Skip to content

Releases: cloudposse/terraform-aws-eks-cluster

v4.8.0

01 Oct 14:36
@cloudposse-releaser cloudposse-releaser
v4.8.0
775ec28
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.8.0 Latest
Latest
Feat: Add remote_network_config configuration @mszczepanczyk-soprasteria (#258) ## what
  • Add configuration for remote node and pod networks

why

  • Support for hybrid nodes
  • We use it in combination with Cilium in overlay mode so that the cluster correctly recognizes IPs in cilium pod CIDR as pods

references

Contributors

mszczepanczyk-soprasteria
Assets 2
Loading

v4.7.0

04 Aug 16:22
@cloudposse-releaser cloudposse-releaser
v4.7.0
7a25e3e

Choose a tag to compare

View all tags
v4.7.0
feat: add pod identity association support for EKS addons @litanyofmadness (#256) ## what
  • Added pod_identity_association parameter to EKS addons configuration
  • Maps service account names to IAM role ARNs for pod identity authentication
  • Maintains backward compatibility with existing configurations

why

  • Enables modern IAM authentication for EKS addons using pod identities
  • Aligns with AWS best practices for EKS

references

Terraform EKS Addon Pod Identity: Docs
Closes: #252

🤖 Automatic Updates

Fix go version in tests @osterman (#255) ## what - Update go `1.24`

why

  • Error loading shared library libresolv.so.2 in Go 1.20

References

Replace Makefile with atmos.yaml @osterman (#254) ## what - Remove `Makefile` - Add `atmos.yaml`

why

  • Replace build-harness with atmos for readme genration

References

  • DEV-3229 Migrate from build-harness to atmos

Contributors

osterman and litanyofmadness
Loading

v4.6.0

09 Feb 05:48
@cloudposse-releaser cloudposse-releaser
v4.6.0
6521512
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.6.0

🚀 Enhancements

  • Allow extra tags specific to addons
  • Make access_scope optional in access_policy_associations
Enhancements (#250) ## what
  • Ensure access entries are created before associating them with policies
  • Allow extra tags specific to addons
  • Make access_scope optional in access_policy_associations
  • Add testing for enabled=false
  • Fix typo in hyperlink

why

  • Some addons require specific tags for configuration
  • All the elements of access_scope are optional, so access_scope itself is not required

references

🐛 Bug Fixes

  • Ensure access entries are created before associating them with policies
  • Add testing for enabled=false
  • Fix typo in hyperlink
Bugfixes @Nuru (#250) ## what
  • Ensure access entries are created before associating them with policies
  • Add testing for enabled=false
  • Fix typo in hyperlink

why

  • Race condition can cause cluster creation to fail if Terraform attempts to create access entries and policy associations in parallel
  • Standard testing requirement, ensure no resources are created and module functions without error when enabled=false
  • Fix typo

references

Contributors

Nuru
Loading

v4.5.0

27 Nov 16:42
@cloudposse-releaser cloudposse-releaser
v4.5.0
43b2f77
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.5.0
Add support for upgrade policy configuration @z0rc (#245) ## what

Add module variable to set aws_eks_cluster's upgrade_policy.

why

I need to be able to downgrade EKS support policy from default "Extedned" to "Standard".

references

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/eks_cluster#upgrade_policy

https://aws.amazon.com/about-aws/whats-new/2024/07/amazon-eks-controls-kubernetes-version-support-policy/

Summary by CodeRabbit

  • New Features

    • Introduced a new input parameter upgrade_policy for configuring the support policy of the EKS cluster.
    • Added a new variable zonal_shift_config to the Terraform configuration.

  • Documentation

    • Updated README and Terraform documentation to include details about the new upgrade_policy input.
    • Enhanced clarity and comprehensiveness of existing inputs and outputs documentation.
    • Added examples for the upgrade_policy configuration in the fixtures and variable files.

  • Bug Fixes

    • Updated default values for existing variables to improve clarity and usability.

Contributors

z0rc
Loading

v4.4.1

01 Nov 11:58
@cloudposse-releaser cloudposse-releaser
v4.4.1
cf32252
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.4.1
Add support for zonal shift configuration @z0rc (#243) ## what

Add support of zonal shift config for the cluster. Closes #242

why

See linked ticket.

references

See linked ticket.

additional info

<br> to <br/> changes are caused by new version of terraform-docs and are intended, see terraform-docs/terraform-docs#787

🤖 Automatic Updates

Update terratest to '>= 0.46.0' @osterman (#232) ## what - Update terratest `>= 0.46.0`

why

  • Support OpenTofu for testing

References

Migrate new test account @osterman (#240) ## what - Update `.github/settings.yml` - Update `.github/chatops.yml` files

why

  • Re-apply .github/settings.yml from org level to get terratest environment
  • Migrate to new test account

References

  • DEV-388 Automate clean up of test account in new organization
  • DEV-387 Update terratest to work on a shared workflow instead of a dispatch action
  • DEV-386 Update terratest to use new testing account with GitHub OIDC
Update .github/settings.yml @osterman (#239) ## what - Update `.github/settings.yml` - Drop `.github/auto-release.yml` files

why

  • Re-apply .github/settings.yml from org level
  • Use organization level auto-release settings

references

  • DEV-1242 Add protected tags with Repository Rulesets on GitHub
Update .github/settings.yml @osterman (#238) ## what - Update `.github/settings.yml` - Drop `.github/auto-release.yml` files

why

  • Re-apply .github/settings.yml from org level
  • Use organization level auto-release settings

references

  • DEV-1242 Add protected tags with Repository Rulesets on GitHub

Contributors

osterman and z0rc
Loading

v4.4.0

24 Aug 00:07
@cloudposse-releaser cloudposse-releaser
v4.4.0
76ed997
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.4.0

