Skip to content

Releases: cloudera-labs/terraform-cdp-modules

Version 0.11.3

25 Sep 11:32
@jimright jimright
v0.11.3
19f52d5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.11.3 Latest
Latest

What's Changed

  • Add explicit outbound to Azure VNet module by @jimright in #121

Full Changelog: v0.11.2...v0.11.3

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-azure-vnet Disable default outbound access and add optional NAT resources
terraform-cdp-azure-pre-reqs Add inputs to control NAT resource creation

Impact of updates

  • An upgrade from previous version of the terraform-cdp-modules (v0.11.2) has been tested.
  • The terraform-azure-vnet and terraform-cdp-azure-pre-reqs modules have been updated to handle the upcoming retirement of the default outbound access connectivity for virtual machines by Azure.
    • For each subnet created in the terraform-azure-vnet module, the default_outbound_access_enabled parameter has been set to false.
    • Resources have been added to the terraform-azure-vnet module to create NAT gateway resources and associate them with each subnet. This is optional but enabled by default.
    • New input variables have been added to the terraform-cdp-azure-pre-reqs module to control creation and configuration of the NAT resources.

Contributors

jimright
Assets 2
Loading

Version 0.11.2

14 Aug 14:33
@jimright jimright
v0.11.2
5a53083
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.11.2

What's Changed

  • Disable multiaz LIGHT_DUTY datalake on AWS by @jimright in #116

Full Changelog: v0.11.1...v0.11.2

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-cdp-deploy AWS deployment only

Impact of updates

  • Update terraform-cdp-deploy module to ensure that multi availability zone is disabled for LIGHT_DUTY AWS datalakes.

Contributors

jimright
Loading

Version 0.11.1

10 Jul 09:32
@jimright jimright
v0.11.1
553b2f4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.11.1

What's Changed

  • Add option for root volume definition to AWS bastion module by @jimright in #113
  • Add multi-az support for GCP deployments by @jimright in #114

Full Changelog: v0.11.0...v0.11.1

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-aws-bastion
terraform-cdp-deploy GCP deployment only

Impact of updates

  • Update the terraform-aws-bastion module to allow configuration of the root storage volume settings.
  • Added support for multi-az deployments on GCP.
    • This is supported following the release of 0.10.4 of the Cloudera Terraform provider

Contributors

jimright
Loading

Version 0.11.0

27 May 17:11
@jimright jimright
v0.11.0
1e3ce92
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.11.0

What's Changed

  • Add Action to check documentation on each module by @jimright in #106
  • Added azure bastion module by @dennaloh in #104
  • Update top-level readme for new Azure bastion module by @jimright in #108
  • Update Azure module to support separate network and Cloudera resource groups by @jimright in #107
  • Add terraform-azure-cred-permissions module by @jimright in #109
  • Add support for externalized compute clusters to cdp_deploy module by @jimright in #100

Full Changelog: v0.10.2...v0.11.0

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-azure-bastion New module
terraform-azure-cred-permissions New module
terraform-cdp-azure-pre-reqs
terraform-cdp-deploy

Impact of updates

  • New modules introduced for terraform-azure-bastion and terraform-azure-cred-permissions.
    • terraform-azure-cred-permissions is called from the terraform-cdp-azure-pre-reqs module to create the Cloudera credential pre-requisites for Azure.
  • Support for Compute Cluster creation on Cloudera on Azure & AWS environment has been added to the terraform-cdp-deploy module.
    • This is disabled by default but can be set via the compute_cluster_enabled variable and configured via compute_cluster_configuration
    • This is available once version >= 0.10.2 of the Terraform Cloudera provider is used

Contributors

dennaloh and jimright
Loading

Version 0.10.2

10 Apr 16:08
@jimright jimright
v0.10.2
6e332bd
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.10.2

What's Changed

  • Add public_access_prevention for GCS buckets in GCP pre-req module by @jimright in #105

Full Changelog: v0.10.1...v0.10.2

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-cdp-gcp-pre-reqs

Impact of updates

  • In the terraform-cdp-gcp-pre-reqs module the public_access_prevention parameter has been added to the GCS bucket resource. By default this is set to enforced so that public access is not allowed.

Contributors

jimright
Loading

Version 0.10.1

25 Mar 20:05
@jimright jimright
v0.10.1
53f2096
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.10.1

What's Changed

  • Increase validation for max length of Azure managed identities name by @jimright in #102

Full Changelog: v0.10.0...v0.10.1

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-azure-cdw-permissions
terraform-cdp-azure-pre-reqs

Impact of updates

  • In the terraform-cdp-azure-pre-reqs and terraform-azure-cdw-permissions` modules, for the validation of Azure managed identities, the maximum allowed name is increased from 24 to 128.

