From 999a896fe8c9a2af81173078af9d7c6f946a266f Mon Sep 17 00:00:00 2001 From: abikouo Date: Fri, 17 Nov 2023 16:48:27 +0100 Subject: [PATCH 01/10] update changelog fragments --- CHANGELOG.rst | 62 ++++++++ changelogs/changelog.yaml | 132 ++++++++++++++++++ .../20230804-backup-role-bugfixes.yaml | 2 +- .../20230817-update_for_controller.yml | 2 +- .../fragments/20230821-upload_file_to_s3.yaml | 2 +- .../fragments/20230822-docs_and_bugfixes.yml | 14 +- .../fragments/add_deploy_flask_app_role.yaml | 34 ++--- changelogs/fragments/ansible_lint_updates.yml | 2 +- .../aws_setup_credentials_add_no_log.yml | 2 +- 9 files changed, 221 insertions(+), 31 deletions(-) diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 4de6cb38..be6d1d3c 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,6 +5,68 @@ CHANGE THIS IN changelogs/config.yaml! Release Notes .. contents:: Topics +v2.0.0 +====== + +Minor Changes +------------- + +- Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97). +- playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + +Breaking Changes / Porting Guide +-------------------------------- + +- Remove support for ansible-core < 2.14 +- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- roles/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). +- roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + +Bugfixes +-------- + +- fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). +- playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). +- playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - update playbook create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). +- roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). +- roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + v1.0.3 ====== diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index 400dba77..cf6b9724 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -23,3 +23,135 @@ releases: fragments: - summary.yml release_date: '2023-03-17' + 2.0.0: + changes: + breaking_changes: + - Remove support for ansible-core < 2.14 + - playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` + with `delete_source` to make intent clearer and fix reversed default value + logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - Rename the playbook vars with role name prefix. + 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' + changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed + to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' + changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' + changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to + 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' + 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' + changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed + to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed + to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to + 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' + 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed + to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - roles/aws_setup_credentials - Due to ansible-lint issue, the AWS generated + credentials are now stored into variable `aws_setup_credentials__output` instead + of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). + - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed + to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed + to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``backup_role_name`` option has been renamed + to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_conditions`` option has been renamed + to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_name`` option has been renamed + to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_tags`` option has been renamed + to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_operation`` option has been renamed to + ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_packages`` option has been renamed to + ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed + to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_image_id`` option has been renamed to + ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_user_name`` option has been renamed to + ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` + option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed + to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed + to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed + to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + bugfixes: + - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). + - playbooks/webapp/webapp - Update playbooks that include credentials to be + able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). + - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update playbook create task to use provided variables + instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected + Cloudtrail events and add extra_vars to pass rulebook variables to playbooks + called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't + error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS + key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). + - roles/backup_select_resources - Add all necessary IAM service role policies + for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). + - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for + retrieved trail info and provide `s3_key_prefix` default so it doesn't error + if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + minor_changes: + - Add a playbook to deploy a simple flask web app into high availability architecture + (https://github.com/redhat-cop/cloud.aws_ops/pull/97). + - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem + into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + fragments: + - 20230426-update_readme_and_runtime.yml + - 20230804-backup-role-bugfixes.yaml + - 20230817-update_for_controller.yml + - 20230821-upload_file_to_s3.yaml + - 20230822-docs_and_bugfixes.yml + - 20230823-update-ci-sanity-test-matrix.yaml + - add_deploy_flask_app_role.yaml + - ansible_lint_6_19.yml + - ansible_lint_updates.yml + - automation_hub_update_readme.yaml + - aws_setup_credentials_add_no_log.yml + - customized_ami_doc_update.yaml + - fix_manage_vpc_peering_integration_test.yml + - fix_sanity_issues.yaml + - transit_gateway_doc_update.yaml + - update_ansible_lint_action.yml + - webapp_in_HA.yaml + release_date: '2023-11-17' diff --git a/changelogs/fragments/20230804-backup-role-bugfixes.yaml b/changelogs/fragments/20230804-backup-role-bugfixes.yaml index 01df22cf..bdda16a3 100644 --- a/changelogs/fragments/20230804-backup-role-bugfixes.yaml +++ b/changelogs/fragments/20230804-backup-role-bugfixes.yaml @@ -2,4 +2,4 @@ trivial: - Update README in backup_create_plan role and backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). bugfixes: - - Add all necessary IAM service role policies for backup when creating a new IAM role in backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). + roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). diff --git a/changelogs/fragments/20230817-update_for_controller.yml b/changelogs/fragments/20230817-update_for_controller.yml index af62e9ef..5b2a4519 100644 --- a/changelogs/fragments/20230817-update_for_controller.yml +++ b/changelogs/fragments/20230817-update_for_controller.yml @@ -1,4 +1,4 @@ trivial: - "Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line)" bugfixes: - - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line). https://github.com/redhat-cop/cloud.aws_ops/pull/64 + - playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). diff --git a/changelogs/fragments/20230821-upload_file_to_s3.yaml b/changelogs/fragments/20230821-upload_file_to_s3.yaml index c4a03c77..e64b33c9 100644 --- a/changelogs/fragments/20230821-upload_file_to_s3.yaml +++ b/changelogs/fragments/20230821-upload_file_to_s3.yaml @@ -1,3 +1,3 @@ --- minor_changes: - - cloud.aws_ops.upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). diff --git a/changelogs/fragments/20230822-docs_and_bugfixes.yml b/changelogs/fragments/20230822-docs_and_bugfixes.yml index 445630a9..f012a3d6 100644 --- a/changelogs/fragments/20230822-docs_and_bugfixes.yml +++ b/changelogs/fragments/20230822-docs_and_bugfixes.yml @@ -1,14 +1,14 @@ --- breaking_changes: - - cloud.aws_ops.migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). bugfixes: - - cloud.aws_ops.aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - cloud.aws_ops.aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - cloud.aws_ops.webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - cloud.aws_ops.webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - cloud.aws_ops.enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - cloud.aws_ops.aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). trivial: - Move EDA rulebook to recommended extensions/eda/rulebooks folder (https://github.com/redhat-cop/cloud.aws_ops/pull/86). diff --git a/changelogs/fragments/add_deploy_flask_app_role.yaml b/changelogs/fragments/add_deploy_flask_app_role.yaml index 370ce0f0..04bb729c 100644 --- a/changelogs/fragments/add_deploy_flask_app_role.yaml +++ b/changelogs/fragments/add_deploy_flask_app_role.yaml @@ -1,21 +1,17 @@ --- breaking_changes: -- "Rename the vars in webapp playbook with role name prefix (https://github.com/redhat-cop/cloud.aws_ops/pull/85). - 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' - 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' - 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' - 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' - 'app_listening_port' changed to 'deploy_flask_app_listening_port' - 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' - 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' - 'app_git_repository' changed to 'deploy_flask_app_git_repository' - 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' - 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' - 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' - 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' - 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' - 'app_config' changed to 'deploy_flask_app_config' - 'app_force_init' changed to 'deploy_flask_app_force_init' - " -minor_changes: -- "Convert deploy_flask_app playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85)." +- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. + 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' + changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed + to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' + changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' + changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to + 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' + 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' + changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed + to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed + to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to + 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' + 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed + to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). diff --git a/changelogs/fragments/ansible_lint_updates.yml b/changelogs/fragments/ansible_lint_updates.yml index 83547273..7ebd971e 100644 --- a/changelogs/fragments/ansible_lint_updates.yml +++ b/changelogs/fragments/ansible_lint_updates.yml @@ -2,4 +2,4 @@ trivial: - "Add integration test workflow to GHA and add new integration tests targets (https://github.com/redhat-cop/cloud.aws_ops/pull/39)." breaking_changes: - - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39)." + - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). diff --git a/changelogs/fragments/aws_setup_credentials_add_no_log.yml b/changelogs/fragments/aws_setup_credentials_add_no_log.yml index 30ff5f72..df7c26cb 100644 --- a/changelogs/fragments/aws_setup_credentials_add_no_log.yml +++ b/changelogs/fragments/aws_setup_credentials_add_no_log.yml @@ -1,3 +1,3 @@ --- bugfixes: - - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). + - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). From a660f79764a58c650ffae36ef92dc2bbc3247017 Mon Sep 17 00:00:00 2001 From: abikouo Date: Fri, 17 Nov 2023 17:58:24 +0100 Subject: [PATCH 02/10] adding argument specs for new roles --- .../meta/argument_specs.yml | 38 +++++++++ .../meta/argument_specs.yml | 34 ++++++++ .../meta/argument_specs.yml | 37 +++++++++ .../clone_on_prem_vm/meta/argument_specs.yml | 30 ++++++++ .../meta/argument_specs.yml | 77 +++++++++++++++++++ ...argument_specs.yaml => argument_specs.yml} | 1 + .../meta/argument_specs.yml | 74 ++++++++++++++++++ ...argument_specs.yaml => argument_specs.yml} | 1 + .../meta/argument_specs.yml | 41 ++++++++++ .../meta/argument_specs.yml | 29 +++++++ 10 files changed, 362 insertions(+) create mode 100644 