Skip to content

Tags

Tags give the ability to mark specific points in history as being important
  • 3.0.0
    cfceb58c · test: fixes tests · 
    - feat: introduces `audit` scope through `var.iam_policy_entity_arns.audit` for auditing secrets and related KMS key
- feat: adds optional `var.testing_prefix` and `var.current_account_id`
- feat: adds `var.iam_policy_restrict_by_regions` to restrict policies by regions
- feat: adds `var.iam_policy_source_arns` to restrict policies by source ARNs
- feat: (BREAKING) deprecates the following variables and provide replacements:
- `iam_policy_create` => *no_replacement*
- `iam_policy_group_arns` => *no_replacement*
- `iam_policy_external_resources_enabled` => *no_replacement*
- `iam_policy_external_resources_arns` => `iam_policy_identity.resources_arns`
- `iam_policy_source_policy_documents` => `iam_policy_identity.source_policy_documents`
- `iam_policy_name_template` => `iam_policy_identity.name_template`
- `iam_policy_description` => `iam_policy_identity.description_template`
- `iam_policy_path` => `iam_policy_identity.path`
- `iam_policy_tags` => `iam_policy_identity.tags`
- `iam_policy_export_json` => `iam_policy_identity_export_jsons`
- `secrets.json_policy` => `iam_policy_identity_export_jsons`
- feat: (BREAKING) removes the following outputs and provided replacements:
- `iam_policies` => `aws_iam_policies`
- `iam_policy_jsons` => `aws_iam_policies.xxx.json`
- `iam_policy_actions` => `precomputed.aws_iam_policies.xxx.actions`
- `secrets` => `aws_secretsmanager_secrets`
- `kms_key` => `aws_kms_key`, `aws_kms_alias`, `replica_aws_kms_key` and `replica_aws_kms_alias`
- feat: do not automatically deprecated fetch groups members from `var.iam_policy_entity_arns` anymore
- feat: data like regions and current account ID can be passed as variables to prevent unneeded API calls
    Unverified
  • latest
    cfceb58c · test: fixes tests · 
    - feat: introduces `audit` scope through `var.iam_policy_entity_arns.audit` for auditing secrets and related KMS key
- feat: adds optional `var.testing_prefix` and `var.current_account_id`
- feat: adds `var.iam_policy_restrict_by_regions` to restrict policies by regions
- feat: adds `var.iam_policy_source_arns` to restrict policies by source ARNs
- feat: (BREAKING) deprecates the following variables and provide replacements:
- `iam_policy_create` => *no_replacement*
- `iam_policy_group_arns` => *no_replacement*
- `iam_policy_external_resources_enabled` => *no_replacement*
- `iam_policy_external_resources_arns` => `iam_policy_identity.resources_arns`
- `iam_policy_source_policy_documents` => `iam_policy_identity.source_policy_documents`
- `iam_policy_name_template` => `iam_policy_identity.name_template`
- `iam_policy_description` => `iam_policy_identity.description_template`
- `iam_policy_path` => `iam_policy_identity.path`
- `iam_policy_tags` => `iam_policy_identity.tags`
- `iam_policy_export_json` => `iam_policy_identity_export_jsons`
- `secrets.json_policy` => `iam_policy_identity_export_jsons`
- feat: (BREAKING) removes the following outputs and provided replacements:
- `iam_policies` => `aws_iam_policies`
- `iam_policy_jsons` => `aws_iam_policies.xxx.json`
- `iam_policy_actions` => `precomputed.aws_iam_policies.xxx.actions`
- `secrets` => `aws_secretsmanager_secrets`
- `kms_key` => `aws_kms_key`, `aws_kms_alias`, `replica_aws_kms_key` and `replica_aws_kms_alias`
- feat: do not automatically deprecated fetch groups members from `var.iam_policy_entity_arns` anymore
- feat: data like regions and current account ID can be passed as variables to prevent unneeded API calls
    Unverified
  • 3.0
    cfceb58c · test: fixes tests · 
    - feat: introduces `audit` scope through `var.iam_policy_entity_arns.audit` for auditing secrets and related KMS key
- feat: adds optional `var.testing_prefix` and `var.current_account_id`
- feat: adds `var.iam_policy_restrict_by_regions` to restrict policies by regions
- feat: adds `var.iam_policy_source_arns` to restrict policies by source ARNs
- feat: (BREAKING) deprecates the following variables and provide replacements:
- `iam_policy_create` => *no_replacement*
- `iam_policy_group_arns` => *no_replacement*
- `iam_policy_external_resources_enabled` => *no_replacement*
- `iam_policy_external_resources_arns` => `iam_policy_identity.resources_arns`
