v4.52.0

• Migrate aiven_clickhouse_database to the Plugin Framework
• Add aiven_kafka_topic_list data source: lists all Kafka topics for a service
• Migrate aiven_flink_application to the Plugin Framework
• Add aiven_organization_payment_method_list data source: lists payment methods for an organization (beta)
• Remove docs for aiven_alloydbomni, aiven_alloydbomni_database, and aiven_alloydbomni_user resources: The AlloyDB
  Omni service has reached end of life.
• Migrate aiven_flink_application_deployment to the Plugin Framework

v4.51.0

• Remove docs for aiven_cassandra and aiven_cassandra_user resources: The Cassandra service has reached end of life.
• Change aiven_gcp_privatelink_connection_approval: allow selecting which connection to approve via psc_connection_id
  when multiple PSC connections exist for the same service
• Add aiven_cmk resource: Creates and manages customer managed
  keys (CMKs) for encrypting service data.
• Migrate aiven_clickhouse_database to the Plugin Framework
• Change aiven_clickhouse_database: deprecate termination_protection field. Instead, use prevent_destroy
• Fix aiven_kafka_topic: handle retention_bytes = -1 for infinite retention
• Fix aiven_mysql_user: password_wo now properly updates password when creating the resource
• Add privatelink_connection_id to the components attribute on all service resources and data sources
• Add privatelink_connection_id to aiven_service_component data source: enables filtering by privatelink connection ID
• Change aiven_valkey_user: ACL fields (valkey_acl_categories, valkey_acl_commands, valkey_acl_keys,
  valkey_acl_channels) can now be updated in-place without forcing resource recreation
• Fix service cloud_name: was incorrectly sent as an empty string when not set
• The service disk_space field is no longer deprecated. It can be used when the plan disk size is "unknown", in which
  case additional_disk_space cannot be used.
• Change aiven_opensearch field opensearch_user_config.opensearch_version (enum): add 3.3
• Change aiven_billing_group: parent_id is required
• Refactor aiven_organization_billing_group: regenerated using the latest schema
• Refactor aiven_organization_billing_group_list: regenerated using the latest schema

v4.37.2

• Change aiven_gcp_privatelink_connection_approval: allow selecting which connection to approve via psc_connection_id
  when multiple PSC connections exist for the same service
• Add privatelink_connection_id to the components attribute on all service resources and data sources: allows correlating GCP Private Service Connect connection IDs with their corresponding hostnames
• Add privatelink_connection_id to aiven_service_component data source: enables filtering by privatelink connection ID
• Migrate aiven_service_component data source to use generated client
• Change aiven_valkey_user: ACL fields (valkey_acl_categories, valkey_acl_commands, valkey_acl_keys, valkey_acl_channels) can now be updated in-place without forcing resource recreation

v4.50.0

• Fix aiven_billing_group: fixed billing group compatibility issue
• Migrate aiven_pg_database to the Plugin Framework
• Change aiven_pg_database: deprecate termination_protection field. Instead use prevent_destroy
• Fix aiven_kafka_schema: handle 403 Forbidden error when Schema Registry is disabled by verifying service state
• Fix aiven_kafka_schema_configuration: handle 403 Forbidden error when Schema Registry is disabled by verifying service state
• Change all service types to use generated client: aiven_alloydbomni, aiven_cassandra, aiven_clickhouse,
  aiven_dragonfly, aiven_flink, aiven_grafana, aiven_kafka, aiven_kafka_connect, aiven_kafka_mirrormaker,
  aiven_m3aggregator, aiven_mysql, aiven_opensearch, aiven_pg, aiven_thanos, aiven_valkey
• Add aiven_kafka field kafka_user_config.backup_interval_hours: Interval in hours between automatic backups. Minimum
  value is 3 hours
• Add aiven_kafka field kafka_user_config.backup_retention_days: Number of days to retain automatic backups. Backups
  older than this value will be automatically deleted
• Change aiven_kafka field kafka_user_config.kafka_diskless.enabled: force new true → false
• Add aiven_pg field pg_user_config.backup_interval_hours: Interval in hours between automatic backups. Minimum value is 3 hours
• Add aiven_pg field pg_user_config.backup_retention_days: Number of days to retain automatic backups. Backups older
  than this value will be automatically deleted

