Landing zone v2 subpackage.
Depends on client-setup.
Package to create a client's folder hierarchy, logging resources and a network host project.
| Name | Value | Type | Count |
|---|---|---|---|
| allowed-os-update-domains | ["debian.map.fastlydns.net", "debian.org", "deb.debian.org", "ubuntu.com", "cloud.google.com", "packages.cloud.google.com", "security.ubuntu.com", "northamerica-northeast1.gce.archive.ubuntu.com", "northamerica-northeast2.gce.archive.ubuntu.com"] | array | 1 |
| allowed-os-update-source-ip-ranges | ["10.1.0.0/21", "10.1.8.0/21", "10.1.32.0/19", "10.1.128.0/21", "10.1.136.0/21", "10.1.160.0/19"] | array | 1 |
| client-billing-id | AAAAAA-BBBBBB-CCCCCC | str | 3 |
| client-folderviewer | group:[email protected] | str | 1 |
| client-name | client1 | str | 261 |
| core-dns-project-id | core-dns-project-12345 | str | 2 |
| denied-sanctioned-countries | ["XX"] | array | 1 |
| dns-name | client-name.example.com. | str | 2 |
| dns-nameservers | ["ns-cloud-a1.googledomains.com.", "ns-cloud-a2.googledomains.com.", "ns-cloud-a3.googledomains.com.", "ns-cloud-a4.googledomains.com."] | array | 1 |
| dns-project-id | dns-project-12345 | str | 7 |
| firewall-internal-ip-ranges | [10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16] | array | 8 |
| host-project-id-nonp | net-host-project-nonp-12345 | str | 105 |
| host-project-id-pbmm | net-host-project-pbmm-12345 | str | 105 |
| logging-project-id | logging-project-12345 | str | 2 |
| project-allowed-restrict-vpc-peering | [under:projects/PROJECT_ID] | array | 0 |
| retention-in-days | 1 | int | 1 |
| retention-locking-policy | false | bool | 1 |
| standard-nane1-nonp-main-snet | 10.1.0.0/21 | str | 1 |
| standard-nane1-pbmm-main-snet | 10.1.128.0/21 | str | 1 |
| standard-nane2-nonp-main-snet | 10.1.8.0/21 | str | 1 |
| standard-nane2-pbmm-main-snet | 10.1.136.0/21 | str | 1 |
This package has no sub-packages.
| File | APIVersion | Kind | Name | Namespace |
|---|---|---|---|---|
| client-folder/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicy | client-name-client-folder-fwpol | client-name-networking |
| client-folder/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyAssociation | client-name-client-folder-fwpol-association | client-name-networking |
| client-folder/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-exclude-private-ip-ranges-egress-fwr | client-name-networking |
| client-folder/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-exclude-private-ip-ranges-ingress-fwr | client-name-networking |
| client-folder/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-deny-tor-nodes-ingress-traffic-fwr | client-name-networking |
| client-folder/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-deny-sanctioned-countries-ingress-fwr | client-name-networking |
| client-folder/firewall-policy/rules/iap.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-goto-next-for-iap-fwr | client-name-networking |
| client-folder/firewall-policy/rules/lb-health-checks.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-goto-next-for-lb-health-checks-fwr | client-name-networking |
| client-folder/firewall-policy/rules/os-updates.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-client-folder-fwpol-allow-os-updates-fwr | client-name-networking |
| client-folder/folder-iam.yaml | iam.cnrm.cloud.google.com/v1beta1 | IAMPolicyMember | clients.client-name-client-folder-viewer-permissions | client-name-hierarchy |
| client-folder/folder-sink.yaml | logging.cnrm.cloud.google.com/v1beta1 | LoggingLogSink | platform-and-component-log-client-name-log-sink | logging |
| client-folder/standard/applications/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications | client-name-hierarchy |
| client-folder/standard/applications/nonp/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications.nonp | client-name-hierarchy |
| client-folder/standard/applications/pbmm/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications.pbmm | client-name-hierarchy |
| client-folder/standard/applications-infrastructure/dns-project/project.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Project | dns-project-id | client-name-projects |
| client-folder/standard/applications-infrastructure/dns-project/public-dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSManagedZone | client-name-standard-public-dns | client-name-networking |
| client-folder/standard/applications-infrastructure/dns-project/public-dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | client-name-standard-core-public-dns-ns-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/dns-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | dns-project-id-dns | client-name-projects |
