Releases: cloudposse-terraform-components/aws-identity-center
Releases · cloudposse-terraform-components/aws-identity-center
v1.539.0
feat: pass tags to permission sets @johncblandii (#51)
## what * Added `module.this.tags` to permission setswhy
- We were passing in nothing so this will help provide tags in AWS based on the component, etc
references
Summary by CodeRabbit
- Chores
- Updated IAM permission set configurations to inherit tags from module settings, enabling consistent metadata management across AdministratorAccess, BillingAdministratorAccess, BillingReadOnlyAccess, DNSAdministratorAccess, TeamAccess, PoweruserAccess, ReadOnlyAccess, and TerraformUpdateAccess permission sets.
🤖 Automatic Updates
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.44.0 @[renovate[bot]](https://github.com/apps/renovate) (#52)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.43.0 -> 0.44.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.44.0
What's Changed
Support for Cosign signatures has been removed from this release. The checksums.txt.keyless.sig and checksums.txt.pem will not be included in the release.
These files are not used in normal use cases, so in most cases this will not affect you, but if you are affected, you can use Artifact Attestations instead.
Breaking Changes
- Bump github.com/terraform-linters/tflint-plugin-sdk from 0.22.0 to 0.23.1 by @dependabot[bot] in #966
- Requires TFLint v0.46+
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] in #954
- Update AWS provider/module and generated content by @github-actions[bot] in #959
- Update Lambda runtime deprecation dates by @Copilot in #969
- Add missing ElastiCache node type: cache.r6gd.large by @Copilot in #971
- Fix typos in AWS RDS DB instance types by @Copilot in #972
- Add missing AWS S3 bucket naming restrictions by @Copilot in #976
Chores
- Bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.251.2 to 1.253.0 in the aws-sdk group by @dependabot[bot] in #952
- Bump github.com/hashicorp/terraform-json from 0.26.0 to 0.27.2 by @dependabot[bot] in #953
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #956
- Bump the aws-sdk group with 2 updates by @dependabot[bot] in #957
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.66 to 2.0.0-beta.67 by @dependabot[bot] in #958
- Bump github.com/aws/aws-sdk-go-v2/service/rds from 1.108.0 to 1.108.2 in the aws-sdk group by @dependabot[bot] in #960
- Bump golang.org/x/net from 0.44.0 to 0.46.0 by @dependabot[bot] in #961
- Bump sigstore/cosign-installer from 3.10.0 to 4.0.0 by @dependabot[bot] in #962
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #963
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #965
- Drop support for Cosign signatures by @wata727 in #968
- Add documentation to AWS MQ engine type validation rules by @Copilot in #974
- Reorder S3 bucket ACL enum values for consistency by @Copilot in #975
New Contributors
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.43.0...v0.44.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
Contributors
johncblandii
Assets 2
v1.538.0
fix: Session Duration @milldr (#49)
## what - Session duration was missing from several permission sets in the `aws-sso` componentwhy
- We set
var.session_durationfor all Permission Sets in the component, but several were missed
references
- .
Summary by CodeRabbit
- New Features
- Session duration for access policies is now configurable through a variable, enabling administrators to control session timeouts consistently across Billing Administrator, Billing Read-Only, DNS Administrator, Team Access, and Read-Only access policies instead of using static placeholders.
Contributors
milldr
Assets 2
v1.537.1
Added variable overridable_team_permission_set_name_pattern to match the capability of aws-account-map @petabook (#45)
### Added- A new variable,
overridable_team_permission_set_name_pattern, has been introduced to align with the corresponding capability inaws-account-map. - When the default team permission set name pattern is overridden in
aws-account-map, the same value must also be specified in this component. - By default, the variable preserves the existing behavior, using the pattern
"Identity%sTeamAccess".
Summary by CodeRabbit
- New Features
- Added a configurable pattern for team AWS SSO Permission Set names so users can customize naming; default remains "Identity%sTeamAccess".
- Chores
- Minor formatting cleanup in variable declarations (no functional impact).
