kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,036 Commits 1 Branch 1 Tag
fcae290c3ac2a18c4195aac928da49b456c71816
Commit Graph

125 Commits

Author SHA1 Message Date
Ludovico Magnocavallo
85b0871085 Add net-vpc-factory and starter-gcd dataset to 0-org-setup, fix context in net-vpc-factory (#3860) 
* feat(fast/0-org-setup): integrate net-vpc-factory into stage 0

* initial starter dataset

* starter pack

* fix(fast/0-org-setup): correct factory vpcs paths definition and update test inventory

* feat(fast/0-org-setup): add VPC and subnet outputs and update stage tfvars

* test(fast/0-org-setup): update gcd starter defaults and regenerate inventory

* fix(modules/net-vpc-factory): remove internal defaults logic and pass context correctly

* fix typo in dataset fw rule, add missing boilerplate, set sane defaults for net vpc factory

* terraform fmt

* tfdoc, copyright year

* schema docs

* yamllint
 2026-04-13 09:42:03 +02:00
Julio Castillo
bc5b203a8f Add toggle to tfdoc to remove type hints (#3842) 
* Add toggle to tfdoc to remove type hints

* Update all readmes

* Fix python formatting
 2026-04-08 11:08:18 +00:00
Julio Castillo
1e82683b15 Add service connection policies to net-vpc (#3667) 2026-01-23 12:51:00 +00:00
David Liebert
649cab0020 fixed bug where label field is ignored for policy based routes (#3648) 
* fixed bug where label field is ignored for policy based routes

* Fix example and inventory

* Add missing schema

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2026-01-14 09:48:16 +00:00
Vannick Trinquier
ca413b8aa8 Add support to VPC flow logs for PSC subnet (#3639) 2026-01-12 15:56:14 +07:00
David Liebert
5374899b36 added support for labels with google_compute_global_address resource (#3622) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2026-01-07 13:19:48 +00:00
Simone Ruffilli
509b715a09 Adds network_id to net-vpc outputs (#3421) 
* Adds network_id to net-vpc outputs

* Fixes description
 2025-10-16 09:44:33 +02:00
Ludovico Magnocavallo
7c920d7d35 Add support for context to net-lb-int net-vpc-firewall and net-vpc module (#3419) 
* net-lb-int

* net-vpc-firewall

* net-vpc

* net-vpc
 2025-10-16 05:54:14 +00:00
Julio Castillo
ea445fa7e4 Add support for VPC internal ranges to modules/net-vpc (#3318) 
* Add support for VPC internal ranges to modules/net-vpc

* Fix linting

* Fix variable order

* Fix README

* Sort outputs.

* Fix validation for terraform < 1.13
 2025-09-11 17:42:54 +00:00
Ludovico Magnocavallo
36648b6b63 FAST light implementation (#3255) 
* data wip

* wip data

* update org schema, add note on expansion

* all schemas, workload notes

* Update WORKLOG.md

* Update WORKLOG.md

* Update WORKLOG.md

* Update WORKLOG.md

* wip

* data wip

* wip

* wip

* wip

* wip

* org module IAM context (using lookup)