| client-folder/standard/applications-infrastructure/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications-infrastructure | client-name-hierarchy |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicy | client-name-standard-app-infra-nonp-fwpol | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyAssociation | client-name-standard-app-infra-nonp-fwpol-association | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-exclude-private-ip-ranges-egress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-exclude-private-ip-ranges-ingress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-deny-known-malicious-ip-ingress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-deny-known-malicious-ip-egress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/iap.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-goto-next-for-iap-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/firewall-policy/rules/lb-health-checks.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-nonp-fwpol-goto-next-for-lb-health-checks-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications-infrastructure.nonp | client-name-hierarchy |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/dnspolicy.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSPolicy | host-project-id-nonp-standard-logging-dnspolicy | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-nonp-standard-egress-allow-all-internal-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-nonp-standard-default-egress-deny-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-nonp-standard-default-ingress-deny-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouterNAT | host-project-id-nonp-nane1-nat | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouter | host-project-id-nonp-nane1-router | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouterNAT | host-project-id-nonp-nane2-nat | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouter | host-project-id-nonp-nane2-router | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSManagedZone | host-project-id-nonp-standard-googleapis-dns | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-nonp-standard-googleapis-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-nonp-standard-googleapis-wildcard-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSManagedZone | host-project-id-nonp-standard-gcrio-dns | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-nonp-standard-gcrio-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-nonp-standard-gcrio-wildcard-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-nonp-standard-egress-allow-psc-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/psc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeAddress | host-project-id-nonp-standard-psc-apis-ip | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/psc/google-apis/psc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeForwardingRule | host-project-id-nonp-standard-psc-apis-fw | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/subnet.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSubnetwork | host-project-id-nonp-nane1-standard-nonp-main-snet | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/subnet.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSubnetwork | host-project-id-nonp-nane2-standard-nonp-main-snet | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/network/vpc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeNetwork | host-project-id-nonp-global-standard-vpc | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/org-policies/exceptions/compute-restrict-cloud-nat-usage-except-host-project.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | ResourceManagerPolicy | compute-restrict-cloud-nat-usage-except-host-project-id-nonp | policies |
| client-folder/standard/applications-infrastructure/nonp/host-project/project.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Project | host-project-id-nonp | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/project.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSharedVPCHostProject | host-project-id-nonp-hostvpc | client-name-networking |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-compute | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-logging | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-monitoring | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-dns | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-servicedirectory | client-name-projects |
| client-folder/standard/applications-infrastructure/nonp/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-nonp-container | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicy | client-name-standard-app-infra-pbmm-fwpol | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/policy.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyAssociation | client-name-standard-app-infra-pbmm-fwpol-association | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-exclude-private-ip-ranges-egress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-exclude-private-ip-ranges-ingress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-deny-known-malicious-ip-ingress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/defaults.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-deny-known-malicious-ip-egress-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/iap.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-goto-next-for-iap-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/firewall-policy/rules/lb-health-checks.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewallPolicyRule | client-name-standard-app-infra-pbmm-fwpol-goto-next-for-lb-health-checks-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.applications-infrastructure.pbmm | client-name-hierarchy |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/dnspolicy.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSPolicy | host-project-id-pbmm-standard-logging-dnspolicy | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-pbmm-standard-egress-allow-all-internal-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-pbmm-standard-default-egress-deny-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-pbmm-standard-default-ingress-deny-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouterNAT | host-project-id-pbmm-nane1-nat | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouter | host-project-id-pbmm-nane1-router | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouterNAT | host-project-id-pbmm-nane2-nat | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/nat.