v17.4.0

2021-08-27T07:37:41Z

4be3cc30458a83dbd6d3d00dd184103de2c15542 Updated CHANGELOG
e3216e3cf80cb59089ba0e0365c6650520000aaf docs: Fix cluster-autoscaler tags in irsa example (#1436)
551c6d63bb02cb097c3bc7ae1988fadec4c392c5 fix: Discourage usage of iam_policy_attachment in example (#1529)
cb0e67736415dd0d8c452b6228432d8e2052e3dc fix: Allow instance `Name` tag to be overwritten (#1538)
904ad94fe27878885e000ff4717fc5e3b7d7b438 docs: Add missing comma to docs/iam-permissions.md (#1437)
880b08cb6a6158b34e488645cbf2781cbb9863a4 docs: Updated autoscaling.md (#1515)
cd01601805153c3985b16ab647c56ce8cf5e58c8 chore: "Desirec" misspelling fix (#1450)

v17.3.0

2021-08-25T14:56:00Z

4e5b8bf095e417c83cfaa520c30712cad1e316bf Updated CHANGELOG
d17007b542b10c652914a17f5cb9a9ea8c1d86ff fix: Fixed launch template version infinite plan issue and improved rolling updates (#1447)
4f683ab776419947c0221e7ebd8525a37d1978b6 chore: extract only terraform-docs binary during GH Actions run (#1541)

v17.2.0

2021-08-25T13:25:00Z

b15d8998e65d4b81fbd0d2206092b2d6060371a4 Updated CHANGELOG
6067290c0e979993af10309f0bbacbe16441e42e feat: Support for encrypted root disk in node_groups (#1428)
3b1229837ad61d6e3420196fe3870cc406940cc8 feat: Enable ebs_optimized setting for node_groups (#1459)

v17.1.0

FEATURES:

• Add support for Managed Node Groups (node_groups) taints (#1424)
• Allow to choose launch template version for Managed Node Groups when create_launch_template is set to true (#1419)
• Add capacity_rebalance support for self-managed worker groups (#1326)
• Add var.wait_for_cluster_timeout to allow configuring the wait for cluster timeout (#1420)

v17.0.3

BUG FIXES:

• Fix AMI filtering when the default platform is provided in var.workers_group_defaults (#1413)
• Remove duplicated security group rule for EKS private access endpoint (#1412)

NOTES:

• In this bug fix, we remove a duplicated security rule introduced during a merge conflict resolution in [#1274](#1274)

v17.0.2

BUG FIXES:

• Don't add tags on network interfaces because it's not supported yet in terraform-provider-aws (#1407)

v17.0.1

BUG FIXES:

• Default root_volume_type must be gp2 (#1404)

v17.0.0

FEATURES:

• Add ability to use Security Groups as source for private endpoint access (#1274)
• Define Root device name for Windows self-managed worker groups (#1401)
• Drop random pets from Managed Node Groups (#1372)
• Add multiple selectors on the creation of Fargate profile (#1378)
• Rename config_output_path into kubeconfig_output_path for naming consistency (#1399)
• Kubeconfig file should not be world or group readable by default (#1114)
• Add tags on network interfaces (#1362)
• Add instance store volume option for instances with local disk (#1213)

BUG FIXES:

• Add back depends_on for data.wait_for_cluster (#1389)

DOCS:

• Clarify about the cluster_endpoint_private_access_cidrs usage (#1400)
• Add KMS aliases handling to IAM permissions (#1288)

BREAKING CHANGES:

• The private endpoint security group rule has been renamed to allow the use of CIDR blocks and Security Groups as source. This will delete the cluster_private_access Security Group Rule for existing cluster. Please rename by aws_security_group_rule.cluster_private_access[0] into aws_security_group_rule.cluster_private_access_cidrs_source[0].
• We now decided to remove random_pet resources in Managed Node Groups (MNG). Those were used to recreate MNG if something change and also simulate the newly added argument node_group_name_prefix. But they were causing a lot of troubles. To upgrade the module without recreating your MNG, you will need to explicitly reuse their previous name and set them in your MNG name argument. Please see upgrade docs for more details.
• To support multiple selectors for Fargate profiles, we introduced the selectors argument which is a list of map. This will break previous configuration with a single selector namespace and labels. You'll need to rewrite your configuration to use the selectors argument. See examples dans docs for details.
• The variable config_output_path is renamed into kubeconfig_output_path for naming consistency. Please upgrade your configuration accordingly.

NOTES:

• Since we now search only for Linux or Windows AMI if there is a worker groups for the corresponding plateform, we can now define different default root block device name for each plateform. Use locals root_block_device_name and root_block_device_name_windows to define your owns.
• The kubeconfig file permission is not world and group readable anymore. The default permission is now 600. This value can be changed with the variable var.kubeconfig_file_permission.

v16.2.0

FEATURES:

• Add ability to forcefully update nodes in managed node groups (#1380)

BUG FIXES:

• Bump terraform-provider-http required version to 2.4.1 to avoid TLS Cert Pool issue on Windows (#1387)

DOCS:

• Update license to Apache 2 License (#1375)

v16.1.0

FEATURES:

• Search for Windows or Linux AMIs only if they are needed (#1371)

BUG FIXES:

• Set an ASG's launch template version to an explicit version to automatically trigger instance refresh (#1370)
• Add description for private API ingress Security Group Rule (#1299)

DOCS:

• Fix cluster autoscaler tags in IRSA example (#1204)
• Add Bottlerocket example (#1296)

NOTES:

• Set an ASG's launch template version to an explicit version automatically. This will ensure that an instance refresh will be triggered whenever the launch template changes. The default launch_template_version is now used to determine the latest or default version of the created launch template for self-managed worker groups.