All notable changes to this project will be documented in this file.
5.48.0 (2024-11-11)
5.47.1 (2024-10-22)
5.47.0 (2024-10-21)
5.46.0 (2024-10-04)
5.45.0 (2024-10-04)
5.44.2 (2024-10-01)
5.44.1 (2024-09-24)
5.44.0 (2024-08-08)
5.43.0 (2024-08-05)
5.42.0 (2024-07-29)
5.41.0 (2024-07-11)
5.40.0 (2024-07-05)
5.39.1 (2024-05-15)
5.39.0 (2024-04-08)
- Enable override policy name iam-group-with-assumable-roles-policy (#468) (bf013d2)
- Update VPC CNI policy to 3/4/24 (#476) (f9d5e28)
5.38.0 (2024-04-02)
5.37.2 (2024-03-25)
5.37.1 (2024-03-07)
5.37.0 (2024-03-03)
5.36.0 (2024-03-03)
5.35.0 (2024-02-27)
5.34.0 (2024-02-02)
5.33.1 (2024-01-18)
5.33.0 (2023-12-16)
5.32.1 (2023-12-11)
5.32.0 (2023-11-17)
5.31.0 (2023-11-13)
5.30.2 (2023-11-10)
5.30.1 (2023-11-04)
5.30.0 (2023-08-31)
- Add
create_custom_role_trust_policy
to control when acustom_role_trust_policy
should be used (#321) (481095e)
5.29.2 (2023-08-30)
5.29.1 (2023-08-30)
5.29.0 (2023-08-23)
5.28.0 (2023-07-19)
5.27.0 (2023-07-04)
5.26.0 (2023-07-03)
5.25.0 (2023-07-02)
- Added variable load_balancer_controller_targetgroup_arns in iam-role-for-service-accounts-eks module (#402) (61a5dbe)
5.24.0 (2023-06-29)
5.23.1 (2023-06-29)
5.23.0 (2023-06-29)
5.22.0 (2023-06-26)
5.21.0 (2023-06-23)
5.20.0 (2023-05-22)
5.19.0 (2023-05-17)
5.18.0 (2023-05-07)
- iam-eks-role: Add variable to allow change of IAM assume role condition test operator (#367) (542fc5a)
5.17.1 (2023-05-05)
- Remove
"autoscaling:UpdateAutoScalingGroup"
permission from cluster-autoscaler IRSA (#357) (aeb5d7f)
5.17.0 (2023-04-08)
5.16.0 (2023-03-27)
- Add
elasticloadbalancing:AddTags
permissions to AWS Load Balancer Controller policy required for version 2.4.7+ (#358) (e1403c1)
5.15.0 (2023-03-27)
- Add permissions for instance requirements support for cluster autoscaler IRSA policy (#356) (fac0cdc)
5.14.4 (2023-03-24)
5.14.3 (2023-03-23)
5.14.2 (2023-03-21)
- Add
ssm:DescribeParameters
permission toexternal-secrets
IAM role for service account (IRSA) (#348) (fe8d73b)
5.14.1 (2023-03-21)
5.14.0 (2023-03-17)
5.13.0 (2023-03-10)
5.12.0 (2023-03-08)
5.11.2 (2023-02-15)
5.11.1 (2023-01-19)
5.11.0 (2023-01-19)
5.10.0 (2023-01-06)
5.9.2 (2022-12-10)
5.9.1 (2022-12-07)
5.9.0 (2022-12-01)
5.8.0 (2022-11-21)
- Add additional permissions to Karpenter EKS IRSA role for native node termination handling support (#304) (d6865d2)
5.7.0 (2022-11-21)
5.6.0 (2022-11-19)
5.5.7 (2022-11-09)
5.5.6 (2022-11-07)
5.5.5 (2022-11-01)
5.5.4 (2022-10-26)
- Insufficient permissions for karpenter policy when not using karpenter discovery tags on security group (#294) (5ad496b)
5.5.3 (2022-10-26)
5.5.2 (2022-10-13)
5.5.1 (2022-10-12)
5.5.0 (2022-09-27)
5.4.0 (2022-09-15)
5.3.3 (2022-09-06)
5.3.2 (2022-09-05)
5.3.1 (2022-08-25)
5.3.0 (2022-08-10)
5.2.0 (2022-06-27)
5.1.0 (2022-06-01)
5.0.0 (2022-05-18)
- Replace use of
toset()
for policy attachment, bump min version of AWS provider to4.0
and Terraform to1.0
(#250)
- Replace use of
toset()
for policy attachment, bump min version of AWS provider to4.0
and Terraform to1.0
(#250) (835135b)
4.24.1 (2022-05-10)
4.24.0 (2022-05-03)
4.23.0 (2022-04-25)
- Improved iam-eks-role module (simplified, removed provider_url_sa_pairs, updated docs) (#236) (d014730)
4.22.1 (2022-04-25)
4.22.0 (2022-04-23)
4.21.1 (2022-04-22)
4.21.0 (2022-04-22)
4.20.3 (2022-04-20)
4.20.2 (2022-04-19)
4.20.1 (2022-04-15)
4.20.0 (2022-04-13)
- Add support for AMP, cert-manager, and external-secrets to
