All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
23.0.0 (2024-10-28)
- TPG>=6.1: add support for IAM groups (#661)
- Change export service account permission for external backups - roles/storage.objectAdmin (#656)
- Change export service account permission for external backups - roles/storage.objectAdmin (#656) (003237e)
- lint issue in metadata.display.yaml (#659) (c414276)
22.1.0 (2024-10-01)
- Adding flag for enabling data cache in MSSQL module (#642) (c9f0014)
- enable data_cache_config block for mysql (#652) (2b26a78)
22.0.0 (2024-09-13)
- removed require_ssl and change max provider to 6.X (#643)
- Add connection metadata, output and support for ml integration for Mysql module (#637)
- Add connection metadata, output and support for ml integration for Mysql module (#637) (f2c91fa)
- removed require_ssl and change max provider to 6.X (#643) (f75763b)
21.0.2 (2024-09-04)
21.0.1 (2024-08-28)
21.0.0 (2024-07-25)
- TPG>5.38: added deletion_policy to private service access sub-module and promoted to GA provider (#620)
- Cleanup of old instance backups. Change role roles/cloudsql.editor to roles/cloudsql.admin (#618)
- Add enable_google_ml_integration setting for database instance and configurable project roles for default database service account (#615)
- Add enable_google_ml_integration setting for database instance and configurable project roles for default database service account (#615) (83bbaa3)
- Add new output called env_vars for postgresql (#612) (f02e3fd)
- enable data_cache_config for postgresql read replicas (#619) (d7280da)
- TPG>5.38: added deletion_policy to private service access sub-module and promoted to GA provider (#620) (cf5f184)
- Backup - set IAM conditions conditionally (#616) (8780714)
- Cleanup of old instance backups. Change role roles/cloudsql.editor to roles/cloudsql.admin (#618) (7310051)
20.2.0 (2024-06-06)
20.1.0 (2024-05-06)
- Add support for email based alerting (#591) (af8ec91)
- Add support to use existing notification channels for alerts (#593) (1c18d78)
- Follow least privilege principal for backup service account (#597) (0f18fd7)
- disable random_pass when default user off (#602) (98c7f8c)
- Relax assignment of backup_configuration when operating as a replica (#589) (19daff8)
20.0.0 (2024-03-08)
- TPG>=5.12: Add option to create and failover a replica instance in Postgresql and MsSQL sub-module (#582)
- TPG>=5.6: bump required google provider to 5.6 for postgres
- TPG>=5.12: Add option to create and failover a replica instance in Postgresql and MsSQL sub-module (#582) (141e54a)
- mark replicas_instance_server_ca_certs output as sensitive (#579) (faa064e)
- TPG>=5.6: bump required google provider to 5.6 for postgres (0d3b434)
19.0.0 (2024-02-08)
- Allow passing ssl_mode for MySQL Module (#575)
- Allow passing ssl_mode for MySQL Module (#575) (c7ab6ec)
- Make MySQL CloudSQL zone optional (#572) (3c4b504)
- backup: backups are not deleted when retained nr of backups >= 20 (#566) (6c4b0e3)
- Cloud SQL does not support multiple deny_maintenance_period block. Update variable description (#564) (9e55c87)
- deps: Update cft/developer-tools Docker tag to v1.19 (#571) (bd18ee6)
- Improve MySQL root_password documentation (#573) (611edfd)
18.2.0 (2024-01-03)
18.1.0 (2023-12-13)
18.0.0 (2023-12-04)
- safer_mysql module's
assign_public_ip
input should be bool type (#541)
17.1.0 (2023-11-09)
- added cloudsql serverless_export (#530) (aae3181)
- adding data_cache_config to postgresql module (#531) (f04d617)
17.0.1 (2023-11-03)
- deps: update actions/checkout action to v4 (#510) (9012164)
- deps: update cft/developer-tools docker tag to v1.15 (#508) (8c32574)
- Fix zone auto-detection when var.zones are not set (#534) (8409f72)
- upgraded versions.tf to include minor bumps from tpg v5 (#523) (5102a7b)
17.0.0 (2023-09-04)
- TPG >= 4.80: add support for psc (private service connect) (#507)
- add connector params timeout and export from replica (#406) (e563f8a)
- add support for query_plans_per_minute (#484) (ffb674c)
- MySQL binary logs on replica (#466) (0e0c196)
- TPG >= 4.80: add support for psc (private service connect) (#507) (64c2435)
