Closed brettcurtis closed 9 months ago
The changes involve introducing a .coderabbit.yaml
file for configuring CodeRabbit settings, updating code ownership in the .github/CODEOWNERS
file, revising a pre-commit hook version, and significantly overhauling Terraform configurations for Google Cloud resources. These changes aim to streamline Kubernetes onboarding, project and cluster creation, and improve workflow efficiency for platform developers, potentially addressing issues related to repository management complexity and access controls.
File(s) | Change Summary |
---|---|
.coderabbit.yaml |
Added configuration settings for CodeRabbit. |
.github/CODEOWNERS |
Updated code ownership to include @coderabbitai[bot] and @osinfra-sa . |
.pre-commit-config.yaml |
Updated pre-commit-terraform hook version from v1.85.0 to v1.86.0 . |
README.md |
Expanded documentation with RBAC and workload identity details for Kubernetes Engine. |
global/onboarding/... |
Added Terraform modules for service accounts and namespaces management in Google Cloud. |
regional/infra/README.md |
Updated provider versions for google , google-beta , and random . |
regional/onboarding/... |
Added Terraform configurations for Kubernetes namespaces, roles, role bindings, and service accounts management. |
test/fixtures/default_kubernetes_engine/... |
Renamed modules and updated configurations for Kubernetes engine testing. |
test/fixtures/default_onboarding/... |
Introduced configurations and modules for onboarding Kubernetes resources in tests. |
test/integration/default_kubernetes_engine/controls/... |
Added controls for verifying project IAM binding, service account, and service account key in integration tests. |
osinfra-io/github-organization-discussions#6
by brettcurtis
: The changes in this PR seem to simplify the onboarding process for Kubernetes clusters, which aligns with the objectives of improving the workflow for platform developers and minimizing context switching. The introduction of new Terraform configurations could also streamline the creation of Google Cloud projects and clusters.Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?
Project | Cost change | New monthly cost |
default_kubernetes_engine | $0 | $113 |
48 FinOps policies and 1 Tagging policy passed. |
View in Infracost Cloud. This comment will be updated when code changes.
This pull request will support onboarding of new teams into the Kubernetes cluster. It manages workload identity, google service accounts and Kubernetes service accounts as well as RBAC. Support for enabling Istio at the namespace level is included too.
Summary by CodeRabbit
New Features
.coderabbit.yaml
for advanced CodeRabbit settings including review workflows and chat auto-reply.Documentation
README.md
files with new provider versions and detailed module information.Refactor
Tests
Chores