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#48)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#47)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.43.0 @[renovate[bot]](https://github.com/apps/renovate) (#46)
Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more [here](https://redirect.github.com/renovatebot/renovate/discussions/37842).This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.42.0 -> 0.43.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.43.0
What's Changed
Breaking Changes
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] in #921
- Update AWS provider/module and generated content by @github-actions[bot] in #948
Chores
- Bump golang.org/x/net from 0.42.0 to 0.43.0 by @dependabot[bot] in #927
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #928
- Bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 by @dependabot[bot] in #931
- Bump github.com/hashicorp/terraform-json from 0.25.0 to 0.26.0 by @dependabot[bot] in #930
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #929
- Bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in #932
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #933
- Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by @dependabot[bot] in #934
- Bump github.com/zclconf/go-cty from 1.16.3 to 1.16.4 by @dependabot[bot] in #935
- dependabot: allow actions writes by @wata727 in #936
- Fix E2E tests to take into account the newly added JSON fields by @wata727 in #944
- Bump actions/attest-build-provenance from 2.4.0 to 3.0.0 by @dependabot[bot] in #937
- Bump github.com/aws/smithy-go from 1.22.5 to 1.23.0 by @dependabot[bot] in #938
- Bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @dependabot[bot] in #940
- Bump github.com/zclconf/go-cty from 1.16.4 to 1.17.0 by @dependabot[bot] in #942
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.65 to 2.0.0-beta.66 by @dependabot[bot] in #943
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #939
- Bump actions/setup-go from 5.5.0 to 6.0.0 by @dependabot[bot] in #941
- Bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by @dependabot[bot] in #945
- Bump golang.org/x/net from 0.43.0 to 0.44.0 by @dependabot[bot] in #946
- deps: Bump Go version to 1.25 by @wata727 in #950
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.42.0...v0.43.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#44)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Contributors
petabook
Assets 2
v1.537.0
fix: Skip DynamoDB in Terraform Policy @milldr (#43)
## what - Skip the DynamoDB table permission in the TerraformUpdateAccess policy when the table does not existwhy
- If we create the backend with
s3_state_lock_enabled: false, then the DynamoDB table will not exist and this will be an invalid policy.
references
Summary by CodeRabbit
-
Chores
- Added an ignore rule to prevent committing account map artifacts to the repository.
-
Refactor
- Made the infrastructure access policy conditional, applying it only when the feature is enabled and a valid backend resource is provided. This reduces unnecessary permissions and avoids misconfigurations without altering behavior when conditions are not met.
Align the documentation with the actual code @j4zzcat (#37)
Align the documentation with the actual code. `IdentityTeamAccess` is generated in [aws-account-map/roles-to-principals](https://github.com/cloudposse-terraform-components/aws-account-map/blob/6cb2aa31653d13263387f2d0a71c68aa4cbaa73b/src/modules/roles-to-principals/main.tf#L31) like so: ``` format("Identity%sTeamAccess", replace(title(replace(team, "_", "-")), "-", "")) ```Summary by CodeRabbit
- Documentation
- Updated documentation to clarify how permission set names are generated from team names, providing a more accurate example of the Terraform statement used.
🤖 Automatic Updates
Migrate README generation to atmos @goruha (#42)
## what - Update README.yamlwhy
- Use atmos to generate readme
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#41)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.42.0 @[renovate[bot]](https://github.com/apps/renovate) (#40)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.41.0 -> 0.42.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.42.0
What's Changed
Breaking Changes
- Remove aws_guardduty_member_invalid_email rule by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/925
- This auto-generated rule had invalid regexp.
Chores
- Bump the aws-sdk group with 7 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9244
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.41.0...v0.42.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.41.0 @[renovate[bot]](https://github.com/apps/renovate) (#38)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.40.0 -> 0.41.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.41.0
What's Changed
Breaking Changes
- fix: update mappings for AWS Provider v6 compatibility by @bendrucker in https://github.com/terraform-linters/tflint-ruleset-aws/pull/902
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8888
- Update AWS provider/module and generated content by @github-actions[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9199
Chores
- Bump the aws-sdk group with 2 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8877
- Bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.222.0 to 1.224.0 in the aws-sdk group by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8899
- Bump golang.org/x/net from 0.40.0 to 0.41.0 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8911
- Bump the aws-sdk group with 6 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8922
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.64 to 2.0.0-beta.65 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8900
- Bump actions/attest-build-provenance from 2.3.0 to 2.4.0 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8944
- Bump the aws-sdk group with 7 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8955
- Bump sigstore/cosign-installer from 3.8.2 to 3.9.0 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8966
- Bump the aws-sdk group with 7 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/8977
- Bump the aws-sdk group with 4 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9055
- Bump sigstore/cosign-installer from 3.9.0 to 3.9.1 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9066
- Clarify README by @excavator-matt in https://github.com/terraform-linters/tflint-ruleset-aws/pull/907
- Bump the aws-sdk group with 3 updates by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9088
- Bump golang.org/x/net from 0.41.0 to 0.42.0 by @dependabot[bot] inhttps://github.com/terraform-linters/tflint-ruleset-aws/pull/9099...