- deps: update module github.com/googlecloudplatform/cloud-foundation-toolkit/infra/blueprint-test to v0.8.0 (#505) (5b111a6)
16.1.0 (2023-08-23)
16.0.0 (2023-08-09)
- added
edition
in mssql, mysql, postgresql, safer_sql anddata_cache_config
to mysql and safer_sql modules (#491)
- added
edition
in mssql, mysql, postgresql, safer_sql anddata_cache_config
to mysql and safer_sql modules (#491) (0024b24)
15.2.0 (2023-07-18)
15.1.0 (2023-06-20)
- added support for enable_private_path_for_google_cloud_services field in replica instances. (#471) (3d0c204)
- include log for each database name in export workflow (#407) (e638a24)
- port iam_users from postgresql module (#467) (5732125)
- to avoid password reset for existing additional users (#461) (1fcdcc4)
15.0.0 (2023-04-18)
- pass iam_user_emails as map to postgres module (#414)
- add deletion_protection.enabled for read replicas (#437) (4cdb81c)
- added enable_private_path_for_google_cloud_services field in ip_configuration for google_sql_database_instance resource (#449) (64618c4)
- support query insights for MySQL for read replicas (#453) (59b32af)
- pass iam_user_emails as map to postgres module (#414) (15298c2)
- prevent auto-update of random_password resource (#446) (ed83b8b)
- remove replica pwd validation config (#441) (daa3772)
14.1.0 (2023-03-15)
- increased timeout to 30m to support micro instances also. (#425) (5ed6288)
- make connector enforcement configurable (#439) (2df794b)
- random password for default user and additional users will also follow password validation policy (#443) (0ceb0ed)
14.0.1 (2023-02-10)
- make special chars opt in for generated passwords (#421) (1c9ce24)
- updates the TF version constraint to 1.3 (#419) (add16eb)
14.0.0 (2023-01-27)
- Requires Terraform >= 1.3.0
- Add pwd validation policy for mysql modules (#409)
- adds settings.deletion_protection_enabled to modules (#404)
- Aligned the behaviour of additional_users resource in all 3 Cloud SQL instance modules. (#398)
- Add
deny_maintenance_period
for MySQL, MsSQL, PostgreSQL and safer_sql (#399) - removes instanceUser iam binding from the postgresql module (#382)
- Add Password Validation Policy to Postgres Module (#376)
- Add name_override variable for MySQL, PostgreSQL and safer_sql to Override default read replica name (#393)
- Add
deny_maintenance_period
for MySQL, MsSQL, PostgreSQL and safer_sql (#399) (55f4206) - add
secondary_zone
,follow_gae_application
to safer_mysql (#390) (05cd2b6) - Add name_override variable for MySQL, PostgreSQL and safer_sql to Override default read replica name (#393) (045bed1)
- Add Password Validation Policy to Postgres Module (#376) (562455b)
- Add pwd validation policy for mysql modules (#409) (df8accd)
- add Suffix to backup configurations (#377) (0ea1968)
- adds deletion_policy parameter for google_sql_user and google_sql_database resource. (#386) (8ab6e37)
- adds settings.deletion_protection_enabled to modules (#404) (af48cd3)
- adds settings.location_preference.follow_gae_application parameter to modules. (#385) (edefa43)
- Aligned the behaviour of additional_users resource in all 3 Cloud SQL instance modules. (#398) (7d6b209)
- Added functionality to simply specify the database version number ins… (#388) (83ca2e2)
- Added sensitive field in output "primary" in mssql module (#394) (4b32479)
- fixes lint issues and generates metadata (#392) (dd1d75c)
- made 'allocated_ip_range' variable optional (#395) (243c1c5)
- removes instanceUser iam binding from the postgresql module (#382) (cc39074)
- sensitive output safer mysql (#401) (5cc5e08)
13.0.1 (2022-11-11)
13.0.0 (2022-11-07)
- deps: update terraform null to ~> 3.2.0 (#366)
- Make compression default for Backups
- Adds
secondary_zone
to db modules
- Db master and replica update solution for MYSQL (f991c22)
- Make compression default for Backups (ff37244)
- Postgresql availability type shouldn't prevent backup configuration (#352) (e796b3c), closes #351
- removed invalid parameter for PostgrSQL binary_log_enabled (#341) (b51427e)
12.1.0 (2022-10-07)
12.0.0 (2022-08-15)
- Minimum Google Beta provider version increased to v4.28.0.
