Releases: particuleio/terraform-kubernetes-addons
v14.0.0
Breaking changes
Addons removal
To focus on infrastructure components, addons unmaintained or without the need for complex Terraform deployment have been removed:
- Kafka Operator
- Rabbitmq Operator
- Flux v1
- Keycloak
- Calico without Tigera Operator
- Kyverno
- Vault
Note on Kyverno
Kyverno released version 1.10 as well as v3 of their charts with a lot of breaking changes please see this documentation to migrate
Note on Vault
Vault on Kubernetes in inherently insecure, traffic was unencrypted and it is hard to do best practice configuration inside Kubernetes. We recommend to switch to an external Vault on a dedicated VPC. To do so you can use our terraform-aws-vault module which deploy a standalone Vault cluster multi region, on EC2 instances, backed by DynamoDB global table backend as well as multi region KMS key replicas. In addition a route53 failover is available to fallback from one region to another. AMIs based on Amazon Linux 2023 can be built with our vault-packer
Flux v2 release candidate
This module has been updated to use the new terraform-flux-provider which breaks the way Flux was bootstrapped before. Please foloow this guide to upgrade.
Velero chart change
Velero release v4 of their charts which allow the configuration of multiple backup locations. The upgrade should be transparent. Plugins (AWS and CSI) have been updated to latest version.
IAM permissions
IAM permissions have been synced with upstream for:
- aws-ebs-csi-driver
- aws-efs-csi-driver
- aws-load-balancer-controller
Karpenter
This release adds support for Karpenter, by making use of the module present in terraform-aws-eks. Karpenter is a bit tricky to deploy, especially with CMK for EBS root volume encryption.
A full demo will be available in our tEKS repository latest release.
oidc_provider_arn must now be set in the eks module input variable:
eks = {
"cluster_oidc_issuer_url" = dependency.eks.outputs.cluster_oidc_issuer_url
"oidc_provider_arn" = dependency.eks.outputs.oidc_provider_arn
"cluster_endpoint" = dependency.eks.outputs.cluster_endpoint
}
Don't hesitate to reach via issues or discussion, this release has been tested but not all edge cases
Cheers
v13.0.0: cleanup, Karpenter, Flux v2
Breaking changes
Addons removal
To focus on infrastructure components, addons unmaintained or without the need for complex Terraform deployment have been removed:
- Kafka Operator
- Rabbitmq Operator
- Flux v1
- Keycloak
- Calico without Tigera Operator
- Kyverno
- Vault
Note on Kyverno
Kyverno released version 1.10 as well as v3 of their charts with a lot of breaking changes please see this documentation to migrate
Note on Vault
Vault on Kubernetes in inherently insecure, traffic was unencrypted and it is hard to do best practice configuration inside Kubernetes. We recommend to switch to an external Vault on a dedicated VPC. To do so you can use our terraform-aws-vault module which deploy a standalone Vault cluster multi region, on EC2 instances, backed by DynamoDB global table backend as well as multi region KMS key replicas. In addition a route53 failover is available to fallback from one region to another. AMIs based on Amazon Linux 2023 can be built with our vault-packer
Flux v2 release candidate
This module has been updated to use the new terraform-flux-provider which breaks the way Flux was bootstrapped before. Please foloow this guide to upgrade.
Velero chart change
Velero release v4 of their charts which allow the configuration of multiple backup locations. The upgrade should be transparent. Plugins (AWS and CSI) have been updated to latest version.
IAM permissions
IAM permissions have been synced with upstream for:
- aws-ebs-csi-driver
- aws-efs-csi-driver
- aws-load-balancer-controller
Karpenter
This release adds support for Karpenter, by making use of the module present in terraform-aws-eks. Karpenter is a bit tricky to deploy, especially with CMK for EBS root volume encryption.
A full demo will be available in our tEKS repository latest release.
