amazon.aws 7.0.0

Release Summary

This major release brings a new set of supported modules that have been promoted from community.aws, several bugfixes, minor changes and deprecated features. We also dropped support for botocore<1.29.0 and boto3<1.26.0. Due to the AWS SDKs announcing the end of support for Python less than 3.7 (https://aws.amazon.com/blogs/developer/python-support-policy-updates-for-aws-sdks-and-tools/), support for Python less than 3.7 by this collection was deprecated in release 6.0.0 and removed in this release.

Major Changes

• aws_region_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.aws_region_info.
• aws_s3_bucket_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.aws_s3_bucket_info.
• iam_access_key - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_access_key.
• iam_access_key_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_access_key_info.
• iam_group - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_group (#1755).
• iam_managed_policy - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_managed_policy (#1762).
• iam_mfa_device_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_mfa_device_info (#1761).
• iam_password_policy - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_password_policy.
• iam_role - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_role (#1760).
• iam_role_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.iam_role_info (#1760).
• s3_bucket_info - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.s3_bucket_info.
• sts_assume_role - The module has been migrated from the community.aws collection. Playbooks using the Fully Qualified Collection Name for this module should be updated to use amazon.aws.sts_assume_role.

Minor Changes

• amazon.aws collection - apply isort code formatting to ensure consistent formatting of code (#1771).
• ec2_instance - add support for additional placement options and license_specifications in run instance spec (#1824).
• ec2_instance_info - add new parameter include_attributes to describe instance attributes (#1577).
• ec2_metadata_facts - use fstrings where appropriate (#1802).
• ec2_vpc_igw - Add ability to attach/detach VPC to/from internet gateway (#1786).
• ec2_vpc_igw - Add ability to change VPC attached to internet gateway (#1786).
• ec2_vpc_igw - Add ability to create an internet gateway without attaching a VPC (#1786).
• ec2_vpc_igw - Add ability to delete a vpc internet gateway using the id of the gateway (#1786).
• elb_application_lb_info - add new parameters include_attributes, include_listeners and include_listener_rules to optionally speed up module by fetching less information (#1778).
• module_utils.botocore - migrate from vendored copy of LooseVersion to packaging.version.Version (#1587).
• rds_cluster - Add support for removing cluster from global db (#1705).
• rds_cluster - add support for another state choice called started. This starts the rds cluster (https://github.com/ansible-collections/amazon.aws/pull/1647/files).
• rds_cluster - add support for another state choice called stopped. This stops the rds cluster (https://github.com/ansible-collections/amazon.aws/pull/1647/files).
• route53 - add a wait_id return value when a change is done (#1683).
• route53_health_check - add support for a string list parameter called child_health_checks to specify health checks that must be healthy for the calculated health check (#1631).
• route53_health_check - add support for an integer parameter called health_threshold to specify the minimum number of healthy child health checks that must be healthy for the calculated health check (#1631).
• route53_health_check - add support for another type choice called CALCULATED (#1631).
• s3_object - Allow recursive copy of objects in S3 bucket (#1379).
• s3_object - use fstrings where appropriate (#1802).

Breaking Changes / Porting Guide

• The amazon.aws collection has dropped support for botocore<1.29.0 and boto3<1.26.0. Most modules will continue to work with older versions of the AWS SDK, however compatability with older versions of the SDK is not guaranteed and will not be tested. When using older versions of the SDK a warning will be emitted by Ansible (#1763).
• amazon.aws collection - due to the AWS SDKs announcing the end of support for Python less than 3.7 (https://aws.amazon.com/blogs/developer/python-support-policy-updates-for-aws-sdks-and-tools/) support for Python less than 3.7 by this collection wss been deprecated in release 6.0.0 and removed in release 7.0.0. (#1763).
• module_utils - module_utils.urls was previously deprecated and has been removed (#1540).
• module_utils._version - vendored copy of distutils.version has been dropped (#1587).

Deprecated Features

• ec2_instance - deprecation of tenancy and placement_group in favor of placement attribute (#1825).

