|
|
e366b0547b
|
Use AWS CLI for bootstrap destroy actions
|
2025-12-08 20:11:07 +08:00 |
|
|
|
d05429b89c
|
Merge pull request #151 from cloud-neutral-toolkit/codex/fix-issue-with-destroy-resources-in-pipeline
Fix bootstrap destroy workflow bucket env resolution
|
2025-12-08 18:27:25 +08:00 |
|
|
|
3a57b32f35
|
Fix bootstrap destroy bucket env handling
|
2025-12-08 18:25:27 +08:00 |
|
|
|
c825858122
|
Merge pull request #150 from cloud-neutral-toolkit/codex/fix-aws_s3_bucket_tagging-resource-error
Update S3 bucket tagging for AWS provider 5
|
2025-12-08 18:18:43 +08:00 |
|
|
|
7bf8f74192
|
Update S3 bucket tagging for AWS provider 5
|
2025-12-08 18:01:44 +08:00 |
|
|
|
9efecb6703
|
Merge pull request #149 from cloud-neutral-toolkit/codex/ensure-iac-modules-meet-idempotence-ljuyzg
Simplify bootstrap workflow cleanup
|
2025-12-08 17:58:55 +08:00 |
|
|
|
888a5476be
|
Merge branch 'main' into codex/ensure-iac-modules-meet-idempotence-ljuyzg
|
2025-12-08 17:58:36 +08:00 |
|
|
|
46d1fb2c8b
|
Simplify bootstrap workflow cleanup
|
2025-12-08 17:51:23 +08:00 |
|
|
|
05392ac4ee
|
Merge pull request #148 from cloud-neutral-toolkit/codex/update-bootstrap-components-in-terraform
Handle missing account config for bootstrap IAM
|
2025-12-08 17:41:42 +08:00 |
|
|
|
e77d4621fd
|
Fix bootstrap IAM defaults
|
2025-12-08 17:41:03 +08:00 |
|
Haitao Pan
|
826e3d2ef1
|
chore(iac): update AWS bootstrap config for Xzerolab account
|
2025-12-08 17:28:29 +08:00 |
|
|
|
e49a999d54
|
Merge pull request #147 from cloud-neutral-toolkit/codex/ensure-iac-modules-meet-idempotence
Refine bootstrap workflow scope and retention
|
2025-12-08 17:21:20 +08:00 |
|
|
|
a168c8f3df
|
Refine bootstrap workflow scope and retention
|
2025-12-08 17:20:11 +08:00 |
|
|
|
5ed05bd15d
|
Merge pull request #144 from cloud-neutral-toolkit/codex/restrict-iam-identity-center-usage
Add service guardrails for landing zone
|
2025-12-08 16:18:04 +08:00 |
|
|
|
bae23ad001
|
Merge pull request #146 from cloud-neutral-toolkit/codex/extract-public-config-to-yaml
Add shared bootstrap config and update workflow
|
2025-12-08 16:17:28 +08:00 |
|
|
|
ce46dfb6c6
|
Add shared bootstrap config and update workflow
|
2025-12-08 16:11:43 +08:00 |
|
|
|
e49c04e3f3
|
Merge pull request #145 from cloud-neutral-toolkit/codex/update-gcp-config-to-match-aws-format
Convert GCP config to YAML templates
|
2025-12-08 16:09:13 +08:00 |
|
|
|
a940bd1a21
|
Convert GCP config to YAML templates
|
2025-12-08 16:06:06 +08:00 |
|
|
|
cca8991a8a
|
Add service guardrails for landing zone
|
2025-12-07 14:32:01 +08:00 |
|
Haitao Pan
|
3765f0192c
|
feat(iac): add full multi-cloud Terraform HCL frameworks (AliCloud/Azure/GCP/Vultr)
- Introduce complete terraform-hcl-standard directory for 4 cloud providers
- Add bootstrap (iam/oss/ots/s3), config, envs/dev templates
- Add core modules: vpc, ecs/compute, nlb/alb, redis, rds, object-storage
- Provide initial README for each provider
|
2025-11-21 13:33:11 +08:00 |
|
Haitao Pan
|
338090a8f3
|
refactor: reorganize terraform-standard directory layout
- Move modules/, envs/, bootstrap-* to new paths
- Update all related GitHub workflows
- No logic changes; relocations only
|
2025-11-20 20:15:26 +08:00 |
|
Haitao Pan
|
2a22406685
|
chore(ci): remove tfsec scanning from Terraform matrix workflows
|
2025-11-17 22:43:44 +08:00 |
|
Haitao Pan
|
950a68f6eb
|
fix(ci): correct dry_run context in Terraform matrix workflows
|
2025-11-17 22:33:32 +08:00 |
|
Haitao Pan
|
e6fccac7e8
|
feat(ci): enhance Terraform IAC pipeline with account/resources matrix workflows
|
2025-11-17 22:28:56 +08:00 |
|
Haitao Pan
|
d5b70c7572
|
ci(terraform): add multi-environment matrix pipeline and standard Makefiles
- Added new workflow: terraform-standard-iac-pipeline-account-matrix.yaml
- Introduced Terraform Standard Makefile templates for:
• envs/dev-role
• envs/dev-vpc
|
2025-11-17 22:06:51 +08:00 |
|
Haitao Pan
|
703e801752
|
fix(terraform): add required destroy variables for bootstrap dynamodb and s3 Makefiles
|
2025-11-17 21:29:12 +08:00 |
|
Haitao Pan
|
f6ebde7b96
|
fix(terraform): parameterize bootstrap-iam Makefile and remove hardcoded vars
|
2025-11-17 20:43:02 +08:00 |
|
Haitao Pan
|
9ae1d2bf84
|
ci(terraform): update bootstrap & landingzone pipelines and add validation/notification scripts
|
2025-11-17 20:34:11 +08:00 |
|
Haitao Pan
|
64cb67d4ba
|
add workflows: terraform-standard-iac-pipeline-aws-global-bootstrap.yaml
|
2025-11-17 20:15:17 +08:00 |
|
shenlan
|
4b6f2b50b7
|
Update XStream description in README.md
Removed '支持 Reality / Xray-core' from XStream description in both Chinese and English sections.
