Commit graph

67 commits

Author SHA1 Message Date
Mauritz Uphoff
5efb0f1bd6 hackathon: work on idea 2026-07-01 13:40:32 +02:00
Mauritz Uphoff
1bc2b0e694 ci: switch to gitleaks
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 31s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m15s
2026-06-29 11:22:36 +02:00
d86a06fa51
chore(terraform pg backend): renamed example to 'terraform-pg-backend-state-locking' (#44)
Some checks failed
Default CI / Check for Open TODOs (push) Successful in 42s
Mirror to Public GitHub / Sync Repository (push) Successful in 26s
Default CI / Secret Scanner (TruffleHog) (push) Failing after 1m11s
Default CI / Pre-Commit Hooks (push) Successful in 1m59s
## Description

Renamed example to `terraform-pg-backend-state-locking`

## Checklist

- [ ] The CI pipeline passed successfully.

Co-authored-by: Tim Reibe <tim.reibe@stackit.cloud>
Reviewed-on: #44
2026-06-26 09:51:10 +00:00
Tim Reibe
038928da3c
updated project name in tfvars example
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 41s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m32s
2026-06-26 11:36:01 +02:00
Mauritz Uphoff
22ac855f60 fix(tf-state readme): add warning for psql acl
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 41s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m4s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m39s
2026-06-26 11:32:54 +02:00
Mauritz Uphoff
52476cff80 fix(trufflehog): ignore pg example connection string
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 42s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m31s
2026-06-26 11:27:37 +02:00
Tim Reibe
11e39b5950
added license header and .terraform.lock.hcl files
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 41s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m2s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m32s
2026-06-26 11:11:39 +02:00
Tim Reibe
34407d936b
added MAINTAINERS.md
Some checks failed
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 50s
Default CI / Check for Open TODOs (pull_request) Successful in 1m3s
Default CI / Pre-Commit Hooks (pull_request) Failing after 2m50s
2026-06-26 10:50:24 +02:00
Tim Reibe
8605e2d651
Merge branch 'main' into examples/terraform-pg-state-locking
Some checks failed
Default CI / Check for Open TODOs (pull_request) Successful in 27s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m8s
Default CI / Pre-Commit Hooks (pull_request) Failing after 1m46s
2026-06-26 10:48:18 +02:00
6ddeb9ccbf
Merge pull request 'fix(cloud-init): remove license header for cloud-init files' (#42) from feat/ignore-license-header-for-cloud-init-files into main
All checks were successful
Default CI / Secret Scanner (TruffleHog) (push) Successful in 44s
Default CI / Check for Open TODOs (push) Successful in 43s
Mirror to Public GitHub / Sync Repository (push) Successful in 41s
Default CI / Pre-Commit Hooks (push) Successful in 2m0s
Reviewed-on: #42
Reviewed-by: Tim_Reibe <tim.reibe@digits.schwarz>
2026-06-26 08:41:37 +00:00
89f18bbba0
examples/iaas-image-upload (#34)
All checks were successful
Default CI / Check for Open TODOs (push) Successful in 36s
Mirror to Public GitHub / Sync Repository (push) Successful in 51s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 55s
Default CI / Pre-Commit Hooks (push) Successful in 1m50s
## Summary

- Adds a new self-contained Terraform example under `examples/iaas-image-upload/`
- Demonstrates how to upload a custom VM image to STACKIT using the `stackit_image` resource
- Follows existing repository conventions (numbered file prefixes, license headers, section dividers, `examples/terraform.tfvars.example` subfolder)

## What's included

- `00-provider.tf` — stackitcloud/stackit >= 0.99.0
- `01-variables.tf` — all variables with descriptions, defaults, and input validation
- `02-image.tf` — `stackit_image` resource with UEFI/Secure Boot config and labels
- `03-outputs.tf` — image ID, name, scope, and checksum
- `examples/terraform.tfvars.example` — safe-to-commit placeholder values
- `README.md` — prerequisites, deployment steps, validation, cleanup
- `.gitignore` — excludes `images/`, `keys/`, and `*.tfvars`

## Notes

- Supported disk formats restricted to `qcow2`, `raw`, `iso`
- Image files are gitignored via `images/*` — users place their file locally before `terraform apply`
- `terraform validate` and `pre-commit run --all-files` both pass clean