roles/awsconfig_apigateway_with_lambda_integration/meta/argument_specs.yml create mode 100644 roles/backup_create_plan/meta/argument_specs.yml create mode 100644 roles/backup_select_resources/meta/argument_specs.yml create mode 100644 roles/clone_on_prem_vm/meta/argument_specs.yml create mode 100644 roles/create_rds_global_cluster/meta/argument_specs.yml rename roles/deploy_flask_app/meta/{argument_specs.yaml => argument_specs.yml} (99%) create mode 100644 roles/import_image_and_run_aws_instance/meta/argument_specs.yml rename roles/manage_transit_gateway/meta/{argument_specs.yaml => argument_specs.yml} (98%) create mode 100644 roles/manage_vpc_peering/meta/argument_specs.yml create mode 100644 roles/move_objects_between_buckets/meta/argument_specs.yml diff --git a/roles/awsconfig_apigateway_with_lambda_integration/meta/argument_specs.yml b/roles/awsconfig_apigateway_with_lambda_integration/meta/argument_specs.yml new file mode 100644 index 00000000..5ffa4bad --- /dev/null +++ b/roles/awsconfig_apigateway_with_lambda_integration/meta/argument_specs.yml @@ -0,0 +1,38 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to create/delete an API gateway with lambda function integration. + description: + - A role to create/delete an API gateway with lambda function integration. + options: + awsconfig_apigateway_with_lambda_integration_operation: + description: + - Whether to create or delete the API gateway. + choices: + - create + - delete + default: create + awsconfig_apigateway_with_lambda_integration_api_name: + description: + - The name of the API gateway to create/delete. + required: true + awsconfig_apigateway_with_lambda_integration_id: + description: + - The API gateway Identifier to update/delete + awsconfig_apigateway_with_lambda_integration_tags: + description: + - collection of tags associated to the API gateway, this is used to ensure unique API gateway is created/deleted while running multiple times. + awsconfig_apigateway_with_lambda_integration_lambda_runtime: + description: + - The lambda function runtime. + awsconfig_apigateway_with_lambda_integration_lambda_function_file: + description: + - The path to a valid file containing the code of the lambda function. + awsconfig_apigateway_with_lambda_integration_lambda_handler: + description: + - The lambda function handler. + awsconfig_apigateway_with_lambda_integration_stage_name: + description: + - The name for the Stage resource. + - Stage names can only contain alphanumeric characters, hyphens, and underscores. Maximum length is 128 characters. diff --git a/roles/backup_create_plan/meta/argument_specs.yml b/roles/backup_create_plan/meta/argument_specs.yml new file mode 100644 index 00000000..c1e71cbd --- /dev/null +++ b/roles/backup_create_plan/meta/argument_specs.yml @@ -0,0 +1,34 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to create a backup plan and optionally a vault. + description: + - A role to create a backup plan and optionally a vault. + - A set of variables for plan rules is included for use as-is or as examples for modification. + - This role can be combined with the `cloud.aws_ops.backup_select_resources` role to back up a selection of resources. + options: + backup_create_plan_plan_name: + description: + - The name of the backup plan you want to create + required: true + backup_create_plan_plan_rules: + description: + - A set of rules for the backup, as a list of dicts. + required: true + backup_create_plan_plan_windows_vss_settings: + description: + - Settings for Windows VSS backup, see [AdvancedBackupSetting object in the AWS Backup API documentation](https://docs.aws.amazon.com/aws-backup/latest/devguide/API_AdvancedBackupSetting.html) for details + backup_create_plan_plan_tags: + description: + - tags to apply to all backups created with the plan + backup_create_plan_vault_name: + description: + - The name of the vault you want to use or create. + - If not provided, the role will use (and create if needed) the AWS default vault for the account, named Default. + backup_create_plan_vault_encryption_key_arn: + description: + - ARN of key to use for vault encryption + backup_create_plan_vault_tags: + description: + - tags to apply to the vault diff --git a/roles/backup_select_resources/meta/argument_specs.yml b/roles/backup_select_resources/meta/argument_specs.yml new file mode 100644 index 00000000..9f54a96c --- /dev/null +++ b/roles/backup_select_resources/meta/argument_specs.yml @@ -0,0 +1,37 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to configure backups for selected resources. + description: + - The role requires an existing backup vault and plan, and adds selected resources to the provided plan. + - A set of variables for resource selections is included for use as-is or as examples for modification. + options: + backup_select_resources_plan_name: + description: + - The name of the backup plan you want to use for the selected resources. + required: true + backup_select_resources_selection_name: + description: + - The display name of the resource selection you want to back up. + required: true + backup_select_resources_selection_resources: + description: + - List of resources selected for backup. + - Can use wild cards and/or combine with selection options below to precisely restrict resources based on various conditions. + required: true + backup_select_resources_selection_excluded_resources: + description: + - List of resources to exclude from backup + backup_select_resources_selection_tags: + description: + - List of resource tags selected for backup + backup_select_resources_selection_conditions: + description: + - Conditions for resources to back up + backup_select_resources_backup_role_name: + description: + - The name of an IAM role with permissions to perform all needed backup actions for the selected resources. + - "Alternatively, provide a name for a new IAM role which will be created with the same permissions as + the AWSBackupDefaultServiceRole (note: these permissions allow backups and restores for all resources)." + required: true diff --git a/roles/clone_on_prem_vm/meta/argument_specs.yml b/roles/clone_on_prem_vm/meta/argument_specs.yml new file mode 100644 index 00000000..c6d972da --- /dev/null +++ b/roles/clone_on_prem_vm/meta/argument_specs.yml @@ -0,0 +1,30 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to clone an existing on prem VM using the KVM hypervisor. + description: + - A role to clone an existing on prem VM using the KVM hypervisor. + options: + clone_on_prem_vm_source_vm_name: + description: + - The name of the on-prem VM you want to clone. + required: true + clone_on_prem_vm_image_name: + description: + - The name you want to call the cloned image. + - If not set, the I(clone_on_prem_vm_source_vm_name) will be used with a ``-clone`` suffix. + clone_on_prem_vm_overwrite: + description: + - Whether to overwrite or not an already existing on prem VM clone. + type: bool + default: true + clone_on_prem_vm_local_image_path: + description: + - The path where you would like to save the image. + - If the path does not exists on localhost, the role will create it. + - If this parameter is not set, the role will save the image in a _~/tmp_ folder. + clone_on_prem_vm_uri: + description: + - Libvirt connection uri. + default: "qemu:///system" diff --git a/roles/create_rds_global_cluster/meta/argument_specs.yml b/roles/create_rds_global_cluster/meta/argument_specs.yml new file mode 100644 index 00000000..15046a2f --- /dev/null +++ b/roles/create_rds_global_cluster/meta/argument_specs.yml @@ -0,0 +1,77 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to create an Amazon Aurora global cluster with two different region rds clusters. + description: + - A role to create an Amazon Aurora global cluster with two different region rds clusters. + options: + create_rds_global_cluster_global_cluster_name: + description: + - Name of the Amazon Aurora global cluster. + required: true + create_rds_global_cluster_engine: + description: + - Engine of the Amazon Aurora global and rds clusters. + default: "aurora-postgresql" + create_rds_global_cluster_engine_version: + description: + - Engine version of the Amazon Aurora global and rds clusters. + create_rds_global_cluster_instance_class: + description: + - Instance class of instance in primary and replica cluster. + required: true + create_rds_global_cluster_master_username: + description: + - Username of the rds clusters master user. + required: true + create_rds_global_cluster_master_user_password: + description: + - Password of the rds clusters master user. + required: true + create_rds_global_cluster_primary_cluster_name: + description: + - Name of the primary cluster. + - Default to I(create_rds_global_cluster_global_cluster_name). + create_rds_global_cluster_primary_cluster_region: + description: + - Region of the primary cluster. + required: true + create_rds_global_cluster_primary_cluster_instance_name: + description: + - Name of the instance in primary cluster. + required: true + create_rds_global_cluster_primary_cluster_db_name: + description: + - The name for your database of up to 64 alphanumeric characters. + - If not provided, database is not created in the cluster. + create_rds_global_cluster_primary_cluster_vpc_security_group_ids: + description: + - A list of EC2 VPC security groups to associate with the primary DB cluster. + create_rds_global_cluster_db_subnet_group_name: + description: + - A DB subnet group to associate with this DB cluster if not using the default. + create_rds_global_cluster_replica_cluster_name: + description: + - Name of the replica (secondary) cluster. + - Default to I(create_rds_global_cluster_global_cluster_name). + create_rds_global_cluster_replica_cluster_region: + description: + - Region of the replica (secondary) cluster. + required: true + create_rds_global_cluster_replica_cluster_instance_name: + description: + - Name of the instance in secondary cluster. **required** + create_rds_global_cluster_replica_enable_global_write_forwarding: + description: + - Whether to enable replica cluster to forward write operations to the primary cluster of an Amazon Aurora global database. + default: false + create_rds_global_cluster_replica_cluster_vpc_security_group_ids: + description: + - A list of EC2 VPC security groups to associate with the replica DB cluster. + create_rds_global_cluster_operation: + description: + - operation to perform. + choices: + - create + - delete diff --git a/roles/deploy_flask_app/meta/argument_specs.yaml b/roles/deploy_flask_app/meta/argument_specs.yml similarity index 99% rename from roles/deploy_flask_app/meta/argument_specs.yaml rename to roles/deploy_flask_app/meta/argument_specs.yml index defd2df8..6c63ba4f 100644 --- a/roles/deploy_flask_app/meta/argument_specs.yaml +++ b/roles/deploy_flask_app/meta/argument_specs.yml @@ -1,6 +1,7 @@ --- argument_specs: main: + version_added: 2.0.0 short_description: Deploy flask app in AWS. options: deploy_flask_app_region: diff --git a/roles/import_image_and_run_aws_instance/meta/argument_specs.yml b/roles/import_image_and_run_aws_instance/meta/argument_specs.yml new file mode 100644 index 00000000..898d1ad8 --- /dev/null +++ b/roles/import_image_and_run_aws_instance/meta/argument_specs.yml @@ -0,0 +1,74 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role that imports a local .raw image into an Amazon Machine Image (AMI) and run an AWS EC2 instance. + description: + - A role that imports a local .raw image into an Amazon Machine Image (AMI) and run an AWS EC2 instance. + options: + import_image_and_run_aws_instance_import_image_task_name: + description: + - The name you want to assign to the AWS EC2 import image task. + required: true + type: str + import_image_and_run_aws_instance_bucket_name: + description: + - The name of the S3 bucket name where you want to upload the .raw image. + required: true + type: str + import_image_and_run_aws_instance_image_path: + description: + - The path where the .raw image is stored. + default: "" + import_image_and_run_aws_instance_instance_name: + description: + - The name of the EC2 instance you want to create using the imported AMI. + required: true + import_image_and_run_aws_instance_instance_type: + description: + - The EC2 instance type you want to use. + default: "t2.micro" + import_image_and_run_aws_instances_keypair_name: + description: + - The name of the SSH access key to assign to the EC2 instance. It must exist in the region the instance is created. + - If not set, your default AWS account keypair will be used. + import_image_and_run_aws_instance_security_groups: + description: + - A list of security group IDs or names to associate to the EC2 instance. + type: list + elements: str + import_image_and_run_aws_instance_vpc_subnet_id: + description: + - The subnet ID in which to launch the EC2 instance (VPC). + - If none is provided, M(amazon.aws.ec2_instance) will choose the