Contributors
j4zzcat, goruha, and milldr
Assets 2
v1.536.1
Allow users to set component names @j4zzcat (#35)
Allow users to set component names.- Defined input variables
tfstate_backend_component_nameandaccount_map_component_name. - Variables default to preserving the behaviour of the current version.
- This update allows the codebase to adopt more standardized structure and naming practices.
Summary by CodeRabbit
- New Features
- Added configurable options to customize the names of the tfstate-backend and account-map components, enhancing flexibility in component naming.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#36)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Contributors
j4zzcat
Assets 2
v1.536.0
feat: Permission Set Session Duration @milldr (#33)
## what * Updated `session_duration` in multiple permission sets to use the new `session_duration` variable:why
- Support an option to set the default session duration for all Permission Sets
references
- .
Summary by CodeRabbit
-
New Features
- Added a configurable session duration setting for all permission sets, allowing users to specify the default session duration in seconds.
-
Documentation
- Updated documentation to include the new session duration input variable and revised module version requirements and formatting in the README files.
-
Chores
- Updated ignore rules to exclude additional directories from version control.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#34)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Contributors
milldr
Assets 2
v1.535.2
chore(deps): restrict aws provider version to < 6.0.0 @Benbentwo (#30)
This pull request includes a version constraint update for the AWS provider in the Terraform configuration file `src/versions.tf`. The change ensures compatibility with versions up to but not including 6.0.0.src/versions.tf: Updated the version constraint for theawsprovider to>= 4.9.0, < 6.0.0to ensure compatibility with future versions while avoiding potential breaking changes in version 6.0.0.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#31)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Enable merge queue @goruha (#29)
## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners fileswhy
- Support auto merge PRs
- Create merge queue
- Implement new CodeOwners policy
Enable merge queue @goruha (#28)
## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners fileswhy
- Support auto merge PRs
- Create merge queue
- Implement new CodeOwners policy
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.40.0 @[renovate[bot]](https://github.com/apps/renovate) (#7)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.23.1 -> 0.40.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.40.0
What's Changed
Enhancements
- feat: warn against data sources with ephemeral alternatives by @aristosvo in https://github.com/terraform-linters/tflint-ruleset-aws/pull/861
- rules: Update Lambda deprecated runtimes by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/886
- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/870
Chores
- Bump sigstore/cosign-installer from 3.8.1 to 3.8.2 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/872
- Bump the aws-sdk group with 3 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/873
- Bump actions/attest-build-provenance from 2.2.3 to 2.3.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/874
- Bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.212.0 to 1.213.0 in the aws-sdk group by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/875
- docs: Rename aws_write_only_attributes.md -> aws_write_only_arguments.md by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/876
- Bump actions/setup-go from 5.4.0 to 5.5.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/877
- Bump golang.org/x/net from 0.39.0 to 0.40.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/879
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/878
- Bump github.com/zclconf/go-cty from 1.16.2 to 1.16.3 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/883
- Bump the aws-sdk group with 3 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/882
- Bump github.com/hashicorp/terraform-json from 0.24.0 to 0.25.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/884
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.39.0...v0.40.0
v0.39.0
What's Changed
Enhancements
- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/840
- Add
aws_iam_role_deprecated_policy_attributesrule by @alexjfisher in https://github.com/terraform-linters/tflint-ruleset-aws/pull/833 aws_write_only_arguments: recommend write-only arguments where available by @aristosvo in https://github.com/terraform-linters/tflint-ruleset-aws/pull/860- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/855
Bug Fixes
- provider_missing_default_tags: correctly handle unknown values by @bendrucker in https://github.com/terraform-linters/tflint-ruleset-aws/pull/851
Chores
- Bump the aws-sdk group with 7 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/839
- Bump golang.org/x/net from 0.35.0 to 0.37.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/842
- Bump the aws-sdk group with 7 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/841
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/845
- Pin GitHub Action versions by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/846
- Bump actions/setup-go from 5.3.0 to 5.4.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/847
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/848
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.62 to 2.0.0-beta.63 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/849
- Bump golang.org/x/net from 0.37.0 to 0.38.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/853
- Bump the aws-sdk group with 3 updates...