iam-role-for-service-accounts-eks
(#223) (f53d409)
4.19.0 (2022-04-12)
- Add variable to allow changing tag condition on Karpenter
iam-role-for-service-accounts-eks
policy (#218) (3d7ea33)
4.18.0 (2022-04-02)
4.17.2 (2022-03-31)
4.17.1 (2022-03-29)
4.17.0 (2022-03-26)
4.16.0 (2022-03-25)
4.15.1 (2022-03-23)
- Permit
RunInstances
permission for Karpenter when request containskarpenter.sh/discovery
tag key (#209) (18081d1)
4.15.0 (2022-03-23)
- Made it clear that we stand with Ukraine (8e2b836)
4.14.0 (2022-03-09)
- Add variable to change IAM condition test operator to suite; defaults to
StringEquals
(#201) (8469c03)
4.13.2 (2022-03-02)
4.13.1 (2022-02-18)
4.13.0 (2022-02-17)
4.12.0 (2022-02-16)
4.11.0 (2022-02-02)
4.10.1 (2022-01-21)
4.10.0 (2022-01-19)
4.9.0 (2022-01-14)
4.8.0 (2022-01-03)
v4.7.0 - 2021-10-14
- feat: Added support for trusted_role_actions for MFA in iam-assumable-role (#171)
v4.6.0 - 2021-09-20
- feat: Added output group_arn to iam-group-with-policies (#165)
v4.5.0 - 2021-09-16
- feat: Added id of iam assumable role to outputs (#164)
v4.4.0 - 2021-09-10
- feat: Add ability for controlling whether or not to create a policy (#163)
- docs: Update version constraints (#162)
v4.3.0 - 2021-08-18
- feat: Add support for cross account access in iam-assumable-role-with-oidc (#158)
v4.2.0 - 2021-06-29
- feat: Support External ID with MFA in iam-assumable-role (#159)
v4.1.0 - 2021-05-03
- feat: Add support tags to additional IAM modules (#144)
- chore: update CI/CD to use stable
terraform-docs
release artifact and discoverable Apache2.0 license (#151)
v4.0.0 - 2021-04-26
- feat: Shorten outputs (removing this_) (#150)
v3.16.0 - 2021-04-20
- feat: Add iam role unique_id to outputs (#149)
v3.15.0 - 2021-04-15
- fix: Set sensitive=true for sensitive outputs and use tolist() (#148)
v3.14.0 - 2021-04-07
- feat: Add role unique_id output in iam-assumable-role module (#143)
- chore: update documentation and pin
terraform_docs
version to avoid future changes (#142)
v3.13.0 - 2021-03-11
- feat: Allows multiple STS External IDs to be provided to an assumable role (#138)
v3.12.0 - 2021-03-05
- feat: Add iam-assumable-role-with-saml module (#127)
v3.11.0 - 2021-03-04
- fix: handle unencrypted secrets (#139)
- chore: update ci-cd workflow to allow for pulling min version from each directory (#137)
v3.10.0 - 2021-03-01
- fix: Update syntax for Terraform 0.15 (#135)
- chore: Run pre-commit terraform_docs hook (#133)
- chore: add ci-cd workflow for pre-commit checks (#132)
v3.9.0 - 2021-02-20
- chore: update documentation based on latest
terraform-docs
which includes module and resource sections (#131)
v3.8.0 - 2021-01-29
- feat: Add arn of created group(s) to outputs (#128)
v3.7.0 - 2021-01-14
- fix: Multiple provider_urls not working with iam-assumable-role-with-oidc (#115)
v3.6.0 - 2020-12-04
- feat: Fixed number of policies everywhere (#121)
v3.5.0 - 2020-12-04
- fix: automatically determine the number of role policy arns (#119)
v3.4.0 - 2020-11-13
- feat: iam-assumable-roles-with-saml - Allow for multiple provider ids (#110)
v3.3.0 - 2020-11-02
- ci: Updated pre-commit hooks, added terraform_validate (#106)
v3.2.0 - 2020-10-30
- docs: Updated examples in README (#105)
v3.1.0 - 2020-10-30
- Bump new major release v3
v3.0.0 - 2020-10-30
- feat: Added number_of_ variables for iam-assumable-role submodules (#96)
v2.25.0 - 2020-10-30
