Merge branch 'main' into direct-endp

Author: Jordan-Williams2

.catalog-onboard-pipeline.yaml

@@ -17,15 +17,6 @@ offerings:
         scc:
           instance_id: 1c7d5f78-9262-44c3-b779-b28fe4d88c37
           region: us-south
-      - name: existing-vpc
-        mark_ready: false
-        install_type: extension
-        validation_type: schematics
-        pre_validation: "tests/scripts/pre-validation-deploy-slz-vpc.sh"
-        post_validation: "tests/scripts/post-validation-destroy-slz-vpc.sh"
-        scc:
-          instance_id: 1c7d5f78-9262-44c3-b779-b28fe4d88c37
-          region: us-south
   - name: deploy-arch-ibm-slz-vpc
     kind: solution
     catalog_id: 7df1e4ca-d54c-4fd0-82ce-3d13247308cd

.secrets.baseline

@@ -3,7 +3,7 @@
     "files": "go.sum|^.secrets.baseline$",
     "lines": null
   },
-  "generated_at": "2023-12-16T18:26:41Z",
+  "generated_at": "2025-10-28T04:05:31Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"

README.md

@@ -44,12 +44,6 @@ For more information about the default configuration, see [Default Secure Landin
 * [Contributing](#contributing)
 <!-- END OVERVIEW HOOK -->
 
-## Reference architectures
-- [VPC landing zone - Standard variation](https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-vpc-ra)
-- [VSI on VPC landing zone - Standard variation](https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-vsi-ra)
-- [VSI on VPC landing zone - QuickStart variation](https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-vsi-ra-qs)
-- [Red Hat OpenShift Container Platform on VPC landing zone](https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-ocp-ra)
-
 ## terraform-ibm-landing-zone
 
 Complete the following steps before you deploy the Secure Landing Zone module.