default zone of the default VPC. + import_image_and_run_aws_instance_volumes: + description: + - A dictionary of a block device mappings, by default this will always use the AMI root device so the **instance_volumes** option is primarily for adding more storage. + type: dict + options: + device_name: + description: + - The device name (for example, /dev/sdh or xvdh). + ebs: + description: + - Parameters used to automatically set up EBS volumes when the instance is launched. + type: dict + options: + volume_type: + description: + - The volume type. + - "Valid Values: standard, io1, io2, gp2, sc1, st1, gp3." + volume_size: + description: + - The size of the volume, in GiBs. + type: int + kms_key_id: + description: + - Identifier (key ID, key alias, ID ARN, or alias ARN) for a customer managed CMK under which the EBS volume is encrypted. + iops: + description: + - The number of I/O operations per second (IOPS). For gp3, io1, and io2 volumes, this represents the number of IOPS that are provisioned for the volume. For gp2 volumes, this represents the baseline performance of the volume and the rate at which the volume accumulates I/O credits for bursting. + delete_on_termination: + description: + - Indicates whether the EBS volume is deleted on instance termination. + type: bool diff --git a/roles/manage_transit_gateway/meta/argument_specs.yaml b/roles/manage_transit_gateway/meta/argument_specs.yml similarity index 98% rename from roles/manage_transit_gateway/meta/argument_specs.yaml rename to roles/manage_transit_gateway/meta/argument_specs.yml index d6cb7aba..c95347f4 100644 --- a/roles/manage_transit_gateway/meta/argument_specs.yaml +++ b/roles/manage_transit_gateway/meta/argument_specs.yml @@ -1,6 +1,7 @@ --- argument_specs: main: + version_added: 2.0.0 short_description: Creation/Deletion of transit gateway with vpc/vpn attachment options: manage_transit_gateway_action: diff --git a/roles/manage_vpc_peering/meta/argument_specs.yml b/roles/manage_vpc_peering/meta/argument_specs.yml new file mode 100644 index 00000000..ff6f5718 --- /dev/null +++ b/roles/manage_vpc_peering/meta/argument_specs.yml @@ -0,0 +1,41 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to create, delete and accept existing VPC peering connections. + description: + - A role to create, delete and accept existing VPC peering connections. + options: + manage_vpc_peering_region: + description: + - Region of the requester VPC. + required: true + type: str + manage_vpc_peering_requeter_vpc: + description: + - ID of the VPC requesting the peering connection. + required: true + type: str + manage_vpc_peering_accepter_vpc: + description: + - ID of the VPC accepting the peering connection. + default: "" + manage_vpc_peering_accepter_vpc_region: + description: + - Region of the accepter VPC (Required if requester and accepter VPCs are in different regions or performing cross-account peering.) + manage_vpc_peering_accepter_vpc_account_id: + description: + - The AWS account ID of accepter VPC account for cross-account peering. + manage_vpc_peering_accepter_account_profile: + description: + - A Named AWS profile of accepter VPC account for cross-account peering. + manage_vpc_peering_operation: + description: + - operation to perform. + choices: + - create + - delete + - accept + manage_vpc_peering_vpc_peering_conn_id: + description: + - ID of the VPC peering connection request (only provide to delete a VPC peering connection). diff --git a/roles/move_objects_between_buckets/meta/argument_specs.yml b/roles/move_objects_between_buckets/meta/argument_specs.yml new file mode 100644 index 00000000..e0572d23 --- /dev/null +++ b/roles/move_objects_between_buckets/meta/argument_specs.yml @@ -0,0 +1,29 @@ +--- +argument_specs: + main: + version_added: 2.0.0 + short_description: A role to move objects from one S3 Bucket to another. + description: + - A role to move objects from one S3 Bucket to another. + - "Objects have two options: all objects can be transferred or specific objects are transferred through key prefix. " + - "If the source bucket is empty, the user has two options: source bucket is deleted or source bucket is kept as an empty bucket." + options: + move_objects_between_buckets_source_bucket: + description: + - The name of the Amazon S3 bucket that will have its objects retrieved and then emptied. + required: true + type: str + move_objects_between_buckets_dest_bucket: + description: + - The name of the Amazon S3 bucket that will receive the objects. + required: true + type: str + move_objects_between_buckets_key_prefix: + description: + - limits objects that begin with the specified prefix. + default: "" + move_objects_between_buckets_delete_empty_source_bucket: + description: + - deletes source bucket after all objects have been transferred to destination bucket. + type: bool + default: false From ee3d7bebbaf7c2aebc868c964b65eff7c8eebfe3 Mon Sep 17 00:00:00 2001 From: abikouo Date: Fri, 17 Nov 2023 17:59:04 +0100 Subject: [PATCH 03/10] fix changelog --- changelogs/fragments/20230804-backup-role-bugfixes.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/changelogs/fragments/20230804-backup-role-bugfixes.yaml b/changelogs/fragments/20230804-backup-role-bugfixes.yaml index bdda16a3..84a3c416 100644 --- a/changelogs/fragments/20230804-backup-role-bugfixes.yaml +++ b/changelogs/fragments/20230804-backup-role-bugfixes.yaml @@ -2,4 +2,4 @@ trivial: - Update README in backup_create_plan role and backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). bugfixes: - roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). + - roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). From 075a93aad9ea413e6128889874fa9a8c53f87a50 Mon Sep 17 00:00:00 2001 From: abikouo Date: Fri, 17 Nov 2023 18:15:49 +0100 Subject: [PATCH 04/10] add release summary changelog --- CHANGELOG.rst | 62 ---------------- changelogs/changelog.yaml | 132 --------------------------------- changelogs/fragments/2.0.0.yml | 2 + 3 files changed, 2 insertions(+), 194 deletions(-) create mode 100644 changelogs/fragments/2.0.0.yml diff --git a/CHANGELOG.rst b/CHANGELOG.rst index be6d1d3c..4de6cb38 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,68 +5,6 @@ CHANGE THIS IN changelogs/config.yaml! Release Notes .. contents:: Topics -v2.0.0 -====== - -Minor Changes -------------- - -- Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97). -- playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). - -Breaking Changes / Porting Guide --------------------------------- - -- Remove support for ansible-core < 2.14 -- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- roles/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). -- roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - -Bugfixes --------- - -- fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). -- playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). -- playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- playbooks/webapp/webapp - update playbook create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). -- roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). -- roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - v1.0.3 ====== diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index cf6b9724..400dba77 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -23,135 +23,3 @@ releases: fragments: - summary.yml release_date: '2023-03-17' - 2.0.0: - changes: - breaking_changes: - - Remove support for ansible-core < 2.14 - - playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). - - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` - with `delete_source` to make intent clearer and fix reversed default value - logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - Rename the playbook vars with role name prefix. - 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' - changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed - to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' - changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' - changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to - 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' - 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' - changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed - to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed - to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to - 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' - 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed - to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). - - roles/aws_setup_credentials - Due to ansible-lint issue, the AWS generated - credentials are now stored into variable `aws_setup_credentials__output` instead - of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). - - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed - to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed - to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``backup_role_name`` option has been renamed - to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_conditions`` option has been renamed - to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_name`` option has been renamed - to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_tags`` option has been renamed - to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_operation`` option has been renamed to - ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_packages`` option has been renamed to - ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed - to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_image_id`` option has been renamed to - ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_user_name`` option has been renamed to - ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option - has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` - option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option - has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed - to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed - to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed - to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - bugfixes: - - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). - - playbooks/webapp/webapp - Update playbooks that include credentials to be - able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). - - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update playbook create task to use provided variables - instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected - Cloudtrail events and add extra_vars to pass rulebook variables to playbooks - called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't - error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS - key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). - - roles/backup_select_resources - Add all necessary IAM service role policies - for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). - - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for - retrieved trail info and provide `s3_key_prefix` default so it doesn't error - if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - minor_changes: - - Add a playbook to deploy a simple flask web app into high availability architecture - (https://github.com/redhat-cop/cloud.aws_ops/pull/97). - - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem - into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). - fragments: - - 20230426-update_readme_and_runtime.yml - - 20230804-backup-role-bugfixes.yaml - - 20230817-update_for_controller.yml - - 20230821-upload_file_to_s3.yaml - - 20230822-docs_and_bugfixes.yml - - 20230823-update-ci-sanity-test-matrix.yaml - - add_deploy_flask_app_role.yaml - - ansible_lint_6_19.yml - - ansible_lint_updates.yml - - automation_hub_update_readme.yaml - - aws_setup_credentials_add_no_log.yml - - customized_ami_doc_update.yaml - - fix_manage_vpc_peering_integration_test.yml - - fix_sanity_issues.yaml - - transit_gateway_doc_update.yaml - - update_ansible_lint_action.yml - - webapp_in_HA.yaml - release_date: '2023-11-17' diff --git a/changelogs/fragments/2.0.0.yml b/changelogs/fragments/2.0.0.yml new file mode 100644 index 00000000..06a759e0 --- /dev/null +++ b/changelogs/fragments/2.0.0.yml @@ -0,0 +1,2 @@ +--- +release_summary: "This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features." From bb693996a5d8556463c31d5652906eb6128776cf Mon Sep 17 00:00:00 2001 From: abikouo Date: Fri, 17 Nov 2023 18:37:29 +0100 Subject: [PATCH 05/10] generate release changelog with new roles containing meta/argument_specs.yaml --- CHANGELOG.rst | 69 +++++++++ changelogs/changelog.yaml | 141 ++++++++++++++++++ changelogs/fragments/2.0.0.yml | 2 - .../20230426-update_readme_and_runtime.yml | 2 - .../20230804-backup-role-bugfixes.yaml | 5 - .../20230817-update_for_controller.yml | 4 - .../fragments/20230821-upload_file_to_s3.yaml | 3 - .../fragments/20230822-docs_and_bugfixes.yml | 17 --- ...20230823-update-ci-sanity-test-matrix.yaml | 3 - .../fragments/add_deploy_flask_app_role.yaml | 17 --- changelogs/fragments/ansible_lint_6_19.yml | 32 ---- changelogs/fragments/ansible_lint_updates.yml | 5 - .../automation_hub_update_readme.yaml | 3 - .../aws_setup_credentials_add_no_log.yml | 3 - changelogs/fragments/awsconfig_apigateway.yml | 3 - .../create_rds_global_cluster_role.yml | 3 - .../fragments/customized_ami_doc_update.yaml | 3 - ...ix_manage_vpc_peering_integration_test.yml | 3 - changelogs/fragments/fix_sanity_issues.yaml | 3 - .../fragments/transit_gateway_doc_update.yaml | 3 - .../fragments/update_ansible_lint_action.yml | 2 - changelogs/fragments/webapp_in_HA.yaml | 3 - 22 files changed, 210 insertions(+), 119 deletions(-) delete mode 100644 changelogs/fragments/2.0.0.yml delete mode 100644 changelogs/fragments/20230426-update_readme_and_runtime.yml delete mode 100644 changelogs/fragments/20230804-backup-role-bugfixes.yaml delete mode 100644 changelogs/fragments/20230817-update_for_controller.yml delete mode 100644 changelogs/fragments/20230821-upload_file_to_s3.yaml delete mode 100644 changelogs/fragments/20230822-docs_and_bugfixes.yml delete mode 100644 changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml delete mode 100644 changelogs/fragments/add_deploy_flask_app_role.yaml delete mode 100644 changelogs/fragments/ansible_lint_6_19.yml delete mode 100644 changelogs/fragments/ansible_lint_updates.yml delete mode 100644 changelogs/fragments/automation_hub_update_readme.yaml delete mode 100644 changelogs/fragments/aws_setup_credentials_add_no_log.yml delete mode 100644 changelogs/fragments/awsconfig_apigateway.yml delete mode 100644 changelogs/fragments/create_rds_global_cluster_role.yml delete mode 100644 changelogs/fragments/customized_ami_doc_update.yaml delete mode 100644 changelogs/fragments/fix_manage_vpc_peering_integration_test.yml delete mode 100644 changelogs/fragments/fix_sanity_issues.yaml delete mode 100644 changelogs/fragments/transit_gateway_doc_update.yaml delete mode 100644 changelogs/fragments/update_ansible_lint_action.yml delete mode 100644 changelogs/fragments/webapp_in_HA.yaml diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 4de6cb38..92599d7f 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,6 +5,75 @@ CHANGE THIS IN changelogs/config.yaml! Release Notes .. contents:: Topics +v2.0.0 +====== + +Release Summary +--------------- + +This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features. + +Minor Changes +------------- + +- Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97). +- awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration +- create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. +- playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + +Breaking Changes / Porting Guide +-------------------------------- + +- Remove support for ansible-core < 2.14 +- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). +- roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + +Bugfixes +-------- + +- fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). +- playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). +- playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). +- roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). +- roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + v1.0.3 ====== diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index 400dba77..6c71a9d5 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -23,3 +23,144 @@ releases: fragments: - summary.yml release_date: '2023-03-17' + 2.0.0: + changes: + breaking_changes: + - Remove support for ansible-core < 2.14 + - playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` + with `delete_source` to make intent clearer and fix reversed default value + logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - Rename the playbook vars with role name prefix. + 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' + changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed + to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' + changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' + changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to + 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' + 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' + changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed + to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed + to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to + 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' + 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed + to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated + credentials are now stored into variable `aws_setup_credentials__output` instead + of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). + - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed + to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed + to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``backup_role_name`` option has been renamed + to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_conditions`` option has been renamed + to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_name`` option has been renamed + to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_tags`` option has been renamed + to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_operation`` option has been renamed to + ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_packages`` option has been renamed to + ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed + to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_image_id`` option has been renamed to + ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_user_name`` option has been renamed to + ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` + option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed + to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed + to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed + to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + bugfixes: + - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). + - playbooks/webapp/webapp - Update playbooks that include credentials to be + able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). + - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update webapp create task to use provided variables + instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected + Cloudtrail events and add extra_vars to pass rulebook variables to playbooks + called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't + error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS + key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). + - roles/backup_select_resources - Add all necessary IAM service role policies + for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). + - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for + retrieved trail info and provide `s3_key_prefix` default so it doesn't error + if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + minor_changes: + - Add a playbook to deploy a simple flask web app into high availability architecture + (https://github.com/redhat-cop/cloud.aws_ops/pull/97). + - awsconfig_apigateway_with_lambda_integration - new role to create API gateway + with Lambda integration + - roles/create_rds_global_cluster - new role to create aurora global cluster with + a primary and a replica cluster in different regions. + - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem + into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + release_summary: This release fixes bug on roles, remove support for ansible-core + < 2.14 and introduces new features. + fragments: + - 2.0.0.yml + - 20230426-update_readme_and_runtime.yml + - 20230804-backup-role-bugfixes.yaml + - 20230817-update_for_controller.yml + - 20230821-upload_file_to_s3.yaml + - 20230822-docs_and_bugfixes.yml + - 20230823-update-ci-sanity-test-matrix.yaml + - add_deploy_flask_app_role.yaml + - ansible_lint_6_19.yml + - ansible_lint_updates.yml + - automation_hub_update_readme.yaml + - aws_setup_credentials_add_no_log.yml + - awsconfig_apigateway.yml + - create_rds_global_cluster_role.yml + - customized_ami_doc_update.yaml + - fix_manage_vpc_peering_integration_test.yml + - fix_sanity_issues.yaml + - transit_gateway_doc_update.yaml + - update_ansible_lint_action.yml + - webapp_in_HA.yaml + release_date: '2023-11-17' diff --git a/changelogs/fragments/2.0.0.yml b/changelogs/fragments/2.0.0.yml deleted file mode 100644 index 06a759e0..00000000 --- a/changelogs/fragments/2.0.0.yml +++ /dev/null @@ -1,2 +0,0 @@ ---- -release_summary: "This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features." diff --git a/changelogs/fragments/20230426-update_readme_and_runtime.yml b/changelogs/fragments/20230426-update_readme_and_runtime.yml deleted file mode 100644 index dd24677b..00000000 --- a/changelogs/fragments/20230426-update_readme_and_runtime.yml +++ /dev/null @@ -1,2 +0,0 @@ -trivial: - - "Update README.md and meta/runtime.yml to reflect our ansible core testing versions." diff --git a/changelogs/fragments/20230804-backup-role-bugfixes.yaml b/changelogs/fragments/20230804-backup-role-bugfixes.yaml deleted file mode 100644 index 84a3c416..00000000 --- a/changelogs/fragments/20230804-backup-role-bugfixes.yaml +++ /dev/null @@ -1,5 +0,0 @@ ---- -trivial: - - Update README in backup_create_plan role and backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). -bugfixes: - - roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). diff --git a/changelogs/fragments/20230817-update_for_controller.yml b/changelogs/fragments/20230817-update_for_controller.yml deleted file mode 100644 index 5b2a4519..00000000 --- a/changelogs/fragments/20230817-update_for_controller.yml +++ /dev/null @@ -1,4 +0,0 @@ -trivial: - - "Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line)" -bugfixes: - - playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). diff --git a/changelogs/fragments/20230821-upload_file_to_s3.yaml b/changelogs/fragments/20230821-upload_file_to_s3.yaml deleted file mode 100644 index e64b33c9..00000000 --- a/changelogs/fragments/20230821-upload_file_to_s3.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). diff --git a/changelogs/fragments/20230822-docs_and_bugfixes.yml b/changelogs/fragments/20230822-docs_and_bugfixes.yml deleted file mode 100644 index f012a3d6..00000000 --- a/changelogs/fragments/20230822-docs_and_bugfixes.yml +++ /dev/null @@ -1,17 +0,0 @@ ---- -breaking_changes: - - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - -bugfixes: - - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - -trivial: - - Move EDA rulebook to recommended extensions/eda/rulebooks folder (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Move EDA playbooks to top-level playbooks directory so they can be called from ansible-rulebook by FQCN (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Add documentation for playbooks and rulebooks (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Add AWS account permissions to enable_cloudtrail_encryption_with_kms role README (https://github.com/redhat-cop/cloud.aws_ops/pull/86). diff --git a/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml b/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml deleted file mode 100644 index 42e228c3..00000000 --- a/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - Add milestone/python 3.9 to the sanity test exclude matrix since 3.9 is no longer supported in milestone (https://github.com/redhat-cop/cloud.aws_ops/pull/89). diff --git a/changelogs/fragments/add_deploy_flask_app_role.yaml b/changelogs/fragments/add_deploy_flask_app_role.yaml deleted file mode 100644 index 04bb729c..00000000 --- a/changelogs/fragments/add_deploy_flask_app_role.yaml +++ /dev/null @@ -1,17 +0,0 @@ ---- -breaking_changes: -- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. - 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' - changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed - to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' - changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' - changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to - 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' - 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' - changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed - to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed - to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to - 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' - 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed - to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). diff --git a/changelogs/fragments/ansible_lint_6_19.yml b/changelogs/fragments/ansible_lint_6_19.yml deleted file mode 100644 index f0ca9d5e..00000000 --- a/changelogs/fragments/ansible_lint_6_19.yml +++ /dev/null @@ -1,32 +0,0 @@ -breaking_changes: - - Remove support for ansible-core < 2.14 - - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). diff --git a/changelogs/fragments/ansible_lint_updates.yml b/changelogs/fragments/ansible_lint_updates.yml deleted file mode 100644 index 7ebd971e..00000000 --- a/changelogs/fragments/ansible_lint_updates.yml +++ /dev/null @@ -1,5 +0,0 @@ ---- -trivial: - - "Add integration test workflow to GHA and add new integration tests targets (https://github.com/redhat-cop/cloud.aws_ops/pull/39)." -breaking_changes: - - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). diff --git a/changelogs/fragments/automation_hub_update_readme.yaml b/changelogs/fragments/automation_hub_update_readme.yaml deleted file mode 100644 index 6405419c..00000000 --- a/changelogs/fragments/automation_hub_update_readme.