terraform-google-modules
diff --git a/‎CHANGELOG.md‎
Lines changed: 28 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 28 additions & 0 deletions
diff --git a/‎autogen/main/cluster.tf.tmpl‎
Lines changed: 1 addition & 1 deletion b/‎autogen/main/cluster.tf.tmpl‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎autogen/main/dns.tf.tmpl‎
Lines changed: 2 additions & 0 deletions b/‎autogen/main/dns.tf.tmpl‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎autogen/main/main.tf.tmpl‎
Lines changed: 2 additions & 0 deletions b/‎autogen/main/main.tf.tmpl‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎autogen/main/moved.tf.tmpl‎
Lines changed: 2 additions & 0 deletions b/‎autogen/main/moved.tf.tmpl‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎autogen/main/variables.tf.tmpl‎
Lines changed: 2 additions & 0 deletions b/‎autogen/main/variables.tf.tmpl‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎autogen/main/versions.tf.tmpl‎
Lines changed: 4 additions & 4 deletions b/‎autogen/main/versions.tf.tmpl‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎autogen/safer-cluster/versions.tf.tmpl‎
Lines changed: 1 addition & 1 deletion b/‎autogen/safer-cluster/versions.tf.tmpl‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎examples/autopilot_private_firewalls/network.tf‎
Lines changed: 4 additions & 3 deletions b/‎examples/autopilot_private_firewalls/network.tf‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎examples/safer_cluster_iap_bastion/bastion.tf‎
Lines changed: 1 addition & 1 deletion b/‎examples/safer_cluster_iap_bastion/bastion.tf‎
Lines changed: 1 addition & 1 deletion
@@ -6,6 +6,34 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 Extending the adopted spec, each change should have a link to its corresponding pull request appended.
 
+## [34.0.0](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/compare/v33.1.0...v34.0.0) (2024-10-30)
+
+
+### ⚠ BREAKING CHANGES
+
+* **TPG>=5.44.2:** add standard cluster support for `insecureKubeletReadonlyPortEnabled` ([#2082](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2082))
+* **deps:** Update Terraform terraform-google-modules/project-factory/google to v17 ([#2109](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2109))
+
+### Features
+
+* Add create_ignore_already_exists to workload_identity ([#2142](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2142)) ([76d779c](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/76d779c314727bfccf64bfd34c61e1ce56bc55b9))
+* **safer-cluster:** add create_service_account variable ([#2138](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2138)) ([cccabcb](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/cccabcb0eca2a7755908e8d17b40ffba87f4839e))
+* **TPG>=5.44.2:** add standard cluster support for `insecureKubeletReadonlyPortEnabled` ([#2082](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2082)) ([96626d5](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/96626d541617cb99a3ee19b019ba51c6146f69c0))
+
+
+### Bug Fixes
+
+* add kubelet_config to default-pool ([#2147](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2147)) ([7828a0f](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/7828a0ff35136a9e5fa91a7d26ba07bda734c31b))
+* add target tags to `node_pool_auto_config` for standard clusters ([#2118](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2118)) ([d5f66e8](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/d5f66e86dd163d505ff455a9c5fafe7d659da36f))
+* correct confidential node field name ([#2140](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2140)) ([373c969](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/373c96954af9ce53dd3eb062f372efa832378334))
+* **deps:** Update Terraform terraform-google-modules/project-factory/google to v17 ([#2109](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2109)) ([3073b04](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/3073b048cb79524aeaaf46ff2835b79a6f7b7f23))
+* fix typo in kube-dns-upstream-nameservers configmap ([#2149](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2149)) ([843c56c](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/843c56cef4157a3bcc281a8bd08021baa733dae1))
+* **node_pools:** Update Variants: Add recreate for `secondary_boot_disk` and `local_ssd_ephemeral_count` (beta) ([#2139](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2139)) ([66231d5](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/66231d5ad91e282e750b4c9c3b398ab97aa8c147))
+* remove dns from autopilot ([#2152](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2152)) ([2e645cd](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/2e645cd4248b1a3663fde9f9fea4372f408e7b36))
+* remove unnecessary lookup for safer_cluster nodepool ID ([#2160](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2160)) ([179a8ec](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/179a8ecd241690215253ec860ca041b7b3781e9e))
+* send provider enum values for `insecureKubeletReadonlyPortEnabled` ([#2145](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2145)) ([922ab1d](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/922ab1daa32b97325b8c62a19f0b24ee71e189e5))
+* update resource names to snake_case ([#2151](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2151)) ([375d27c](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/commit/375d27cffddb1af851462c2b3a773a25e4dd40ac))
+
 ## [33.1.0](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/compare/v33.0.4...v33.1.0) (2024-10-09)
 