Co-authored-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
Reviewed-on: #34
Reviewed-by: Mauritz_Uphoff <mauritz.uphoff@digits.schwarz>
Co-authored-by: Sven Schmidt <sven.schmidt@digits.schwarz>
Co-committed-by: Sven Schmidt <sven.schmidt@digits.schwarz>
2026-06-26 07:08:32 +00:00
Mauritz Uphoff
91efc3cd88 fix(cloud-init): remove license header for cloud-init files
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 26s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 47s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m28s
2026-06-26 08:56:36 +02:00
13b24a2867
fix(hub-and-spoke): added empty opnsense.qcow2 image file (#38)
All checks were successful
Default CI / Check for Open TODOs (push) Successful in 33s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 56s
Mirror to Public GitHub / Sync Repository (push) Successful in 36s
Default CI / Pre-Commit Hooks (push) Successful in 1m24s
Co-authored-by: Tim_Reibe <tim.reibe@digits.schwarz>
Co-committed-by: Tim_Reibe <tim.reibe@digits.schwarz>
2026-06-26 06:37:56 +00:00
Tim Reibe
796719240a
examples(tf-pg-backend): added terraform pg backend with state lock
Some checks failed
Default CI / Check for Open TODOs (pull_request) Successful in 42s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Failing after 1m29s
2026-06-25 18:44:47 +02:00
Mauritz Uphoff
438765a0b4 example(dbaas-otel): add architecture diagramm
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 30s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m49s
2026-06-23 16:32:50 +02:00
Mauritz Uphoff
f5831d1902 example(cdn): remove redirect option
All checks were successful
Mirror to Public GitHub / Sync Repository (push) Successful in 35s
Default CI / Check for Open TODOs (push) Successful in 59s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 1m29s
Default CI / Pre-Commit Hooks (push) Successful in 2m19s
2026-06-23 16:23:34 +02:00
Mauritz Uphoff
7faf11e0ff example(cdn): add example on how to use cdn with s3
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 25s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 51s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m39s
2026-06-23 15:05:43 +02:00
Mauritz Uphoff
61bca7a258 example(opnsense): add a note about the default password
All checks were successful
Default CI / Check for Open TODOs (push) Successful in 1m0s
Mirror to Public GitHub / Sync Repository (push) Successful in 1m3s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 1m24s
Default CI / Pre-Commit Hooks (push) Successful in 2m58s
2026-06-23 13:27:03 +02:00
Mauritz Uphoff
9d19742f59 examples: fmt examples
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 1m3s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m40s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m47s
2026-06-23 13:14:28 +02:00
Mauritz Uphoff
8b2578086f chore: remove license for the example
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 48s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m13s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m10s
2026-06-16 09:42:05 +02:00
Mauritz Uphoff
6799e646ed chore: fix pre-commit run
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 41s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m21s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m9s
2026-06-16 09:41:08 +02:00
85c3ef8070 examples: add license header 2026-06-16 09:40:47 +02:00
80e081f8fe examples: add alb-tls-examples showcase
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 47s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m14s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m53s
2026-06-12 16:40:30 +02:00
6a4dba0b3d fix(ske-observability): remove read-only continue from alert route
route.continue is a read-only (computed) attribute of stackit_observability_instance; setting it broke terraform validate with Invalid Configuration for Read-Only Attribute. Affects both observability examples.
2026-06-02 11:46:31 +02:00
Mauritz Uphoff
21cf43adc1 examples: fix tf_validate issue
All checks were successful
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m4s
Default CI / Check for Open TODOs (pull_request) Successful in 34s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m55s
2026-06-02 11:09:26 +02:00
Mauritz Uphoff
9681c40eed
Merge pull request #7 from dieg666/fix/ske-encrypted-volumes-kubeconfig-ref
All checks were successful
Default CI / Check for Open TODOs (push) Successful in 51s
Mirror to Public GitHub / Sync Repository (push) Successful in 33s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 1m23s
Default CI / Pre-Commit Hooks (push) Successful in 2m26s
fix(ske-encrypted-volumes): reference correct kubeconfig resource
2026-06-02 10:58:08 +02:00
Mauritz Uphoff
b619e5b798
Merge pull request #8 from dieg666/fix/ske-kubernetes-provider-kubeconfig-ref
fix(ske-kubernetes-terraform-provider): reference correct kubeconfig
2026-06-02 10:57:57 +02:00
Mauritz Uphoff
84cb944279 example(telemetry-router): use s3 with compliance lock
All checks were successful
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 51s
Default CI / Check for Open TODOs (pull_request) Successful in 59s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m16s
2026-06-02 10:30:44 +02:00
067ea2e784 fix(ske-kubernetes-terraform-provider): reference correct kubeconfig resource
The kubernetes provider referenced stackit_ske_kubeconfig.ske_kubeconfig_01, but the resource is declared as example; terraform validate failed with Reference to undeclared resource.
2026-06-02 09:55:14 +02:00
fced79b323 fix(ske-encrypted-volumes): reference correct kubeconfig resource
The kubernetes provider referenced stackit_ske_kubeconfig.example, but the resource is declared as default; terraform validate failed with Reference to undeclared resource.
2026-06-02 09:49:08 +02:00
Mauritz Uphoff
