Releases: ansible-collections/community.aws
community.aws 3.6.0
Release Summary
Following the release of community.aws 5.0.0, 3.6.0 is a bugfix release and the final planned release for the 3.x series.
Minor Changes
- autoscaling_group_info - minor sanity test fixes (#1410).
- cloudfront_distribution - minor sanity test fixes (#1410).
- cloudfront_origin_access_identity - minor sanity test fixes (#1410).
- cloudtrail - minor sanity test fixes (#1410).
- ec2_asg_lifecycle_hook - minor sanity test fixes (#1410).
- ec2_vpc_nacl - minor sanity test fixes (#1410).
- redshift - minor sanity test fixes (#1410).
- s3_bucket_info - minor sanity test fixes (#1410).
Bugfixes
community.aws 5.0.0
In this release many community modules have been promoted to Red Hat supported status. Those modules have been moved from the community.aws to amazon.aws collection.
The community.aws collection has dropped support for botocore<1.21.0 and boto3<1.18.0. Support for ansible-core<2.11 has also been dropped.
This release also brings some new features, bugfixes, breaking changes and deprecated features.
Minor Changes
- acm_certificate - Move to jittered backoff (ansible-collections/amazon.aws#946).
- acm_certificate_info - Move to jittered backoff (ansible-collections/amazon.aws#946).
- api_gateway_domain - Move to jittered backoff (#1386).
- autoscaling_group_info - minor sanity test fixes (#1410).
- aws_acm - the
aws_acm
module has been renamed toacm_certificate
,aws_acm
remains as an alias (#1263). - aws_acm_info - the
aws_acm_info
module has been renamed toacm_certificate_info
,aws_acm_info
remains as an alias (#1263). - aws_api_gateway - the
aws_api_gateway
module has been renamed toapi_gateway
,aws_api_gateway
remains as an alias (#1288). - aws_api_gateway_domain - the
aws_api_gateway_domain
module has been renamed toapi_gateway_domain
,aws_api_gateway_domain
remains as an alias (#1288). - aws_application_scaling_policy - the
aws_application_scaling_policy
module has been renamed toapplication_autoscaling_policy
,aws_application_scaling_policy
remains as an alias (#1314). - aws_batch_compute_environment - the
aws_batch_compute_environment
module has been renamed tobatch_compute_environment
,aws_batch_compute_environment
remains as an alias (#1272). - aws_batch_job_definition - the
aws_batch_job_definition
module has been renamed tobatch_job_definition
,aws_batch_job_definition
remains as an alias (#1272). - aws_batch_job_queue - the
aws_batch_job_queue
module has been renamed tobatch_job_queue
,aws_batch_job_queue
remains as an alias (#1272). - aws_codebuild - the
aws_codebuild
module has been renamed tocodebuild_project
,aws_codebuild
remains as an alias (#1308). - aws_codecommit - the
aws_codecommit
module has been renamed tocodecommit_repository
,aws_codecommit
remains as an alias (#1308). - aws_codepipeline - the
aws_codepipeline
module has been renamed tocodepipeline
,aws_codepipeline
remains as an alias (#1308). - aws_config_aggregation_authorization - the
aws_config_aggregation_authorization
module has been renamed toconfig_aggregation_authorization
,aws_config_aggregation_authorization
remains as an alias (#1305). - aws_config_aggregator - the
aws_config_aggregator
module has been renamed toconfig_aggregator
,aws_config_aggregator
remains as an alias (#1305). - aws_config_delivery_channel - the
aws_config_delivery_channel
module has been renamed toconfig_delivery_channel
,aws_config_delivery_channel
remains as an alias (#1305). - aws_config_recorder - the
aws_config_recorder
module has been renamed toconfig_recorder
,aws_config_recorder
remains as an alias (#1305). - aws_config_rule - the
aws_config_rule
module has been renamed toconfig_rule
,aws_config_rule
remains as an alias (#1305). - aws_direct_connect_confirm_connection - the
aws_direct_connect_confirm_connection
module has been renamed todirectconnect_confirm_connection
,aws_direct_connect_confirm_connection