* new-style context expansion in project IAM

* remove spurious file

* project module contexts

* finalize context replacement format for project module

* revert org module changes

* fix tag id interpolation in project

* fix tag id interpolation in project

* organization module context

* organization context test

* context expansion for folder tag bindings

* test context expansion for tag bindings

* service account module context

* simplify context local

* context for iam service account

* nuke blueprints

* remove links to blueprints

* vpc sc context in project module

* Add context to GCS module

* Add inline deps to plan_summary script

* Make context a top-level variable for folder, organization, sa

* Add add context top-level to VPC-SC

* move context out of factories_config variable

* tfdoc

* fix merge

* fix merge

* fix examples

* net-vpc module context

* add parent ids to folder context

* rename folder parent context

* fix folder parent check

* new project factory stub

* wip

* wip

* refactor defaults

* project iam

* bueckts and service accounts

* start adding context replacements

* better test data

* automation resources for folders and projects

* automation

* add support for project id interpolation

* first tested apply

* improve IAM description in gcs module

* add context to billing account module

* add notification channels to billing account module context

* add billing budgets to new pf

* schemas and defaults

* bootstrap wip

* bootstrap wip

* bootstrap wip

* pf outputs

* pf fixes

* fix pf sample data

* bootstrap lite fixes

* add locations to organization module contexts

* bootstrap lite fixes

* org fixes, billing accounts

* fix default project parent

* bootstrap lite wip

* add locations to gcs module context

* add context support to logging bucket module

* add context to pubsub module

* split out iam variables in gcs module

* fix logging bucket context test

* bootstrap log sink destinations

* streamline logging-bucket module variables

* fix logging bucket context test

* align logging bucket module interface in fast bootstrap

* add support for project-level log buckets to project factory

* support full context expansion in organization module log sinks

* log buckets in fast-lite bootstrap

* make og sink type optional in organization module

* log sinks in fast-lite bootstrap

* set tag values in factory context

* bootstrap lite data

* output files schema

* billing account schema

* output files

* output providers

* gcs output files

* boilerplate

* tflint

* check documentation

* check docs

* fix project module parent variable validation

* fix log bucket examples

* allow null parent in project module

* silence folder test errors

* fix billing account sink example

* fix project example

* fix billing account module

* fix folder tests

* fix FAST

* fix fast

* tfvars outputs

* wif

* cicd service accounts

* cicd

* allow defaults in context, minimal org policies

* support gcs managed folders in project factory and bootstrap lite

* support prefix in provider output files

* rename bootstrap stage

* gitignore

* gitignore

* security folder, billing IAM

* wip tfvars

* fix typo

* security IAM

* control tag iam/context via variables in organization module

* split tag creation from tag IAM to avoid circular refs

* port organization module tag changes to project module

* implement new-style context expansion in vpc-sc module

* fix fast vpc-sc tests

* boilerplate

* vpc sc stage

* schemas

* fast-lite compatibility for vpc sc stage

* make log project number optional in vpc-sc stage

* networking

* networking

* networking

* networking

* rename and move new stage under fast

* clone pf tests

* use context replacement for internal notification channels in billing account module

* support service agents in project module iam context replacements

* support service agents in project module iam context replacements

* add support for kms keys to project module context

* experimental pf example test and fixes

* fix schemas

* fix tests

* tfdoc

* tfdoc

* pf config

* experimental pf

* remove redundant dot from gcs managed folder IAM keys

* bootstrap experimental test

* project factory exp stage test

* skip tflint for bootstrap experimental test

* tflint

* fix gcs test

* documentation work

* documentation work

* Update README.md

* tfdoc

* tfdoc

* readme

* tfdoc

* readme

* readme

* readme

* readme

* support universe in pf exp projects

* missing universe service agents

* org policies import, non-admin billing IAM

* todo

* fix test

* custom constraints

* fast classic dataset

* fix test data

* context replacements in billing module log sinks

* fix typo

* add support for billing log sinks

* update docs

* readme

* cicd fix and test

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2025-09-02 08:38:57 +02:00
Liam Nesteroff
f07e4f64e9 Standardise reuse variable from project module and implement for net-vpc (#3205) 
* exposing the network_id from the net-vpc module for use with tag bindings

* convert vpc_create to vpc_reuse

* Changed the reuse vars to standardised attributes

* fixed readme tests and schemas

* modified apigee blueprint to use vpc_reuse with network_id passthrough

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2025-07-03 09:12:05 +10:00
Wiktor Niesiobędzki
bebf3f0080 fix failing E2E test 2025-06-24 13:20:53 +02:00
Chris McCoy
c33a4b57c1 Add support for IPv6 only subnets and IP collections 2025-06-20 18:22:08 +02:00
Ludovico Magnocavallo
554cc47707 Mongodb Atlas project template (#2986) 
* mongodb project definition

