Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Updating from upstream #1

Open
wants to merge 66 commits into
base: main
Choose a base branch
from
Open

Updating from upstream #1

wants to merge 66 commits into from

Conversation

taureanimam
Copy link

Several deprecated configs in the current version.

https://tfin.aha.io/develop/features/DEVOPS-119

nozaq and others added 30 commits November 23, 2021 08:44
@nozaq
feat: add S3 bucket key support (#236)
fb0dd55 
* feat: add S3 bucket key support

* chore: go mod tidy
@nozaq
bump up the version
141fd66
@jgeurts
feat: apply default subnet changes to existing subnets (#237)
1b0f314 
The `aws_default_subnet` resources will only be created for existing VPC default subnets. This will fix "Default subnet not found" errors when one or multiple default subnets do not exist in the VPC. 

Fixes: #198
@nozaq
fix: remove aws_default_vpc dependency (#238)
0c39831
@mzupan @nozaq
feat: optionally ignore SSO logins for MFA alarms (#234)
cf9b14c 
Co-authored-by: nozaq <[email protected]>
@nozaq
fix: use CIS recommended filter pattern (#239)
3366cac
@nozaq
refactor: use module count instead of having ennabled variable in eac…
acd1464 
…h submodule. (#195)

* refactor: use `count` to toggle vpc-baseline

* refactor: use `count` to toggle guardduty-baseline

* refactor: use `count` to toggle securityhub-baseline

* refactor: use `count` to toggle ebs-baseline

* refactor: use `count` to toggle analyzer-baseline

* refactor: use `count` to toggle config-baseline

* refactor: use `count` to toggle cloudtrail-baseline

* refactor: use `count` to toggle alarm-baseline

* refactor: add migrations
@nozaq
feat: add inputs to toggle submodules (#240)
ceabfc7
@nozaq
feat: enable finding aggregator in the main region (#241)
31eae8f
@nozaq
bump up the version
fe04519
@nozaq
style: follow the official style conventions (#242)
acf193e 
* style: follow the official style conventions

* docs: remove modules/resources from README
@nozaq
refactor: re-organize locals (#243)
1e088b4
@nozaq
style: apply consistent comment style (#244)
2b8cc0e
@nozaq
style: replace // style comment (#245)
ca731bd
@nozaq
refactor: add tflint checks (#246)
d95aad5 
* chore: add tflint in pre-commit hooks

* refactor: remove unused variables

* refactor: follow `terraform_standard_module_structure` rule

* refactor: define type for variables

* chore: add pre-commit checks to CI workflows

* chore: apply terraform-doc config to submodules
@nozaq
bump up the version
3c743e6
@nozaq
docs: sort inputs by required (#247)
2d28384
@nozaq
fix: upgrade minimum provider requirements (#248)
6742a37
@nozaq
style: update editorconfig (#249)
bab4564
@CurtisSSE
docs: the additional space ' ' after source on line 5 causes terrafor…
3933087 
…m fmt to fail

Co-authored-by: Curtis <[email protected]>

This is a formatting issue and a slight editing error. (#250)
@nozaq
feat: enforce strong password policy by default (#252)
6bc61ca 
To conform to IAM.7 in AWS Foundational Security Best Practices.
@nozaq
fix: set the minimum terraform version to 1.1.4 (#255)
4d3cbd4 
to avoid the issue in terraform 1.1.3
hashicorp/terraform#30326
@nozaq
feat: automatically accepts invite from the master (#256)
aa478e1
@nozaq
fix: no findings aggregator for member accounts (#257)
85864f5 
member accounts automatically derive the aggregator setting from the master
account.

fixes: #254
@nozaq
docs: update CHANGELOG
427c9e1
@nozaq
chore: update issue templates
eb83ce3
@jamiezieziula
feat: allow use of organization trail to be toggled via variable (#259)
0b636bb 
* trigger org cloudtrail with explicit var rather than local
* tfdocs
* changing var for backwards compatability
* check for master account