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - "The validated content collections are now available in Automation Hub. Readme is updated with the steps to install the collection from AH." diff --git a/changelogs/fragments/aws_setup_credentials_add_no_log.yml b/changelogs/fragments/aws_setup_credentials_add_no_log.yml deleted file mode 100644 index df7c26cb..00000000 --- a/changelogs/fragments/aws_setup_credentials_add_no_log.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -bugfixes: - - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). diff --git a/changelogs/fragments/awsconfig_apigateway.yml b/changelogs/fragments/awsconfig_apigateway.yml deleted file mode 100644 index 34c49bda..00000000 --- a/changelogs/fragments/awsconfig_apigateway.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration diff --git a/changelogs/fragments/create_rds_global_cluster_role.yml b/changelogs/fragments/create_rds_global_cluster_role.yml deleted file mode 100644 index bb33813b..00000000 --- a/changelogs/fragments/create_rds_global_cluster_role.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. diff --git a/changelogs/fragments/customized_ami_doc_update.yaml b/changelogs/fragments/customized_ami_doc_update.yaml deleted file mode 100644 index 7771c97c..00000000 --- a/changelogs/fragments/customized_ami_doc_update.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - "Update README of customized_ami role with all the vars of the role" diff --git a/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml b/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml deleted file mode 100644 index 736bbfc3..00000000 --- a/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -bugfixes: - - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). diff --git a/changelogs/fragments/fix_sanity_issues.yaml b/changelogs/fragments/fix_sanity_issues.yaml deleted file mode 100644 index c58a229c..00000000 --- a/changelogs/fragments/fix_sanity_issues.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: -- "Add sanity test workflow to GHA and fix sanity issues (https://github.com/redhat-cop/cloud.aws_ops/pull/34)." diff --git a/changelogs/fragments/transit_gateway_doc_update.yaml b/changelogs/fragments/transit_gateway_doc_update.yaml deleted file mode 100644 index 26925b17..00000000 --- a/changelogs/fragments/transit_gateway_doc_update.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: -- "Update the README of manage_transit_gateway role to match the argument specs." diff --git a/changelogs/fragments/update_ansible_lint_action.yml b/changelogs/fragments/update_ansible_lint_action.yml deleted file mode 100644 index 8a03a3d8..00000000 --- a/changelogs/fragments/update_ansible_lint_action.yml +++ /dev/null @@ -1,2 +0,0 @@ -trivial: - - "Use ansible/ansible-lint since ansible/ansible-lint-action has been archived." diff --git a/changelogs/fragments/webapp_in_HA.yaml b/changelogs/fragments/webapp_in_HA.yaml deleted file mode 100644 index 74cf75cb..00000000 --- a/changelogs/fragments/webapp_in_HA.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: -- "Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97)." From 96a3c45061de56a46b81bd5b179c67fd0c53c302 Mon Sep 17 00:00:00 2001 From: abikouo Date: Mon, 20 Nov 2023 12:07:49 +0100 Subject: [PATCH 06/10] revert release changes --- CHANGELOG.rst | 69 --------- changelogs/changelog.yaml | 141 ------------------ changelogs/config.yaml | 4 +- changelogs/fragments/2.0.0.yml | 2 + .../20230426-update_readme_and_runtime.yml | 2 + .../20230804-backup-role-bugfixes.yaml | 5 + .../20230817-update_for_controller.yml | 4 + .../fragments/20230821-upload_file_to_s3.yaml | 3 + .../fragments/20230822-docs_and_bugfixes.yml | 17 +++ ...20230823-update-ci-sanity-test-matrix.yaml | 3 + .../fragments/add_deploy_flask_app_role.yaml | 17 +++ changelogs/fragments/ansible_lint_6_19.yml | 32 ++++ changelogs/fragments/ansible_lint_updates.yml | 5 + .../automation_hub_update_readme.yaml | 3 + .../aws_setup_credentials_add_no_log.yml | 3 + changelogs/fragments/awsconfig_apigateway.yml | 3 + .../create_rds_global_cluster_role.yml | 3 + .../fragments/customized_ami_doc_update.yaml | 3 + ...ix_manage_vpc_peering_integration_test.yml | 3 + changelogs/fragments/fix_sanity_issues.yaml | 3 + .../fragments/transit_gateway_doc_update.yaml | 3 + .../fragments/update_ansible_lint_action.yml | 2 + changelogs/fragments/webapp_in_HA.yaml | 3 + 23 files changed, 121 insertions(+), 212 deletions(-) create mode 100644 changelogs/fragments/2.0.0.yml create mode 100644 changelogs/fragments/20230426-update_readme_and_runtime.yml create mode 100644 changelogs/fragments/20230804-backup-role-bugfixes.yaml create mode 100644 changelogs/fragments/20230817-update_for_controller.yml create mode 100644 changelogs/fragments/20230821-upload_file_to_s3.yaml create mode 100644 changelogs/fragments/20230822-docs_and_bugfixes.yml create mode 100644 changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml create mode 100644 changelogs/fragments/add_deploy_flask_app_role.yaml create mode 100644 changelogs/fragments/ansible_lint_6_19.yml create mode 100644 changelogs/fragments/ansible_lint_updates.yml create mode 100644 changelogs/fragments/automation_hub_update_readme.yaml create mode 100644 changelogs/fragments/aws_setup_credentials_add_no_log.yml create mode 100644 changelogs/fragments/awsconfig_apigateway.yml create mode 100644 changelogs/fragments/create_rds_global_cluster_role.yml create mode 100644 changelogs/fragments/customized_ami_doc_update.yaml create mode 100644 changelogs/fragments/fix_manage_vpc_peering_integration_test.yml create mode 100644 changelogs/fragments/fix_sanity_issues.yaml create mode 100644 changelogs/fragments/transit_gateway_doc_update.yaml create mode 100644 changelogs/fragments/update_ansible_lint_action.yml create mode 100644 changelogs/fragments/webapp_in_HA.yaml diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 92599d7f..4de6cb38 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,75 +5,6 @@ CHANGE THIS IN changelogs/config.yaml! Release Notes .. contents:: Topics -v2.0.0 -====== - -Release Summary ---------------- - -This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features. - -Minor Changes -------------- - -- Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97). -- awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration -- create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. -- playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). - -Breaking Changes / Porting Guide --------------------------------- - -- Remove support for ansible-core < 2.14 -- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). -- roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). -- roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - -Bugfixes --------- - -- fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). -- playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). -- playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). -- roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). -- roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). -- roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - v1.0.3 ====== diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index 6c71a9d5..400dba77 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -23,144 +23,3 @@ releases: fragments: - summary.yml release_date: '2023-03-17' - 2.0.0: - changes: - breaking_changes: - - Remove support for ansible-core < 2.14 - - playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). - - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` - with `delete_source` to make intent clearer and fix reversed default value - logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - Rename the playbook vars with role name prefix. - 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' - changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed - to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' - changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' - changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to - 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' - 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' - changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed - to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed - to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to - 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' - 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed - to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). - - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated - credentials are now stored into variable `aws_setup_credentials__output` instead - of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). - - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed - to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed - to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed - to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``backup_role_name`` option has been renamed - to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_conditions`` option has been renamed - to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_name`` option has been renamed - to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_tags`` option has been renamed - to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_operation`` option has been renamed to - ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_packages`` option has been renamed to - ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed - to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_image_id`` option has been renamed to - ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_user_name`` option has been renamed to - ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option - has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` - option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option - has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` - (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed - to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed - to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed - to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - bugfixes: - - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). - - playbooks/webapp/webapp - Update playbooks that include credentials to be - able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). - - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update webapp create task to use provided variables - instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected - Cloudtrail events and add extra_vars to pass rulebook variables to playbooks - called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't - error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS - key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). - - roles/backup_select_resources - Add all necessary IAM service role policies - for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). - - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for - retrieved trail info and provide `s3_key_prefix` default so it doesn't error - if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - minor_changes: - - Add a playbook to deploy a simple flask web app into high availability architecture - (https://github.com/redhat-cop/cloud.aws_ops/pull/97). - - awsconfig_apigateway_with_lambda_integration - new role to create API gateway - with Lambda integration - - roles/create_rds_global_cluster - new role to create aurora global cluster with - a primary and a replica cluster in different regions. - - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem - into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). - release_summary: This release fixes bug on roles, remove support for ansible-core - < 2.14 and introduces new features. - fragments: - - 2.0.0.yml - - 20230426-update_readme_and_runtime.yml - - 20230804-backup-role-bugfixes.yaml - - 20230817-update_for_controller.yml - - 20230821-upload_file_to_s3.yaml - - 