 
 
@@ -753,7 +753,7 @@ locals {
 resource "random_id" "name" {
   for_each    = merge(local.node_pools, local.windows_node_pools)
   byte_length = 2
-  prefix      = format("%s-", lookup(each.value, "name"))
+  prefix      = "${each.key}-"
   keepers = merge(
     zipmap(
       local.force_node_pool_recreation_resources,
 
@@ -16,6 +16,7 @@
 
 {{ autogeneration_note }}
 
+{% if autopilot_cluster != true %}
 /******************************************
   Manage kube-dns configmaps
  *****************************************/
@@ -95,3 +96,4 @@ EOF
     {% endif %}
   ]
 }
+{% endif %}
@@ -78,8 +78,10 @@ locals {
   {% endif %}
 
 
+{% if autopilot_cluster != true %}
   custom_kube_dns_config      = length(keys(var.stub_domains)) > 0
   upstream_nameservers_config = length(var.upstream_nameservers) > 0
+{% endif %}
   network_project_id          = var.network_project_id != "" ? var.network_project_id : var.project_id
   zone_count                  = length(var.zones)
   cluster_type                = var.regional ? "regional" : "zonal"
 
@@ -14,6 +14,7 @@
  * limitations under the License.
  */
 
+{% if autopilot_cluster != true %}
 # Updates for kebab to snake case, to match best practices and Google style.
 moved {
   from = kubernetes_config_map_v1_data.kube-dns
@@ -30,6 +31,7 @@ moved {
   from = kubernetes_config_map_v1_data.kube-dns-upstream-nameservers-and-stub-domains
   to   = kubernetes_config_map_v1_data.kube_dns_upstream_nameservers_and_stub_domains
 }
+{% endif %}
 
 moved {
   from = kubernetes_config_map.ip-masq-agent
 
@@ -357,6 +357,7 @@ variable "network_tags" {
   default = []
 }
 
+{% if autopilot_cluster != true %}
 variable "stub_domains" {
   type        = map(list(string))
   description = "Map of stub domains and their resolvers to forward DNS queries for a certain domain to an external DNS server"
@@ -368,6 +369,7 @@ variable "upstream_nameservers" {
   description = "If specified, the values replace the nameservers taken by default from the node’s /etc/resolv.conf"
   default     = []
 }
+{% endif %}
 
 variable "non_masquerade_cidrs" {
   type        = list(string)
 
@@ -40,7 +40,7 @@ terraform {
     }
   }
   provider_meta "google-beta" {
-    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"
+    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"
   }
 {% elif beta_cluster and autopilot_cluster %}
   required_providers {
@@ -62,7 +62,7 @@ terraform {
     }
   }
   provider_meta "google-beta" {
-    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"
+    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"
   }
 {% elif autopilot_cluster  %}
   required_providers {
@@ -80,7 +80,7 @@ terraform {
     }
   }
   provider_meta "google" {
-    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"
+    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"
   }
 {% else %}
   required_providers {
@@ -98,7 +98,7 @@ terraform {
     }
   }
   provider_meta "google" {
-    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"
+    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"
   }
 {% endif %}
 }
@@ -23,6 +23,6 @@ terraform {
   required_version = ">=1.3"
 
   provider_meta "google-beta" {
-    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"
+    module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"
   }
 }
@@ -23,9 +23,10 @@ module "gcp-network" {
 
   subnets = [
     {
-      subnet_name   = local.subnet_name
-      subnet_ip     = "10.0.0.0/17"
-      subnet_region = var.region
+      subnet_name           = local.subnet_name
+      subnet_ip             = "10.0.0.0/17"
+      subnet_region         = var.region
+      subnet_private_access = true
     },
     {
       subnet_name   = local.master_auth_subnetwork
 