Bugfixes

• aws_ec2 inventory plugin - fix NoRegionError when no regions are provided and region isn't specified (#1551).
• ec2_instance - retry API call if we get InvalidInstanceID.NotFound error (#1650).
• ec2_vpc_route_table_info - default filters to empty dictionary (#1668).
• s3_bucket - fixes issue when deleting a bucket with unversioned objects (#1533).
• s3_object - fixed NoSuchTagSet error when S3 endpoint doesn't support tags (#1607).
• s3_object - fixes regression related to objects with a leading / (#1548).

New Modules

• ec2_import_image - Manage AWS EC2 import image tasks
• ec2_import_image_info - Gather information about import virtual machine tasks
• rds_global_cluster_info - Obtain information about Aurora global database clusters

amazon.aws 6.5.0

Release Summary

This release is the last planned minor release of amazon.aws prior to the release of 7.0.0.
It includes documentation fixes as well as minor changes and bug fixes for the ec2_ami and elb_application_lb_info modules.

Minor Changes

• ec2_ami - add support for org_arns and org_unit_arns in launch_permissions (#1690).
• elb_application_lb_info - drop redundant describe_load_balancers call fetching ip_address_type (#1768).

Bugfixes

• elb_application_lb_info - ensure all API queries use the retry decorator (#1767).

amazon.aws 5.5.4

Release Summary

This release contains documentation updates including updated documentation relating to secure use of the ec2_key module.

Security Fixes

• ec2_key - Update documentation to recommend using the module with no_log and register to avoid logging the private key (#1704).

amazon.aws 6.4.0

Release Summary

This release brings a new module named amazon.aws.ec2_key_info, some documentation improvements, new features and bugfixes.

Minor Changes

• cloudformation - Add support for disable_rollback to update stack operation (#1681).
• ec2_key - add support for new parameter file_name to save private key in when new key is created by AWS. When this option is provided the generated private key will be removed from the module return (#1704).

Bugfixes

• backup_selection - ensures that updating an existing selection will add new Conditions if there previously were not any (#1701).

New Modules

• ec2_key_info - Gather information about EC2 key pairs in AWS

amazon.aws 6.3.0

Release Summary

This release brings some new features and several bugfixes.

Minor Changes

• rds_cluster - add support for another state choice called started. This starts the rds cluster (#1647).
• rds_cluster - add support for another state choice called stopped. This stops the rds cluster (#1647).
• route53 - add a wait_id return value when a change is done (#1683).
• route53_health_check - add support for a string list parameter called child_health_checks to specify health checks that must be healthy for the calculated health check (#1631).
• route53_health_check - add support for an integer parameter called health_threshold to specify the minimum number of healthy child health checks that must be healthy for the calculated health check (#1631).
• route53_health_check - add support for another type choice called CALCULATED (#1631).

Bugfixes

• ec2_vpc_route_table_info - default filters to empty dictionary (#1668).
• rds_cluster - Add AllocatedStorage, DBClusterInstanceClass, StorageType, Iops, and EngineMode to the list of parameters that can be passed when creating or modifying a Multi-AZ RDS cluster (#1657).
• rds_cluster - Allow to pass GlobalClusterIdentifier to rds cluster on creation (#1663).

amazon.aws 5.5.3

Release Summary

This release contains a few bugfixes for rds_cluster.

Bugfixes

• rds_cluster - Add AllocatedStorage, DBClusterInstanceClass, StorageType, Iops, and EngineMode to the list of parameters that can be passed when creating or modifying a Multi-AZ RDS cluster (#1657).
• rds_cluster - Allow to pass GlobalClusterIdentifier to rds cluster on creation (#1663).

amazon.aws 6.2.0

Release Summary

This release brings some new modules, features, and several bugfixes.

Minor Changes

• backup_selection - add validation and documentation for all conditions suboptions (#1633).
• ec2_instance - refactored ARN validation handling (#1619).
• iam_user - refactored ARN validation handling (#1619).
• module_utils.arn - add resource_id and resource_type to parse_aws_arn return values (#1619).
• module_utils.arn - added validate_aws_arn function to handle common pattern matching for ARNs (#1619).