807fe871be example(telemetry-router): build hub and spoke architecture for logs
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 35s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m2s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m53s
2026-06-01 20:16:32 +02:00
e5af52e85d chore: rename pfSense hub-and-spoke folder to opnsense-hub-and-spoke
All checks were successful
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m12s
Default CI / Check for Open TODOs (pull_request) Successful in 1m24s
Default CI / Pre-Commit Hooks (pull_request) Successful in 4m58s
2026-05-27 09:02:58 +02:00
50b6092523 adjusted from var.project id to local.hub_project_id
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 33s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Successful in 1m59s
2026-05-27 08:38:29 +02:00
12a9d1737d replace pfsense with opnsense 2026-05-27 08:24:26 +02:00
Mauritz Uphoff
b99a8a1eae example(iam-scim): add docs for ske integration
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 38s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m28s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m32s
2026-05-21 10:01:22 +02:00
Mauritz Uphoff
2c184baca0 example(ske-azure-arc): add example on how to add ske cluster to azure arc
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 38s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m4s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m2s
2026-05-19 21:42:02 +02:00
Mauritz Uphoff
3ac68a2371 example(idp): adjust readme
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 50s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m16s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m10s
2026-05-19 15:05:12 +02:00
Mauritz Uphoff
ce41148b3a example(idp): build a example on how to use scim
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 42s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m32s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m41s
2026-05-19 12:10:43 +02:00
21bd7eeba0
Merge pull request 'example(stackit-landing-zone): create link to landing-zone repository' (#24) from example/link-stackit-landingzone into main
All checks were successful
Default CI / Check for Open TODOs (push) Successful in 37s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 1m15s
Mirror to Public GitHub / Sync Repository (push) Successful in 42s
Default CI / Pre-Commit Hooks (push) Successful in 2m36s
Reviewed-on: #24
2026-05-18 14:49:07 +00:00
Mauritz Uphoff
efab3f3f98 example(stackit-landing-zone): create link to landing-zone repository
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 1m4s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m5s
Default CI / Pre-Commit Hooks (pull_request) Successful in 3m16s
2026-05-18 16:40:56 +02:00
Mauritz Uphoff
20dd7ec314 example(vpn): remove my mail
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 43s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m7s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m30s
2026-05-13 13:53:46 +02:00
Mauritz Uphoff
41762cf7dc example(vpn): implement usecases
All checks were successful
Default CI / Check for Open TODOs (pull_request) Successful in 48s
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m12s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m2s
2026-05-13 13:21:22 +02:00
Mauritz Uphoff
50584780cf example(nested-folder): add warning to readme
All checks were successful
Mirror to Public GitHub / Sync Repository (push) Successful in 55s
Default CI / Secret Scanner (TruffleHog) (push) Successful in 1m18s
Default CI / Pre-Commit Hooks (push) Successful in 2m6s
2026-05-06 14:09:15 +02:00
Mouhsen Ibrahim
6f29d02c65 terraform: Add provider blocks to all examples 2026-05-06 12:05:08 +02:00
Mauritz Uphoff
e27a25209d example(hub-spoke): replace python crypt func
All checks were successful
Default CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m16s
Default CI / Pre-Commit Hooks (pull_request) Successful in 2m28s
2026-04-27 16:01:27 +02:00
Mauritz Uphoff
cc4120dc63 example(dbaas): add key id annotation for rotation
All checks were successful
Professional Services CI / Secret Scanner (TruffleHog) (pull_request) Successful in 52s
Professional Services CI / Pre-Commit Hooks (pull_request) Successful in 3m4s
Signed-off-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
2026-04-23 10:47:11 +02:00
Mauritz Uphoff
8da063d3ee example(dbaas): add example on how to ship dbaas metrics to obs instance
All checks were successful
Professional Services CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m40s
Professional Services CI / Pre-Commit Hooks (pull_request) Successful in 2m43s
Signed-off-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
2026-04-23 10:06:08 +02:00
Mauritz Uphoff
5e09b63b58 example(iaas): add example on how to use alb with waf integrations
All checks were successful
Professional Services CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m12s
Professional Services CI / Pre-Commit Hooks (pull_request) Successful in 2m15s
Signed-off-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
2026-04-21 14:59:38 +02:00
Mauritz Uphoff
a4acc2d1bc chore: use proper project-id
All checks were successful
Mirror to Public GitHub / Sync Repository (push) Successful in 55s
Professional Services CI / Secret Scanner (TruffleHog) (push) Successful in 1m19s
Professional Services CI / Pre-Commit Hooks (push) Successful in 2m8s
Signed-off-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
2026-04-20 14:37:42 +02:00
Mauritz Uphoff
c0f2e848d7 example(iaas): add example for cross az loadbalancer
All checks were successful
Professional Services CI / Secret Scanner (TruffleHog) (pull_request) Successful in 1m3s
Professional Services CI / Pre-Commit Hooks (pull_request) Successful in 2m1s
Signed-off-by: Mauritz Uphoff <mauritz.uphoff@stackit.cloud>
2026-04-20 12:29:08 +00:00