remains as an alias (#1286). - aws_direct_connect_connection - the
aws_direct_connect_connection
module has been renamed todirectconnect_connection
,aws_direct_connect_connection
remains as an alias (#1286). - aws_direct_connect_gateway - the
aws_direct_connect_gateway
module has been renamed todirectconnect_gateway
,aws_direct_connect_gateway
remains as an alias (#1286). - aws_direct_connect_link_aggregation_group - the
aws_direct_connect_link_aggregation_group
module has been renamed todirectconnect_link_aggregation_group
,aws_direct_connect_link_aggregation_group
remains as an alias (#1286). - aws_direct_connect_virtual_interface - the
aws_direct_connect_virtual_interface
module has been renamed todirectconnect_virtual_interface
,aws_direct_connect_virtual_interface
remains as an alias (#1286). - aws_eks_cluster - the
aws_eks_cluster
module has been renamed toeks_cluster
,aws_eks_cluster
remains as an alias (#1269). - aws_glue_connection - the
aws_glue_connection
module has been renamed toglue_connection
,aws_glue_connection
remains as an alias (#1300). - aws_glue_crawler - the
aws_glue_crawler
module has been renamed toglue_crawler
,aws_glue_crawler
remains as an alias (#1300). - aws_glue_job - the
aws_glue_job
module has been renamed toglue_job
,aws_glue_job
remains as an alias (#1300). - aws_inspector_target - the
aws_inspector_target
module has been renamed toinspector_target
,aws_inspector_target
remains as an alias (#1318). - aws_kms - the
aws_kms
module has been renamed tokms_key
,aws_kms
remains as an alias (#1284). - aws_kms_info - the
aws_kms_info
module has been renamed tokms_key_info
,aws_kms_info
remains as an alias (#1284). - aws_msk_cluster - the
aws_msk_cluster
module has been renamed tomsk_cluster
,aws_msk_cluster
remains as an alias (#1311). - aws_msk_config - the
aws_msk_config
module has been renamed tomsk_config
,aws_msk_config
remains as an alias (#1311). - aws_s3_bucket_info - the
aws_s3_bucket_info
module has been renamed tos3_bucket_info
,aws_s3_bucket_info
remains as an alias (#1271). - aws_s3_cors - the
aws_s3_cors
module has been renamed tos3_cors
,aws_s3_cors
remains as an alias (#1271). - aws_secret - the
aws_secret
module has been renamed tosecretsmanager_secret
,aws_secret
remains as an alias (#1315). - aws_ses_identity - the
aws_ses_identity
module has been renamed toses_identity
,aws_ses_identity
remains as an alias (#1264). - aws_ses_identity_policy - the
aws_ses_identity_policy
module has been renamed toses_identity_policy
,aws_ses_identity_policy
remains as an alias (#1264). - aws_ses_rule_set - the
aws_ses_rule_set
module has been renamed toses_rule_set
,aws_ses_rule_set
remains as an alias (#1264). - aws_sgw_info - the
aws_sgw_info
module has been renamed tostoragegateway_info
,aws_sgw_info
remains as an alias (#1301). - aws_ssm_parameter_store - the
aws_ssm_parameter_store
module has been renamed tossm_parameter
,aws_ssm_parameter_store
remains as an alias (#1313). - aws_step_functions_state_machine - the
aws_step_functions_state_machine
module has been renamed tostepfunctions_state_machine
,aws_step_functions_state_machine
remains as an alias (#1310). - aws_step_functions_state_machine_execution - the
aws_step_functions_state_machine_execution
module has been renamed tostepfunctions_state_machine_execution
,aws_step_functions_state_machine_execution
remains as an alias (#1310). - aws_waf_condition - the
aws_waf_condition
module has been renamed towaf_condition
,aws_waf_condition
remains as an alias (#1299). - aws_waf_i...
community.aws 4.2.0
Bugfixes
- s3_lifecycle - fix bug when deleting rules with an empty prefix (#1398).
community.aws 4.1.1
Bugfixes
- ecs_service - fixes KeyError for
deployment_controller
parameter (#1393).
community.aws 4.1.0
Minor Changes
- aws_glue_connection - added new
raw_connection_parameters
return key which doesn't snake case the connection parameters (#518). - aws_ssm_parameter_store - added support for check_mode (#1309).
