├── .gitignore ├── CONTRIBUTING.md ├── Jenkinsfile ├── LICENSE ├── Makefile ├── OWNERS ├── README-QWIKLABS.md ├── README.md ├── images └── custom-nginx │ ├── Dockerfile │ ├── cloudbuild.yaml │ ├── default.conf │ └── nginx.conf ├── img ├── bastion_scp_error.png ├── nginx_success_browser.png └── terraform_fingerprint_error.png ├── renovate.json ├── scripts ├── common.sh ├── create.sh ├── enable-apis.sh ├── generate-tfvars.sh ├── teardown.sh └── validate.sh ├── terraform ├── iam.tf ├── main.tf ├── modules │ ├── firewall │ │ ├── firewall.tf │ │ └── variables.tf │ ├── instance │ │ ├── main.tf │ │ ├── manifests │ │ │ ├── apparmor-loader.yaml │ │ │ ├── nginx.yaml │ │ │ └── pod-labeler.yaml │ │ ├── outputs.tf │ │ └── variables.tf │ └── network │ │ ├── main.tf │ │ ├── outputs.tf │ │ └── variables.tf ├── provider.tf ├── variables.tf └── versions.tf └── test ├── boilerplate ├── boilerplate.BUILD.txt ├── boilerplate.Dockerfile.txt ├── boilerplate.Makefile.txt ├── boilerplate.WORKSPACE.txt ├── boilerplate.bazel.txt ├── boilerplate.bzl.txt ├── boilerplate.css.txt ├── boilerplate.go.preamble ├── boilerplate.go.txt ├── boilerplate.html.preamble ├── boilerplate.html.txt ├── boilerplate.java.txt ├── boilerplate.js.txt ├── boilerplate.py.preamble ├── boilerplate.py.txt ├── boilerplate.scss.txt ├── boilerplate.sh.preamble ├── boilerplate.sh.txt ├── boilerplate.tf.txt ├── boilerplate.ts.txt ├── boilerplate.xml.preamble ├── boilerplate.xml.txt └── boilerplate.yaml.txt ├── make.sh └── verify_boilerplate.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/.gitignore -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /Jenkinsfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/Jenkinsfile -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/Makefile -------------------------------------------------------------------------------- /OWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/OWNERS -------------------------------------------------------------------------------- /README-QWIKLABS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/README-QWIKLABS.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/README.md -------------------------------------------------------------------------------- /images/custom-nginx/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/images/custom-nginx/Dockerfile -------------------------------------------------------------------------------- /images/custom-nginx/cloudbuild.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/images/custom-nginx/cloudbuild.yaml -------------------------------------------------------------------------------- /images/custom-nginx/default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/images/custom-nginx/default.conf -------------------------------------------------------------------------------- /images/custom-nginx/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/images/custom-nginx/nginx.conf -------------------------------------------------------------------------------- /img/bastion_scp_error.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/img/bastion_scp_error.png -------------------------------------------------------------------------------- /img/nginx_success_browser.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/img/nginx_success_browser.png -------------------------------------------------------------------------------- /img/terraform_fingerprint_error.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/img/terraform_fingerprint_error.png -------------------------------------------------------------------------------- /renovate.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/renovate.json -------------------------------------------------------------------------------- /scripts/common.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/common.sh -------------------------------------------------------------------------------- /scripts/create.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/create.sh -------------------------------------------------------------------------------- /scripts/enable-apis.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/enable-apis.sh -------------------------------------------------------------------------------- /scripts/generate-tfvars.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/generate-tfvars.sh -------------------------------------------------------------------------------- /scripts/teardown.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/teardown.sh -------------------------------------------------------------------------------- /scripts/validate.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/scripts/validate.sh -------------------------------------------------------------------------------- /terraform/iam.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/iam.tf -------------------------------------------------------------------------------- /terraform/main.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/main.tf -------------------------------------------------------------------------------- /terraform/modules/firewall/firewall.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/firewall/firewall.tf -------------------------------------------------------------------------------- /terraform/modules/firewall/variables.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/firewall/variables.tf -------------------------------------------------------------------------------- /terraform/modules/instance/main.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/main.tf -------------------------------------------------------------------------------- /terraform/modules/instance/manifests/apparmor-loader.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/manifests/apparmor-loader.yaml -------------------------------------------------------------------------------- /terraform/modules/instance/manifests/nginx.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/manifests/nginx.yaml -------------------------------------------------------------------------------- /terraform/modules/instance/manifests/pod-labeler.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/manifests/pod-labeler.yaml -------------------------------------------------------------------------------- /terraform/modules/instance/outputs.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/outputs.tf -------------------------------------------------------------------------------- /terraform/modules/instance/variables.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/instance/variables.tf -------------------------------------------------------------------------------- /terraform/modules/network/main.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/network/main.tf -------------------------------------------------------------------------------- /terraform/modules/network/outputs.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/network/outputs.tf -------------------------------------------------------------------------------- /terraform/modules/network/variables.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/modules/network/variables.tf -------------------------------------------------------------------------------- /terraform/provider.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/provider.tf -------------------------------------------------------------------------------- /terraform/variables.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/variables.tf -------------------------------------------------------------------------------- /terraform/versions.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/terraform/versions.tf -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.BUILD.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.BUILD.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.Dockerfile.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.Dockerfile.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.Makefile.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.Makefile.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.WORKSPACE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.WORKSPACE.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.bazel.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.bazel.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.bzl.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.bzl.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.css.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.css.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.go.preamble: -------------------------------------------------------------------------------- 1 | // +build 2 | -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.go.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoogleCloudPlatform/gke-security-scenarios-demo/HEAD/test/boilerplate/boilerplate.go.txt -------------------------------------------------------------------------------- /test/boilerplate/boilerplate.html.preamble: -------------------------------------------------------------------------------- 1 |