v4.37.1

• Fix aiven_kafka_schema: handle 403 Forbidden error when Schema Registry is disabled by verifying service state
• Fix aiven_kafka_schema_configuration: handle 403 Forbidden error when Schema Registry is disabled by verifying service state

v4.49.0

• Add aiven_service_list data source: list all services in a project (@Steve-Aiven)
• Fix aiven_kafka_topic: retry 404 errors from KafkaTopicListV2 endpoint
• Fix services: previously, if ServiceGet returned an error, the update could have been skipped
• Change aiven_kafka_connector resource: migrate to use generated client
• Migrate aiven_organizational_unit to the Plugin Framework
• Migrate aiven_mysql_database to the Plugin Framework
• Migrate aiven_mysql_user to the Plugin Framework
• Fix aiven_mysql_user: writing to the password_wo field now properly updates the MySQL user's password in Aiven
• Added field kafka_ssl_ca to aiven_service_component data source
• Change aiven_organization_project to validate that the base_port value is between 10000 and 30000.
• Deprecated termination_protection for aiven_mysql_database.
  Use prevent_destroy instead.
• Add aiven_mysql field mysql_user_config.migration.reestablish_replication: Skip dump-restore part and start replication
• Fix resources not properly removing from state when deleted externally or when delete fails with transient API errors:
  aiven_account_authentication, aiven_account_team_project, aiven_azure_privatelink,
  aiven_azure_privatelink_connection_approval, aiven_flink_application_deployment, aiven_flink_application_version,
  aiven_gcp_privatelink, aiven_gcp_privatelink_connection_approval, aiven_kafka_connector, aiven_kafka_native_acl, aiven_organization_vpc

v4.48.0

• Add aiven_organization_user_group_member_list datasource: List members of a user group
• Add service user resources fields password_wo and password_wo_version: support for write-only passwords to manage
  them securely without storing them in state for aiven_kafka_user, aiven_mysql_user, aiven_opensearch_user,
  aiven_pg_user, aiven_valkey_user
• Change service user resources and data sources: migrate to use generated client: aiven_cassandra_user,
  aiven_influxdb_user, aiven_kafka_user, aiven_m3db_user, aiven_mysql_user, aiven_opensearch_user,
  aiven_pg_user, aiven_redis_user
• Change aiven_billing_group: migrate to the Plugin Framework
• Change aiven_billing_group: add billing_contact_emails field
• Warn 404 on client retries when deleting Plugin Framework resources: a 5xx on the first delete may be followed
  by a 404 if the resource was already removed.
• Add aiven_mysql field mysql_user_config.migration.dump_tool (enum): Experimental! Tool to use for database dump
  and restore during migration
• Add aiven_kafka field kafka_user_config.letsencrypt_sasl: Use a Let's Encrypt certificate authority (CA) for Kafka
  SASL authentication
• Add aiven_kafka field kafka_user_config.sasl_oauthbearer_allowed_urls: List of allowed URLs for SASL OAUTHBEARER authentication
• Add aiven_kafka_connect field kafka_connect_user_config.sasl_oauthbearer_allowed_urls: List of allowed URLs for SASL
  OAUTHBEARER authentication
• Change service user resources and data sources: migrate to use generated client: aiven_kafka_user, aiven_mysql_user,
  aiven_opensearch_user, aiven_pg_user
• Add aiven_pg field pg_user_config.enable_ha_replica_dns: Creates a dedicated read-only DNS that automatically falls
  back to the primary if standby nodes are unavailable
• Remove docs for aiven_redis and aiven_redis_user resources: The Redis service has reached end of life.
• Add aiven_kafka_mirrormaker field kafka_mirrormaker_user_config.sasl_oauthbearer_allowed_urls: List of allowed URLs
  for SASL OAUTHBEARER authentication
• Add aiven_opensearch field opensearch_user_config.opensearch.ml_commons_model_access_control_enabled: Enable
  or disable model access control for ML Commons
• Add aiven_opensearch field opensearch_user_config.opensearch.ml_commons_native_memory_threshold: Native memory
  threshold percentage for ML Commons
• Add aiven_opensearch field opensearch_user_config.opensearch.ml_commons_only_run_on_ml_node: Enable or disable
  running ML Commons tasks only on ML nodes
• Change aiven_kafka field kafka_user_config.kafka_version (enum): add 4.1