@@ -21,7 +21,7 @@ locals {
 
 module "bastion" {
   source  = "terraform-google-modules/bastion-host/google"
-  version = "~> 7.0"
+  version = "~> 8.0"
 
   network        = module.vpc.network_self_link
   subnet         = module.vpc.subnets_self_links[0]
Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,7 @@`
`16`	`16`
`17`	`17`	`{{ autogeneration_note }}`
`18`	`18`
	`19`	`+{% if autopilot_cluster != true %}`
`19`	`20`	`/******************************************`
`20`	`21`	`Manage kube-dns configmaps`
`21`	`22`	`*****************************************/`
`@@ -95,3 +96,4 @@ EOF`
`95`	`96`	`{% endif %}`
`96`	`97`	`]`
`97`	`98`	`}`
	`99`	`+{% endif %}`
Original file line number	Diff line number	Diff line change
`@@ -357,6 +357,7 @@ variable "network_tags" {`
`357`	`357`	`default = []`
`358`	`358`	`}`
`359`	`359`
	`360`	`+{% if autopilot_cluster != true %}`
`360`	`361`	`variable "stub_domains" {`
`361`	`362`	`type = map(list(string))`
`362`	`363`	`description = "Map of stub domains and their resolvers to forward DNS queries for a certain domain to an external DNS server"`
`@@ -368,6 +369,7 @@ variable "upstream_nameservers" {`
`368`	`369`	`description = "If specified, the values replace the nameservers taken by default from the node’s /etc/resolv.conf"`
`369`	`370`	`default = []`
`370`	`371`	`}`
	`372`	`+{% endif %}`
`371`	`373`
`372`	`374`	`variable "non_masquerade_cidrs" {`
`373`	`375`	`type = list(string)`
Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,7 @@ terraform {`
`40`	`40`	`}`
`41`	`41`	`}`
`42`	`42`	`provider_meta "google-beta" {`
`43`		`- module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"`
	`43`	`+ module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"`
`44`	`44`	`}`
`45`	`45`	`{% elif beta_cluster and autopilot_cluster %}`
`46`	`46`	`required_providers {`
`@@ -62,7 +62,7 @@ terraform {`
`62`	`62`	`}`
`63`	`63`	`}`
`64`	`64`	`provider_meta "google-beta" {`
`65`		`- module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"`
	`65`	`+ module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"`
`66`	`66`	`}`
`67`	`67`	`{% elif autopilot_cluster %}`
`68`	`68`	`required_providers {`
`@@ -80,7 +80,7 @@ terraform {`
`80`	`80`	`}`
`81`	`81`	`}`
`82`	`82`	`provider_meta "google" {`
`83`		`- module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"`
	`83`	`+ module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"`
`84`	`84`	`}`
`85`	`85`	`{% else %}`
`86`	`86`	`required_providers {`
`@@ -98,7 +98,7 @@ terraform {`
`98`	`98`	`}`
`99`	`99`	`}`
`100`	`100`	`provider_meta "google" {`
`101`		`- module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"`
	`101`	`+ module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"`
`102`	`102`	`}`
`103`	`103`	`{% endif %}`
`104`	`104`	`}`
Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,6 @@ terraform {`
`23`	`23`	`required_version = ">=1.3"`
`24`	`24`
`25`	`25`	`provider_meta "google-beta" {`
`26`		`- module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v33.1.0"`
	`26`	`+ module_name = "blueprints/terraform/terraform-google-kubernetes-engine{% if module_registry_name %}:{{ module_registry_name }}{% endif %}/v34.0.0"`
`27`	`27`	`}`
`28`	`28`	`}`
Original file line number	Diff line number	Diff line change
`@@ -23,9 +23,10 @@ module "gcp-network" {`
`23`	`23`
`24`	`24`	`subnets = [`
`25`	`25`	`{`
`26`		`- subnet_name = local.subnet_name`
`27`		`- subnet_ip = "10.0.0.0/17"`
`28`		`- subnet_region = var.region`
	`26`	`+ subnet_name = local.subnet_name`
	`27`	`+ subnet_ip = "10.0.0.0/17"`
	`28`	`+ subnet_region = var.region`
	`29`	`+ subnet_private_access = true`
`29`	`30`	`},`
`30`	`31`	`{`
`31`	`32`	`subnet_name = local.master_auth_subnetwork`