20230822-docs_and_bugfixes.yml - - 20230823-update-ci-sanity-test-matrix.yaml - - add_deploy_flask_app_role.yaml - - ansible_lint_6_19.yml - - ansible_lint_updates.yml - - automation_hub_update_readme.yaml - - aws_setup_credentials_add_no_log.yml - - awsconfig_apigateway.yml - - create_rds_global_cluster_role.yml - - customized_ami_doc_update.yaml - - fix_manage_vpc_peering_integration_test.yml - - fix_sanity_issues.yaml - - transit_gateway_doc_update.yaml - - update_ansible_lint_action.yml - - webapp_in_HA.yaml - release_date: '2023-11-17' diff --git a/changelogs/config.yaml b/changelogs/config.yaml index 0302c85f..49eeecd2 100644 --- a/changelogs/config.yaml +++ b/changelogs/config.yaml @@ -10,12 +10,12 @@ notesdir: fragments prelude_section_name: release_summary prelude_section_title: Release Summary sections: + - - breaking_changes + - Breaking Changes / Porting Guide - - major_changes - Major Changes - - minor_changes - Minor Changes - - - breaking_changes - - Breaking Changes / Porting Guide - - deprecated_features - Deprecated Features - - removed_features diff --git a/changelogs/fragments/2.0.0.yml b/changelogs/fragments/2.0.0.yml new file mode 100644 index 00000000..06a759e0 --- /dev/null +++ b/changelogs/fragments/2.0.0.yml @@ -0,0 +1,2 @@ +--- +release_summary: "This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features." diff --git a/changelogs/fragments/20230426-update_readme_and_runtime.yml b/changelogs/fragments/20230426-update_readme_and_runtime.yml new file mode 100644 index 00000000..dd24677b --- /dev/null +++ b/changelogs/fragments/20230426-update_readme_and_runtime.yml @@ -0,0 +1,2 @@ +trivial: + - "Update README.md and meta/runtime.yml to reflect our ansible core testing versions." diff --git a/changelogs/fragments/20230804-backup-role-bugfixes.yaml b/changelogs/fragments/20230804-backup-role-bugfixes.yaml new file mode 100644 index 00000000..84a3c416 --- /dev/null +++ b/changelogs/fragments/20230804-backup-role-bugfixes.yaml @@ -0,0 +1,5 @@ +--- +trivial: + - Update README in backup_create_plan role and backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). +bugfixes: + - roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). diff --git a/changelogs/fragments/20230817-update_for_controller.yml b/changelogs/fragments/20230817-update_for_controller.yml new file mode 100644 index 00000000..5b2a4519 --- /dev/null +++ b/changelogs/fragments/20230817-update_for_controller.yml @@ -0,0 +1,4 @@ +trivial: + - "Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line)" +bugfixes: + - playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). diff --git a/changelogs/fragments/20230821-upload_file_to_s3.yaml b/changelogs/fragments/20230821-upload_file_to_s3.yaml new file mode 100644 index 00000000..e64b33c9 --- /dev/null +++ b/changelogs/fragments/20230821-upload_file_to_s3.yaml @@ -0,0 +1,3 @@ +--- +minor_changes: + - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). diff --git a/changelogs/fragments/20230822-docs_and_bugfixes.yml b/changelogs/fragments/20230822-docs_and_bugfixes.yml new file mode 100644 index 00000000..f012a3d6 --- /dev/null +++ b/changelogs/fragments/20230822-docs_and_bugfixes.yml @@ -0,0 +1,17 @@ +--- +breaking_changes: + - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + +bugfixes: + - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + +trivial: + - Move EDA rulebook to recommended extensions/eda/rulebooks folder (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - Move EDA playbooks to top-level playbooks directory so they can be called from ansible-rulebook by FQCN (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - Add documentation for playbooks and rulebooks (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - Add AWS account permissions to enable_cloudtrail_encryption_with_kms role README (https://github.com/redhat-cop/cloud.aws_ops/pull/86). diff --git a/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml b/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml new file mode 100644 index 00000000..42e228c3 --- /dev/null +++ b/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml @@ -0,0 +1,3 @@ +--- +trivial: + - Add milestone/python 3.9 to the sanity test exclude matrix since 3.9 is no longer supported in milestone (https://github.com/redhat-cop/cloud.aws_ops/pull/89). diff --git a/changelogs/fragments/add_deploy_flask_app_role.yaml b/changelogs/fragments/add_deploy_flask_app_role.yaml new file mode 100644 index 00000000..04bb729c --- /dev/null +++ b/changelogs/fragments/add_deploy_flask_app_role.yaml @@ -0,0 +1,17 @@ +--- +breaking_changes: +- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. + 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' + changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed + to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' + changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' + changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to + 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' + 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' + changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed + to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed + to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to + 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' + 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed + to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). diff --git a/changelogs/fragments/ansible_lint_6_19.yml b/changelogs/fragments/ansible_lint_6_19.yml new file mode 100644 index 00000000..f0ca9d5e --- /dev/null +++ b/changelogs/fragments/ansible_lint_6_19.yml @@ -0,0 +1,32 @@ +breaking_changes: + - Remove support for ansible-core < 2.14 + - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). diff --git a/changelogs/fragments/ansible_lint_updates.yml b/changelogs/fragments/ansible_lint_updates.yml new file mode 100644 index 00000000..7ebd971e --- /dev/null +++ b/changelogs/fragments/ansible_lint_updates.yml @@ -0,0 +1,5 @@ +--- +trivial: + - "Add integration test workflow to GHA and add new integration tests targets (https://github.com/redhat-cop/cloud.aws_ops/pull/39)." +breaking_changes: + - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). diff --git a/changelogs/fragments/automation_hub_update_readme.yaml b/changelogs/fragments/automation_hub_update_readme.yaml new file mode 100644 index 00000000..6405419c --- /dev/null +++ b/changelogs/fragments/automation_hub_update_readme.yaml @@ -0,0 +1,3 @@ +--- +trivial: + - "The validated content collections are now available in Automation Hub. Readme is updated with the steps to install the collection from AH." diff --git a/changelogs/fragments/aws_setup_credentials_add_no_log.yml b/changelogs/fragments/aws_setup_credentials_add_no_log.yml new file mode 100644 index 00000000..df7c26cb --- /dev/null +++ b/changelogs/fragments/aws_setup_credentials_add_no_log.yml @@ -0,0 +1,3 @@ +--- +bugfixes: + - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). diff --git a/changelogs/fragments/awsconfig_apigateway.yml b/changelogs/fragments/awsconfig_apigateway.yml new file mode 100644 index 00000000..34c49bda --- /dev/null +++ b/changelogs/fragments/awsconfig_apigateway.yml @@ -0,0 +1,3 @@ +--- +minor_changes: + - awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration diff --git a/changelogs/fragments/create_rds_global_cluster_role.yml b/changelogs/fragments/create_rds_global_cluster_role.yml new file mode 100644 index 00000000..bb33813b --- /dev/null +++ b/changelogs/fragments/create_rds_global_cluster_role.yml @@ -0,0 +1,3 @@ +--- +minor_changes: + - create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. diff --git a/changelogs/fragments/customized_ami_doc_update.yaml b/changelogs/fragments/customized_ami_doc_update.yaml new file mode 100644 index 00000000..7771c97c --- /dev/null +++ b/changelogs/fragments/customized_ami_doc_update.yaml @@ -0,0 +1,3 @@ +--- +trivial: + - "Update README of customized_ami role with all the vars of the role" diff --git a/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml b/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml new file mode 100644 index 00000000..736bbfc3 --- /dev/null +++ b/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml @@ -0,0 +1,3 @@ +--- +bugfixes: + - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). diff --git a/changelogs/fragments/fix_sanity_issues.yaml b/changelogs/fragments/fix_sanity_issues.yaml new file mode 100644 index 00000000..c58a229c --- /dev/null +++ b/changelogs/fragments/fix_sanity_issues.yaml @@ -0,0 +1,3 @@ +--- +trivial: +- "Add sanity test workflow to GHA and fix sanity issues (https://github.com/redhat-cop/cloud.aws_ops/pull/34)." diff --git a/changelogs/fragments/transit_gateway_doc_update.yaml b/changelogs/fragments/transit_gateway_doc_update.yaml new file mode 100644 index 00000000..26925b17 --- /dev/null +++ b/changelogs/fragments/transit_gateway_doc_update.yaml @@ -0,0 +1,3 @@ +--- +trivial: +- "Update the README of manage_transit_gateway role to match the argument specs." diff --git a/changelogs/fragments/update_ansible_lint_action.yml b/changelogs/fragments/update_ansible_lint_action.yml new file mode 100644 index 00000000..8a03a3d8 --- /dev/null +++ b/changelogs/fragments/update_ansible_lint_action.yml @@ -0,0 +1,2 @@ +trivial: + - "Use ansible/ansible-lint since ansible/ansible-lint-action has been archived." diff --git a/changelogs/fragments/webapp_in_HA.yaml b/changelogs/fragments/webapp_in_HA.yaml new file mode 100644 index 00000000..74cf75cb --- /dev/null +++ b/changelogs/fragments/webapp_in_HA.yaml @@ -0,0 +1,3 @@ +--- +minor_changes: +- "Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97)." From 5eefa1e2f03dbaa744b9c7933c938e725a8ea96d Mon Sep 17 00:00:00 2001 From: abikouo Date: Mon, 20 Nov 2023 13:19:37 +0100 Subject: [PATCH 07/10] Generate release using standard workflow --- CHANGELOG.rst | 83 +++++++++ changelogs/changelog.yaml | 175 ++++++++++++++++++ changelogs/fragments/2.0.0.yml | 2 - .../20230426-update_readme_and_runtime.yml | 2 - .../20230804-backup-role-bugfixes.yaml | 5 - .../20230817-update_for_controller.yml | 4 - .../fragments/20230821-upload_file_to_s3.yaml | 3 - .../fragments/20230822-docs_and_bugfixes.yml | 17 -- ...20230823-update-ci-sanity-test-matrix.yaml | 3 - .../fragments/add_deploy_flask_app_role.yaml | 17 -- changelogs/fragments/ansible_lint_6_19.yml | 32 ---- changelogs/fragments/ansible_lint_updates.yml | 5 - .../automation_hub_update_readme.yaml | 3 - .../aws_setup_credentials_add_no_log.yml | 3 - changelogs/fragments/awsconfig_apigateway.yml | 3 - .../create_rds_global_cluster_role.yml | 3 - .../fragments/customized_ami_doc_update.yaml | 3 - ...ix_manage_vpc_peering_integration_test.yml | 3 - changelogs/fragments/fix_sanity_issues.yaml | 3 - .../fragments/transit_gateway_doc_update.yaml | 3 - .../fragments/update_ansible_lint_action.yml | 2 - changelogs/fragments/webapp_in_HA.yaml | 3 - 22 files changed, 258 insertions(+), 119 deletions(-) delete mode 100644 changelogs/fragments/2.0.0.yml delete mode 100644 changelogs/fragments/20230426-update_readme_and_runtime.yml delete mode 100644 changelogs/fragments/20230804-backup-role-bugfixes.yaml delete mode 100644 changelogs/fragments/20230817-update_for_controller.yml delete mode 100644 changelogs/fragments/20230821-upload_file_to_s3.yaml delete mode 100644 changelogs/fragments/20230822-docs_and_bugfixes.yml delete mode 100644 changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml delete mode 100644 changelogs/fragments/add_deploy_flask_app_role.yaml delete mode 100644 changelogs/fragments/ansible_lint_6_19.yml delete mode 100644 changelogs/fragments/ansible_lint_updates.yml delete mode 100644 changelogs/fragments/automation_hub_update_readme.yaml delete mode 100644 changelogs/fragments/aws_setup_credentials_add_no_log.yml delete mode 100644 changelogs/fragments/awsconfig_apigateway.yml delete mode 100644 changelogs/fragments/create_rds_global_cluster_role.yml delete mode 100644 changelogs/fragments/customized_ami_doc_update.yaml delete mode 100644 changelogs/fragments/fix_manage_vpc_peering_integration_test.yml delete mode 100644 changelogs/fragments/fix_sanity_issues.yaml delete mode 100644 changelogs/fragments/transit_gateway_doc_update.yaml delete mode 100644 changelogs/fragments/update_ansible_lint_action.yml delete mode 100644 changelogs/fragments/webapp_in_HA.yaml diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 4de6cb38..b172bffa 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -5,6 +5,89 @@ CHANGE THIS IN changelogs/config.yaml! Release Notes .. contents:: Topics +v2.0.0 +====== + +Release Summary +--------------- + +This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features. + +Breaking Changes / Porting Guide +-------------------------------- + +- Remove support for ansible-core < 2.14 +- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). +- role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). +- roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). +- roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + +Minor Changes +------------- + +- Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97). +- awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration +- create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. +- playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + +Bugfixes +-------- + +- fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). +- playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). +- playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). +- roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). +- roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). +- roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + +New Roles +--------- + +- awsconfig_apigateway_with_lambda_integration - A role to create/delete an API gateway with lambda function integration. +- backup_create_plan - A role to create a backup plan and optionally a vault. +- backup_select_resources - A role to configure backups for selected resources. +- clone_on_prem_vm - A role to clone an existing on prem VM using the KVM hypervisor. +- create_rds_global_cluster - A role to create an Amazon Aurora global cluster with two different region rds clusters. +- deploy_flask_app - Deploy flask app in AWS. +- import_image_and_run_aws_instance - A role that imports a local .raw image into an Amazon Machine Image (AMI) and run an AWS EC2 instance. +- manage_transit_gateway - Creation/Deletion of transit gateway with vpc/vpn attachment +- manage_vpc_peering - A role to create, delete and accept existing VPC peering connections. +- move_objects_between_buckets - A role to move objects from one S3 Bucket to another. + v1.0.3 ====== diff --git a/changelogs/changelog.yaml b/changelogs/changelog.yaml index 400dba77..1c82d967 100644 --- a/changelogs/changelog.yaml +++ b/changelogs/changelog.yaml @@ -23,3 +23,178 @@ releases: fragments: - summary.yml release_date: '2023-03-17' + 2.0.0: + changes: + breaking_changes: + - Remove support for ansible-core < 2.14 + - playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` + with `delete_source` to make intent clearer and fix reversed default value + logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - Rename the playbook vars with role name prefix. + 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' + changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed + to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' + changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' + changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to + 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' + 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' + changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed + to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed + to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to + 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' + 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed + to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). + - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated + credentials are now stored into variable `aws_setup_credentials__output` instead + of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). + - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed + to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed + to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed + to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``backup_role_name`` option has been renamed + to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_conditions`` option has been renamed + to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_name`` option has been renamed + to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/backup_select_resources - ``selection_tags`` option has been renamed + to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_operation`` option has been renamed to + ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_packages`` option has been renamed to + ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed + to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_image_id`` option has been renamed to + ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/customized_ami - ``source_ami_user_name`` option has been renamed to + ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` + option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option + has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` + (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed + to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed + to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed + to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). + bugfixes: + - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). + - playbooks/webapp/webapp - Update playbooks that include credentials to be + able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). + - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - playbooks/webapp/webapp - update webapp create task to use provided variables + instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected + Cloudtrail events and add extra_vars to pass rulebook variables to playbooks + called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't + error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS + key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). + - roles/backup_select_resources - Add all necessary IAM service role policies + for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). + - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for + retrieved trail info and provide `s3_key_prefix` default so it doesn't error + if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). + minor_changes: + - Add a playbook to deploy a simple flask web app into high availability architecture + (https://github.com/redhat-cop/cloud.aws_ops/pull/97). + - awsconfig_apigateway_with_lambda_integration - new role to create API gateway + with Lambda integration + - create_rds_global_cluster - new role to create aurora global cluster with + a primary and a replica cluster in different regions. + - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem + into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). + release_summary: This release fixes bug on roles, remove support for ansible-core + < 2.14 and introduces new features. + fragments: + - 2.0.0.yml + - 20230426-update_readme_and_runtime.yml + - 20230804-backup-role-bugfixes.yaml + - 20230817-update_for_controller.yml + - 20230821-upload_file_to_s3.yaml + - 20230822-docs_and_bugfixes.yml + - 20230823-update-ci-sanity-test-matrix.yaml + - add_deploy_flask_app_role.yaml + - ansible_lint_6_19.yml + - ansible_lint_updates.yml + - automation_hub_update_readme.yaml + - aws_setup_credentials_add_no_log.yml + - awsconfig_apigateway.yml + - create_rds_global_cluster_role.yml + - customized_ami_doc_update.yaml + - fix_manage_vpc_peering_integration_test.yml + - fix_sanity_issues.yaml + - transit_gateway_doc_update.yaml + - update_ansible_lint_action.yml + - webapp_in_HA.yaml + objects: + role: + - description: A role to create/delete an API gateway with lambda function integration. + name: awsconfig_apigateway_with_lambda_integration + namespace: null + - description: A role to create a backup plan and optionally a vault. + name: backup_create_plan + namespace: null + - description: A role to configure backups for selected resources. + name: backup_select_resources + namespace: null + - description: A role to clone an existing on prem VM using the KVM hypervisor. + name: clone_on_prem_vm + namespace: null + - description: A role to create an Amazon Aurora global cluster with two different + region rds clusters. + name: create_rds_global_cluster + namespace: null + - description: Deploy flask app in AWS. + name: deploy_flask_app + namespace: null + - description: A role that imports a local .raw image into an Amazon Machine + Image (AMI) and run an AWS EC2 instance. + name: import_image_and_run_aws_instance + namespace: null + - description: Creation/Deletion of transit gateway with vpc/vpn attachment + name: manage_transit_gateway + namespace: null + - description: A role to create, delete and accept existing VPC peering connections. + name: manage_vpc_peering + namespace: null + - description: A role to move objects from one S3 Bucket to another. + name: move_objects_between_buckets + namespace: null + release_date: '2023-11-20' diff --git a/changelogs/fragments/2.0.0.yml b/changelogs/fragments/2.0.0.yml deleted file mode 100644 index 06a759e0..00000000 --- a/changelogs/fragments/2.0.0.yml +++ /dev/null @@ -1,2 +0,0 @@ ---- -release_summary: "This release fixes bug on roles, remove support for ansible-core < 2.14 and introduces new features." diff --git a/changelogs/fragments/20230426-update_readme_and_runtime.yml b/changelogs/fragments/20230426-update_readme_and_runtime.yml deleted file mode 100644 index dd24677b..00000000 --- a/changelogs/fragments/20230426-update_readme_and_runtime.yml +++ /dev/null @@ -1,2 +0,0 @@ -trivial: - - "Update README.md and meta/runtime.yml to reflect our ansible core testing versions." diff --git a/changelogs/fragments/20230804-backup-role-bugfixes.yaml b/changelogs/fragments/20230804-backup-role-bugfixes.yaml deleted file mode 100644 index 84a3c416..00000000 --- a/changelogs/fragments/20230804-backup-role-bugfixes.yaml +++ /dev/null @@ -1,5 +0,0 @@ ---- -trivial: - - Update README in backup_create_plan role and backup_select_resources role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). -bugfixes: - - roles/backup_select_resources - Add all necessary IAM service role policies for backup when creating a new IAM role (https://github.com/redhat-cop/cloud.aws_ops/pull/81). diff --git a/changelogs/fragments/20230817-update_for_controller.yml b/changelogs/fragments/20230817-update_for_controller.yml deleted file mode 100644 index 5b2a4519..00000000 --- a/changelogs/fragments/20230817-update_for_controller.yml +++ /dev/null @@ -1,4 +0,0 @@ -trivial: - - "Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line)" -bugfixes: - - playbooks/webapp/webapp - Update playbooks that include credentials to be able to be used with Automation Controller (not just the command line) (https://github.com/redhat-cop/cloud.aws_ops/pull/64). diff --git a/changelogs/fragments/20230821-upload_file_to_s3.yaml b/changelogs/fragments/20230821-upload_file_to_s3.yaml deleted file mode 100644 index e64b33c9..00000000 --- a/changelogs/fragments/20230821-upload_file_to_s3.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - playbooks/upload_file_to_s3 - A playbook to upload file from local filesystem into S3 bucket (https://github.com/redhat-cop/cloud.aws_ops/pull/88). diff --git a/changelogs/fragments/20230822-docs_and_bugfixes.yml b/changelogs/fragments/20230822-docs_and_bugfixes.yml deleted file mode 100644 index f012a3d6..00000000 --- a/changelogs/fragments/20230822-docs_and_bugfixes.yml +++ /dev/null @@ -1,17 +0,0 @@ ---- -breaking_changes: - - playbooks/webapp/migrate_webapp - replace variable name `do_not_delete_source` with `delete_source` to make intent clearer and fix reversed default value logic (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - -bugfixes: - - roles/aws_restore_cloudtrail - provide `key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_restore_kms_key - fix conditional value to properly retrieve KMS key ARN from ansible-rulebook event variable (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update webapp create task to use provided variables instead of hard-coding values in some places (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - playbooks/webapp/webapp - update RDS engine from deprecated version (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/enable_cloudtrail_encryption_with_kms - fix incorrect fact name for retrieved trail info and provide `s3_key_prefix` default so it doesn't error if not present (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - roles/aws_manage_cloudtrail_encryption - fix condition logic to match expected Cloudtrail events and add extra_vars to pass rulebook variables to playbooks called in actions (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - -trivial: - - Move EDA rulebook to recommended extensions/eda/rulebooks folder (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Move EDA playbooks to top-level playbooks directory so they can be called from ansible-rulebook by FQCN (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Add documentation for playbooks and rulebooks (https://github.com/redhat-cop/cloud.aws_ops/pull/86). - - Add AWS account permissions to enable_cloudtrail_encryption_with_kms role README (https://github.com/redhat-cop/cloud.aws_ops/pull/86). diff --git a/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml b/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml deleted file mode 100644 index 42e228c3..00000000 --- a/changelogs/fragments/20230823-update-ci-sanity-test-matrix.