feat: addon poc content taken from vburckhardt/addon-poc Repo - sec Branch

Author: Rajat Agrawal

.gitignore

@@ -0,0 +1,37 @@
+# Local .terraform directories
+**/.terraform/*
+
+# .tfstate files
+*.tfstate
+*.tfstate.*
+
+# Crash log files
+crash.log
+crash.*.log
+
+# Exclude all .tfvars files, which are likely to contain sensitive data, such as
+# password, private keys, and other secrets. These should not be part of version 
+# control as they are data points which are potentially sensitive and subject 
+# to change depending on the environment.
+*.tfvars
+*.tfvars.json
+
+# Ignore override files as they are usually used to override resources locally and so
+# are not checked in
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+
+# Ignore transient lock info files created by terraform apply
+.terraform.tfstate.lock.info
+
+# Include override files you do wish to add to version control using negated pattern
+# !example_override.tf
+
+# Include tfplan files to ignore the plan output of command: terraform plan -out=tfplan
+# example: *tfplan*
+
+# Ignore CLI configuration files
+.terraformrc
+terraform.rc

ibm_catalog.json

@@ -2,12 +2,10 @@
 	"products": [
 		{
 			"label": "IBM Cloud Essential Security and Observability Services",
-			"name": "deploy-arch-ibm-core-security-svcs",
+			"name": "Core_Security_Services",
+			"version": "1.3.4",
 			"product_kind": "solution",
 			"tags": [
-				"solution",
-				"support_ibm",
-				"target_terraform",
 				"security",
 				"ibm_created"
 			],
@@ -28,10 +26,8 @@
 			],
 			"short_description": "Deploy core security and other supporting services to get set up to manage the security compliance of the resources in your account.",
 			"long_description": "Get IBM Cloud’s suite of core security services with a single deployment enabling you to securely manage keys and secrets and run security and compliance scans so that you always know the posture of the resources in your account. You can also take advantage of an event notification routing service that notifies you to critical events that occur in your IBM Cloud account and observability services that provide enterprise-grade monitoring and logging giving you operational visibility into the performance and health of your apps, services, and infrastructure.",
-			"provider_name": "IBM",
-			"offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/stack-ibm-core-security-services/main/reference-architectures/light-theme.svg",
 			"offering_docs_url": "https://cloud.ibm.com/docs/security-services?topic=security-services-overview",
-			"support_details": "If you’re experiencing issues with this product, review the troubleshooting information available from the “Docs” link in the Related links section. If you can’t resolve your problem, click “Get help” in the related links and create a case.",
+			"offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/stack-ibm-core-security-services/main/reference-architectures/light-theme.svg",
 			"features": [
 				{
 					"title": "Creates an IBM Key Protect instance",
@@ -66,6 +62,14 @@
 				{
 					"label": "Standard",
 					"name": "standard",
+					"licenses": [
+						{
+							"id": "LICENSE",
+							"name": "LICENSE",
+							"type": "text/plain",
+							"description": "LICENSE"
+						}
+					],
 					"compliance": {
 						"authority": "scc-v3",
 						"profiles": [
@@ -130,7 +134,7 @@
 							{
 								"title": "Optionally configure an IBM Secrets Manager IAM credentials engine to an IBM Secrets Manager instance.",
 								"description": "Optionally configure an IBM Secrets Manager IAM credentials engine to an IBM Secrets Manager instance."
-							  },
+							},
 							{
 								"title": "Creates an IBM Security and Compliance Center instance",
 								"description": "Creates and configures an IBM Security Compliance Center instance."
@@ -156,6 +160,39 @@
 							}
 						]
 					},
+					"dependencies": [
+						{
+							"name": "deploy-arch-ibm-observability",
+							"id": "231fad60-b8ac-4540-bc34-ae1e4379d46f-global",
+							"flavors": [
+								"instances"
+							],
+							"catalog_id": "0fbd7aba-de09-43bf-b848-ade81f4ad0ff",
+							"optional": true,
+							"input_mapping": [
+								{
+									"dependency_output": "cloud_monitoring_crn",
+									"version_input": "cloud_monitoring_crn"
+								}
+							]
+						},
+						{
+							"name": "deploy-arch-ibm-account-infra-base",
+							"id": "9fcd1945-8ebc-4072-85dc-6400653e7077-global",
+							"flavors": [
+								"standard"
+							],
+							"catalog_id": "0fbd7aba-de09-43bf-b848-ade81f4ad0ff",
+							"optional": true,
+							"input_mapping": [
+								{
+									"dependency_output": "security_group_group_name",
+									"version_input": "existing_resource_group_name"
+								}
+							]
+						}
+					],
+					"release_notes_url": "https://cloud.ibm.com/docs/security-services?topic=security-services-css-relnotes",
 					"configuration": [
 						{
 							"key": "prefix",
@@ -201,13 +238,6 @@
 								}
 							}
 						},
-						{
-							"key": "enable_platform_logs_metrics",
-							"type": "boolean",
-							"default_value": true,
-							"description": "Whether to provision logging and monitoring instances are configured to receive all platform logs and metrics in the target region. There can only be one instance per region provisioned for platform logs/metrics.",
-							"required": false
-						},
 						{
 							"key": "existing_kms_instance_crn",
 							"type": "string",
@@ -222,13 +252,6 @@
 							"description": "List of emails to configure event notifications.",
 							"required": false
 						},
-						{
-							"key" : "existing_en_instance_crn",
-							"type": "string",
-							"default_value": "__NULL__",
-							"description": "The CRN of existing event notification instance. If not supplied, a new instance is created.",
-							"required": false
-						},
 						{
 							"key": "existing_secrets_manager_crn",
 							"type": "string",
@@ -276,46 +299,18 @@
 									"value": "security-compliance-center-trial-plan"
 								}
 							]
-						}
-					],
-					"outputs": [
-						{
-							"key": "key_management_service_instance_crn",
-							"description": "The CRN of the Hyper Protect Crypto Service instance or Key Protect instance."
-						},
-						{
-							"key": "secrets_manager_crn",
-							"description": "The CRN of the Secrets Manager instance."
-						},
-						{
-							"key": "scc_crn",
-							"description": "The CRN of the Security and Compliance Center instance."
 						},
 						{
-							"key": "monitoring_crn",
-							"description": "The crn of the IBM Cloud Monitoring instance."
-						},
-						{
-							"key": "cos_instance_crn",
-							"description": "The crn of the Cloud Object Storage instance."
-						},
-						{
-							"key": "en_crn",
-							"description": "The crn of the Event Notifications instance."
-						},
-						{
-							"key": "log_analysis_crn",
-							"description": "The id of the provisioned Log Analysis instance."
-						},
-						{
-							"key": "scc_workload_protection_crn",
-							"description": "SCC Workload Protection instance CRN."
+							"key": "cloud_monitoring_crn",
+							"type": "string",
+							"default_value": "__NULL__",
+							"description": "The crn of an existing cloud monitoring instance.",
+							"required": false
 						}
 					],
-					"install_type": "fullstack",
-					"release_notes_url": "https://cloud.ibm.com/docs/security-services?topic=security-services-css-relnotes"
+					"install_type": "extension"
 				}
 			]
 		}
 	]
-}
+}