Log message:
terraform-provider-aws: Update to 3.27.0
Changes:
3.27.0
======
FEATURES:
---------
New Data Source: aws_cloudfront_origin_request_policy (#17342)
New Resource: aws_ec2_transit_gateway_prefix_list_reference (#16823)
New Resource: aws_route53_key_signing_key (#16840)
New Resource: aws_cloudfront_origin_request_policy (#17342)
ENHANCEMENTS:
-------------
data-source/resource_aws_lb_target_group: Add protocol_version attribute (#17260)
data-source/aws_subnet: Add customer_owned_ipv4_pool and \
map_customer_owned_ip_on_launch attributes (#16676)
resource/aws_glacier_vault: Add plan-time validation for notification \
configuration block events and sns_topic_arn arguments (#12645)
resource/aws_glue_catalog_table: Adds support for specifying schema from schema \
registry. (#17335)
resource/aws_iam_access_key: Add create_date attribute (#17318)
resource/aws_iam_access_key: Support resource import (#17321)
resource/resource_aws_lb_target_group: Add protocol_version (#17260)
resource/aws_subnet: Add customer_owned_ipv4_pool and \
map_customer_owned_ip_on_launch attributes (#16676)
resource/aws_lb: Add ipv6_address attribute (#17229)
resource/aws_sfn_state_machine: Add support for EXPRESS state machine type (#12249)
resource/aws_cloudfront_distribution: Add cloudfront_origin_request_policy_id \
attribute (#17342)
BUG FIXES:
----------
data-source/aws_partition: Correct reverse_dns_prefix value in AWS China, C2S, \
and SC2S (#17142)
provider: Only validate AWS shared configuration profile SSO configuration when \
attempting to use SSO cached credentials (#17469)
resource/aws_api_gateway_method_settings: Ignore non-existent resource errors \
during deletion (#17234)
resource/aws_api_gateway_method_settings: Prevent confusing Terraform error on \
resource disappearance during creation (#17234)
resource/aws_cloudwatch_event_rule: Prevent perpetual differences with \
name_prefix argument values beginning with terraform- (#17030)
resource/aws_glacier_vault: Prevent crash with GetVaultAccessPolicy API errors \
(#12645)
resource/aws_glacier_vault: Properly remove from state when resource does not \
exist (#12645)
resource/aws_glue_crawler: Use standard retry timeout for IAM eventual \
consistency and retry on LakeFormation permissions errors (#17256)
resource/aws_glue_partition: Fix partition_values to preserve order. (#17344)
resource/aws_iam_access_key: Ensure Inactive status is properly configured \
during resource creation (#17322)
resource/aws_kinesis_firehose_delivery_stream: Use standard retry timeout for \
IAM eventual consistency and retry on LakeFormation access errors (#17254)
resource/aws_security_group: Prevent perpetual differences with name_prefix \
argument values beginning with terraform- (#17030)
resource/aws_ssoadmin_permission_set: Properly update resource with relay_state \
argument (#17423)
resource/aws_vpc_endpoint: Return unsuccessful deletion information immediately \
as an error instead of timing out while waiting for deletion (#16656)
resource/aws_vpc_endpoint_service: Return unsuccessful deletion information \
immediately as an error instead of timing out while waiting for deletion \
(#16656)
|
Log message:
terroform-provider-aws: Update to 3.26.0
pkgsrc changes:
- Adjust to use go-module.mk
- Remove unneeded GITHUB_PROJECT, it is already PKGBASE by default
- Remove bash tool dependency and REPLACE_BASH, none of the scripts are invoked
Changes:
Unfortunately the changelog is too long to include (138KB, more than 1000 lines
not wrapped). It can be found at:
https://raw.githubusercontent.com/hashicorp/terraform-provider-aws/v3.26.0/CHANGELOG.md
(or ${WRKSRC}/CHANGELOG.md).
