v0.29.0

What's Changed

• split GenerateUpdateClusterConfigInput in 2 methods: Logging and VPC by @adrienzieba in #1342
• Consume reference policy changes by @sergenyalcin in #1361
• fixed infinite default tags adding in iam user by @cebernardi in #1355
• storeconfig: fix typo by @s4rd1nh4 in #1360
• rdsinstance: Ignore backupRetentionPeriod if managed by AWS Backup by @petteja in #1357
• let aws go sdk detect partition and region in irsa by @nabuskey in #1364
• fix route53 wildcard handling by @nabuskey in #1370
• refactor bucketnotfound error for bucketpolicy by @bobh66 in #1354
• feat(cognitoidentity): Add support for Cognito IdentityPools by @Benedikt1992 in #1313
• Support for controlling object ownership in S3 buckets by @antoninbas in #1075
• Update handling of Elasticache versions by @stevendborrelli in #1374
• bugfix(nil): #1367 check for nil by @haarchri in #1372

New Contributors

• @s4rd1nh4 made their first contribution in #1360
• @nabuskey made their first contribution in #1364
• @antoninbas made their first contribution in #1075

Full Changelog: v0.28.1...v0.29.0

v0.28.1

What's Changed

• [Backport release-0.28] fixed infinite default tags adding in iam user by @github-actions in #1362

Full Changelog: v0.28.0...v0.28.1

v0.28.0

⚠️ Please use v0.28.1 instead due to this critical bug.

New CRDs!

In v0.28.0, there are 2 new CRDs! See https://doc.crds.dev/github.com/crossplane/[email protected] for the full list.

• LifecyclePolicy in ecr @larhauga
• ResourceServer in cognitoidentityprovider @febarbosa182

What's Changed

• fix(cognitoidentityprovider): Remove nil pointer exceptions in isUpTo… by @Benedikt1992 in #1300
• fix(rds): include the port number in the connection details by @luisdavim in #1307
• ec2.securitygroup: Fix missing resolvers by using code gen by @chlunde in #1319
• database.rdsinstance: Add DeleteAutomatedBackups by @chlunde in #1276
• Introduce fifoTopic option for sns by @atarax in #1291
• Add ECR LifecyclePolicy with codegen by @larhauga in #1181
• GitHub-1286 fix late init dbinstance by @eloo-abi in #1322
• Cognito/resource server by @febarbosa182 in #1217
• fix(master): added external secret stuff after merge cognito resource… by @haarchri in #1323
• fix(elasticache) normalize preferred maintenance window by @eaceaser in #1303
• Migrate to crossplane-contrib by @negz in #1327
• [Documentation] update trust relationship in assumeRoleWithWebIdentity by @adrienzieba in #1331
• Allow usage of IAM/S3 resources in non-standard partitions by @zonybob in #1329
• fix(LogGroup): Fix observe in case of more than 50 loggroups by @petteja in #1336
• Added default tags to iam.User by @cebernardi in #1234
• providerconfig: make sure v1 auth path checks for assumeRole field as… by @muvaf in #1340

New Contributors

• @luisdavim made their first contribution in #1307
• @atarax made their first contribution in #1291
• @eloo-abi made their first contribution in #1322
• @febarbosa182 made their first contribution in #1217
• @eaceaser made their first contribution in #1303
• @adrienzieba made their first contribution in #1331
• @zonybob made their first contribution in #1329

Full Changelog: v0.27.1...v0.28.0

v0.27.1

What's Changed

• [Backport release-0.27] ec2.securitygroup: Fix missing resolvers by using code gen by @github-actions in #1321
• [Backport release-0.27] providerconfig: make sure v1 auth path checks for assumeRole field as… by @github-actions in #1345

Full Changelog: v0.27.0...v0.27.1

v0.26.2

What's Changed

• [Backport release-0.26] providerconfig: make sure v1 auth path checks for assumeRole field as… by @github-actions in #1344

Full Changelog: v0.26.1...v0.26.2

v0.27.0

New Authentication

support AssumeRoleWithWebIdentity arn swap by @jessesanford

New CRDs!