* wip

* add psc output to net-address module

* wip

* wip

* initial README, test

* remove providers file

* boilerplate

* tfdoc

* test

* fix unrelated test

* outputs, better README
 2025-03-29 08:43:27 +00:00
Ludo
0facab6724 Merge remote-tracking branch 'origin/master' into fast-dev 2025-03-28 09:38:22 +01:00
Ludovico Magnocavallo
c8e4179f2b Add custom routes for directpath to net-vpc module (#2966) 
* add custom routes for directpath to net-vpc module

* blueprint tests

* blueprint tests

* blueprint tests

* fast tests

* tfdoc

* module examples
 2025-03-19 10:22:47 +00:00
Samuele Perticarari
b50e8a16dc Fix subnet schema in net-vpc module & hybrid subnets example implementation (#2958) 
* Fixed subnet schema by adding "allow_subnet_cidr_routes_overlap" field

* Implemented hybrid subnets code example and test code
 2025-03-15 17:29:44 +00:00
Simone Ruffilli
be816fd882 net-vpc: fix permadiff in docs (#2949) 2025-03-12 10:09:08 +01:00
Wiktor Niesiobędzki
12979e8f50 Introduce test isolation and fix missing GCS service account 2025-03-01 14:45:16 +01:00
Wiktor Niesiobędzki
44a4268afc Fix E2E tests 2024-09-04 12:16:50 +02:00
jamesdalf
8ca3bc390f Module net-vpc fix for reserved ranges (#2538) 
* fix the reserved ranges

* updated readme

* formatting

* fix example test

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-08-30 05:10:28 +00:00
Ludovico Magnocavallo
cecce6b3a0 Allow customizable prefix in net-vpc module PSA configs (#2535) 
* allow customizable prefix in net-vpc module PSA configs

* fix peered domain key
 2024-08-28 09:24:13 +00:00
jamesdalf
cc5c04f62a net-vpc module add overlap CIDR subnet attribute (#2521) 
* add subnet allow_subnet_cidr_routes_overlap

* allow_subnet_cidr_routes_overlap default null

* set default null for factory subnets

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-08-26 19:48:26 +00:00
Ludovico Magnocavallo
db044296e1 Additional module schemas (#2494) 
* resman modules

* billing account

* net-vpc subnets

* fast schemas and subnet validation
 2024-08-09 13:58:05 +00:00
Simone Ruffilli
d66a358b6d Add context to net-vpc (subnets) factory (#2444) 2024-07-24 15:54:20 +02:00
Julio Castillo
c0bf32e797 Refactor service agent management (#2423) 
* Service agents script

* Service agents update

* WIP

* Update script and terraform

* Fix tests

* Fix linter

* Update docs

* Bring back pf example inventory

* Fix tests

* Fix more tests

* Fix tests

* Use dataclasses for build_service_agents.py

* Remove unneeded field() from build_service_agents

* Re-enable CMEK depends_on in project outputs

* Update tools/requirements.txt

* Enable storage in GCS example projects

* Fix tests

* Add CMEK Service Agents dependencies for services

* Fix typos and data platform cmek

* More typos
 2024-07-23 22:05:38 +02:00
Simone Ruffilli
9a26fe8635 Add support for reserved_internal_range in net-vpc (#2275) 
Adds support for reserved_internal_range to net-vpc
 2024-05-14 22:19:45 +03:00
Wiktor Niesiobędzki
35a17a46ba Fix failing E2E tests 2024-05-11 17:29:35 +02:00
Julio Castillo
c58850c096 Add Hybrid NAT support (#2261) 
* Updates to support hybid NAT

