issues
search
GoogleCloudPlatform
/
pbmm-on-gcp-onboarding
GCP Canadian Public Sector Landing Zone overlay on top of the TEF via CFT modules - a secure cloud foundation
https://cloud.google.com/architecture/security-foundations
Apache License 2.0
38
stars
55
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
LZ Delete: full terraform destroy option for some or all of 1-5 folders including 0-bootstrap gcloud infrastructure - dev/org reuse
#403
fmichaelobrien
opened
2 months ago
1
Use a json global config file directly with terraform as -var-file or as a jsondecode/file locals block
#402
fmichaelobrien
opened
2 months ago
0
Configure Renovate
#401
renovate-bot
opened
2 months ago
1
Refector for CFF: Cloud Foundation Fabric - fork towards public sector secure overlay alignment
#400
fmichaelobrien
opened
2 months ago
0
Add Azure DevOps ADO as build and repository option
#399
obriensystems
opened
2 months ago
24
Cloud Foundation Toolkit as source original for terraform-google-modules
#398
fmichaelobrien
opened
2 months ago
0
prep for repo rename terraform-google-pubsec-foundation
#397
fmichaelobrien
opened
2 months ago
1
FR: Add Cloud NGFW Essential capability with optional Standard or Enterprise based IPS in the TEF 3-networks-hub-and-spoke folder and associated terraform-google-modules
#396
fmichaelobrien
opened
2 months ago
3
Bump golang.org/x/net from 0.20.0 to 0.23.0 in /test/integration
#395
dependabot[bot]
opened
2 months ago
0
Bump golang.org/x/net from 0.17.0 to 0.23.0 in /helpers/foundation-deployer
#394
dependabot[bot]
opened
2 months ago
0
Pr mro bootstrap run terraform local 041724 - missed some fixes
#393
mromascanu123
closed
2 months ago
1
5-app-infra step 10 - cloud build trigger missing for plan and apply builds
#392
obriensystems
opened
2 months ago
2
4-projects step 15 production apply of both business units - after common apply - fails with API rate limit on concurrent operations quota - fix: retry up to 60 min later
#391
obriensystems
opened
2 months ago
3
Add terraform delete triggers with optional script to allow for developer workflow of repeated create/delete of all TEF projects
#390
fmichaelobrien
opened
2 months ago
0
Overlay fortigate NGFW dual LB example into 3-networks-hub-and-spoke
#389
fmichaelobrien
opened
2 months ago
2
Work Items for Release 1
#388
fmichaelobrien
opened
2 months ago
0
TEF upstream git resync and terraform provider updates cadence
#387
fmichaelobrien
opened
2 months ago
14
Fix bucket name length and make random suffix length variable for the hierarchical firewall
#386
mromascanu123
closed
2 months ago
2
Making scc-notification ID randomizable org-level to allow deploying multiple TEF instances same org
#385
mromascanu123
closed
2 months ago
1
Pr mro bootstrap run terraform local 041524
#384
mromascanu123
closed
2 months ago
2
Add billing quota instructions to existing project quota faq
#383
obriensystems
opened
2 months ago
0
3-networks-hub-and-spoke: step 11 shared apply - enable compute API in bootstrap project
#382
obriensystems
opened
2 months ago
1
3-networks-hub-and-spoke: add super admin role compute.orgSecurityPolicyAdmin migrating to compute.orgFirewallPolicyAdmin for viewing hierarchical firewall policies
#381
obriensystems
opened
2 months ago
1
3-networks-hub-and-spoke - terraform re apply causes hierarchical firewall policy rule display name collision - either delete or rename attribute - not idempotent
#380
obriensystems
opened
2 months ago
2
3-networks-hub-and-spoke - Service Usage Consumer role missing on sa-terraform-net@prj-b-seed-8919.iam.gserviceaccount.com SA during tf apply shared
#379
obriensystems
opened
2 months ago
0
Architecture documentation - ongoing
#378
obriensystems
closed
2 months ago
2
Architecture documentation
#377
obriensystems
opened
2 months ago
0
TEF issues to migrate over to this staging copy of the TEF
#376
obriensystems
opened
2 months ago
0
3-networks-hub-and-spoke hardcoded regions us-west1/us-central1 - parameterize them for regionalization security compliance
#375
fmichaelobrien
opened
2 months ago
0
Terraform 1.7.4 downgrade to 1.3 in order to avoid state file issues between 0 and 2 steps - hold for now
#374
obriensystems
opened
2 months ago
2
ER: upgrade terraform 1.3.0 to later 1.6 to allow for PBR policy based routing - workaround is to gcloud the api
#373
obriensystems
opened
2 months ago
2
IAM role additions for the TEF LZ including VPC viewing for compute.networks.list - Compute Network Admin - just add owner for now
#372
obriensystems
opened
2 months ago
0
Multi-tenant shared org for developers - verify multiple deployments per org off folders - see create_unique_tag_key
#371
obriensystems
opened
2 months ago
1
0-bootstrap - step 16 - add section on checking/rerunning gcp-bootstrap cloud build job for failures - similar to 1-org - as roles/identityAdmin is missing from the super admin account
#370
obriensystems
opened
2 months ago
3
#360 - 0-bootstrap/1-org to 5-app-infra readme changes
#369
obriensystems
closed
2 months ago
1
0-bootstrap: backend.tf does not require a projects backend update - just a bucket id update
#368
obriensystems
opened
2 months ago
1
0-bootstrap: validate-requirements.sh requires github main branch - should be master and/or handle development branches
#367
obriensystems
opened
2 months ago
0
#357 - disable tfvars gitignore
#366
obriensystems
closed
2 months ago
0
disable .gitignore on tfvars to enable modification of example templates
#365
obriensystems
closed
2 months ago
0
1-org tf plan check step 9 requires a 0-bootstrap plan check on backend validation errors - due to terraform 1.3.0 (docker) and 1.7.4 (console) mismatch - may require console terraform downgrade before starting deployment and creating the state file
#364
fmichaelobrien
opened
2 months ago
0
#362 - bootstrap prereq
#363
fmichaelobrien
closed
2 months ago
1
Add bootstrap project requirements / project service enablements / readme / sh scripting / super admin roles - in prep of running 0-bootstrap
#362
fmichaelobrien
opened
2 months ago
1
Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 in /helpers/foundation-deployer
#361
dependabot[bot]
closed
1 month ago
2
Canadian Public Sector Secure PBMM Landing Zone reference using Terraform 1.6 (for now 1.3.10) based on the PSO/TOC ready TEF V4 - Full clean organization deployment with mitigation/automation/parameterization modifications
#360
fmichaelobrien
opened
2 months ago
22
TEF Architecture - reverse engineer + overlay ADO, Terraform 1.6 upgrade, Fortigates, IDS/Firewall+/Cloud-NGFW
#359
fmichaelobrien
opened
2 months ago
0
#357 - retrofit repo to TEF V4 levels from V1+ via 4.0.0 copy as of 20240406
#358
obriensystems
closed
2 months ago
1
TEF v4.0.0 retrofit/rebase before modifications for a Canadian Public Sector Landing Zone reference in Terraform
#357
obriensystems
closed
2 months ago
1
Tag/release TEF V1 + modifications version - before TEF V4 retrofit/rebase
#356
fmichaelobrien
closed
2 months ago
1
Guardrail fix
#355
stanimprover
closed
3 months ago
1
Guardrail Fix
#354
stanimprover
closed
3 months ago
0
Previous
Next