Skip to content

v3.2.0

Choose a tag to compare

View all tags
@hyder hyder released this 13 May 00:01
· 422 commits to main since this release
v3.2.0
f2149f7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Additions

  • Added faster kubectl script. Thanks @joelezell-conga, @rgmccaw, Richard Exley
  • Added support for VCN native endpoint for Kubernetes (#270)
    • Added a subnet for control plane
    • Added 2 parameters (cluster_access and cluster_source) to control access to Kubernetes API endpoint
  • Added support for initial node labels (#265)
    • Node labels can now be specified in node_pools
  • Added support for enforcing use of signed images from registry (#274)
    • Added use_signed_images to enable enforcing use of signed images
    • Added image_signing_keys to specifiy list of signing keys
  • Added ability to specify node_pool_os_version with node_pool_os_version (#281)
  • Added cluster_id and nodepool_ids as outputs for improved reusability (#296). Thanks @yasn77
  • Changed base module version to 2.2.1. This allows:
    • controlling the state of the bastion using bastion_state (RUNNING or STOPPED)
    • choosing between Oracle Linux 7.X or 8 for the operator host by using operator_version (#248). Thanks @bieksaz
    • creating a new DRG with create_drg
    • naming new DRG with drg_display_name
    • attaching an existing DRG
    • adding custom route rules on the NAT and Internet gateway route table to facilitate hybrid, multi-cloud deployment using nat_gateway_route_rules and internet_gateway_route_rules (#279)
    • locking down default security lists with lockdown_default_seclist

Changes

  • Updated permissions required in documentation (#292). Thanks @atimgraves
  • Made node pool image updatable (#286)
  • Changed deprecated map function (#283)
  • Reworked the subnet boundaries for bastion and operator hosts (#270)
  • Updated and simplified OKE security lists to support VCN native endpoints (#270)
  • All port numbers and stateless are now in integer and boolean formats respectively (#270)
  • Updated default Kubernetes version to v 1.19.7
  • Updated documentation and topology diagrams
  • Fixed incorrect namespace issue when creating secret for OCIR (#267)
  • Narrow permissions for kubeconfig file (#276). Thanks @mthmulders

Deletions

  • Removed hardcoded WAF CIDRs and used data source instead.
Assets 2
Loading