0.87.5 (2024-11-19)
0.87.4 (2024-11-19)
0.87.3 (2024-11-06)
0.87.2 (2024-11-01)
0.87.1 (2024-10-31)
0.87.0 (2024-10-31)
0.86.1 (2024-10-25)
0.86.0 (2024-10-24)
0.85.0 (2024-10-17)
0.84.1 (2024-10-17)
0.84.0 (2024-10-16)
0.83.5 (2024-10-16)
- CDI-3452 - Fix references for dbx volumes to allow creating volume on existing catalog and bucket (#656) (09ad9c8)
0.83.4 (2024-10-14)
0.83.3 (2024-10-14)
0.83.2 (2024-10-11)
0.83.1 (2024-10-01)
0.83.0 (2024-10-01)
0.82.2 (2024-09-11)
0.82.1 (2024-09-04)
0.82.0 (2024-09-03)
0.81.0 (2024-09-03)
0.80.0 (2024-08-27)
0.79.0 (2024-08-22)
0.78.2 (2024-08-21)
0.78.1 (2024-08-21)
0.78.0 (2024-08-20)
- update redis replication group to use new aws provider (#613)
0.77.2 (2024-08-19)
0.77.1 (2024-08-19)
0.77.0 (2024-08-19)
0.76.0 (2024-07-24)
0.75.0 (2024-07-24)
0.74.0 (2024-07-18)
0.73.3 (2024-07-03)
0.73.2 (2024-07-03)
0.73.1 (2024-07-03)
0.73.0 (2024-07-02)
0.72.1 (2024-06-25)
0.72.0 (2024-06-25)
0.71.0 (2024-06-03)
0.70.0 (2024-05-31)
0.69.4 (2024-05-02)
0.69.3 (2024-05-01)
- don't allow dashes in sids (7959ea0)
0.69.2 (2024-04-30)
- key the sid so they are unique (219cc4c)
0.69.1 (2024-04-24)
0.69.0 (2024-04-23)
0.68.0 (2024-04-19)
0.67.1 (2024-04-11)
0.67.0 (2024-03-27)
0.66.0 (2024-03-22)
0.65.5 (2024-03-21)
0.65.4 (2024-03-07)
- add counter to resource (0ab051a)
0.65.3 (2024-03-07)
0.65.2 (2024-01-26)
0.65.1 (2024-01-26)
0.65.0 (2024-01-26)
0.64.0 (2024-01-26)
- Fix download of snowflake terraform provider (#556) (4fcc1e0)
- Output aurora db instance (#554) (e226871)
0.63.4 (2024-01-19)
0.63.3 (2024-01-10)
0.63.1 (2023-11-16)
0.63.0 (2023-11-15)
0.62.3 (2023-11-03)
- module name fix (42b328d)
0.62.2 (2023-11-03)
0.62.1 (2023-10-31)
0.62.0 (2023-10-31)
- CDI-2182 Add databricks-default-cluster-policy module (#531) (4c70f29)
- CDI-2183 Add databricks-cluster-log-permissions module (#532) (2e5974a)
0.61.0 (2023-10-30)
0.60.1 (2023-10-03)
0.60.0 (2023-09-22)
0.59.0 (2023-08-28)
0.58.0 (2023-06-28)
- AWS provider version bump to support BucketOwnerEnforced object ownership value (#512) (9053640)
- CDI-1607 Add KMS encryption key var to s3 bucket (#514) (c946dd0)
0.57.4 (2023-06-14)
0.57.3 (2023-06-12)
0.57.2 (2023-06-12)
0.57.1 (2023-06-12)
0.57.0 (2023-06-12)
0.56.2 (2023-05-30)
0.56.1 (2023-05-30)
0.56.0 (2023-05-26)
- address issue with public access block on public s3 bucket (#492) (e1c5c5c)
- cut out cztack-ci-2 from workflow, use standard way to authorize cztack-ci-1 (#486) (ce8e47b)
- fixing acl issue on cloudfront buckets (#493) (22187dd)
- rotator deprecation - oidc auth to aws in cztack workflow runs (#488) (c72fa79)
- Source_json is removed in aws provider 5.0.x (#494) (70a6dae)
0.55.1 (2023-05-03)
0.55.0 (2023-05-02)
0.54.0 (2023-04-25)
0.53.2 (2023-04-21)
- bump version (58486a4)
0.53.1 (2023-04-18)
- remove lock file (eafedd3)
0.53.0 (2023-03-31)
0.52.0 (2023-03-18)
0.51.1 (2023-03-06)
0.51.0 (2023-03-05)
0.50.1 (2023-02-22)
0.50.0 (2023-02-15)
0.49.2 (2022-12-14)
0.49.1 (2022-11-16)
0.49.0 (2022-11-03)
0.48.0 (2022-10-17)
0.47.0 (2022-09-19)
0.46.0 (2022-09-06)
- Add ability to pass size of ephemeral storage to ECS (#417) (d87e56e)
- limit the number of character to the maximum 32 chars (#420) (f0aa9d3)
0.45.0 (2022-07-07)
0.44.1 (2022-06-07)
0.44.0 (2022-05-16)
- Delete deprecated aws-acm-cert module (#379)
- adding conventional commit requirement (#394) (39b962c)
- Update
aws-aurora
module to not useparams_engine_version
(#396) (d560e42) - Variablize deletion_protection for aurora-postgres module (#385) (6aea3cb)
- broken deps (56247fd)
- Generate docs (#390) (eb1c5e2)
- linting dep on hard coded token (#389) (8560dc1)
- mods not needed anymore (#392) (68dd94f)
- release-please version and token (#388) (b1d87d2)
- remove dep on buildbot token (#387) (dcce3cc)
- update go version to fix tests breaking (#393) (253aadc)
0.43.3 (2021-11-01)
- 8e3894ed aws-single-page-static-site remove region from provider
