updating examples for onboarding & cspm org

haresh-suresh · jose-pablo-camacho · commit b4d8e07e3788 · 2024-09-10T17:51:33.000-06:00
diff --git a/modules/onboarding/organizational.tf b/modules/onboarding/organizational.tf
@@ -26,7 +26,7 @@ resource "google_organization_iam_member" "browser" {
 # Call Sysdig Backend to create organization with foundational onboarding
 # (ensure it is called after all above cloud resources are created)
 #---------------------------------------------------------------------------------------------
-resource "sysdig_secure_organization" "azure_organization" {
+resource "sysdig_secure_organization" "google_organization" {
   count = var.is_organizational ? 1 : 0
 
   management_account_id   = sysdig_secure_cloud_auth_account.google_account.id
diff --git a/modules/onboarding/outputs.tf b/modules/onboarding/outputs.tf
@@ -12,3 +12,8 @@ output "is_organizational" {
   value       = var.is_organizational
   description = "Boolean value to indicate if secure-for-cloud is deployed to an entire GCP organization or not"
 }
+
+output "organization_domain" {
+  value       = var.organization_domain
+  description = "Organization domain. e.g. sysdig.com"
+}
diff --git a/test/examples/modular_organization/onboarding_with_posture.tf b/test/examples/modular_organization/onboarding_with_posture.tf
@@ -18,8 +18,26 @@ provider "sysdig" {
 }
 
 module "onboarding" {
-  source            = "../../../modules/onboarding"
-  project_id        = "org-child-project-3"
-  external_id       = "25ef0d887bc7a2b30089a025618e1c62"
-  is_organizational = true
+  source              = "../../../modules/onboarding"
+  project_id          = "org-child-project-3"
+  external_id         = "25ef0d887bc7a2b30089a025618e1c62"
+  is_organizational   = true
+  organization_domain = "draios.com"
+}
+
+module "config-posture" {
+  source                   = "../../../modules/config-posture"
+  project_id               = module.onboarding.project_id
+  external_id              = "25ef0d887bc7a2b30089a025618e1c62"
+  is_organizational        = module.onboarding.is_organizational
+  organization_domain      = module.onboarding.organization_domain
+  sysdig_secure_account_id = module.onboarding.sysdig_secure_account_id
+}
+
+resource "sysdig_secure_cloud_auth_account_feature" "config_posture" {
+  account_id = module.onboarding.sysdig_secure_account_id
+  type       = "FEATURE_SECURE_CONFIG_POSTURE"
+  enabled    = true
+  components = [module.config-posture.service_principal_component_id]
+  depends_on = [module.config-posture]
 }
diff --git a/test/examples/modular_single_project/onboarding_with_posture.tf b/test/examples/modular_single_project/onboarding_with_posture.tf
@@ -21,4 +21,19 @@ module "onboarding" {
   source      = "../../../modules/onboarding"
   project_id  = "org-child-project-3"
   external_id = "25ef0d887bc7a2b30089a025618e1c62"
+}
+
+module "config-posture" {
+  source                   = "../../../modules/config-posture"
+  project_id               = "org-child-project-3"
+  external_id              = "25ef0d887bc7a2b30089a025618e1c62"
+  sysdig_secure_account_id = module.onboarding.sysdig_secure_account_id
+}
+
+resource "sysdig_secure_cloud_auth_account_feature" "config_posture" {
+  account_id = module.onboarding.sysdig_secure_account_id
+  type       = "FEATURE_SECURE_CONFIG_POSTURE"
+  enabled    = true
+  components = [module.config-posture.service_principal_component_id]
+  depends_on = [module.config-posture]
 }

Original file line number	Diff line number	Diff line change
`@@ -12,3 +12,8 @@ output "is_organizational" {`
`12`	`12`	`value = var.is_organizational`
`13`	`13`	`description = "Boolean value to indicate if secure-for-cloud is deployed to an entire GCP organization or not"`
`14`	`14`	`}`
	`15`	`+`
	`16`	`+output "organization_domain" {`
	`17`	`+ value = var.organization_domain`
	`18`	`+ description = "Organization domain. e.g. sysdig.com"`
	`19`	`+}`