Releases: oracle-terraform-modules/terraform-oci-oke
Releases · oracle-terraform-modules/terraform-oci-oke
v4.0.0-BETA.1
Breaking changes
- removed base module and use vcn, bastion and operator modules directly
- renamed and standardized all control variables
- removed deprecated template provider dependencies
- made bastion and operator modules conditional
- added LPGs for hub and spoke deployment model
- set minimum version to Terraform 1.0.0
- removed identity parameters in between modules
v3.3.0
Additions
- Support for using reserved public IP address for NAT Gateway (#311) with new parameter
nat_gateway_public_ip_id - Support for GPU and ARM Shapes (#302 )
- Conditional checks for WAF CIDR block data source
Changes
- Default Kubernetes version changed to v1.20.8
Fixes
- Use correct manifest to install Calico as policy (#306)
v3.2.0
Additions
- Added faster kubectl script. Thanks @joelezell-conga, @rgmccaw, Richard Exley
- Added support for VCN native endpoint for Kubernetes (#270)
- Added a subnet for control plane
- Added 2 parameters (
cluster_accessandcluster_source) to control access to Kubernetes API endpoint
- Added support for initial node labels (#265)
- Node labels can now be specified in
node_pools
- Node labels can now be specified in
- Added support for enforcing use of signed images from registry (#274)
- Added
use_signed_imagesto enable enforcing use of signed images - Added
image_signing_keysto specifiy list of signing keys
- Added
- Added ability to specify node_pool_os_version with
node_pool_os_version(#281) - Added
cluster_idandnodepool_idsas outputs for improved reusability (#296). Thanks @yasn77 - Changed base module version to 2.2.1. This allows:
- controlling the state of the bastion using
bastion_state(RUNNING or STOPPED) - choosing between Oracle Linux 7.X or 8 for the operator host by using
operator_version(#248). Thanks @bieksaz - creating a new DRG with
create_drg - naming new DRG with
drg_display_name - attaching an existing DRG
- adding custom route rules on the NAT and Internet gateway route table to facilitate hybrid, multi-cloud deployment using
nat_gateway_route_rulesandinternet_gateway_route_rules(#279) - locking down default security lists with
lockdown_default_seclist
- controlling the state of the bastion using
Changes
- Updated permissions required in documentation (#292). Thanks @atimgraves
- Made node pool image updatable (#286)
- Changed deprecated map function (#283)
- Reworked the subnet boundaries for bastion and operator hosts (#270)
- Updated and simplified OKE security lists to support VCN native endpoints (#270)
- All port numbers and stateless are now in integer and boolean formats respectively (#270)
- Updated default Kubernetes version to v 1.19.7
- Updated documentation and topology diagrams
- Fixed incorrect namespace issue when creating secret for OCIR (#267)
- Narrow permissions for kubeconfig file (#276). Thanks @mthmulders
Deletions
- Removed hardcoded WAF CIDRs and used data source instead.
v3.2.0-RC2
Changes
- Fix for incorrect namespace when creating secret for OCIR. There's no need to supply tenancy name anymore (#267)
- Narrower permission for kubeconfig file (thanks @mthmulders)
- Fix for no match for node_pool_os_version (#281)
- Bug fix for deprecated map function for okenetwork module output ( #283)
- Allow updating of node pool image (#286)
Additions
v3.1.0
Changes
- Updated default kubernetes version to v1.18.10, fixed deprecated interpolation-only expressions
- Updated description for tenancy id
Additions
- Added documentation for using flexible load balancer
- Added ability to specify node_pool_os_version (#266)
- Added egress as bugfix for issue #261
- Allowed traffic from VCN to reach internal load balancer
- Added ignore node pool image id to lifecycle ignore change so the node pool is not destroyed
- Added index key for node_source_details.node_source_details
- Used oci_containerengine_node_pool_option to look up images for node pool (#260)
Deletions
- Now looking up object storage namespace for ocirsecret instead of having to pass as variable
- Removed deprecated helm repos
- Removed tenancy_name
v3.2.0-RC1
Changes
- Changed base module version to 2.1.1. This allows choosing between Oracle Linux 7.X or 8 for the operator host.
- Added a subnet for control plane
- Reworked the subnet boundaries for bastion and operator
- Added 2 parameters (
cluster_accessandcluster_source) to control access to Kubernetes API endpoint - Updated and simplified OKE security lists to support VCN native endpoints
- All port numbers and stateless are now in integer and boolean formats respectively
- Removed hardcoded WAF CIDRs and used data source instead
- Updated default Kubernetes version to v 1.19.7
- Updated documentation and topology diagrams
v3.0.0
Changes
- Added support for Terraform 0.13 (#245 )
- Added support for Flex shapes (#216)
- Added support for custom boot volume size for node pool (#202)
- Added support for custom memory for node pool (#234)
- Allowed secret name for OCIR to be configurable (#218)
- Added support for Cardiff (#230), Dubai (#220), San Jose (#219), and Santiago (#219) regions
- Changes in terraform.tfvars.example file to reflect added support for custom boot volume size and memory
- OSMS disabled on operator to enable helm installation from yum olcne repo (#224)
- Updated IAM requirements documentation (#108)
- Added dynamically generated suffix to dynamic group name to prevent dynamic group creation from failing (#231)
- Upgrade base module to 2.0.0 (#252)
- Updated default Kubernetes module to 1.18.10
- Added support for Vertical Pod Autoscaling (#254)
- Updated and simplified Calico installation (#253)
Bug Fixes
v3.0.0-RC6
Changes
- Added Santiago as a region
- Changed base module to 2.0.0 to use Terraform 0.13
- Updated default Kubernetes version to 1.18.10
- Added support for Vertical Pod Autoscaling
- Updated and simplified Calico installation