🚀 Enhancements

feat: Add support bootstrap_self_managed_addons @sergeyrudenko111 (#236) ## what
  • Add support of bootstrap_self_managed_addons for aws_eks_cluster resource

why

  • This change will provide an opportunity to not bootstrap default networking addons for new cluster

references

https://aws.amazon.com/about-aws/whats-new/2024/06/amazon-eks-cluster-creation-flexibility-networking-add-ons/

Contributors

sergeyrudenko111
Loading

v4.3.0

08 Aug 16:15
@cloudposse-releaser cloudposse-releaser
v4.3.0
98ef10c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.3.0
feat: Add missed tags @MaxymVlasov (#235) ## what

Add tags to resources where they missed

🤖 Automatic Updates

Update .github/settings.yml @osterman (#234) ## what - Update `.github/settings.yml` - Drop `.github/auto-release.yml` files

why

  • Re-apply .github/settings.yml from org level
  • Use organization level auto-release settings

references

  • DEV-1242 Add protected tags with Repository Rulesets on GitHub

Contributors

osterman and MaxymVlasov
Loading

v4.2.0

04 Jun 23:02
@cloudposse-releaser cloudposse-releaser
4.2.0
310168a

Choose a tag to compare

View all tags
v4.2.0
add cloudwatch_log_group_class config @peter-novata (#229)

what

  • Add configuration option for the cloudwatch log infrequent access

why

terraform AWS provider added support for the recent cloudwatch log infrequent access feature which reduces cloudwatch log costs by up to 50%

references

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_log_group.html#log_group_class
https://aws.amazon.com/blogs/aws/new-amazon-cloudwatch-log-class-for-infrequent-access-logs-at-a-reduced-price/

🤖 Automatic Updates

Update release workflow to allow pull-requests: write @osterman (#231)

what

  • Update workflow (.github/workflows/release.yaml) to have permission to comment on PR

why

  • So we can support commenting on PRs with a link to the release
Update GitHub Workflows to use shared workflows from '.github' repo @osterman (#228)

what

  • Update workflows (.github/workflows) to use shared workflows from .github repo

why

  • Reduce nested levels of reusable workflows

Contributors

osterman and peter-novata
Loading

v4.1.1

14 May 17:59
@github-actions github-actions
4.1.1
c1087a0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.1.1
Add Service IPv4 CIDR to output @z0rc (#227)

what

Implements #226.

why

See linked issue.

references

See linked issue.

Fix badges @goruha (#224)

what

  • Fix badges

why

  • We have to many latest update badges
Update readme workflows @goruha (#223)

what

  • Update readme workflows

why

  • Generate banners
Update/enhance migration documentation @Nuru (#218)

what

  • Update/enhance v3 to v4 migration documentation
  • Add .editorconfig

why

  • Add more information that may be helpful
  • Maintain consistent formatting, particularly with regard to line endings and trailing whitespace, reducing the number of meaningless changes introduced when editing

🚀 Enhancements

Bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.4 in /test/src @dependabot (#222)

Bumps github.com/hashicorp/go-getter from 1.7.3 to 1.7.4.

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.7.4

What's Changed

Full Changelog: hashicorp/go-getter@v1.7.3...v1.7.4

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

🤖 Automatic Updates

Update GitHub Workflows to Fix ReviewDog TFLint Action @osterman (#225)

what

  • Update workflows (.github/workflows) to add issue: write permission needed by ReviewDog tflint action

why

  • The ReviewDog action will comment with line-level suggestions based on linting failures
Bump golang.org/x/net from 0.21.0 to 0.23.0 in /test/src @dependabot (#221)

Bumps golang.org/x/net from 0.21.0 to 0.23.0.

Commits
  • c48da13 http2: fix TestServerContinuationFlood flakes
  • 762b58d http2: fix tipos in comment
  • ba87210 http2: close connections when receiving too many headers
  • ebc8168 all: fix some typos
  • 3678185 http2: make TestCanonicalHeaderCacheGrowth faster
  • 448c44f http2: remove clientTester
  • c7877ac http2: convert the remaining clientTester tests to testClientConn
  • d8870b0 http2: use synthetic time in TestIdleConnTimeout
  • d73acff http2: only set up deadline when Server.IdleTimeout is positive
  • 89f602b http2: validate client/outgoing trailers
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the [Security Alerts page](https:/...
Read more

Contributors

osterman, goruha, and 4 other contributors
Loading

v4.1.0

05 Apr 21:36
@github-actions github-actions
4.1.0
803ab32
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.1.0
Update readme @osterman (#208)

what

  • Update readme.md

why

  • Latest copy

🚀 Enhancements

Output addons_versions if enabled @bogdanbarna (#216)

what

  • Output addons_version if the EKS addons are enabled (var.addons)

why

  • This may be just my use case, but I have both a variable and a data source for fetching an addon version (the former to overwrite the latter) and the module's addon_version output would become the source of truth for the versions, e.g.
addon_version = try(var.addons_versions["coredns"], data.aws_eks_addon_version.latest["coredns"].version)

references

  • N/A

🤖 Automatic Updates

Add GitHub Settings @osterman (#215)

what

  • Install a repository config (.github/settings.yaml)

why

  • Programmatically manage GitHub repo settings
Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /test/src @dependabot (#213)

Bumps google.golang.org/protobuf from 1.32.0 to 1.33.0.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Contributors

osterman, dependabot, and bogdanbarna
Loading