Don't hesitate to reach via issues or discussion, this release has been tested but not all edge cases
Cheers
v12.9.0
12.9.0 (2023-04-28)
Bug Fixes
- charts: update helm release aws-load-balancer-controller to v1.5.2 (#1951) (6b1cc4d)
- charts: update helm release kong to v2.19.1 (#1959) (8f954bb)
- charts: update helm release linkerd-control-plane to v1.12.2 (#1965) (145a31b)
- charts: update helm release linkerd-crds to v1.6.1 (#1966) (05c77dd)
- charts: update helm release linkerd-viz to v30.8.2 (#1967) (e760cd6)
- charts: update helm release linkerd2-cni to v30.8.2 (#1968) (df0dc88)
- charts: update helm release secrets-store-csi-driver to v1.3.3 (#1952) (32fc4fe)
- charts: update helm release traefik to v23.0.1 (#1977) (527d2f2)
- metrics-server allow-control-plane NetworkPolicy (#1974) (4fdeefd)
Features
- charts: update helm release k8gb to v0.11.1 (#1953) (a397b36)
- charts: update helm release kong to v2.20.0 (#1971) (1e4c9f7)
- charts: update helm release kube-prometheus-stack to v45.17.0 (#1949) (a31a828)
- charts: update helm release kube-prometheus-stack to v45.18.0 (#1954) (9055ef0)
- charts: update helm release kube-prometheus-stack to v45.19.0 (#1955) (da8cd90)
- charts: update helm release kube-prometheus-stack to v45.20.0 (#1960) (f59057c)
- charts: update helm release kube-prometheus-stack to v45.21.0 (#1963) (2d8cb45)
- charts: update helm release loki to v5.2.0 (#1950) (12d4961)
- charts: update helm release loki to v5.3.0 (#1973) (ae2f3ad)
- charts: update helm release prometheus-adapter to v4.2.0 (#1958) (7f5368e)
- charts: update helm release promtail to v6.11.0 (#1957) (284f1e2)
- charts: update helm release traefik to v22.2.0 (#1961) (1dd854f)
- charts: update helm release traefik to v22.3.0 (#1964) (aafb1a5)
- charts: update helm release traefik to v23 (#1969) (186de80)
- charts: update helm release velero to v3.2.0 (#1962) (eb5c838)
v12.8.0
12.8.0 (2023-04-20)
Bug Fixes
- charts: update helm release aws-load-balancer-controller to v1.5.1 (#1943) (28983e0)
- charts: update helm release keda to v2.10.2 (#1933) (279c860)
- charts: update helm release kube-prometheus-stack to v45.10.1 (#1935) (55df76b)
- charts: update helm release linkerd-control-plane to v1.12.1 (#1936) (69fc44c)
- charts: update helm release linkerd-viz to v30.8.1 (#1937) (37030e1)
- charts: update helm release linkerd2-cni to v30.8.1 (#1938) (f77b9ef)
- charts: update helm release sealed-secrets to v2.8.2 (#1940) (b00f382)
- charts: update helm release thanos to v12.4.3 (#1946) (e10607b)
- charts: update helm release vault to v0.24.1 (#1941) (d645fb3)
Features
- add Linkerd ServerAuthorization manifest (#1942) (7ebc3c8)
- charts: update helm release aws-ebs-csi-driver to v2.18.0 (#1944) (ba7119e)
- charts: update helm release aws-load-balancer-controller to v1.5.0 (#1939) (58ddd52)
- charts: update helm release kube-prometheus-stack to v45.10.0 (#1934) (d349cf1)
- charts: update helm release kube-prometheus-stack to v45.12.0 (#1947) (5ae1737)
- charts: update helm release kube-prometheus-stack to v45.15.0 (#1948) (fb4072f)
- charts: update helm release loki to v5.1.0 (#1945) (fbfdd83)
- charts: update helm release metrics-server to v3.10.0 (#1932) (30c2d6d)
v12.7.0
12.7.0 (2023-04-12)
Bug Fixes
- add small fixes for linkerd when enabled (#1921) (f8a7164)
- charts: update helm release cert-manager to v1.11.1 (#1926) (b77e113)
- charts: update helm release external-dns to v1.12.2 (#1905) (f548f4a)
- charts: update helm release kong to v2.17.1 (#1920) (ed5c5ca)
- charts: update helm release kube-prometheus-stack to v45.8.1 (#1903) (2ec5cd6)
- charts: update helm release kube-prometheus-stack to v45.9.1 (#1919) (c7c38de)
- charts: update helm release kyverno to v2.7.2 (#1887) (e8a7264)
- charts: update helm release loki-stack to v2.9.10 (#1913) (9e7decb)
- charts: update helm release memcached to v6.3.14 (#1909) (fa39078)
- charts: update helm release prometheus-blackbox-exporter to v7.6.2 (#1899) (4dc08ae)
- charts: update helm release rabbitmq-cluster-operator to v3.2.10 (#1910) (27fdca6)
- charts: update helm release rabbitmq-cluster-operator to v3.2.8 (#1897) (1a44760)
- charts: update helm release rabbitmq-cluster-operator to v3.2.9 (#1907) (94cb7ab)
- charts: update helm release thanos to v12.3.2 (#1889) (4f55ba8)
- charts: update helm release thanos to v12.4.1 (#1911) (f85d945)
- charts: update helm release thanos to v12.4.2 (#1914) (7871e1e)
- charts: update helm release tigera-operator to v3.25.1 (#1908) (2a0a03c)