In v0.27.0, there are 26 new CRDs! See https://doc.crds.dev/github.com/crossplane/[email protected] for the full list.

• AccessPoint in efs @EdgeJ
• Environment in mwaa @MisterMX
• Permission in lambda @MisterMX
• Cluster in dax @DanielTemesgen
• ParameterGroup in dax @DanielTemesgen
• SubnetGroup in dax @DanielTemesgen
• +20 Resources in apigateway @tiagoposse

What's Changed

• Add Certificate refs for https listeners by @EdgeJ in #1211
• Handle NoSuchHostedZone errors on ResourceRecordSet delete by @bobh66 in #1255
• Add Api Gateway RestAPI and Resource resources by @tiagoposse in #1230
• Add AccessPoint resource for EFS by @EdgeJ in #1201
• fix(efs): generate latest master stuff for efs access point by @haarchri in #1263
• feat(routeTable): ignoreRoutes to use route resource by @haarchri in #1084
• Add additional fields to the atProvider status for eks Cluster and eks NodeGroup by @cdenneen in #1204
• feat(assumeWebIdentityRole): support AssumeRoleWithWebIdentity arn swap by @jessesanford in #1258
• feat(rdsinstance): Support for point in time restore by @petteja in #1214
• Store CallerReference value for import scenarios by @ezgidemirel in #1261
• feat(mwaa): Add environment controller by @MisterMX in #1249
• feat(lambda): Add support for lambda permissions by @MisterMX in #1254
• fix(permission): Fix dealing with Pricipal being just a string by @schroeder-paul in #1275
• DBInstance: Late Initialize all fields that cannot be set when connecting to a DBCluster by @iAnomaly in #1285
• ec2.SecurityGroup: Observe existing SecurityGroup by @ONordander in #1283
• fix(routetable): fix panic on sorting both v4 and v6 routes by @jessesuen in #1279
• Replication group fixes: multiAz and Tag update support by @stevendborrelli in #1277
• feat(dax): Add support for Dax by @DanielTemesgen in #1256
• feat(rds): Add family selector to DBClusterParameterGroup by @MisterMX in #1274
• bugfix(panic): fix panic route resource in CIDRBlocksEqual by @haarchri in #1292
• feat (CloudFront): Add support to update Elasticache ReplicationGroup number of cache clusters by @stevendborrelli in #1294
• fix(Cloudfront): LateInit missing fields by @ezgidemirel in #1298

New Contributors

• @bobh66 made their first contribution in #1255
• @tiagoposse made their first contribution in #1230
• @cdenneen made their first contribution in #1204
• @jessesanford made their first contribution in #1258
• @petteja made their first contribution in #1214
• @schroeder-paul made their first contribution in #1275
• @ONordander made their first contribution in #1283
• @jessesuen made their first contribution in #1279
• @DanielTemesgen made their first contribution in #1256

Full Changelog: v0.26.1...v0.27.0

v0.26.1

v0.26.1 is a bug fix release that addresses #1260.

What's Changed

• [Backport release-0.26] Store CallerReference value for import scenarios by @github-actions in #1268

Full Changelog: v0.26.0...v0.26.1

v0.26.0

Notable Changes

v0.26.0 includes support for external secret stores. Follow this guide to set it up.

What's Changed

• fix rds connection secret move to observe and fix issue in dbinstance by @haarchri in #1197
• Update to the latest crossplane-runtime by @muvaf in #1187
• fix(rebase): adopted latest runtime to services late v0.25 release by @haarchri in #1208
• Add Ref/Selector referencer fields to DBInstance.DBClusterIdentifier by @iAnomaly in #1220
• add default Crossplane tags to iam.Policy by @cebernardi in #1207
• Add Cloudfront Response Headers Policy resource by @ezgidemirel in #1218
• Update CI to work with Crossplane v1.7.0 by @hasheddan in #1239
• Add support for IAM AssumeRole tags by @stevendborrelli in #1240
• Add External Secret Stores support as an alpha feature by @turkenh in #1242
• Set Crossplane user agent on AWS clients by @clareliguori in #1243
• linter: make sure it uses the version given in GH action file by @muvaf in #1250