Bugfixes

• backup_plan - Use existing scrub_none_values function from module_utils to remove None values from nested dicts in supplied params. Nested None values were being retained and causing an error when sent through to the boto3 client operation (#1611).
• backup_vault - fix error when updating tags on a backup vault by using the correct boto3 client methods for tagging and untagging backup resources (#1610).
• cloudwatchevent_rule - Fixes changed status to report False when no change has been made. The module had incorrectly always reported a change. (#1589)
• ec2_vpc_nat_gateway - adding a boolean parameter called default_create to allow users to have the option to choose whether they want to display an error message or create a NAT gateway when an EIP address is not found. The module (ec2_vpc_nat_gateway) had incorrectly failed silently if EIP didn't exist (#1295).
• ec2_vpc_nat_gateway - fixes to nat gateway so that when the user creates a private NAT gateway, an Elastic IP address should not be allocated. The module had inncorrectly always allocate elastic IP address when creating private nat gateway (#1632).
• lambda_execute - Fixes to the stack trace output, where it does not contain spaces between each character. The module had incorrectly always outputted extra spaces between each character. (#1615)
• module_utils.backup - get_selection_details fix empty list returned when multiple backup selections exist (#1633).

New Modules

• iam_instance_profile - manage IAM instance profiles
• iam_instance_profile_info - gather information on IAM instance profiles

amazon.aws 5.5.2

Bugfixes

• cloudwatchevent_rule - Fixes changed status to report False when no change has been made. The module had incorrectly always reported a change. (#1589)
• ec2_vpc_nat_gateway - fixes to nat gateway so that when the user creates a private NAT gateway, an Elastic IP address should not be allocated. The module had inncorrectly always allocate elastic IP address when creating private nat gateway (#1632).
• lambda_execute - Fixes to the stack trace output, where it does not contain spaces between each character. The module had incorrectly always outputted extra spaces between each character. (#1615)

amazon.aws 6.1.0

Release Summary

This release brings some new features, several bugfixes, and deprecated features are also included.

Minor Changes

• ec2_snapshot - Add support for modifying createVolumePermission (#1464).
• ec2_snapshot_info - Add createVolumePermission to output result (#1464).

Deprecated Features

• s3_object - support for passing object keys with a leading / has been deprecated and will be removed in a release after 2025-12-01 (#1549).

Bugfixes

• autoscaling_group - fix ValidationError when describing an autoscaling group that has more than 20 target groups attached to it by breaking the request into chunks (#1593).
• autoscaling_group_info - fix ValidationError when describing an autoscaling group that has more than 20 target groups attached to it by breaking the request into chunks (#1593).
• ec2_instance - fix check_mode issue when adding network interfaces (#1403).
• ec2_metadata_facts - Handle decompression when EC2 instance user-data is gzip compressed. The fetch_url method from ansible.module_utils.urls does not decompress the user-data unless the header explicitly contains Content-Encoding: gzip (#1575).
• elb_application_lb - fix missing attributes on creation of ALB. The create_or_update_alb() was including ALB-specific attributes when updating an existing ALB but not when creating a new ALB (#1510).
• module_utils.acm - fixes list_certificates returning only RSA_2048 certificates (#1567).
• rds_instance - add support for CACertificateIdentifier to create/update rds instance (#1459)."

amazon.aws 5.5.1

Release Summary

This release brings few bugfixes.

Bugfixes

• autoscaling_group - fix ValidationError when describing an autoscaling group that has more than 20 target groups attached to it by breaking the request into chunks (#1593).
• autoscaling_group_info - fix ValidationError when describing an autoscaling group that has more than 20 target groups attached to it by breaking the request into chunks (#1593).
• aws_account_attribute - raise correct AnsibleLookupError rather than AnsibleError (#1528).
• aws_secret - raise correct AnsibleLookupError rather than AnsibleError (#1528).
• aws_service_ip_ranges raise correct AnsibleLookupError rather than AnsibleError (#1528).
• aws_ssm - raise correct AnsibleLookupError rather than AnsibleError (#1528).
• ec2_instance - fix check_mode issue when adding network interfaces (#1403).
• elb_application_lb - fix missing attributes on creation of ALB. The create_or_update_alb() was including ALB-specific attributes when updating an existing ALB but not when creating a new ALB (#1510).