ibm_catalog.json

@@ -205,7 +205,8 @@
             ]
           },
           "terraform_version": "1.10.5",
-          "dependency_version_2": true
+          "dependency_version_2": true,
+          "ignore_readme": true
         },
         {
           "label": "Standard - Financial Services edition",
@@ -595,184 +596,8 @@
             ]
           },
           "terraform_version": "1.10.5",
-          "dependency_version_2": true
-        },
-        {
-          "label": "Existing VPC",
-          "name": "existing-vpc",
-          "index": 5,
-          "install_type": "fullstack",
-          "working_directory": "patterns/vsi-extension",
-          "release_notes_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-secure-infrastructure-vpc-relnotes",
-          "dependencies": [
-            {
-              "flavors": [
-                "standard"
-              ],
-              "id": "95fccffc-ae3b-42df-b6d9-80be5914d852-global",
-              "name": "deploy-arch-ibm-slz-ocp",
-              "version": ">=1.0.0",
-              "optional": false
-            },
-            {
-              "flavors": [
-                "standard"
-              ],
-              "id": "9fc0fa64-27af-4fed-9dce-47b3640ba739-global",
-              "name": "deploy-arch-ibm-slz-vpc",
-              "version": ">=1.0.0"
-            }
-          ],
-          "compliance": {
-            "authority": "scc-v3",
-            "profiles": [
-              {
-                "profile_name": "IBM Cloud Framework for Financial Services",
-                "profile_version": "1.7.0"
-              }
-            ]
-          },
-          "configuration": [
-            {
-              "key": "ssh_public_key",
-              "required": true,
-              "value_constraints": [
-                {
-                  "type": "regex",
-                  "description": "The value provided for 'ssh_public_key' is not valid.",
-                  "value": "^__NULL__$|^ssh-rsa AAAA[0-9A-Za-z+/]+[=]{0,3} ?([^@]+@[^@]+)?"
-                }
-              ]
-            },
-            {
-              "custom_config": {
-                "config_constraints": {
-                  "generationType": "2"
-                },
-                "grouping": "deployment",
-                "original_grouping": "deployment",
-                "type": "vpc_region"
-              },
-              "key": "region",
-              "required": true
-            },
-            {
-              "key": "ibmcloud_api_key"
-            },
-            {
-              "key": "prefix",
-              "required": true,
-              "type": "string",
-              "default_value": "dev",
-              "random_string": {
-                "length": 4
-              }
-            },
-            {
-              "key": "vpc_id"
-            },
-            {
-              "key": "existing_ssh_key_name"
-            },
-            {
-              "key": "resource_tags",
-              "custom_config": {
-                "grouping": "deployment",
-                "original_grouping": "deployment",
-                "config_constraints": {
-                  "type": "string"
-                }
-              }
-            },
-            {
-              "key": "access_tags",
-              "custom_config": {
-                "grouping": "deployment",
-                "original_grouping": "deployment",
-                "config_constraints": {
-                  "type": "string"
-                }
-              }
-            },
-            {
-              "key": "image_name"
-            },
-            {
-              "key": "vsi_instance_profile"
-            },
-            {
-              "key": "user_data"
-            },
-            {
-              "key": "boot_volume_encryption_key"
-            },
-            {
-              "key": "vsi_per_subnet"
-            },
-            {
-              "key": "subnet_names"
-            },
-            {
-              "key": "security_group_ids"
-            },
-            {
-              "key": "block_storage_volumes"
-            },
-            {
-              "key": "skip_iam_authorization_policy"
-            },
-            {
-              "key": "enable_floating_ip"
-            },
-            {
-              "key": "placement_group_id"
-            },
-            {
-              "key": "load_balancers"
-            },
-            {
-              "key": "primary_vni_additional_ip_count"
-            },
-            {
-              "key": "use_legacy_network_interface"
-            },
-            {
-              "key": "allow_ip_spoofing"
-            }
-          ],
-          "iam_permissions": [
-            {
-              "role_crns": [
-                "crn:v1:bluemix:public:iam::::role:Administrator"
-              ],
-              "service_name": "is.vpc",
-              "notes": "Required to create Virtual Private Cloud(VPC)."
-            }
-          ],
-          "architecture": {
-            "features": [
-              {
-                "title": " ",
-                "description": "Ideal for extending existing VPC environments"
-              },
-              {
-                "title": " ",
-                "description": "Validated configuration that enhances resiliency and security while aligning with financial services compliance requirements."
-              }
-            ],
-            "diagrams": [
-              {
-                "diagram": {
-                  "caption": "Virtual Server Instance topology - VSI on existing VPC",
-                  "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone/main/reference-architectures/vsi-vsi.drawio.svg",
-                  "type": "image/svg+xml"
-                },
-                "description": "This variation is aligned to the IBM Cloud for Financial Services reference architecture. It provisions <b>Virtual Server Instances (VSIs)</b> in every subnet across multiple availability zones, delivering a resilient and secure multizone infrastructure to run your workloads.<br><br> The extension integrates <b>Key Management</b> to strengthen security of sensitive data and uses <b>Activity Tracker with Flow Logs</b> to collect and store Internet Protocol (IP) traffic data. A <b>transit gateway</b> connects the Management and Workload VPCs, while <b>Virtual Private Endpoints (VPEs)</b> provide private access to IBM Cloud services. Secure connectivity to enterprise environments is enabled through a <b>site-to-site VPN</b>, and <b>CBR (Context-based restrictions)</b> rules manage traffic flows to approved services.<br><br> This variation avoids the use of floating IPs for internet access, relying instead on private and controlled connections. It simplifies risk management and demonstrates regulatory compliance for Financial Services scenarios."
-              }
-            ]
-          },
-          "terraform_version": "1.10.5",
-          "dependency_version_2": true
+          "dependency_version_2": true,
+          "ignore_readme": true
         }
       ]
     },
@@ -1190,7 +1015,8 @@
             ]
           },
           "terraform_version": "1.10.5",
-          "dependency_version_2": true
+          "dependency_version_2": true,
+          "ignore_readme": true
         }
       ]
     },
@@ -1589,7 +1415,8 @@
             ]
           },
           "terraform_version": "1.10.5",
-          "dependency_version_2": true
+          "dependency_version_2": true,
+          "ignore_readme": true
         },
         {
           "label": "Standard - Financial Services edition",
@@ -2249,7 +2076,8 @@
             ]
           },
           "terraform_version": "1.10.5",
-          "dependency_version_2": true
+          "dependency_version_2": true,
+          "ignore_readme": true
         }
       ]
     }