- ae62854c [fix] Various fixes for TF AWS 3.0 compatibility (#324)
- 9991541d [feature] Add 'snapshot_identifier' to all aws-aurora modules (#323)
- 118ad1c4 [feature] Terraform AWS Provider 3.0 compatibility (#322)
- d49054c9 [feature] aws-acm-certificate module compatible with TF AWS Provider >3.0 (#321)
- 5b963f73 Update CODEOWNERS
- b71a885f remove vestiges of interpolation syntax that was deprecated in TF v0.12+ (#316)
- 408e99d5 Bump github.com/aws/aws-sdk-go from 1.37.25 to 1.38.64 (#315)
- f1550ece Bump github.com/sirupsen/logrus from 1.8.0 to 1.8.1 (#310)
- 12793de6 [breaking] aws-aurora-postgres: Disable auto minor version upgrade by default. (#311)
- 98fca6f2 Fix running aws cli on GH Actions/Azure, get modules dynamically (#309)
- e68091be Auto merge main branch on update for branches with auto-merge enabled (#306)
- 14ec2cc7 Update docs to use Terraform docs v0.12.1 (#308)
- b8bacdb7 [feature] aws-s3-private-bucket add canned acl variable (#307)
- be13877f fix[version]: updating min versions for lambda and cx role (#305)
- c0c5731e Initial updates for supporting s3 bucket logging targets. (#302)
- 83e12bc7 [feature]: lambda vpc_config and memory_size (#301)
- 9df43950 [feature] Allow specifying aws-iam-role max_session_duration (#299)
- 06c61e51 Bump github.com/aws/aws-sdk-go from 1.37.16 to 1.37.25 (#294)
- fa775364 Bump github.com/gruntwork-io/terratest from 0.32.7 to 0.32.8 (#293)
- 63a0a896 Bump github.com/sirupsen/logrus from 1.7.0 to 1.8.0 (#287)
- 7d3323d1 Bump github.com/aws/aws-sdk-go from 1.36.3 to 1.37.16 (#292)
- f58ea191 Bump github.com/aws/aws-sdk-go from 1.36.3 to 1.37.15 (#288)
- 9479aa8a Create Dependabot config file (#291)
- cd1e33c1 Bump github.com/gruntwork-io/terratest from 0.31.1 to 0.32.7 (#290)
- 234300b7 Bump github.com/stretchr/testify from 1.6.1 to 1.7.0 (#289)
- 55c16ef9 add go mods auto-tidy workflow
- 298ee9dc [feature] Add CIDR blocks based security group to Redis (#286)
- 488c4ea9 [fix] s3-private-bucket more lenient aws provider version (#285)
- e4738500 [refactor] rm unneeded vars (#281)
- 9be9388a [fix] aws-single-page-static site to work outside us-east-1 (#280)
- ecdcc6f9 enable clouldwatch log exports for aurora postgresql (#279)
- 62f0981e [feature]Snowflake: ALL modules output privileges granted (#277)
- ae34a726 [feature] aws-s3-public-bucket require https, allow disabling versioning (#278)
- 1b53806c [feature] Add aws-redis-replication-group (#267)
- 68ab717a fix: Snowflake Provider version less strict
- d87b0071 Enable logging with private s3 bucket (#210)
- 90a9ec4e [feature] support auto_minor_version_upgrade (#209)
- fe0d0304 [feature] Allow overwriting the IAM Role max session duration (#208)
- 1fe821e1 [fix] [testing] make TDD more productive (#206)
- 9c9ef09f nuke more resources (#207)
- 9d289b25 [fix] Use index when referring to a dependency with a count
- 8b5df1fb [feature] Optionally disable poweruser role iam actions (#194)
- d411f6fa [feature] Readonly role OIDC federation enabled + kms decrypt optional (#195)
- bd7a4398 [feature] AWS Poweruser role allows OIDC sts:AssumeRoleWithWebIdentity (#192)
- 28c40d01 Update README.md
- cfe9771b Adding a generic .editorconfig. https://editorconfig.org/ (#191)
- 50ef023c [feature] aws-iam-role-*: Allow multiple accounts to assume role, deprecate source_account_id (#185)
- 4fcd6f92 upgraded to go 1.14 (#184)
- b31cd721 [breaking] [feature] aws-iam-instance-profile reuse existing role and remove SSM support (#183)
- 8d7f1ff8 Update docstrings (#182)
- 72fe3a70 [feature] Allow the aws-iam-role-crossacct for OIDC federation (#179)
- 968da0b0 retry downloading dependencies (#178)
- b770f3df add git push to release
- e6b42dd1 Updating VERSION file to 0.24.0
- 39aa6fac enforcing SSL for every action (#157)
- 190c3c29 [feature] lifecycle policy for s3 buckets (#156)
- c59aa0e3 [feature] Adds support for SAML trust relationship to existing roles (#154)
- 8bc7c988 Adding a generic .editorconfig. https://editorconfig.org/ (#152)