|
2025-11-17 17:57:24 +08:00 |
|
shenlan
|
a5ff701b86
|
Revise README for improved clarity and organization
Updated README to enhance clarity and structure, adding sections for core projects, capabilities, and use cases in both Chinese and English.
|
2025-11-17 17:56:24 +08:00 |
|
Haitao Pan
|
bbdf79f816
|
ci(terraform): add Terraform Standard pipeline for AWS LandingZone baseline
|
2025-11-17 17:42:51 +08:00 |
|
Haitao Pan
|
a3f054e8e8
|
feat(alb): add Application Load Balancer module and dev-alb environment
|
2025-11-17 17:34:42 +08:00 |
|
Haitao Pan
|
f2996804ac
|
feat(landingzone): add minimal AWS Landing Zone baseline module
- Introduce minimal landingzone module with account-level IAM baseline:
- deny-root.json
- deny-no-mfa.json (MFA enforced)
- deny-console-write.json (Console readonly mode)
- deny-ri-sp.json (deny Reserved Instances / Savings Plans purchases)
|
2025-11-17 17:33:41 +08:00 |
|
Haitao Pan
|
f2c9b114cf
|
update: config/resources/dev-rds/rds.yaml
|
2025-11-17 17:03:07 +08:00 |
|
Haitao Pan
|
6b1e04f5da
|
refactor(msk): adopt new storage_info schema for MSK EBS configuration
|
2025-11-17 17:03:07 +08:00 |
|
Haitao Pan
|
c05364dfe0
|
feat(nlb): add Network Load Balancer module and dev-nlb environment
|
2025-11-17 17:00:34 +08:00 |
|
Haitao Pan
|
245e5d9b89
|
refactor: rename dev-object s3 config to bucket; update backend paths
|
2025-11-17 15:46:04 +08:00 |
|
Haitao Pan
|
cbef46792a
|
feat(redis): add basic msk module and dev-kafka environment
|
2025-11-17 15:43:44 +08:00 |
|
Haitao Pan
|
e3ecb5083e
|
feat(redis): add basic redis module and dev-redis environment
|
2025-11-17 13:28:52 +08:00 |
|
Haitao Pan
|
00a315ea4c
|
feat(rds): add basic rds module and dev-rds environment
|
2025-11-17 13:22:58 +08:00 |
|
Haitao Pan
|
4420416bf1
|
feat(s3): add basic S3 module and dev-object environment
|
2025-11-17 13:17:19 +08:00 |
|
Haitao Pan
|
7c57c839ef
|
feat(iac): modularize EC2 env + add dynamic AMI lookup
- new envs/dev-ec2 environment
- add ami_lookup module (Ubuntu/Rocky/AmazonLinux auto-resolve)
- add keypair, sg, ec2 modules
- remove VPC remote_state dependency
- fix SG duplicate rules
- unify module variables/outputs
|
2025-11-17 13:06:05 +08:00 |
|
Haitao Pan
|
a75754a2ee
|
feat(vpc): add dev-vpc environment and vpc module
|
2025-11-17 11:49:49 +08:00 |
|
Haitao Pan
|
6f12e33f28
|
refactor: update IAM bootstrap and rename envs/dev to envs/dev-role
|
2025-11-17 11:27:26 +08:00 |
|
Haitao Pan
|
ab64194aec
|
refactor(makefile): standardize bootstrap Makefiles across DynamoDB, IAM, and S3
|
2025-11-17 10:28:23 +08:00 |
|
Haitao Pan
|
bcb09baede
|
Add top-level Makefile for unified bootstrap workflow
|
2025-11-17 09:58:31 +08:00 |
|
Haitao Pan
|
9984f19f97
|
refactor(iam): convert IAM module to reusable universal role module
|
2025-11-17 00:12:26 +08:00 |
|
Haitao Pan
|
0b2050c886
|
feat: add bootstrap IAM workflow and environment-scoped Terraform structure
|
2025-11-16 23:54:43 +08:00 |
|
Haitao Pan
|
f7960153fe
|
feat(terraform-standard): add S3 and DynamoDB bootstrap modules with backend setup
|
2025-11-16 21:59:42 +08:00 |
|