New Contributors

• @iAnomaly made their first contribution in #1220
• @clareliguori made their first contribution in #1243

Full Changelog: v0.25.0...v0.26.0

v0.25.0

Breaking Changes

• #1186 removes quantity fields from the CRD in cloudfront. No user action is needed, it will be dropped automatically and calculated by the provider.
• #1122 removes zookeeperConnectString and zookeeperConnectStringTLS fields from the CRD in kafka since they were not used as input to any call. No user action is needed.
• #1122 adds required marker to the following fields autoMinorVersionUpgrade,deploymentMode, engineType, engineVersion, hostInstanceType publiclyAccessible, in CRD mq.broker. They were already required by AWS, so no user action is required if these values existed already.

New CRDs!

In v0.25.0, there are 9 new CRDs! See https://doc.crds.dev/github.com/crossplane/[email protected] for the full list.

• groups in cognitoidentityprovider @Benedikt1992
• identityproviders in cognitoidentityprovider @Benedikt1992
• userpoolclients in cognitoidentityprovider @Benedikt1992
• userpooldomains in cognitoidentityprovider @Benedikt1992
• userpools in cognitoidentityprovider @Benedikt1992
• domains in cloudsearch @mhoff
• workspaces in prometheusservice @haarchri
• instanceprofiles in iam @ytsarev
• dbinstanceroleassociations in rds @chlunde

AWS-GO-SDK-V1 bump 1.37.10 to 1.42.0

• feat(ack): bump ack & aws-go-sdk-v1 1.37.10 to 1.42.0 by @haarchri in #1122

What's Changed

• Update format of authentication guide by @micnncim in #1131
• s3: Empty routing rules refused by AWS by @chlunde in #1156
• Added default tags to CertificateAuthority by @cebernardi in #1113
• fix(s3): Extract QueueARN instead of external name by @MisterMX in #1161
• feat(resolvers): resolvers in sqs queue for KMSMasterKeyIDRef/Selector by @haarchri in #1163
• feat(ack): bump ack & aws-go-sdk-v1 1.42.0 by @haarchri in #1122
• Fix code generation doc discrepancies with the current state by @ytsarev in #1178
• Add tags management to OpenIDConnectProvider (iam) by @cebernardi in #1059
• feat(ec2-tags): tags vpc/subnet default,add,delete by @haarchri in #1170
• fix(vpcendpointserviceconfiguration): fix missing field in status by @liubog2008 in #1180
• Improve Cloudfront Configuration by @ezgidemirel in #1186
• Expose eks cluster certificate authority data in status by @hanlins in #966
• feat(amp): added prometheusservice amp workspace by @haarchri in #1054
• feat(ec2): add kmsKeyID Ref & Selector in ec2-instance ebs dbm by @haarchri in #1157
• feat(InstanceProfile): Add IAM InstanceProfile Managed Resource by @ytsarev in #1159
• fix(InstanceProfile): follow up fix of #1159 by @ytsarev in #1194
• Add support for CloudSearch by @mhoff in #1016
• feat(s3): bucketKeyEnabled implemented by @haarchri in #1158
• Make eventThreshold an optional field for s3 bucket replication by @AlexLast in #1129
• rds: Add DBInstanceRoleAssociation by @chlunde in #1141
• feat(cognito-idp): Code Generation for Cognito IdentityProvider by @Benedikt1992 in #1125
• rds.rdsinstance: Compare bool correctly via LateInitialize by @chlunde in #971
• rds.DBInstance - fix "up to date" when using ApplyImmediately by @chlunde in #1196

New Contributors

• @micnncim made their first contribution in #1131
• @ytsarev made their first contribution in #1178
• @liubog2008 made their first contribution in #1180
• @mhoff made their first contribution in #1016
• @AlexLast made their first contribution in #1129
• @Benedikt1992 made their first contribution in #1125

Full Changelog: v0.24.1...v0.25.0

v0.24.1

New CRDs!

In v0.24.1, there are 3 new CRDs! See https://doc.crds.dev/github.com/crossplane/[email protected] for the full list.