- e1df3558 add db param groups to list of things that can be nuked (#153)
- 39f66dcc Add slow_start parameter to ecs-service-with-alb (#151)
- 7fcf7337 speed up build by paritioning (#150)
- cf652857 [breaking] Fix aws-redis-node security groups (#149)
- 13056bad Allow restricting aws-aurora ingress by security groups (#148)
- 20df8cf1 upgraded to go 1.13.1 (#147)
- 61d294b5 Add UpdateRoleDescription perms to aws-iam-role-poweruser (#145)
- 4dee504e [bugfix] Fix secretsmanager execution role IAM policy in aws-ecs-job (#144)
- 3f3b0f55 Make aws-redis-node match internal lib, upgrade default (#146)
- 093abc49 aws-ecs Add support for ordered_placement_strategy (#139)
- d832ad1f Add tags to IAM roles (#142)
- 499fed7b [fix] aws-ecs support not applying tags to services (#140)
- 49209981 Output ALB listener ARNs from aws-ecs-service (#141)
- f4e551ed aws-acm-cert Add workaround for TF bug (#138)
- 29f3f4cb aws-ecs-service fix service discovery arn (#137)
- cf3d830a Add Name tags to cloudwatch logs (#136)
- da0ca125 upgraded to go 1.13 (#135)
- b2809c4d [bugfix] aws-ecs-service fix type of cidr_blocks (#134)
- 6923e1b6 Support disabling versioning in private buckets (#122)
- 96ea06d9 Support multiple services in params reader policy (#121)
- 6765b83c Fix typo in aws-s3-private-bucket (#120)
- af52ae6e Make Aurora engine version configurable (#118)
- ddf566a2 Add Aurora deletion protection variable (#116)
- 384ed745 Add cloudfront outputs for single-page-static-site (#115)
- f827caa5 [fix] Added more information to the github webhooks collector Readme (#113)
- 22e21f1a [feature] Add GitHub Webhooks archiver and S3 private bucket modules (#112)
- c3f8d58e Add aws-ssm-params and aws-ssm-params-writer (#111)
- 5c845fff set engine_version for aws-aurora-postgres (#110)
- 4f94667 Release 0.18.0
- 878f367 [breaking] Terraform 0.12 compatibility (breaks 0.11 compatibility) (#105)
- f6e470b Fixed Typo in Readme (#102)
- b9000b8 Add a .gitattributes to collapsed vendored code during github pull requests (#106)
- d0e53fc add force_detach_policies to aws_iam_role (#100)
- 982ff3b ACM certificate route53 overwrite (#99)
- 1fc4a19 New route53 poweruser (#94)
- 8fc7bf0 [breaking] Removing ability of power users to register domains via route53 (#92)
- 9d5798e Update aws-params-writer to explicitly take a parameters count (#90)
- 57261e8 Add iam:ListServerCertificates permission to poweruser (#89)
- cbaa829 Fix a bug with missing param group connection to the Aurora resource (#88)
- 00061db [Bugfix] Limit SSM s3 policies (#85)
- 418e527 [Bugfix] Changed policy for readonly to include secrets policy (#84)
- 60203ad Add iam:TagRole to poweruser (#83)
aws-iam-ec2-poweruser-role
Add iam_pathaws-iam-ecs-task-role
Add iam_pathaws-iam-instance-profile
Add option to disable attach SSM policyaws-iam-role-infraci
Add secrets manager read access to secrets tagged with allowCI=trueaws-aurora-*
Expose the reader endpoint*
- Bugfix for aws_iam_policy_document in aws-iam-group-assume-role
- [new] aws single page app static site
- [new] aws-iam-instance-profile
- [new] bless-ca
- [breaking] KMS key tags
- [breaking] aws-iam-ecs-task-role remove policy argument
- Poweruser delete/update policy permissions
- Convert raw JSON policy to aws_iam_policy_document
- [breaking] Parameter store reader policy inline, region support
- Poweruser instance profile and policy permissions
- Testing for aws-redis-node and aurora
- [breaking] cloudfront poweruser allow for multiple bucket prefixes
- [new] cloudwatch log group module
- [new] blessclient aws role
- added a suite of tests via Terratest
- [new] module for ec2 poweruser role
- [new] modules for aws aurora
- better docs for our taggging approach
- [breaking] refactor of params/secrets modules
- [new] AWS ACM cert module
Initial release of open source modules. Number is kept in-sync with internal repo.
Currently moved to this repo are all our IAM and secrets modules.