- `iam_policy_source_policy_documents` => `iam_policy_identity.source_policy_documents`
- `iam_policy_name_template` => `iam_policy_identity.name_template`
- `iam_policy_description` => `iam_policy_identity.description_template`
- `iam_policy_path` => `iam_policy_identity.path`
- `iam_policy_tags` => `iam_policy_identity.tags`
- `iam_policy_export_json` => `iam_policy_identity_export_jsons`
- `secrets.json_policy` => `iam_policy_identity_export_jsons`
- feat: (BREAKING) removes the following outputs and provided replacements:
- `iam_policies` => `aws_iam_policies`
- `iam_policy_jsons` => `aws_iam_policies.xxx.json`
- `iam_policy_actions` => `precomputed.aws_iam_policies.xxx.actions`
- `secrets` => `aws_secretsmanager_secrets`
- `kms_key` => `aws_kms_key`, `aws_kms_alias`, `replica_aws_kms_key` and `replica_aws_kms_alias`
- feat: do not automatically deprecated fetch groups members from `var.iam_policy_entity_arns` anymore
- feat: data like regions and current account ID can be passed as variables to prevent unneeded API calls
    Unverified
  • 3
    cfceb58c · test: fixes tests · 
    - feat: introduces `audit` scope through `var.iam_policy_entity_arns.audit` for auditing secrets and related KMS key
- feat: adds optional `var.testing_prefix` and `var.current_account_id`
- feat: adds `var.iam_policy_restrict_by_regions` to restrict policies by regions
- feat: adds `var.iam_policy_source_arns` to restrict policies by source ARNs
- feat: (BREAKING) deprecates the following variables and provide replacements:
- `iam_policy_create` => *no_replacement*
- `iam_policy_group_arns` => *no_replacement*
- `iam_policy_external_resources_enabled` => *no_replacement*
- `iam_policy_external_resources_arns` => `iam_policy_identity.resources_arns`
- `iam_policy_source_policy_documents` => `iam_policy_identity.source_policy_documents`
- `iam_policy_name_template` => `iam_policy_identity.name_template`
- `iam_policy_description` => `iam_policy_identity.description_template`
- `iam_policy_path` => `iam_policy_identity.path`
- `iam_policy_tags` => `iam_policy_identity.tags`
- `iam_policy_export_json` => `iam_policy_identity_export_jsons`
- `secrets.json_policy` => `iam_policy_identity_export_jsons`
- feat: (BREAKING) removes the following outputs and provided replacements:
- `iam_policies` => `aws_iam_policies`
- `iam_policy_jsons` => `aws_iam_policies.xxx.json`
- `iam_policy_actions` => `precomputed.aws_iam_policies.xxx.actions`
- `secrets` => `aws_secretsmanager_secrets`
- `kms_key` => `aws_kms_key`, `aws_kms_alias`, `replica_aws_kms_key` and `replica_aws_kms_alias`
- feat: do not automatically deprecated fetch groups members from `var.iam_policy_entity_arns` anymore
- feat: data like regions and current account ID can be passed as variables to prevent unneeded API calls
    Unverified
  • 2.0.3
    aab969d6 · test: fixes tests · 
    - fix: `recovery_window_in_days` could not be set to `0`
    Unverified
  • 2.0
    aab969d6 · test: fixes tests · 
    - fix: `recovery_window_in_days` could not be set to `0`
    Unverified
  • 2
    aab969d6 · test: fixes tests · 
    - fix: `recovery_window_in_days` could not be set to `0`
    Unverified
  • 2.0.2
    7d158da3 · doc: update changelog ·
  • 2.0.1
    1a0fe631 · fix: remove unused `var.attach_to_principal`, as mentioned in README, no... ·
  • 2.0.0
    03262cbb · fix: no validation for iam_policy_external_resources_arns ·
  • 1
    a3bb2465 · fix: prevent idempotency issue by making KMS policy depends on data source ·
  • 1.3
    a3bb2465 · fix: prevent idempotency issue by making KMS policy depends on data source ·
  • 1.3.1
    a3bb2465 · fix: prevent idempotency issue by making KMS policy depends on data source ·
  • 1.3.0
    8f4852ba · fix: fixes KMS policy because wildcards + dynamic values are accepted ·
  • 1.2
    b43ca955 · fix: changes after review ·
  • 1.2.0
    b43ca955 · fix: changes after review ·
  • 1.1
    f256c5ea · feat: allow to set a RAW password (VS JSON) by setting the `raw` key ·
  • 1.1.0
    f256c5ea · feat: allow to set a RAW password (VS JSON) by setting the `raw` key ·
  • 1.0
    c279f499 · fix: fixes split to handle the case the word `group` is within a group path ·
  • 1.0.0
    c279f499 · fix: fixes split to handle the case the word `group` is within a group path ·