• ResolverRuleAssociation in route53resolver
• CacheParameterGroup in elasticache
• DBCluster in neptune

Deprecated Versions

Several resources are bumped to v1beta1 in this release but none of those bumps were breaking changes. The following is the list of CRDs that will be converted to v1beta1 automatically by Kubernetes API server.

• VPCLink in apigatewayv2
• Secret in secretsmanager
• Function in lambda

The only action you need to take is to update your YAML files and base templates in your Composition objects before v1alpha1 is removed from the supported versions, which will be done in v0.27.0.

In addition, the whole notification group is now duplicated as sns group with new kind names. The deprecated CRDs of notification will be kept in the provider and their controllers will continue to run but it's highly advised to move to the new sns group as soon as possible. They will be removed from the provider in v0.27.0. See this guide (section titled as Upgrade from v0.32.x to v0.33.x since that's where it's necessary to migrate) for more details about how to migrate. Keep in mind that you can opt not to migrate now and still have all SNS resources reconciled.

• SNSTopic of notification -> Topic of sns
• SNSSubscription of notification -> Subscription of sns

What's Changed

• Add support for external ID when assume role by @hanlins in #1013
• fix(eks-addon): Replace ListTagsForResource with DescribeAddon to save one API call by @MisterMX in #1068
• Restore RDS instance from a MySQL backup by @danports in #770
• fix(ec2-instance): make some blockDevicMapping fields in CRD optional by @mariobris in #1091
• read endpoint info from dbinstance status rather than aws out values by @clive-jevons in #1092
• feat(ack-bump): bump ack-version by @haarchri in #1027
• feat(database): resolvers by @haarchri in #1086
• doc(assumeRoleARN): #1065 added documentation for assumeRoleARN by @haarchri in #1082
• Update Go version from 1.16 to 1.17 by @ulucinar in #1103
• Move versioned generator configs to API group folders by @ulucinar in #1096
• Add support for keeping previous generated versions by @ulucinar in #1105
• fix(secretsmanager): Ignore isUpToDate if resource was deleted by @MisterMX in #1095
• feat(route53resolver): added ResolverRuleAssociation by @haarchri in #968
• fix(ec2-instance): changed SpotMarketOptions for Spot Instances by @haarchri in #1083
• fix(transfer/user): fix WithInitializers and removed postCreate by @haarchri in #1106
• Add eks to generated services by @MisterMX in #1110
• Add docdb to generated services by @MisterMX in #1111
• fix(generated-services) added route53resolver to makefile by @haarchri in #1003
• chore: dynamically generate GENERATED_SERVICES var by @dwerder in #1008
• fix(Makefile) adjust command 'find' to be zshell compatible by @dwerder in #1120
• fix(lables): eks-nodegroup - both or either addOrUpdateLabels or removeLabels must not be empty by @haarchri in #1119
• Restore RDS instances from database snapshots by @danports in #1087
• elasticache.cacheparametergroup: Add resource by @chlunde in #834
• rds.rdsinstance: Add storage autoscaling (MaxAllocatedStorage) by @chlunde in #794
• Secretsmanager: Implement LateInitialize of a K8s secret when AWS secret already exists by @MisterMX in #669
• Add Neptune DBCluster Resource by @ezgidemirel in #1099
• secretsmanager.secret: make late init work only if the input secret does not exist by @muvaf in #1127
• fix(ec2): vpcpeeringconnection fixed fields for resolvers, change tagger by @haarchri in #1035
• elasticache: Scale replicationgroup shards by @chlunde in #860
• fix(resolvers-transfer): panic in provider for missing check for nil by @haarchri in #1134
• Bump SNS Topic and Subscription versions to v1beta1 by @ezgidemirel in #1123
• Bump VPCLink, Secret and Function to v1beta1 by @muvaf in #1107
• apis: register missing api groups by @muvaf in #1145

New Contributors

• @hanlins made their first contribution in #1013
• @danports made their first contribution in #770
• @mariobris made their first contribution in #1091
• @clive-jevons made their first contribution in #1092
• @dwerder made their first contribution in #1008
• @ezgidemirel made their first contribution in #1099

Full Changelog: v0.23.0...v0.24.1