Contributors
goruha and Benbentwo
Assets 2
v1.535.1
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#26)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#25)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update terraform cloudposse/stack-config/yaml to v1.8.0 @[renovate[bot]](https://github.com/apps/renovate) (#5)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| cloudposse/stack-config/yaml (source) | module | minor | 1.5.0 -> 1.8.0 |
Release Notes
cloudposse/terraform-yaml-stack-config (cloudposse/stack-config/yaml)
v1.8.0: [remote-state] Improve backend compatibility
Among other things detailed below, this release enables users to fix deprecation warnings like:
│ Warning: Deprecated Parameters
│
│ with module.account_map.data.terraform_remote_state.data_source[0],
│ on .terraform/modules/account_map/modules/remote-state/data-source.tf line 88, in data "terraform_remote_state" "data_source":
│ 88: data "terraform_remote_state" "data_source" {
│
│ The following parameters have been deprecated. Replace them as follows:
│ * role_arn -> assume_role.role_arn
If you are receiving deprecation warnings from remote-state, they can now be resolved by updating your backend/remote_state_backend configuration to match the version of Terraform or Tofu you are using. For example, change
terraform:
backend:
s3:
bucket: my-tfstate-bucket
dynamodb_table: my-tfstate-lock-table
role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-role
remote_state_backend:
s3:
role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-read-only-roleto
terraform:
backend:
s3:
bucket: my-tfstate-bucket
dynamodb_table: my-tfstate-lock-table
assume_role:
role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-role
remote_state_backend:
s3:
assume_role:
role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-read-only-role🚀 Enhancements
[remote-state] Improve backend compatibility @Nuru (#105)
what
- Improve remote-state backend compatibility
Rather than trying to parse the backend configuration, as a general rule we now just pass it through to the data source. This provides future-proof compatibility with all backends supported by Terraform and OpenTofu.
why
- This prevents the need for updates like #99 to provide configuration for future S3 backends, while eliminating compatibility issues like #102.
- This also eliminates deprecation warnings caused by forcing configuration to look a certain way.
- Now, users can manage their own remote state configuration to match their toolset.
references
- Closes #102
v1.7.0: (not recommended)
feat: support for gcs backends @burnzy (#95)
what
Simple change to add support for GCS backends
why
Allows GCP users (users with gcs backends) to make use of this remote-state module for sharing data between components.
references
🚀 Enhancements
Support local backend @Nuru (#104)
what
- Support retrieving remote state from local backends
- NOTE: Using relative paths in local backends is tricky, because the path needs to resolve to the same directory from the source root module directory as from the client root module directory.
- Fix Terratests
- The
spacelifttest suite is broken, and we never previously required it to work, so it is now skipped
- The
- Update test suite to use
gov1.21 and update dependencies
why
🤖 Automatic Updates
Bump the go_modules group in /test/src with 5 updates @dependabot (#94)
Bumps the go_modules group in /test/src with 5 updates:| Package | From | To |
|---|---|---|
| github.com/hashicorp/go-getter | 1.7.1 |
1.7.5 |
| golang.org/x/crypto | 0.1.0 |
0.17.0 |
| golang.org/x/net | 0.8.0 |
0.10.0 |
| google.golang.org/grpc | 1.51.0 |
1.56.3 |
| google.golang.org/protobuf | 1.28.1 |
1.30.0 |
Updates github.com/hashicorp/go-getter from 1.7.1 to 1.7.5
Release notes
Sourced from github.com/hashicorp/go-getter's releases.
v1.7.5
What's Changed
- Prevent Git Config Alteration on Git Update by
@dduzgun-securityin hashicorp/go-getter#497New Contributors
@dduzgun-securitymade their first contribution in hashicorp/go-getter#497Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.4...v1.7.5
v1.7.4
What's Changed
- Escape user-provided strings in
gitcommands hashicorp/go-getter#483- Fixed a bug in
.netrchandling if the file does not exist hashicorp/go-getter#433Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.3...v1.7.4
v1.7.3
What's Changed
- SEC-090: Automated trusted workflow pinning (2023-04-21) by
@hashicorp-tsccrin hashicorp/go-getter#432- SEC-090: Automated trusted workflow pinning (2023-09-11) by
@hashicorp-tsccrin hashicorp/go-getter#454- SEC-090: Automated trusted workflow pinning (2023-09-18) by
@hashicorp-tsccrin hashicorp/go-getter#458- don't change GIT_SSH_COMMAND when there is no sshKeyFile by
@�...
Contributors
goruha