Contributors

jimright
Loading

Version 0.10.0

25 Mar 16:53
@jimright jimright
v0.10.0
5738352
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.10.0

What's Changed

  • Remove DL restore policy attachment from log role by @jimright in #97
  • Add validation to ensure xaccount role trust has AWS backup service by @jimright in #96
  • Added get_password_data and updated public ip ouput by @dennaloh in #99
  • Add variable validation for cloud provider specific variables in deploy module by @jimright in #98
  • Add modules for Azure resource groups and VNet by @jimright in #95
  • Improve creation and handling of CDP groups in cdp-deploy by @jimright in #101

Full Changelog: v0.9.1...v0.10.0

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-azure-resource-group New module
terraform-azure-vnet New module
terraform-cdp-azure-pre-reqs
terraform-aws-permissions
terraform-cdp-deploy

Impact of updates

  • New modules added:
    ** terraform-azure-resource-group to create an Azure Resource Group. This is can from the terraform-cdp-azure-pre-reqs module.
    ** terraform-azure-vnet to create an Azure VNet. This is can from the terraform-cdp-azure-pre-reqs module.
  • terraform-cdp-deploy has been updated to add validations for required parameters with each Cloud Service Provider (i.e. the infra_type input parameter)
  • terraform-cdp-deploy has added a new cdp_groups list of maps parameter which supports adding pre-existing Cloudera on cloud group to an environments IDBroker mapping (as well as creating the group if required).
    ** This change removed the cdp_user_group_name and cdp_admin_group_name input variables so a migration to this new cdp_groups input is required when updating to this release.

Contributors

dennaloh and jimright
Loading

Version 0.6.5

19 Mar 14:55
@jimright jimright
v0.6.5
This tag was signed with the committer’s verified signature.
jimright Jim Enright
GPG key ID: C2F23384493E1B60
Verified
Learn about vigilant mode.
87f8c34
This commit was signed with the committer’s verified signature.
jimright Jim Enright
GPG key ID: C2F23384493E1B60
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.6.5

What's Changed

Full Changelog: v0.6.4...v0.6.5

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-cdp-aws-pre-reqs

Impact of updates

  • Backported the recent removal of the DL restore policy attachment from AWS IAM log role to version 0.6.x release of the terraform-cdp-aws-pre-reqs module.
Loading

Version 0.6.4

31 Jan 09:51
@jimright jimright
v0.6.4
This tag was signed with the committer’s verified signature.
jimright Jim Enright
GPG key ID: C2F23384493E1B60
Verified
Learn about vigilant mode.
406be68
This commit was signed with the committer’s verified signature.
jimright Jim Enright
GPG key ID: C2F23384493E1B60
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.6.4

What's Changed

Full Changelog: v0.6.3...v0.6.4

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-cdp-aws-pre-reqs

Impact of updates

  • Backported the recent addition of the AWS backup service trust relationship to the Cross Account role to version 0.6.x release of the terraform-cdp-aws-pre-reqs module.
Loading

Version 0.9.1

23 Jan 16:26
@jimright jimright
v0.9.1
4f8e156
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.9.1

What's Changed

  • Add terraform install step to GH actions by @jimright in #90
  • Added terraform-aws-bastion module by @dennaloh in #93
  • Add multi-az mapping of proxy route table to NLB ENIs by @jimright in #88
  • Add terraform-aws-fw-vpc and terraform-aws-firewall modules by @jimright in #89
  • Add module for CML on AWS permissions by @jimright in #94

New Contributors

Full Changelog: v0.9.0...v0.9.1

Modules Updated

ℹ️ List of the modules updated as part of this release.

Module Comment
terraform-aws-bastion New module
terraform-aws-cml-permissions New module
terraform-aws-firewall New module
terraform-aws-nfw-vpc New module
terraform-aws-proxy
terraform-aws-cred-permissions
terraform-cdp-aws-pre-reqs

Impact of updates

  • New modules added:
    ** terraform-aws-bastion to create a bastion VM on AWS. This is not used in the aws pre-reqs module but can be called from a root module if required.
    ** terraform-aws-firewall and terraform-aws-nfw-vpc to support in deploying Cloudera Data Platform (CDP) Public Cloud in a fully private networking configuration where the CDP Environment is connected to a Networking VPC running the Firewall.
    ** terraform-aws-cml-permissions to create the required IAM permission to perform the backup and restore of a CML workbench. This is not used in the aws pre-reqs module but can be called from a root module if required.
  • The terraform-aws-cred-permissions module has been updated to optionally add a trust relationship to the AWS backup service in the cross account role. This is also required for CML backup and restore. This option is disabled by default so should have no impact in existing deployments.
  • An extra input variable (xaccount_cml_backup_assume_role has been added to the terraform-cdp-aws-pre-reqs module to allow the above AWS backup trust relationship to be enabled if required. This variable is set to false by default so should have no impact in existing deployments.
  • The terraform-aws-proxy has been updated to allow multi-az mapping of proxy route table to NLB ENI.

Contributors

dennaloh and jimright
Loading