- cloudwatchevent_rule - Added
targets.input_transformer.input_paths_map
andtargets.input_transformer.input_template
parameters to support configuring on CloudWatch event rule input transformation (#623). - cloudwatchevent_rule - Applied validation of
targets
arguments (#201). - cloudwatchlogs_log_group - Added check_mode support (#1373).
- ec2_launch_template - Adds support for specifying the
source_version
upon which template updates are based (#239). - ec2_scaling_policy - add TargetTrackingScaling as a scaling policy option (#771)
- ec2_vpc_vgw_info - updated to not throw an error when run in check_mode (#137).
- ecs_ecr - add
force_absent
parameter for removing repositories that contain images (#1316). - ecs_service - add
wait
parameter and waiter for deleting services (#1209). - ecs_service - added
tags
andtag_propagation
support to the module (#543). - ecs_service - added parameter
deployment_controller
so service can be controlled by Code Deploy (#340). - ecs_task - add
wait
parameter and waiter for running and stopping tasks (#1209). - elasticache_info - added
replication_group
to the returned information for an elasticache cluster (#646). - iam_policy - added support for
--diff
mode (#560). - iam_policy - attempts to continue when read requests are denied by IAM policy (#1375).
- iam_server_certificate - the deprecation for the
iam_cert
alias has been extended from release 4.0.0 to release 5.0.0 (#1257). - iam_server_certificate - the deprecations for
cert_chain
,cert
,key
anddup_ok
have been extended from release 4.0.0 to release 5.0.0 (#1256). - lambda_info - add return key
functions
which returns a list of dictionaries instead of the previously returnedfunction
, which returned a dictionary of dictionaries (#1239). - lambda_info - now returns basic configuration information of each lambda function, regardless of query (#1239).
- rds_instance_snapshot - the deprecation for the
rds_snapshot
alias has been extended from release 4.0.0 to release 5.0.0 (#1257). - route53_health_check - Added new parameter
health_check_id
with aliasid
to allow update and delete health check by ID (#1143). - route53_health_check - Added new parameter
use_unique_names
used with new parameterhealth_check_name
with aliasname
to set health check name as unique identifier (#1143). - s3_sync - improves error handling during
HEAD
operation to compare existing files (#58). - secretsmanager_secret - add support for storing JSON in secrets (#656).
- sns_topic - Added
attributes
parameter tosubscriptions
items with support for RawMessageDelievery (SQS)
Deprecated Features
- aws_glue_connection - the
connection_parameters
return key has been deprecated and will be removed in a release after 2024-06-01, it is being replaced by theraw_connection_parameters
key (#518). - community.aws collection - due to the AWS SDKs announcing the end of support for Python less than 3.7 (https://aws.amazon.com/blogs/developer/python-support-policy-updates-for-aws-sdks-and-tools/) support for Python less than 3.7 by this collection has been deprecated and will be removed in a release after 2023-05-31 (#1361).
- iam_policy - the
policies
return value has been renamedpolicy_names
and will be removed in a release after 2024-08-01, both values are currently returned (#1375). - lambda_info - The
function
return key returns a dictionary of dictionaries and has been deprecated. In a release after 2025-01-01, this key will be removed in favor offunctions
, which returns a list of dictionaries (#1239). - route53_info - The CamelCase return values for
DelegationSets
,CheckerIpRanges
, andHealthCheck
have been deprecated, in the future release you must use snake_case return valuesdelegation_sets
,checker_ip_ranges
, andhealth_check
instead respectively" (#1322).
Bugfixes
- aws_api_gateway_domain - added the
aws_api_gateway_domain
module to the aws module_defaults group (#1283). - aws_config_aggregator - Fix
KeyError
when updating existing aggregator (#645). - aws_config_aggregator - Fix idempotency when
account_sources
parameter is not specified (#645). - aws_ssm - pull S3 bucket region for session generated for file transfer during playbooks (#1190).
- aws_ssm_parameter_store - fixed bug where module wasn't consistently idempotent (#1309).
- cloudfront_response_headers_policy - added the
cloudfront_response_headers_policy
module to the aws module_defaults group (#1283). - ec2_vpc_peer - fix idempotency when requester/accepter is reversed (#580).
- kms_key_info - handle access denied errors more liberally (#206).
- route53 - fixes bug preventing creating a DNS record with a weight of zero (#1378)
- route53_info - fix
max_items
parameter when used with non-paginated commands (#1383). - sns_topic - fix bug which prevented the module being used in GovCloud (#836).
New Modules
- autoscaling_complete_lifecycle_action - Completes the lifecycle action of an instance
- aws_glue_crawler - Manage an AWS Glue crawler
- lightsail_static_ip - Manage static IP addresses in AWS Lightsail
community.aws 3.5.0
Minor Changes
- iam_server_certificate - the deprecation for the
iam_cert
alias has been extended from release 4.0.0 to release 5.0.0 (#1257). - iam_server_certificate - the deprecations for
cert_chain
,cert
,key
anddup_ok
have been extended from release 4.0.0 to release 5.0.0 (#1256). - rds_instance_snapshot - the deprecation for the
rds_snapshot
alias has been extended from release 4.0.0 to release 5.0.0 (#1257). - s3_sync - improves error handling during
HEAD
operation to compare existing files (#58).
Bugfixes
- aws_api_gateway_domain - added the
aws_api_gateway_domain
module to the aws module_defaults group (#1283). - aws_config_aggregator - Fix
KeyError
when updating existing aggregator (#645). - aws_config_aggregator - Fix idempotency when
account_sources
parameter is not specified (#645). - aws_ssm - pull S3 bucket region for session generated for file transfer during playbooks (#1190).
- cloudfront_response_headers_policy - added the
cloudfront_response_headers_policy
module to the aws module_defaults group (#1283). - ec2_vpc_peer - fix idempotency when requester/accepter is reversed (#580).
- kms_key_info - handle access denied errors more liberally (#206).
- route53 - fixes bug preventing creating a DNS record with a weight of zero (#1378)
- route53_info - fix
max_items
parameter when used with non-paginated commands (#1383).
community.aws 4.0.0
Major Changes
- community.aws collection - The amazon.aws collection has dropped support for
botocore<1.20.0
andboto3<1.17.0
. Most modules will continue to work with older versions of the AWS SDK, however compatibility with older versions of the SDK is not guaranteed and will not be tested. When using older versions of the SDK a warning will be emitted by Ansible (#956).
Minor Changes
- aws_acm -
resource_tags
has been added as an alias for thetags
parameter (#1185). - aws_glue_job -
resource_tags
has been added as an alias for thetags
parameter (#1182). - aws_kms -
resource_tags
has been added as an alias for thetags
parameter (#1185). - aws_kms - add extra key/value pair to return data (key_policies) to return each policy as a dictionary rather than json string (#1052).
- aws_kms - fix some bugs in integration tests and add check mode support for key rotation as well as document issues with time taken for requested changes to be reflected on AWS (#1052).
- aws_kms - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
andpurge_tags
toTrue
(#1183). - aws_msk_cluster -
resource_tags
has been added as an alias for thetags
parameter (#1182). - aws_secret -
resource_tags
has been added as an alias for thetags
parameter (#1182). - aws_secret - addition of the
purge_tags
parameter (#1146). - aws_ssm_parameter_store - add parameter_metadata to the returned values (#1241).
- aws_step_functions_state_machine -
resource_tags
has been added as an alias for thetags
parameter (#1182). - cloudfront_distribution -
resource_tags
has been added as an alias for thetags
parameter (#1185). - cloudfront_distribution - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
andpurge_tags
toTrue
(#1183). - cloudtrail -
resource_tags
has been added as an alias for thetags
parameter (#1219). - cloudtrail - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
(#1219). - cloudtrail - updated to pass tags as part of the create API call rather than tagging the trail after creation (#1219).
- cloudwatchlogs_log_group - adds support for returning tags (#1233).
- cloudwatchlogs_log_group - adds support for updating tags (#1233).
- cloudwatchlogs_log_group - now consistently returns the values as defined in the return documentation (#1233).
- cloudwatchlogs_log_group_info - adds support for returning tags (#1233).
- data_pipeline -
resource_tags
has been added as an alias for thetags
parameter (#1204). - dms_endpoint -
endpointtype
andenginename
no longer required when deleting an endpoint (#1234). - dms_endpoint -
resource_tags
added as an alias fortags
(#1234). - dms_endpoint - added support for
purge_tags
(#1234). - dms_endpoint - now returns details of the endpoint (#1234).
- dynamodb_table -
resource_tags
has been added as an alias for thetags
parameter (#1199). - ec2_ami_copy -
resource_tags
has been added as an alias for thetags
parameter (#1204). - ec2_asg - add check mode support (#1033).
- ec2_asg - bugfix to make test setup run once (#1061).
- ec2_asg_lifecycle_hook - Added check_mode support (#1060).
- ec2_asg_lifecycle_hook - add integration tests (#1048).
- ec2_asg_lifecycle_hook - module now returns info about Life Cycle Hook (#1048).
- ec2_eip -
resource_tags
has been added as an alias for thetags
parameter (#1182). - ec2_launch_template -
resource_tags
has been added as an alias for thetags
parameter (#1204). - ec2_snapshot_copy -
resource_tags
has been added as an alias for thetags
parameter (#1201). - ec2_snapshot_copy - updated to pass tags as part of the copy API call rather than tagging the snapshot after creation (#1201).
- ec2_transit_gateway - code updated to use common
ensure_ec2_tags
helper (#1183). - ec2_transit_gateway - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
(#1183). - ec2_transit_gateway - wait and retry if API returns an IncorrectState error.
- ec2_vpc_nacl -
resource_tags
has been added as an alias for thetags
parameter (#1189). - ec2_vpc_nacl - add support for
purge_tags
parameter (#1189). - ec2_vpc_nacl - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
andpurge_tags
toTrue
(#1189). - ec2_vpc_peer -
resource_tags
has been added as an alias for thetags
parameter (#1182). - ec2_vpc_vgw - add support for
purge_tags
parameter (#1232). - ec2_vpc_vgw - the default behaviour for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
andpurge_tags
toTrue
(#1232). - ec2_vpc_vgw - updated to set tags as part of VGW creation instead of tagging the VGW after creation (#1232).
- ec2_vpc_vgw_info - added
resource_tags
to the return values (#1232). - ec2_vpc_vpn -
resource_tags
has been added as an alias for thetags
parameter (#1185). - ec2_vpc_vpn - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
andpurge_tags
toTrue
(#1183). - ecs_ecr - Will now return repository permission policy if it exists, even if we did not create or modify it. (#1171).
- ecs_service - Now allows for a
capacity_provider_strategy
to be utilized when creating/updating a service (#1181). - ecs_task -
resource_tags
has been added as an alias for thetags
parameter (#1204). - efs - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
(#1183). - eks_fargate_profile - the default value for
tags
has been updated, to remove all tags thetags
parameter must be explicitly set to the empty dict{}
(#1183). - elb_application_lb -
resource_tags
has been added as an alias for thetags
parameter (#1182). - elb_network_lb -
resource_tags
has been added as an alias for thetags
parameter (#1182). - elb_target_group - explicitly setting the
tags
parameter to the empty dict{}
will now remove all tags unlespurge_tags
is explicitly set toFalse
(#1183). - iam_policy - update broken examples and add RETURN section to documentation; add extra integration tests for idempotency check mode runs (#1093).
