This repository was archived by the owner on May 7, 2025. It is now read-only.
v0.3.0
tl,dr
- Helm chart for Online Boutique π
- New Config Sync UI and Policy Controller UI pages π π π
- More Cloud Armor WAF rules π‘οΈ
What's Changed
- The Online Boutique sample is now deployed via its Helm chart instead of using Kustomize. The end user experience is way much better, hope you will like it! The other samples will follow soon too.
- Add new Monitor resources synced page with the new Config Sync UI
- Add new Monitor policies violations page with the new Policy Controller UI
- Fix two issues with the GKE cluster provisioning related to the
serviceUsageConsumerrole and the Cloud DNS API and GKE cluster fields - Update the Check deployments section of each page with a link to the new Config Sync UI and the new Policy Controller UI when appropriate
- Populate
remediationfield in allConstraintsin order to have a link with detailed remediation perConstraint's violation in the new Policy Controller UI - Enable Prevent drift for Config Sync for both the Config Controller instance in Host project and the GKE cluster in Tenant project
- Add more WAF rules with Cloud Armor such as
cve,rce,methodenforcement,scannerdetection,protocolattack,php,sessionfixation,javaandnodejsin addition to existing ones:xss,sqli,lfiandrfi. - Add
SpannerandMemorystoregroups for Online Boutique in the navigation panel with their respective pages - Review the architecture diagram image
- External links now open in a new tab
Full Changelog: ee49a08...e6c61d7
Tested with:
- GKE 1.25.4-gke.1600
- ASM MCP 1.15.3-asm.2 + MDP 1.15.3-asm.1
- ACM 1.14.0
- Whereami 1.2.14
- Online Boutique 0.5.0
- Bank of Anthos 0.5.10