v0.25.1

🚀 Enhancements

Bump dependencies to support v14 @svrakitin (#88)

Bumped versions to eliminate following errors on v0.14.x:

Error: Unsupported Terraform Core version

  on xxx, in terraform:
   2:   required_version = ">= 0.12.0, < 0.14.0"

v0.25.0

[GH Issue 85] Support Audit Logging @neuroticnetworks (#86)

what

• This PR enables AUDIT_LOGS support in the CloudPosse ES Module.

why

• There are currently four types of logs supported by Terraform Elasticsearch: INDEX_SLOW_LOGS, SEARCH_SLOW_LOGS, ES_APPLICATION_LOGS, and AUDIT_LOGS (xref log_publishing_options here) The CloudPosse module currently supports the first of these log types, but does not allow you to enable AUDIT_LOGS.

references

• closes #85
• closes #84

v0.24.1

🐛 Bug Fixes

Remove SID from ES access policy @Nuru (#76)

what

• Remove SID from ES access policy

why

• SID is accepted but not stored, causing perpetual drift in Terraform plan

v0.24.0

Allow authenticated access from anywhere @Nuru (#75)

what

1. Allow authenticated access from anywhere
2. Avoid specifying warm_count and warm_type when warm_enabled == false
3. Revert PR #66
4. Minor cleanups

why

1. PR #58 allowed unauthenticated access from whitelisted CIDRs, but in the process restricted authenticated access to those IPs as well. This PR make authenticated access not subject to the CIDR restriction.

2. PR #74 introduced support for UltraWarm clusters, but always set warm_count and warm_type, eve when warm_enabled == false. This caused Terraform to always see the state as needing updating, since the detected state when warm_enabled == false is warm_count = 0 and warm_type unset. The PR leaves them unset to avoid apparent drift.

3. The kibana_endpoint is not just a domain name, it includes a path component, the end result being something like esdomain-ntzuxwxpuxm7dmxcbpy4slbc4u.us-west-1.es.amazonaws.com/_plugin/kibana/. As such, is not suitable for a DNS record. The plain endpoint is the hostname portion and should be used for DNS. The previous code was correct but misunderstood.

4. Some working code was nevertheless not the best style, and to the extent this serves as an example, we want the code to be in our preferred style.

v0.23.0

Add support for ultraWarm and advanced security @maciejasembler (#74)

what

• Adds in-module support for ultrawarm nodes
• Adds in-module support for advanced security features (fine-grained access control)

why

• People are using it, obviously

references

• #69

v0.22.0

Adds *_hostname_enabled vars for explicit opt-in to hostnames @Gowiem (#73)

what

• Adds domain_hostname_enabled and kibana_hostname_enabled var flags to fix an issues with count when dns_zone_id is not being passed static.

why

• Implicit opt-in through checking dns_zone_id was causing folks problems as count / enabled need to be calculated during the plan which caused using -target.
• This fixes needing a targeted apply when passing dns_zone_id from a resource or module reference.

references

• Fixes + Closes #13
• Discussion in SweetOps: https://sweetops.slack.com/archives/CB6GHNLG0/p1600294860394500

0.21.0 AWS provider 3.x

what

• enable 3.x AWS provider versions to be used with this module

why

• latest version should be used, 2.x not getting updates any more

0.20.4: Update terraform-aws-route53-cluster-hostname versions to support Terraform 0.13 #68

Update terraform-aws-route53-cluster-hostname versions to support Ter…

0.20.3: Set ebs volume size for basic example #65

what

• Setting EBS volume size of 10 for basic example

why

• Terraform apply is failing on

Error: Error creating ElasticSearch domain: ValidationException: EBS storage must be selected for t2.small.elasticsearch

as this is currently being defaulted to 0 https://github.com/cloudposse/terraform-aws-elasticsearch/blob/master/variables.tf#L154

references

• https://github.com/cloudposse/terraform-aws-elasticsearch/blob/master/main.tf#L130

0.20.2

[AUTOMATED] Update terraform-null-label versions to support Terraform…