 2025-02-10 00:30:13 +01:00
Julio Castillo
e08698a410 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
36c776ad78 Fix tests 2025-02-07 10:55:05 +01:00
Julio Castillo
3fc7144c4f Update examples and tests 2025-02-07 10:55:05 +01:00
Julio Castillo
e4a1218d46 Bump provider version 2025-02-07 10:55:05 +01:00
Ludo
2d7d6a277e Merge remote-tracking branch 'origin/master' into fast-dev 2025-02-01 09:14:46 +01:00
Julio Castillo
e0a3a3c7bb Expose custom constraint factory in bootstrap (#2854) 
* Expose custom constraint factory in bootstrap

* Silence linter

* Fix tests
 2025-01-31 07:03:29 +01:00
HeiglAnna
efa1ef6f7e Add cAdvisor Metrics to Autopilot/Standard GKE Cluster (#2841) 
* Add cAdvisor Metrics to Autopilot/Standard GKE Cluster

* Fix tests

---------

Co-authored-by: AnnaHeigl <85624888+AnnaHeigl@users.noreply.github.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-30 13:29:07 +00:00
Ludo
6c79bcba9a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-30 08:51:21 +01:00
Julio Castillo
c73035f4e5 Allow universe-bound projects to exclude services (#2852) 
* Allow universe-bound projects to exclude services

* Update README
 2025-01-30 08:48:58 +01:00
Julio Castillo
e7cc8377df Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-29 15:08:39 +01:00
Ludovico Magnocavallo
95ec5ee3b5 Flexible stage 2s in FAST resource manager (#2840) 
* wip

* WIP

* wip

* wip

* apply untested

* tests

* support tag expansion for tenant-level installations in IAM conditions

* fix stage config output

* inventories

* remove dev files

* tfdoc

* enable org policies for stage folders

* resman README

* tfdoc

* stage 3 documentation

* inventory

* support extra_dirs in testing franework

* remove org policy files from stage 1

* Add principal interpolation to iam_by_principals (#2847)

* Add principal interpolation to iam_by_principals

* Fix tests

* relax schemas

* relax schemas

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-01-29 12:16:35 +00:00
Julio Castillo
29e7669385 Support project creation in different universes (#2848) 
* Support project creation in different universes

* Fix typo

* Revert prefix validation

* Add test

* Call new test

* Do not override project name
 2025-01-29 12:40:41 +01:00
Ludo
25bacee2e6 prepare for v37.1.0 2025-01-26 10:41:13 +01:00
Julio Castillo
680d68411a Fix versions.tf 2025-01-24 17:05:34 +01:00
Ludo
15c8669188 Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-24 16:55:46 +01:00
Julio Castillo
752b77f52e Update module metadata format and prep v36.2.0 (#2837) 
* Update module metadata format and prep v36.2.0

* Fix pattern
 2025-01-24 16:45:17 +01:00
Ludo
fd7292710a Merge remote-tracking branch 'origin/master' into fast-dev 2025-01-23 08:51:07 +01:00
frits-v
43e6daca8f fix(certificate-manager): reference dns_authz by fully qualified id (#2833) 2025-01-22 22:49:12 +01:00