v4.5.4

4.5.4 (2023-08-23)

Bug Fixes

• scope the source of the secrets_manager_to_cos auth policy to the resource group (#516) (5e481cc)

v4.5.3

4.5.3 (2023-08-22)

Bug Fixes

• deps: update DAs IBM provider version to 1.56.1 (#543)

v4.5.2

4.5.2 (2023-08-21)

⚠️ This release will currently not deploy in IBM Schematics due to a known provider bug. Please use v4.5.3 which has the fix for this if running in IBM Schematics.

Bug Fixes

• update to landing-zone-vsi v2.5.0 (#535) (c91b619)

⚠️ Warning

If you are upgrading from a previous release, and you are using the override JSON to provision additional VSI data volumes using the block_storage_volumes value, the terraform plan will tell you that it wants to destroy the volumes that are in the Default resource group and recreate them in the same resource group that the VSIs are provisioned in.

If indeed you wish to continue to keep your data volumes in the Default resource group (to prevent them from being destroyed and recreated on upgrade), you can achieve this by adding the Default resource group ID into the block_storage_volumes array in the vsi part of the override JSON. For example:

{
.....
  "vsi": [
    {
        "boot_volume_encryption_key_name": "PREFIX-vsi-volume-key",
        "image_name": "ibm-redhat-8-6-minimal-amd64-5",
        "machine_type": "cx2-8x16",
        "name": "sbx-workload",
        "resource_group": "PREFIX-workload-rg",
        "block_storage_volumes": [
            {
                "name":           "datavol",
                "profile":        "general-purpose",
                "capacity":       100,
                "encryption_key": "PREFIX-vsi-volume-key",
                "resource_group_id" : "65xxxxxxxxxxxxxxxa3fd"
            }
        ]
....
    }
  ]
....
}

v4.5.1

4.5.1 (2023-08-18)

⚠️ This release will currently not deploy in IBM Schematics due to a known provider bug. Please use v4.5.3 which has the fix for this if running in IBM Schematics.

Bug Fixes

• Migrate DAs to FSCloud profile version 1.4.0 (#524) (d89833d)

v4.5.0

4.5.0 (2023-08-04)

⚠️ This release will currently not deploy in IBM Schematics due to a known provider bug. Please use v4.5.3 which has the fix for this if running in IBM Schematics.

Features

• added functionality to attach access tags to resources in: (#447) (f4c3e3a)
  - Cluster
  - COS
  - VPE
  - VPN
  - KMS
  - Secrets Manager
  - Security Groups
  - VSIs (Bastion, F5, standard VSI)
  
  In order to utilize the access tags for a resource you will need to add a field to the override.json. For example, below is a snippet on how to add access tags to KMS:

{
  "key_management": {
    "access_tags": ["tag-group:tag-name"]
  }
}

NOTE: creating access tags via Terraform is currently not supported. This module only enables tagging resources with already existing access tags. For more information on creating these access tags, see https://cloud.ibm.com/docs/account?topic=account-access-tags-tutorial.

v4.4.7

4.4.7 (2023-07-31)

Bug Fixes

• lock OCP DA version into OCP 4.12 and add validation (#511) (ae8f462)

v4.4.6

4.4.6 (2023-07-27)

Bug Fixes

• move VSI Quickstart DA code into the patterns directory (#508) (c812369)

v4.4.5

4.4.5 (2023-07-18)

Bug Fixes

• added lifecycle change ignore on the kube version to prevent possible destructive changes. Cluster version updates should be done outside of terraform. (#502) (1c0be4c)

v4.4.4

4.4.4 (2023-07-13)

Bug Fixes

• pull dependant modules 'landing-zone-vpc' and 'landing-zone-vsi' from hashicorp instead of github.com (#465) (5f9c35a)

v4.4.3

4.4.3 (2023-07-06)

Bug Fixes

• updated the optional mfa attribute in the iam_account_settings variable to a string type. It was incorrectly expecting a number. (#488) (5f9792f)