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - Add milestone/python 3.9 to the sanity test exclude matrix since 3.9 is no longer supported in milestone (https://github.com/redhat-cop/cloud.aws_ops/pull/89). diff --git a/changelogs/fragments/add_deploy_flask_app_role.yaml b/changelogs/fragments/add_deploy_flask_app_role.yaml deleted file mode 100644 index 04bb729c..00000000 --- a/changelogs/fragments/add_deploy_flask_app_role.yaml +++ /dev/null @@ -1,17 +0,0 @@ ---- -breaking_changes: -- playbooks/webapp/deploy_flask_app - convert playbook to role (https://github.com/redhat-cop/cloud.aws_ops/pull/85). -- playbooks/webapp/webapp - Rename the playbook vars with role name prefix. - 'sshkey_pair_name' changed to 'deploy_flask_app_sshkey_pair_name' 'bastion_host_name' - changed to 'deploy_flask_app_bastion_host_name' 'bastion_host_username' changed - to 'deploy_flask_app_bastion_host_username' 'bastion_host_required_packages' - changed to 'deploy_flask_app_bastion_host_required_packages' 'app_listening_port' - changed to 'deploy_flask_app_listening_port' 'rds_master_user' changed to - 'deploy_flask_app_rds_master_username' 'rds_master_password' changed to 'deploy_flask_app_rds_master_password' - 'app_git_repository' changed to 'deploy_flask_app_git_repository' 'number_of_workers' - changed to 'deploy_flask_app_number_of_workers' 'workers_instance_type' changed - to 'deploy_flask_app_workers_instance_type' 'local_registry_user' changed - to 'deploy_flask_app_local_registry_user' 'local_registry_pwd' changed to - 'deploy_flask_app_local_registry_pwd' 'local_registry_port' changed to 'deploy_flask_app_local_registry_port' - 'app_config' changed to 'deploy_flask_app_config' 'app_force_init' changed - to 'deploy_flask_app_force_init' (https://github.com/redhat-cop/cloud.aws_ops/pull/85). diff --git a/changelogs/fragments/ansible_lint_6_19.yml b/changelogs/fragments/ansible_lint_6_19.yml deleted file mode 100644 index f0ca9d5e..00000000 --- a/changelogs/fragments/ansible_lint_6_19.yml +++ /dev/null @@ -1,32 +0,0 @@ -breaking_changes: - - Remove support for ansible-core < 2.14 - - roles/awsconfig_multiregion_cloudtrail - ``operation`` option has been renamed to ``awsconfig_multiregion_cloudtrail_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``bucket_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_bucket_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``key_prefix`` option has been renamed to ``awsconfig_multiregion_cloudtrail_key_prefix`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/awsconfig_multiregion_cloudtrail - ``trail_name`` option has been renamed to ``awsconfig_multiregion_cloudtrail_trail_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_name`` option has been renamed to ``backup_create_plan_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_rules`` option has been renamed to ``backup_create_plan_plan_rules`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_windows_vss_settings`` option has been renamed to ``backup_create_plan_plan_windows_vss_settings`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``plan_tags`` option has been renamed to ``backup_create_plan_plan_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_name`` option has been renamed to ``backup_create_plan_vault_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_encryption_key_arn`` option has been renamed to ``backup_create_plan_vault_encryption_key_arn`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_create_plan - ``vault_tags`` option has been renamed to ``backup_create_planvault_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``plan_name`` option has been renamed to ``backup_select_resources_plan_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_name`` option has been renamed to ``backup_select_resources_selection_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_tags`` option has been renamed to ``backup_select_resources_selection_tags`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``selection_conditions`` option has been renamed to ``backup_select_resources_selection_conditions`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/backup_select_resources - ``backup_role_name`` option has been renamed to ``backup_select_resources_backup_role_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_operation`` option has been renamed to ``customized_ami_operation`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_name`` option has been renamed to ``customized_ami_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_packages`` option has been renamed to ``customized_ami_packages`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``custom_ami_recreate_if_exists`` option has been renamed to ``customized_ami_recreate_if_exists`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_filters`` option has been renamed to ``customized_ami_source_ami_filters`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_image_id`` option has been renamed to ``customized_ami_source_ami_image_id`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/customized_ami - ``source_ami_user_name`` option has been renamed to ``customized_ami_source_ami_user_name`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_key_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_key_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``tag_value_to_terminate_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_tag_value_to_terminate_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/ec2_instance_terminate_by_tag - ``terminate_protected_instances`` option has been renamed to `` ec2_instance_terminate_by_tag_terminate_protected_instances`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``action`` option has been renamed to `` manage_transit_gateway_action`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``transit_gateway`` option has been renamed to `` manage_transit_gateway_transit_gateway`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpc_attachment`` option has been renamed to `` manage_transit_gateway_vpc_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). - - roles/manage_transit_gateway - ``vpn_attachment`` option has been renamed to `` manage_transit_gateway_vpn_attachment`` (https://github.com/redhat-cop/cloud.aws_ops/pull/84). diff --git a/changelogs/fragments/ansible_lint_updates.yml b/changelogs/fragments/ansible_lint_updates.yml deleted file mode 100644 index 7ebd971e..00000000 --- a/changelogs/fragments/ansible_lint_updates.yml +++ /dev/null @@ -1,5 +0,0 @@ ---- -trivial: - - "Add integration test workflow to GHA and add new integration tests targets (https://github.com/redhat-cop/cloud.aws_ops/pull/39)." -breaking_changes: - - role/aws_setup_credentials - Due to ansible-lint issue, the AWS generated credentials are now stored into variable `aws_setup_credentials__output` instead of `aws_role_credentials` (https://github.com/redhat-cop/cloud.aws_ops/pull/39). diff --git a/changelogs/fragments/automation_hub_update_readme.yaml b/changelogs/fragments/automation_hub_update_readme.yaml deleted file mode 100644 index 6405419c..00000000 --- a/changelogs/fragments/automation_hub_update_readme.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - "The validated content collections are now available in Automation Hub. Readme is updated with the steps to install the collection from AH." diff --git a/changelogs/fragments/aws_setup_credentials_add_no_log.yml b/changelogs/fragments/aws_setup_credentials_add_no_log.yml deleted file mode 100644 index df7c26cb..00000000 --- a/changelogs/fragments/aws_setup_credentials_add_no_log.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -bugfixes: - - roles/aws_setup_credentials - add no_log to prevent credentials leak (https://github.com/redhat-cop/cloud.aws_ops/pull/92). diff --git a/changelogs/fragments/awsconfig_apigateway.yml b/changelogs/fragments/awsconfig_apigateway.yml deleted file mode 100644 index 34c49bda..00000000 --- a/changelogs/fragments/awsconfig_apigateway.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - awsconfig_apigateway_with_lambda_integration - new role to create API gateway with Lambda integration diff --git a/changelogs/fragments/create_rds_global_cluster_role.yml b/changelogs/fragments/create_rds_global_cluster_role.yml deleted file mode 100644 index bb33813b..00000000 --- a/changelogs/fragments/create_rds_global_cluster_role.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: - - create_rds_global_cluster - new role to create aurora global cluster with a primary and a replica cluster in different regions. diff --git a/changelogs/fragments/customized_ami_doc_update.yaml b/changelogs/fragments/customized_ami_doc_update.yaml deleted file mode 100644 index 7771c97c..00000000 --- a/changelogs/fragments/customized_ami_doc_update.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: - - "Update README of customized_ami role with all the vars of the role" diff --git a/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml b/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml deleted file mode 100644 index 736bbfc3..00000000 --- a/changelogs/fragments/fix_manage_vpc_peering_integration_test.yml +++ /dev/null @@ -1,3 +0,0 @@ ---- -bugfixes: - - fix and update integration tests target test_manage_vpc_peering (https://github.com/redhat-cop/cloud.aws_ops/pull/61). diff --git a/changelogs/fragments/fix_sanity_issues.yaml b/changelogs/fragments/fix_sanity_issues.yaml deleted file mode 100644 index c58a229c..00000000 --- a/changelogs/fragments/fix_sanity_issues.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: -- "Add sanity test workflow to GHA and fix sanity issues (https://github.com/redhat-cop/cloud.aws_ops/pull/34)." diff --git a/changelogs/fragments/transit_gateway_doc_update.yaml b/changelogs/fragments/transit_gateway_doc_update.yaml deleted file mode 100644 index 26925b17..00000000 --- a/changelogs/fragments/transit_gateway_doc_update.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -trivial: -- "Update the README of manage_transit_gateway role to match the argument specs." diff --git a/changelogs/fragments/update_ansible_lint_action.yml b/changelogs/fragments/update_ansible_lint_action.yml deleted file mode 100644 index 8a03a3d8..00000000 --- a/changelogs/fragments/update_ansible_lint_action.yml +++ /dev/null @@ -1,2 +0,0 @@ -trivial: - - "Use ansible/ansible-lint since ansible/ansible-lint-action has been archived." diff --git a/changelogs/fragments/webapp_in_HA.yaml b/changelogs/fragments/webapp_in_HA.yaml deleted file mode 100644 index 74cf75cb..00000000 --- a/changelogs/fragments/webapp_in_HA.yaml +++ /dev/null @@ -1,3 +0,0 @@ ---- -minor_changes: -- "Add a playbook to deploy a simple flask web app into high availability architecture (https://github.com/redhat-cop/cloud.aws_ops/pull/97)." From 78d7da5ae2fd66e4dfa1cbe0915bdc115914cc0f Mon Sep 17 00:00:00 2001 From: abikouo Date: Mon, 20 Nov 2023 16:14:08 +0100 Subject: [PATCH 08/10] update argument_specs - change argument as not required --- roles/manage_vpc_peering/meta/argument_specs.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/roles/manage_vpc_peering/meta/argument_specs.yml b/roles/manage_vpc_peering/meta/argument_specs.yml index ff6f5718..5e983c32 100644 --- a/roles/manage_vpc_peering/meta/argument_specs.yml +++ b/roles/manage_vpc_peering/meta/argument_specs.yml @@ -14,7 +14,6 @@ argument_specs: manage_vpc_peering_requeter_vpc: description: - ID of the VPC requesting the peering connection. - required: true type: str manage_vpc_peering_accepter_vpc: description: From 3d1525be460ad0191d6f16add3b6bf5510b50d11 Mon Sep 17 00:00:00 2001 From: abikouo Date: Tue, 21 Nov 2023 11:02:17 +0100 Subject: [PATCH 09/10] update version into galaxy.yaml file --- galaxy.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/galaxy.yml b/galaxy.yml index 26e78f17..b857d1de 100644 --- a/galaxy.yml +++ b/galaxy.yml @@ -21,7 +21,7 @@ dependencies: community.aws: '>=5.0.0' amazon.cloud: '>=0.4.0' community.libvirt: '>=1.2.0' -version: 1.0.3 +version: 2.0.0 build_ignore: - .DS_Store - '*.tar.gz' From 2d8331c100e3a54df2954d64c24fb6a5e328c81d Mon Sep 17 00:00:00 2001 From: Bikouo Aubin <79859644+abikouo@users.noreply.github.com> Date: Tue, 21 Nov 2023 17:18:19 +0100 Subject: [PATCH 10/10] Update galaxy.yml version --- galaxy.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/galaxy.yml b/galaxy.yml index b857d1de..77574f51 100644 --- a/galaxy.yml +++ b/galaxy.yml @@ -21,7 +21,7 @@ dependencies: community.aws: '>=5.0.0' amazon.cloud: '>=0.4.0' community.libvirt: '>=1.2.0' -version: 2.0.0 +version: 3.0.0-dev0 build_ignore: - .DS_Store - '*.tar.gz'