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeRouter | host-project-id-pbmm-nane2-router | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSManagedZone | host-project-id-pbmm-standard-googleapis-dns | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-pbmm-standard-googleapis-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-pbmm-standard-googleapis-wildcard-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSManagedZone | host-project-id-pbmm-standard-gcrio-dns | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-pbmm-standard-gcrio-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/dns.yaml | dns.cnrm.cloud.google.com/v1beta1 | DNSRecordSet | host-project-id-pbmm-standard-gcrio-wildcard-rset | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/firewall.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeFirewall | host-project-id-pbmm-standard-egress-allow-psc-fwr | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/psc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeAddress | host-project-id-pbmm-standard-psc-apis-ip | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/psc/google-apis/psc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeForwardingRule | host-project-id-pbmm-standard-psc-apis-fw | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/subnet.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSubnetwork | host-project-id-pbmm-nane1-standard-pbmm-main-snet | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/subnet.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSubnetwork | host-project-id-pbmm-nane2-standard-pbmm-main-snet | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/network/vpc.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeNetwork | host-project-id-pbmm-global-standard-vpc | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/org-policies/exceptions/compute-restrict-cloud-nat-usage-except-host-project.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | ResourceManagerPolicy | compute-restrict-cloud-nat-usage-except-host-project-id-pbmm | policies |
| client-folder/standard/applications-infrastructure/pbmm/host-project/project.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Project | host-project-id-pbmm | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/project.yaml | compute.cnrm.cloud.google.com/v1beta1 | ComputeSharedVPCHostProject | host-project-id-pbmm-hostvpc | client-name-networking |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-compute | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-logging | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-monitoring | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-dns | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-servicedirectory | client-name-projects |
| client-folder/standard/applications-infrastructure/pbmm/host-project/services.yaml | serviceusage.cnrm.cloud.google.com/v1beta1 | Service | host-project-id-pbmm-container | client-name-projects |
| client-folder/standard/auto/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.auto | client-name-hierarchy |
| client-folder/standard/auto/nonp/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.auto.nonp | client-name-hierarchy |
| client-folder/standard/auto/pbmm/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard.auto.pbmm | client-name-hierarchy |
| client-folder/standard/folder.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | Folder | standard | client-name-hierarchy |
| client-folder/standard/org-policies/exceptions/compute-restrict-load-balancer-creation-for-types.yaml | resourcemanager.cnrm.cloud.google.com/v1beta1 | ResourceManagerPolicy | compute-restrict-load-balancer-creation-for-types-except-client-name-standard-folder | policies |
| logging-project/cloud-logging-bucket.yaml | logging.cnrm.cloud.google.com/v1beta1 | LoggingLogBucket | platform-and-component-client-name-log-bucket | logging |
| logging-project/project-iam.yaml | iam.cnrm.cloud.google.com/v1beta1 | IAMPartialPolicy | platform-and-component-log-client-name-bucket-writer-permissions | projects |
- ComputeAddress
- ComputeFirewallPolicyAssociation
- ComputeFirewallPolicyRule
- ComputeFirewallPolicy
- ComputeFirewall
- ComputeForwardingRule
- ComputeNetwork
- ComputeRouterNAT
- ComputeRouter
- ComputeSharedVPCHostProject
- ComputeSubnetwork
- DNSManagedZone
- DNSPolicy
- DNSRecordSet
- Folder
- IAMPartialPolicy
- IAMPolicyMember
- LoggingLogBucket
- LoggingLogSink
- Project
- ResourceManagerPolicy
- Service
-
Clone the package:
kpt pkg get https://github.com/GoogleCloudPlatform/pubsec-declarative-toolkit.git/solutions/client-landing-zone@${VERSION}Replace
${VERSION}with the desired repo branch or tag (for example,main). -
Move into the local package:
cd "./client-landing-zone/"
-
Edit the function config file(s):
- setters.yaml
-
Execute the function pipeline
kpt fn render
-
Initialize the resource inventory
kpt live init --namespace ${NAMESPACE}Replace
${NAMESPACE}with the namespace in which to manage the inventory ResourceGroup (for example,config-control). -
Apply the package resources to your cluster
kpt live apply
-
Wait for the resources to be ready
kpt live status --output table --poll-until current