[x] Create autoneg service account and workload identity in Terraform
[x] Deploy autoneg controller to autoneg-system in build_repo.sh
[x] Provision Cloud Endpoints DNS record: frontend.endpoints.OPS_PROJECT_ID.cloud.goog in Terraform
[x] Provision managed SSL certificate with Terraform.
[x] Provision GCLB components in new Cloud Build Terraform step ops_lb.
Open issues:
[ ] Sometimes NEG backends are removed, delete autoneg status annotation on istio-ingressgateway to get controller to add them again. Not sure what the root cause is.
[ ] Figure out how to implement HTTP to HTTPS redirect if needed.
Changes:
frontend.endpoints.OPS_PROJECT_ID.cloud.googin Terraformops_lb.Open issues: