Skip to content

Latest commit

 

History

History
481 lines (242 loc) · 15.6 KB

CHANGELOG.md

File metadata and controls

481 lines (242 loc) · 15.6 KB
Raw

v0.6.7 (2023-05-02)

Bug Fixes

  • add write pr write permission to validate action

v0.6.6 (2022-09-15)

Enhancements

  • Allow to create VPC with custom CIDR (#75)

v0.6.5 (2022-06-13)

New Features

  • output security group id from the database module (#74)

v0.6.4 (2022-06-10)

New Features

  • add support for creating RDS replica DBs. Warning: increases the required AWS provider version to 4.9. Otherwise, should be backwards compatible. (#73)

v0.6.3 (2022-05-17)

New Features

  • make db version configurable. Adds some required fields to the module (#72)

v0.6.2 (2022-05-16)

New Features

  • allow rds parameters to be passed in to the db module

v0.6.1 (2022-01-28)

Bug Fixes

  • user-auth when external-secrets enabled (#70)

v0.6.0 (2021-12-16)

Refactoring

  • Move k8s auth out of infra terraform (#69)

breaking change

This change moves away from creating the aws-auth configmap in the same terraform state where we are creating the cluster. All k8s operations have been moved to the kubernetes terraform in the aws-eks-stack repo.

v0.5.6 (2021-11-15)

Bug Fixes

  • Fixed quotes in type

New Features

  • Add support for supplying description when creating secrets (#68)

v0.5.5 (2021-09-20)

Enhancements

  • user-auth add var for ory images tags (#65)

v0.5.4 (2021-09-17)

Bug Fixes

  • add user-auth verification form url (#64)

v0.5.3 (2021-09-10)

Enhancements

  • support user-auth local dev kratos (#62)

v0.5.2 (2021-08-23)

Bug Fixes

  • typo in user_auth oathkeeper config (#61)

v0.5.1 (2021-08-19)

Bug Fixes

  • eks: Remove unnecessary locals and references
  • Remove prefix delegation env var code from eks module, it will need to be done in the eks stack kubernetes terraform instead
  • Compatibility fix as a band-aid for cases where someone created their cluster before this module made a change to the cluster role name

v0.5.0 (2021-08-16)

Enhancements

  • Added support for EKS prefix delegation, allowing nodes to have many more IPs (17 -> 110), also change how the eks module accepts node group parameters. (#59)

breaking change

Switched back to using the worker security group instead of the "cluster primary" security group - we were only using it because we weren't creating a custom launch template and with this change we will be. If you are trying to upgrade, this map require tmeporarily adding a security group rule to allow your old node groups to access the db, bringing up new node groups with the new configuration, then removing your old node groups.

  • docs: Clarified node group config

v0.4.8 (2021-08-06)

Bug Fixes

  • user_auth oathkeeper ingress misconfigured (#58)

v0.4.7 (2021-08-05)

Enhancements

  • user-auth allow customizing UI url (#57)

v0.4.6 (2021-08-04)

Enhancements

  • allow overriding default config (#56)

v0.4.5 (2021-07-20)

v0.4.4 (2021-07-05)

New Features

  • Add support for eks addons for vpc cni, kube-proxy, coredns (#54)

v0.4.3 (2021-06-29)

Bug Fixes

  • Remove unnecessary field in eks module that was causing trouble during upgrade

v0.4.2 (2021-06-29)

Enhancements

  • Bump nginx ingress default version

v0.4.1 (2021-06-29)

Bug Fixes

  • Comparison in user_access module was not working correctly (#53)

v0.4.0 (2021-06-28)

Enhancements

  • Bumped upstream version of eks module and changed variables to support better handling of node group changes, also added missing provider requirements. (#52)

BREAKING CHANGE

The change to the EKS module had its own breaking change that will require a bit of state management, you can read about it here: https://github.com/terraform-aws-modules/terraform-aws-eks/blob/master/docs/upgrades.md#upgrade-module-to-v1700-for-managed-node-groups . Also, this change may require some state management since it changes the name of the node group. You should be able to upgrade gracefully by importing the previous group into the state and removing the old one. Feel free to ask in the community channel at slack.getzero.dev if you have any questions.

  • fix: Bump validation workflow to tf 1.0

v0.3.9 (2021-06-07)

Enhancements

  • Allow subnet group to be supplied when using the database module (#51)

v0.3.8 (2021-05-27)

Enhancements

  • user_access module now supports passing in aws account ids to set up trust policies so users in different accounts can assume the roles we create (#50)

v0.3.7 (2021-05-19)

v0.3.6 (2021-05-18)

New Features

  • Added support for using external-secrets with kratos (#48)

v0.3.5 (2021-05-18)

New Features

  • S3_hosting create CF but use existing bucket (#47)

v0.3.4 (2021-04-27)

Bug Fixes

  • auth wrong target for cookie session (#46)

v0.3.3 (2021-04-23)

Bug Fixes

  • Switched back to using ELB instead of NLB due to various issues. Also added the ability to modify proxy protocol and traffic policy settings and return the nginx request id to the front end. (#45)

v0.3.2 (2021-04-19)

Bug Fixes

  • auth endpoints targeting wrong svc name

v0.3.1 (2021-04-15)

Bug Fixes

  • Pin the terraform version in the validation gha workflow because of issues with submodules when using TF 0.15
  • Return the EKS primary security group now for us to use in other modules, also connect the primary and additional security groups (only used for migration, as the additional security group won't be used anymore)

v0.3.0 (2021-04-13)

Breaking

  • Switch EKS module to using managed node groups instead of worker groups (#42)

v0.2.1 (2021-03-31)

Bug Fixes

  • Oops, somehow this change got lost. Set ingress traffic policy to local to preserve source ip.

v0.2.0 (2021-03-30)

Enhancements

  • Added pod anti affinity to nginx ingress
  • Moved nginx ingress creation from aws-eks module and converted to a helm chart. Also switched to using NLB instead of ELB.

v0.1.21 (2021-03-23)

Enhancements

  • customizable helm resource name

v0.1.20 (2021-03-22)

Documentation

  • logging - Updated docs

Bug Fixes

  • logging - Add an option to change the value for requiring https in elasticsearch, default it to false

v0.1.19 (2021-03-18)

Enhancements

  • optionally create user-auth namespace

v0.1.18 (2021-03-05)

New Features

  • User auth with ORY Oathkeeper and Kratos

v0.1.17 (2021-02-25)

New Features

  • accept lambda configuration

v0.1.16 (2021-02-12)

v0.1.15 (2021-02-02)

v0.1.14 (2021-01-29)

v0.1.13 (2020-11-30)

Enhancements

  • remove sendgrid mail. domain prefix

Bug Fixes

  • Dependency was missing between users and groups for group membership, causing membership addition to fail

v0.1.12 (2020-10-21)

v0.1.11 (2020-10-13)

v0.1.10 (2020-10-13)

v0.1.9 (2020-10-09)

v0.1.8 (2020-10-06)

v0.1.7 (2020-10-06)

v0.1.6 (2020-10-05)

Enhancements

  • s3_hosting config for CORS origin

v0.1.5 (2020-10-02)

Enhancements

  • allow specifying cf-trusted signers

v0.1.4 (2020-09-30)

Enhancements

  • Expose cf_signed_downloads var for selectively applying access controls

v0.1.3 (2020-09-29)

v0.1.2 (2020-09-24)

New Features

  • initial commit for module iam_users (#6)

v0.1.1 (2020-09-24)

Bug Fixes

  • modules with count to pick index first item (#11)

v0.1.0 (2020-09-23)

Bug Fixes

  • Bump external module versions in database and logging modules to allow support for AWS provider version 3 (#13)
  • Environment check was looking for the wrong string when enabling backups (#9)

v0.0.3 (2020-09-11)

New Features

  • Add support for signed url downloads (#4)

v0.0.2 (2020-09-04)

Enhancements

  • Auto changelog management, add documentation and contribution guidelines (#3)

v0.0.1 (2020-08-31)

Bug Fixes

  • incorrect database variable reference

Pull Requests

  • Merge pull request #60 from commitdev/terraform013
  • Merge pull request #50 from commitdev/remove-policy-naming-conflicts