v4.47.0

• Add aiven_clickhouse_user resource fields password_wo and password_wo_version: support for write-only passwords to manage them securely without storing them in state
• Change aiven_clickhouse_user resource and data source: migrate to use generated client
• Add aiven_service_plan data source: retrieve detailed service plan specifications and pricing information
  for a specific plan and cloud region
• Add aiven_service_plan_list data source: query available service plans and their regional availability for a service type
• Change aiven_organization_address field address_lines type from Set to List to preserve order of address lines
• Fix aiven_kafka_quota added retry logic to handle API eventual consistency
• Improve aiven_organization: added retries to AccountList for eventual consistency
• Improve aiven_organization_project: added retries to the read operation to ensure eventual consistency after creating
  or updating the resource
• Fix aiven_organization_application_user_token: prevent full_token from being lost after running terraform refresh
• Add aiven_opensearch field opensearch_user_config.jwt: OpenSearch JWT Configuration
• Add aiven_pg field pg_user_config.pg.io_combine_limit: EXPERIMENTAL: Controls the largest I/O size in operations
  that combine I/O in 8kB units
• Add aiven_pg field pg_user_config.pg.io_max_combine_limit: EXPERIMENTAL: Controls the largest I/O size in operations
  that combine I/O in 8kB units, and silently limits the user-settable parameter io_combine_limit
• Add aiven_pg field pg_user_config.pg.io_max_concurrency: EXPERIMENTAL: Controls the maximum number of I/O operations
  that one process can execute simultaneously
• Add aiven_pg field pg_user_config.pg.io_method (enum): EXPERIMENTAL: Controls the maximum number of I/O operations
  that one process can execute simultaneously
• Add aiven_pg field pg_user_config.pg.io_workers: EXPERIMENTAL: Number of IO worker processes, for io_method=worker.
  Version 18 and up only
• Change aiven_kafka_topic: do not set "config" block in the state if no user-defined configuration values exist. This
  change prepares for future Plugin Framework migration which doesn't support computed+optional blocks
• Change aiven_influxdb resource field influxdb_user_config: deprecate: This property is deprecated
• Upgraded go version to 1.25
• Change aiven_service_component datasource field usage (enum): add ha_replica
• Add aiven_organization_user_group_list data source: List all user groups within an organization

v4.46.1

• Fix aiven_kafka user config field kafka_diskless being sent empty to the API when enabled=false.

v4.46.0

• Added maintenance_window_enabled field to service resources: Indicates whether the maintenance window is currently enabled for this service.
• Added service plan validation during terraform plan
• Add aiven_kafka_topic field config.diskless_enable: Indicates whether diskless should be enabled.
  This is only available for BYOC services with Diskless feature enabled.
• Add aiven_pg field pg_user_config.node_count: Number of nodes for the service.
• Remove redundant aiven_kafka_topic field config.inkless_enable: The field was not propagated to the client.
  Please, use diskless_enable instead.
• Remove aiven_opensearch field opensearch_user_config.custom_keystores: the block is missing a required field settings.