solutions/guardrails/setters.yaml (19 lines of code) (raw):

# Copyright 2021 Google LLC # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. ######### apiVersion: v1 kind: ConfigMap metadata: # kpt-merge: /setters name: setters data: ###### # General Settings Values # # The following are Settings for the environment to bootstrap with # ###### billing-id: "0000000000" org-id: "0000000000" department-code: "goc" ###### # Guardrails Project Values # This is the project where the guardrails resources will be deployed into # Most likely a new project # guardrails-project-id: project-id # Must be globally unique and max 30 characters guardrails-namespace: config-control #### Management Project # This is the project where the config controller instance lives # management-project-id: config-controller-project management-namespace: config-control management-project-number: "000000000000" # You can can this by running gcloud projects list --format="table(projectNumber)" --filter="management-project-id" <-- replace with management project id ########## # Required to be compliant with Guardrails 04 - Enterprise Monitoring # Create role-based account to enable enterprise monitoring and visibility # Emails used must be Already in Cloud Identity # Users and roles will be created for the accociated emails # https://github.com/canada-ca/cloud-guardrails/blob/master/EN/04_Enterprise-Monitoring-Accounts.md # ###### asset-viewer-group: email@email.com audit-data-group: email@email.com audit-data-viewer-group: email@email.com billing-data-group: email@email.com billing-data-viewer-group: email@email.com billing-console-viewer-group: email@email.com