Co-authored-by: Jamie Dick <[email protected]>
@nozaq
feat: add new S3 bucket configuration resources (#261)
150a537 
BREAKING CHANGE: resources regarding S3 bucket configurations need manual import
after upgrade. See `docs/upgrade-1.0.md` for guidance.
@nozaq
fix: use count instead of var.enabled (#262)
8fda7c7
@nozaq
refactor: replace deprecated arguments (#263)
0b9bfe1
nozaq and others added 30 commits February 19, 2022 09:07
@nozaq
chore: upgrade terratest (#269)
ab6f5ac
@nozaq
fix: require AWS provider v4.2.0 (#270)
3c30413 
Updated the provider requiremenet to avoid the issue in AWS provider
v4.1.0 that the validation fails for some AWS regions.
@nozaq
docs: update CHANGELOG
4575e2c
@nozaq
docs: update badges (#271)
be4f291
@nozaq
docs: add a compatibility notice
3dc1be8
@nozaq
fix: mark var.member_accounts required (#272)
8612941
@nozaq
fix: avoid for_each key error (#273)
0122d6f
@nozaq
docs: update the release badge link (#275)
e8c7ddf
@nozaq
chore: enable release-please action (#276)
897545d
@nozaq
docs: minor style fix
9b83049
@github-actions @nozaq
chore(main): release 1.0.1 (#277)
2e439b9 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: nozaq <[email protected]>
@nozaq
chore: use https protocol (#278)
ffcbb69
@nozaq
docs: use "keep a changelog" format (#279)
83b2750
@nozaq
chore: update dependencies (#281)
7041247
@uakbr
docs: fix a typo in compliance.md (#283)
c695553
@nozaq
feat: use S3 lifecycle rule V2 (#285)
2b471bd
@nozaq
fix: upgrade the AWS provider to v4.3 (#287)
271d99e
@github-actions
chore(main): release 1.1.0 (#286)
e7d422d 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@nozaq
docs: add the missing import guidance (#289)
8f693c5 
fixes: #280
@nozaq
build: upgrade dependencies (#290)
a94ba14
@nozaq
feat: make glacier transition rules optional (#293)
f0cdf3e 
BREAKING CHANGE: this change disables glacier transition rules by default since
transitioning small objects is officially not recommended. it
can be enabled by setting `var.audit_log_lifecycle_glacier_transition_days` to
a positive number.
https://docs.aws.amazon.com/AmazonS3/latest/userguide/lifecycle-transition-general-considerations.html
@SergK @nozaq
feat: add permissions boundaries for IAM entities support (#288)
219f003 
It might be a case when iam roles can be created with
predefined boundaries. This PR introduce such capabilities
by providing permissions_boundary_arn option
Currently single permissions_boundary_arn will be applied
to all iam_roles provisioned by this module

Signed-off-by: Sergiy Kulanov <[email protected]>

Co-authored-by: nozaq <[email protected]>
@github-actions
chore(main): release 2.0.0 (#294)
d804dc6 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@nozaq
build: upgrade terratest (#295)
7c372cd
@nozaq
build: upgrade dependencies (#296)
99f0493
@K3ndu @nozaq
feat: make audit log bucket access logs bucket name customizable (#303)
07dc101 
* Make audit log bucket access logs bucket name customizable

* docs: run terraform-docs

Co-authored-by: Kendi Paet <[email protected]>
Co-authored-by: nozaq <[email protected]>
@nozaq
feat: enable CIS benchmark v1.4.0 standard (#308)
bb724cd
@github-actions
chore(main): release 2.1.0 (#304)
7c4a1e5 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@nozaq
chore: add devcontainer configuration (#312)
d4b50de
@nozaq
chore: remove stale tests (#315)
6b2d679
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
9 participants
@taureanimam @nozaq @jgeurts @mzupan @CurtisSSE @jamiezieziula @uakbr @SergK @K3ndu