All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Make compatible with Google providers v6
- support for paths
- random suffix size to easy migrations
- add
custom_url_map_name
,custom_target_http_proxy_custom_url_map_name
,use_random_suffix_for_network_endpoint_group
,global_forwarding_rule_name
to easy migrations
url_map
is now handled with matchers instead of each service separately- inputs for map are in services variable listing all the buckets, negs and cloud run services
- negs, services and buckets as variables, instead keeping simple map variable
- support for HTTPS type of backend
- wrong zone to neg listing
- support for maps of negs, Cloud Run services and GCS buckets
- ignore of subject parameter of
tls_self_signed_cert
resource, allowing to upgradetls
provider to version 4 without having to regenerate certificate
key_algorithm
parameter fromtls_self_signed_cert
resource
- Masking of
/metrics
endpoint
- Parameter
create_logging_sink_bucket
and accompanyinglogging_sink_bucket_retency
- Parameter
log_config_sample_rate
example
folder contents updated to Terraform 0.15+ format
- Add custom health check ports into firewall allow rule
- Support for externally signed TLS certs
- Turned on backend logging
- Default value for
health_check_request_path
should be/healthz
- Parameter to set health check path (URN)
- Add health check settings
- Backend name to include
name
of the service (used in monitoring)
- New parameter
hostnames
was introduced in favor of parameterhostname
, it is list of strings with domain names pointing to our backend
- Remove duplicite
google_compute_global_forwarding_rule
definition
- Parameter
allow_non_tls_frontend
which creates Load balancer frontend listening on port 80
- Parameter
managed_certificate_name
which can override default managed certificate name - useful when migrating from Ingress-provisioned certificate - we can runterraform import
on provisioned certificate and don't wait for new certificate to provision (which will cause downtime)
- Added Parameter
backend_bucket_location
defining location of backend bucket that is used when our load balancers receive request that does not have HTTP header Host mathching our domain inhostname
. Previous usage of parameterregion
prevented from creating bucket when we had only zonal load-balancer (e.g. europe-west3-c was invalid location for bucket)
- Add initial commit with POC, example, pre-commit hooks