- charts: update helm release traefik to v21.2.1 (#1895) (dc52912)
- charts: update helm release velero to v3.1.5 (#1892) (721929f)
- charts: update helm release velero to v3.1.6 (#1923) (50eca7f)
- charts: update helm release victoria-metrics-k8s-stack to v0.14.17 (#1924) (6ee087b)
Features
- charts: update helm release cluster-autoscaler to v9.27.0 (#1893) (b4feca3)
- charts: update helm release cluster-autoscaler to v9.28.0 (#1916) (4872fcc)
- charts: update helm release ingress-nginx to v4.6.0 (#1891) (9a81a0f)
- charts: update helm release kong to v2.17.0 (#1900) (d2619db)
- charts: update helm release kong to v2.19.0 (#1927) (fcd78d5)
- charts: update helm release kube-prometheus-stack to v45.8.0 (#1894) (8760d2b)
- charts: update helm release kube-prometheus-stack to v45.9.0 (#1917) (89e72c2)
- charts: update helm release linkerd-control-plane to v1.12.0 (#1928) (c6eaf01)
- charts: update helm release linkerd-crds to v1.6.0 (#1929) (0f7d18e)
- charts: update helm release linkerd-viz to v30.8.0 (#1930) (994f46e)
- charts: update helm release linkerd2-cni to v30.8.0 (#1931) (191cb94)
- charts: update helm release loki to v4.10.0 (#1906) (fd5fd42)
- charts: update helm release loki to v4.9.0 (#1902) (87375c0)
- charts: update helm release loki to v5 (#1915) (d6c8714)
- charts: update helm release metrics-server to v3.9.0 (#1898) (3c84ae2)
- charts: update helm release prometheus-blackbox-exporter to v7.7.0 (#1901) (7e6cdcd)
- charts: update helm release promtail to v6.10.0 (#1912) ([1bde0b7](https://github.com/particuleio/terraform-kubernetes-addons/comm...
v12.6.0
12.6.0 (2023-03-21)
Bug Fixes
- charts: update helm release aws-ebs-csi-driver to v2.17.1 (#1826) (03551a2)
- charts: update helm release aws-ebs-csi-driver to v2.17.2 (#1869) (d461703)
- charts: update helm release aws-efs-csi-driver to v2.3.9 (#1835) (d2e9a49)
- charts: update helm release aws-efs-csi-driver to v2.4.1 (#1873) (5ee8b91)
- charts: update helm release aws-for-fluent-bit to v0.1.23 (#1827) (a7921dc)
- charts: update helm release aws-for-fluent-bit to v0.1.24 (#1885) (27d8738)
- charts: update helm release aws-load-balancer-controller to v1.4.8 (#1828) (ad7f79e)
- charts: update helm release keda to v2.10.1 (#1868) (9cf5573)
- charts: update helm release kyverno to v2.7.1 (#1859) (e829a20)
- charts: update helm release loki to v4.6.2 (#1830) (c014d39)
- charts: update helm release memcached to v6.3.10 (#1854) (f04433b)
- charts: update helm release memcached to v6.3.11 (#1858) (bfe9ecc)
- charts: update helm release memcached to v6.3.12 (#1867) (5c9e2c0)
- charts: update helm release memcached to v6.3.13 (#1874) (cc0e95b)
- charts: update helm release memcached to v6.3.7 (#1816) (b2a6f37)
- charts: update helm release memcached to v6.3.8 (#1837) (26c1c7a)
- charts: update helm release memcached to v6.3.9 (#1844) (60a513b)
- charts: update helm release metrics-server to v3.8.4 (#1851) (6e8ae3e)
- charts: update helm release node-problem-detector to v2.3.4 (#1881) (97a15eb)
- charts: update helm release prometheus-blackbox-exporter to v7.6.1 (#1846) (c27c82c)
- charts: update helm release promtail to v6.9.1 (#1838) (53a8824)
- charts: update helm release promtail to v6.9.2 (#1840) (d1c30f2)
- charts: update helm release promtail to v6.9.3 (#1850) (eb1454c)
- charts: update helm release rabbitmq-cluster-operator to v3.2.4 (#1817) (02ec829)
- charts: update helm release rabbitmq-cluster-operator to v3.2.5 (#1870) (cb3266a)
- charts: update helm release rabbitmq-cluster-operator to v3.2.6 (#1875) (600a029)
- charts: update helm release rabbitmq-cluster-operator to v3.2.7 (#1879) (7f99fa0)
- charts: update helm release sealed-secrets to v2.7.5 (#1842) (35d1680)
- charts: update helm release sealed-secrets to v2.7.6 (#1847) (cef8dae)
- charts: update helm release sealed-secrets to v2.8.1 (#1883) (176cd01)
- charts: update helm release secrets-store-csi-driver to v1.3.2 (#1884) (9a8593f)
- charts: update helm release strimzi-kafka-operator to v0.33.2 (#1819) (f05cba5)
- charts: update helm release thanos to v12.0.6 (#1818) (c693d5a)
- charts: update helm release thanos to v12.1.1 (#1839) (38cf219)
- charts: update helm release thanos to v12.1.2 (#1848) (7e285c0)
- charts: update helm release thanos to v12.2.1 (#1865) (6a53ec0)
- charts: update helm release thanos to v12.3.1 (#1880) (00710fd)
- charts: update helm release velero to v3.1.4 (#1866) ([740495b](https://github.com/particuleio/terraform-kubernetes-a...