- fix: remove empty string elements from local.urls in iam-assumable-role-with-oidc submodule (#99)
v2.24.0 - 2020-10-30
- feat: Add role_name_prefix option for oidc roles (#101)
v2.23.0 - 2020-10-30
v2.22.0 - 2020-10-16
- feat: Add role description variable for assumable role with oidc (#98)
v2.21.0 - 2020-09-22
- fix: Fixed ses_smtp_password_v4 output name
v2.20.0 - 2020-09-08
- fix: simplify count statements (#93)
v2.19.0 - 2020-09-08
- fix: Allow running on custom AWS partition (incl. govcloud) (#94)
v2.18.0 - 2020-08-18
- feat: modules/iam-assumable-role-with-oidc: Support multiple provider URLs (#91)
v2.17.0 - 2020-08-17
- feat: Strip https:// from OIDC provider URL if present (#50)
v2.16.0 - 2020-08-17
- fix: Allow modules/iam-assumable-role-with-oidc to work in govcloud (#83)
v2.15.0 - 2020-08-17
- feat: Added support for sts:ExternalId in modules/iam-assumable-role (#90)
v2.14.0 - 2020-08-13
- fix: Delete DEPRECATED ses_smtp_password in iam-user. (#88)
v2.13.0 - 2020-08-13
v2.12.0 - 2020-06-10
- Updated formatting
- fix: Fix conditions with multiple subjects in assume role with oidc policy (#74)
v2.11.0 - 2020-06-10
- feat: Allow to set force_detach_policies on roles (#68)
v2.10.0 - 2020-05-26
- fix: Allow customisation of trusted_role_actions in iam-assumable-role module (#76)
v2.9.0 - 2020-04-23
- feat: modules/iam-user - Output SMTP password generated with SigV4 algorithm (#70)
v2.8.0 - 2020-04-22
- docs: Add note about pgp_key when create_iam_login_profile is set (#69)
- fix: Fix module source and name in README (#65)
- fix typo (#62)
v2.7.0 - 2020-02-22
- Updated pre-commit-terraform with README
- Add instance profile to role sub-module (#46)
v2.6.0 - 2020-01-27
- Rename module from "-iodc" to "-oidc" (#48)
v2.5.0 - 2020-01-27
- New sub-module for IAM assumable role with OIDC (#37)
v2.4.0 - 2020-01-09
- Updated pre-commit hooks
- iam-assumable-role: add description support (#45)
- Removed link to missing complete example (fixed #34)
v2.3.0 - 2019-08-21
- Added description support for custom group policies using a lookup (#33)
v2.2.0 - 2019-08-21
- Added trusted_role_services to iam-assumable-roles, autoupdated docs
- Add Trusted Services to iam-assumable-role (#31)
- Fix link to iam-assumable-role example in README (#35)
v2.1.0 - 2019-06-11
- Removed duplicated tags from variables in iam-user (#30)
v2.0.0 - 2019-06-11
- Upgraded module to support Terraform 0.12 (#29)
v1.0.0 - 2019-06-11
- Fixed styles after #26
- iam-user,iam-assumable-role,iam-assumable-roles,iam-assumable-roles-with-saml tags support (#26)
v0.5.0 - 2019-05-15
- Added support for list of policies to attach to roles (#25)
v0.4.0 - 2019-03-16
- Minor adjustments
- assumable roles for Users with SAML Identity Provider (#19)
v0.3.0 - 2019-02-20
- Added iam-group-with-policies and iam-group-complete
v0.2.0 - 2019-02-19
- Added iam-group-with-assumable-roles-policy and iam-assumable-role (#18)
v0.1.0 - 2019-02-19
v0.0.7 - 2018-08-19
- Follow-up after #12, added possibility to upload IAM SSH public keys
- Ssh key support (#12)
- fix descriptions of variables (#10)
v0.0.6 - 2018-05-28
- Custom Session Duration (#9)
v0.0.5 - 2018-05-16
- Added pre-commit hook to autogenerate terraform-docs
- Implement conditional logic for role creation (#7)
v0.0.4 - 2018-03-01
- Add max_password_age for password policy (#5)
v0.0.3 - 2018-02-28
- Added iam-user module (#4)
v0.0.2 - 2018-02-12
- Do pre-commit run on all code
- Added iam-account
- Initial commit