Worth to note:
- terraform-provider-aws 3.x is compatible only with Terraform 0.12 and newer
- A lot of new data sources and resources
And here the complete list of breaking changes of 3.x:
BREAKING CHANGES
----------------
* provider: New versions of the provider can only be automatically installed on \
Terraform 0.12 and later
* provider: All "removed" attributes are cut, using them would result \
in a Terraform Core level error
* provider: Credential ordering has changed from static, environment, shared \
credentials, EC2 metadata, default AWS Go SDK (shared configuration, web \
identity, ECS, EC2 Metadata) to static, environment, shared credentials, default \
AWS Go SDK (shared configuration, web identity, ECS, EC2 Metadata)
* provider: The `AWS_METADATA_TIMEOUT` environment variable no longer has any \
effect as we now depend on the default AWS Go SDK EC2 Metadata client timeout of \
one second with two retries
* provider: Remove deprecated `kinesis_analytics` and `r53` custom service \
endpoint arguments
* data-source/aws_availability_zones: Remove deprecated `blacklisted_names` and \
`blacklisted_zone_ids` arguments
* data-source/aws_directory_service_directory: Return an error when a single \
result is not found
* data-source/aws_ecr_repository: Return an error when a single result is not found
* data-source/aws_efs_file_system: Return an error when a single result is not found
* data-source/aws_launch_template: Return an error when a single result is not found
* data-source/aws_route53_resolver_rule: Trailing period removed from \
`domain_name` argument set in data-source
* data-source/aws_route53_zone: Trailing period removed from `name` argument \
set in data-source
* resource/aws_acm_certificate: `certificate_body`, `certificate_chain`, and \
`private_key` attributes are no longer stored in the Terraform state with hash \
values
* resource/aws_acm_certificate: `domain_validation_options` attribute changed \
from list to set
* resource/aws_acm_certificate: Plan-time validation added to `domain_name` and \
`subject_alternative_names` arguments to prevent usage of strings with trailing \
periods
* resource/aws_api_gateway_method_settings: Remove `Computed` property from \
`throttling_burst_limit` and `throttling_rate_limit` arguments, enabling drift \
detection
* resource/aws_api_gateway_method_settings: Update `throttling_burst_limit` and \
`throttling_rate_limit` argument defaults to match API default of `-1` to keep \
throttling disabled
* resource/aws_autoscaling_group: `availability_zones` and \
`vpc_zone_identifier` argument conflict now reported at plan-time
* resource/aws_autoscaling_group: Remove `Computed` property from \
`load_balancers` and `target_group_arns` arguments, enabling drift detection
* resource/aws_cloudfront_distribution: `active_trusted_signers` argument \
renamed to `trusted_signers` to support accessing `items` in Terraform 0.12
* resource/aws_cloudwatch_log_group: Automatically trim `:*` suffix from `arn` \
attribute
* resource/aws_codepipeline: Removes `GITHUB_TOKEN` environment variable
* resource/aws_cognito_user_pool: Remove deprecated `admin_create_user_config` \
configuration block `unused_account_validity_days` argument
* resource/aws_dx_gateway: Remove automatic `aws_dx_gateway_association` \
resource import
* resource/aws_dx_gateway_association: Remove deprecated `vpn_gateway_id` argument
* resource/aws_dx_gateway_association_proposal: Remove deprecated \
`vpn_gateway_id` argument
* resource/aws_ebs_volume: Return an error when `iops` argument set to a value \
greater than 0 for volume types other than `io1`
* resource/aws_elastic_transcoder_preset: Remove `video` configuration block \
`max_frame_rate` argument default value
* resource/aws_emr_cluster: Remove deprecated `instance_group` configuration \
block, `core_instance_count`, `core_instance_type`, and `master_instance_type` \
arguments
* resource/aws_glue_job: Remove deprecated `allocated_capacity` argument
* resource/aws_iam_access_key: Remove deprecated `ses_smtp_password` attribute
* resource/aws_iam_instance_profile: Remove deprecated `roles` argument
* resource/aws_iam_server_certificate: Remove state hashing from \
`certificate_body`, `certificate_chain`, and `private_key` arguments for new or \
recreated resources
* resource/aws_instance: Return an error when `ebs_block_device` `iops` or \
`root_block_device` `iops` argument set to a value greater than `0` for volume \
types other than `io1`
* resource/aws_lambda_alias: Resource import no longer converts Lambda Function \
name to ARN
* resource/aws_launch_template: `network_interfaces` `delete_on_termination` \
argument changed from `bool` to `string` type
* resource/aws_lb_listener_rule: Remove deprecated `condition` configuration \
block `field` and `values` arguments
* resource/aws_msk_cluster: Update `encryption_info` `encryption_in_transit` \
`client_broker` argument default to match API default of `TLS`
* resource/aws_rds_cluster: Update `scaling_configuration` `min_capacity` \
argument default to match API default of `1`
* resource/aws_route53_resolver_rule: Trailing period removed from \
`domain_name` argument set in resource
* resource/aws_route53_zone: Trailing period removed from `name` argument set \
in resource
* resource/aws_s3_bucket: Remove automatic `aws_s3_bucket_policy` resource import
* resource/aws_s3_bucket: Convert `region` to read-only attribute
* resource/aws_s3_bucket_metric: Update `filter` argument to require at least \
one of the `prefix` or `tags` nested arguments
* resource/aws_security_group: Remove automatic `aws_security_group_rule` \
resource import
* resource/aws_ses_domain_identity: Plan-time validation added to `domain` \
argument to prevent usage of strings with trailing periods
* resource/aws_ses_domain_identity_verification: Plan-time validation added to \
`domain` argument to prevent usage of strings with trailing periods
* resource/aws_sns_platform_application: `platform_credential` and \
`platform_principal` attributes are no longer stored in the Terraform state with \
hash values
* resource/aws_spot_fleet_request: Remove 24 hour default for `valid_until` argument
* resource/aws_ssm_maintenance_window_task: Remove deprecated `logging_info` \
and `task_parameters` configuration blocks
|