v12.5.0
12.5.0 (2023-02-17)
Bug Fixes
- add early_renewal_hours to 720 by default (30eda4d)
- charts: update helm release aws-efs-csi-driver to v2.3.8 (#1801) (645ec16)
- charts: update helm release cluster-autoscaler to v9.23.1 (#1798) (5c5aa29)
- charts: update helm release cluster-autoscaler to v9.23.2 (#1800) (2db5c84)
- charts: update helm release ingress-nginx to v4.5.2 (#1809) (6c4ec8a)
- charts: update helm release kong to v2.16.4 (#1805) (04876f5)
- charts: update helm release kong to v2.16.5 (#1813) (c3f89d1)
- charts: update helm release kube-prometheus-stack to v45.0.1 (#1807) (5b813c0)
- charts: update helm release kube-prometheus-stack to v45.1.1 (#1814) (65c0275)
- charts: update helm release loki to v4.6.1 (#1799) (58f291c)
- charts: update helm release promtail to v6.8.3 (#1810) (a68e79a)
- charts: update helm release rabbitmq-cluster-operator to v3.2.3 (#1815) (8c49784)
- charts: update helm release sealed-secrets to v2.7.4 (#1812) (556dd55)
- charts: update helm release thanos to v12.0.5 (#1802) (6a7e1b9)
Features
- charts: update helm release aws-ebs-csi-driver to v2.17.0 (#1803) (af3f8eb)
- charts: update helm release cluster-autoscaler to v9.24.0 (#1806) (5e2d666)
- charts: update helm release ingress-nginx to v4.5.0 (#1804) (29b7962)
- charts: update helm release kube-prometheus-stack to v45.1.0 (#1808) (0346074)
- charts: update helm release traefik to v21.1.0 (#1811) (9ee511a)
v12.4.0
12.4.0 (2023-02-13)
Bug Fixes
- charts: update helm release kong to v2.16.3 (#1794) (a2a079b)
- charts: update helm release memcached to v6.3.6 (#1792) (665b58d)
- charts: update helm release victoria-metrics-k8s-stack to v0.14.8 (#1791) (47cbc77)
- force_conflicts by default for crds managed by server side apply (a88a532)
Features
v12.3.0
v12.2.0
12.2.0 (2023-02-09)
Bug Fixes
- charts: update helm release aws-efs-csi-driver to v2.3.7 (#1778) (2d289bc)
- charts: update helm release external-dns to v1.12.1 (#1777) (97265af)
- charts: update helm release kong to v2.16.1 (#1775) (38411b2)
- charts: update helm release kong to v2.16.2 (#1781) (9b8134c)
- charts: update helm release kube-prometheus-stack to v44.4.1 (#1785) (01dd1a7)
- charts: update helm release loki to v4.5.1 (#1783) (a3dbf03)
- charts: update helm release node-problem-detector to v2.3.3 (#1780) (3dfbb30)
- charts: update helm release strimzi-kafka-operator to v0.33.1 (#1784) (08fab6e)
- rework S3 logging handling (9f455dd)
Features
- add bucket logging and versionning by default (011eb08)
- charts: update helm release kube-prometheus-stack to v44.4.0 (#1782) (4e6788a)
- charts: update helm release loki to v4.5.0 (#1776) (7894640)
- charts: update helm release loki to v4.6.0 (#1786) (877107d)
- charts: update helm release prometheus-cloudwatch-exporter to v0.23.0 (#1787) (397e7c8)
- handle tigera CRDs upgrade (197519a)