* Fix readme

* Fix variable order
 2024-05-09 13:24:41 +00:00
simonebruzzechesse
b6771ae7ad fix cloud sql PSA after module upgrade (#2226) 
* fix cloud sql PSA after module upgrade
add proxy subnet for ILB
* fix cloud run service accessible from public url in case the service is privately deployed
* add deletion_policy variable in psa_configs for net-vpc module
fix destroy issue with phpIPAM blueprint
 2024-04-19 12:41:02 +02:00
Ludovico Magnocavallo
9414779cc2 Allow multiple PSA service providers in net-vpc module (#2218) 
* allowing multiple PSA service providers in net-vpc module

* tfdoc

* tfdoc

* Add tfvars/yaml tests

* fix module and tests

* re-enable inventory

* merge fix

* Add multiple PSA test case

* fix cloudsql example

---------

Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-04-16 15:02:36 +00:00
Amela Spica
fb4a661f54 VPC module - PSA configurable service producer (#2190) 
* added configurable service provider for PSA in VPC module

* fmt

* readme update

* description fix based on PR comment

* readme regenerated
 2024-04-02 20:23:25 +02:00
Ludovico Magnocavallo
da68d3cfc4 Add support for PSC network attachments and interfaces in modules (#2125) 
* support network attachments in net-vpc module

* support network attachments in net-address module

* fix examples

* fix examples

* add support for psc interfaces to compute-vm module
 2024-03-04 10:12:11 +01:00
Simone Ruffilli
ca3c86cb5c Add support for policy based routes to net-vpc (#1926) 
* Add support for PBR to net-vpc
 2023-12-13 15:19:40 +00:00
Thangaraju Rajasekaran
224b98c786 removed prefix and updated net-vpc shared-vpc for e2e test 2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
d9cd46d8a7 fixed e2e test for shared-vpc and subnet-iam 2023-11-30 14:03:49 +00:00
Thangaraju Rajasekaran
0af5e31ca3 E2E tests for net-vpc module 2023-11-30 14:03:49 +00:00
Julio Castillo
82f14fd6c0 Make subnets depend on proxy only subnets (#1762) 
* Make subnets depend on proxy only subnets

* Add dependency to subnet_ids too

* Update readme
 2023-10-16 11:39:52 +00:00
Julio Castillo
9ab3b49f69 Add PSA peered domains support to net-vpc (#1741) 
* Add PSA peered domains support to `net-vpc`

* Fix tests
 2023-10-06 15:31:32 +00:00
Julio Castillo
616c6fbc48 Fix subnet iam_bindings to use arbitrary keys 2023-09-15 14:30:27 +02:00
Julio Castillo
f3be29cbc9 Fix tests 2023-09-15 00:27:55 +02:00
Julio Castillo
f19ab4872f Embed subnet-level IAM in the variables controlling creation of subnets 
This moves the top-level `iam`, `iam_bindings` and
`iam_bindings_additive` variables into subnet-level attributes. This
change also allows setting permissions to PSC or proxy-only subnets

As part of this change, the factory interface is more aligned with the
rest of the modules using a `factories_config` variable. In the future
we can add a cidrs template similar to the firewall policy module
 2023-09-15 00:27:55 +02:00
Dave Gulli
09e6e8f4d2 created passing test, fixed logic 2023-09-13 16:49:14 +10:00
Dave Gulli
5f2bc7fa92 refactored to recommended method 2023-09-12 14:58:49 +10:00
Dave Gulli
db5030e93f adding test 2023-09-11 21:08:55 +10:00
Dave Gulli
f76d8fcb52 fixed period 2023-09-11 20:48:26 +10:00
Dave Gulli
dac76a900b fixed references 2023-09-11 20:47:05 +10:00
Dave Gulli
adff09aa24 linting error 2023-09-11 20:45:32 +10:00
Dave Gulli
c1b52b300c trying to fix linting 2023-09-11 20:41:25 +10:00
Dave Gulli
e1aff29d5c linting again 2023-09-11 20:30:11 +10:00