- iam_...
community.aws 3.4.0
Minor Changes
- aws_codebuild - add support for
purge_tags
parameter (#1221). - aws_codebuild - add the
resource_tags
parameter which takes the dictionary format for tags instead of the list of dictionaries format (#1221). - aws_codebuild - add the
resource_tags
return value which returns the standard dictionary format for tags instead of the list of dictionaries format (#1221). - aws_codebuild - the
source
andartifacts
parameters are now optional unless creating a new project (#1221). - ecs_service -
deployment_circuit_breaker
has been added as a supported feature (#1215). - ecs_service - add
service
alias to address the ecs service name with the same parameter as the ecs_service_info module is doing (#1187). - ecs_service_info - add
name
alias to address the ecs service name with the same parameter as the ecs_service module is doing (#1187). - ecs_tag -
resource_tags
has been added as an alias for thetags
parameter (#1184). - efs_tag -
resource_tags
has been added as an alias for thetags
parameter (#1184). - rds_instance - add snapshot tests to test suite to test restoring db from snapshot (#1081).
- rds_instance_info - add retries on common AWS failures (#1026).
- wafv2_web_acl - relax botocore requirement to bare minimum required (#1216).
Deprecated Features
- aws_codebuild - The
tags
parameter currently uses a non-standard format and has been deprecated. In release 6.0.0 this parameter will accept a simple key/value pair dictionary instead of the current list of dictionaries. It is recommended to migrate to using the resource_tags parameter which already accepts the simple dictionary format (#1221). - route53_info - The CamelCase return values for
HostedZones
,ResourceRecordSets
, andHealthChecks
have been deprecated, in the future release you must use snake_case return valueshosted_zones
,resource_record_sets
, andhealth_checks
instead respectively".
Bugfixes
- aws_codebuild - fix bug where the result may be spuriously flagged as
changed
when multiple tags were set on the project (#1221). - ecs_service - fix broken change detect of
health_check_grace_period_seconds
parameter when not specified (#1212). - ecs_service - use default cluster name of
default
when not input (#1212). - ecs_task - dont require
cluster
and use name ofdefault
when not input (#1212). - lambda_info - fix bug that forces query=config when getting info for all lambdas. Now, if function name is specified, query will default to all. This may have a performance impact when querying a large number of lambdas. If function name is not specified, query will default to config (#1152).
- rds_instance - fix bugs associated with restoring db instance from snapshot (#1081).
- wafv2_ip_set - fix bug where incorrect changed state was returned when only changing the description (#1211).
- wafv2_web_acl - consistently return web ACL info as described in module documentation (#1216).
- wafv2_web_acl - fix
changed
status when description not specified (#1216).
community.aws 2.6.1
Release Summary
Bump collection from 2.6.0 to 2.6.1 due to a publishing error with 2.6.0. This release supersedes 2.6.0 entirely, users should skip 2.6.0.
community.aws 2.6.0
Release Summary
This is the last planned 2.x release of the community.aws
collection.
Consider upgrading to the latest version of community.aws
soon.
Minor Changes
- ecs_service -
deployment_circuit_breaker
has been added as a supported feature (#1215). - ecs_service - add
service
alias to address the ecs service name with the same parameter as the ecs_service_info module is doing (#1187). - ecs_service_info - add
name
alias to address the ecs service name with the same parameter as the ecs_service module is doing (#1187).
Bugfixes
- ecs_service - fix broken change detect of
health_check_grace_period_seconds
parameter when not specified (#1212). - ecs_service - use default cluster name of
default
when not input (#1212). - ecs_task - dont require
cluster
and use name ofdefault
when not input (#1212). - wafv2_ip_set - fix bug where incorrect changed state was returned when only changing the description (#1211).