patterns/vpc/outputs.tf

@@ -141,3 +141,33 @@ output "schematics_workspace_id" {
 }
 
 ##############################################################################
+
+##############################################################################
+# VPC Next Steps URLs outputs
+##############################################################################
+
+output "next_steps_text" {
+  value       = "Your Virtual Private Clouds are ready."
+  description = "Next steps text"
+}
+
+output "next_step_primary_label" {
+  value       = "Go to Virtual Private Clouds"
+  description = "Primary label"
+}
+
+output "next_step_primary_url" {
+  value       = "https://cloud.ibm.com/infrastructure/network/vpcs"
+  description = "Primary URL"
+}
+
+output "next_step_secondary_label" {
+  value       = "Learn more about VPCs"
+  description = "Secondary label"
+}
+
+output "next_step_secondary_url" {
+  value       = "https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpc"
+  description = "Secondary URL"
+}
+##############################################################################

patterns/vsi-extension/outputs.tf

@@ -2,3 +2,29 @@ output "vsi_data" {
   description = "Details of the VSI including name, id, zone, and primary ipv4 address, VPC Name, and floating IP."
   value       = module.vsi
 }
+
+output "next_steps_text" {
+  value       = "Your Virtual Server Instances are ready."
+  description = "Next steps text"
+}
+
+output "next_step_primary_label" {
+  value       = "Go to Virtual Server Instances"
+  description = "Primary label"
+}
+
+output "next_step_primary_url" {
+  value       = "https://cloud.ibm.com/infrastructure/compute/vs"
+  description = "Primary URL"
+}
+
+
+output "next_step_secondary_label" {
+  value       = "Expose app to internet"
+  description = "Secondary label"
+}
+
+output "next_step_secondary_url" {
+  value       = "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-access-public-app"
+  description = "Secondary URL"
+}

patterns/vsi-quickstart/outputs.tf

@@ -1,8 +1,33 @@
 ##############################################################################
 # Output Variables
 ##############################################################################
-
 output "config" {
   description = "Output configuration as encoded JSON"
   value       = module.landing_zone.config
 }
+
+output "next_steps_text" {
+  value       = module.landing_zone.next_steps_text
+  description = "Next steps text"
+}
+
+output "next_step_primary_label" {
+  value       = module.landing_zone.next_step_primary_label
+  description = "Primary label"
+}
+
+output "next_step_primary_url" {
+  value       = module.landing_zone.next_step_primary_url
+  description = "Primary URL"
+}
+
+
+output "next_step_secondary_label" {
+  value       = module.landing_zone.next_step_secondary_label
+  description = "Secondary label"
+}
+
+output "next_step_secondary_url" {
+  value       = module.landing_zone.next_step_secondary_url
+  description = "Secondary URL"
+}

patterns/vsi/module/outputs.tf

@@ -160,3 +160,30 @@ output "config" {
 }
 
 ##############################################################################
+
+
+output "next_steps_text" {
+  value       = "Your Virtual Server Instances are ready."
+  description = "Next steps text"
+}
+
+output "next_step_primary_label" {
+  value       = "Go to Virtual Server Instances"
+  description = "Primary label"
+}
+
+output "next_step_primary_url" {
+  value       = "https://cloud.ibm.com/infrastructure/compute/vs"
+  description = "Primary URL"
+}
+
+
+output "next_step_secondary_label" {
+  value       = "Expose app to internet"
+  description = "Secondary label"
+}
+
+output "next_step_secondary_url" {
+  value       = "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-access-public-app"
+  description = "Secondary URL"
+}