- Change additional user default password (#332)
- adds availability_type for read_replicas (#329)
- add support for settings.sql_server_audit_config setting (64b8a18)
- adds availability_type for read_replicas (#329) (e26861e)
- Provide an option to compress backups for PostreSQL and MySQL (#335) (b1ef34d)
- Change additional user default password (#332) (f96f71e)
- set replicas output as sensitive pgsql (#334) (ad6f427)
11.0.0 (2022-06-02)
- Switch to random_password instead of random_id (#308)
- Add support for setting disk_autoresize_limit (#288)
- add support for settings.active_directory_config for SQL module (#305)
- Add sensitive flag for MySQL module outputs (#303) (6a15c26)
- Add support for setting disk_autoresize_limit (#288) (e07f141)
- add support for settings.active_directory_config for SQL module (#305) (449f1a2)
- Switch to random_password instead of random_id (#308) (9126ee6)
10.1.0 (2022-05-13)
- Add a description variable for google_compute_global_address resource (#299) (fe91aa5)
- Create SQL Backup and export module (#296) (c51bf29)
10.0.2 (2022-04-19)
10.0.1 (2022-03-16)
- Add missing google-beta provider to required_providers (#282) (714428c)
- Ignore changes to CMEK on read replicas (#284) (b73b465)
10.0.0 (2022-02-18)
allocated_ip_range
must now be specified for instances;allocated_ip_range = null
can be used to preserve old default.
9.0.0 (2022-01-28)
- update TPG version constraints to allow 4.0, add Terraform 0.13 constraint (#258)
8.0.0 (2021-10-13)
var.read_replicas
now requires an encryption key name. Setencryption_key_name = null
to preserve the old behavior.
- Add CMEK support for cross-region read replicas (#251) (426724a)
- MySQL - Allow setting type for additional_users (#237) (e1a6fc7)
7.1.0 (2021-09-10)
7.0.0 (2021-09-02)
- Deprecated attribute authorized_gae_applications has been removed. See upgrade docs for more details (#240)
6.0.0 (2021-07-02)
null
andrandom
providers upgraded tov3.x.x
.- When setting the backup_configuration variable, transaction_log_retention_days, retained_backups, and retention_unit must be set. Use
null
to preserve default behavior.
- Added option to enable insights for replica instances (#230) (6b928f6)
- Added support for setting transaction_log_retention_days, retained_backups, and retention_unit to backup_configuration. (#203) (2237a3d)
5.1.1 (2021-05-27)
5.1.0 (2021-05-19)
5.0.1 (2021-04-22)
5.0.0 (2021-03-25)
- add Terraform 0.13 constraint and module attribution (#202)
- Add support for configuring Query Insights on Postgres instances (#198) (2619b42)
- add Terraform 0.13 constraint and module attribution (#202) (ec0911c)
4.5.0 (2021-01-27)
- add encryption_key_name to safer_mysql module (#185) (487397c)
- Add variables for managing the creation of the default database and user (mysql) (#170) (5765a5f)
4.4.0 (2020-12-03)
- Add variable for managing the creation of the default database and user (#163) (eb300d3)
- Update versions to allow for Terraform 0.14 (#165) (b13bbee)
4.3.0 (2020-11-11)
- Add variable for managing read replica deletion protection (#155) (9e22cfd)
- Update all uses of zone to use the expected variable format. (#156) (5210126)
4.2.0 (2020-10-23)
- postgres: Added point_in_time_recovery_enabled backup option for Postgres (#142) (1fcae8a)
- Add deletion_protection variable, defaulted to true (#151) (69e1911)
4.1.0 (2020-10-06)
4.0.0 (2020-08-26)
- Replica configuration has been reworked. Please see the upgrade guide for details.
- Users and databases have been moved and require a state migration. See the upgrade guide for details.
- Add encryption_key_name variable for MS SQL module (#132) (2bd0f41)
- Add location support to backup_configuration block (#126) (aa907bd)
- add SQL Server support with new submodule (#112) (4a775fb)
- Added random_id option for instance name (#116) (7c8c799)
- Rework replicas to use
for_each
and new configuration style (5e1ae20)
- Fix issue with replica state key and random IDs (#141) (71b51fd)
- Update versions to allow for Terraform 0.13 (#135) (86c533a)
- docs: Update links for database flags on postgresql and mysql (#134) (e6a31ca)
- Relax Provider version (#133) (ec2a109)
- Updated users and databases creation to use for_each (#100) (d433995)
3.2.0 (2020-04-24)
- Added "encryption_key_name" variable for postgresql and mysql modules. (#101) (cf87a9d)
- Support new regional HA for MySQL (#99) (d3ed591)
3.1.0 (2020-02-11)
3.0.0 - 2019-12-17
- Removed variable
peering_completed
. #78
- The
public_ip_address
,private_ip_address
, andinstance_address
outputs to themysql
submodule, thepostgresql
submodule, and thesafer_mysql
submodule. #76 - Added variable
module_depends_on
. #78
- Renamed output
instance_address
toinstance_ip_address
inmysql
,postgresql
andsafer_mysql
submodules. #83
2.0.0 - 2019-09-26
2.0.0 is a backward incompatible release. Review the upgrade guide for more information.
- The network reference in the
private_service_access
module uses the self link. #61