The AWS Provider enables Terraform to manage AWS resources.
BUG FIXES:
panic: Invalid address to set
related to root_block_device.0.tags_all
(#36054)FEATURES:
aws_redshift_data_shares
(#35937)aws_apprunner_deployment
(#35758)aws_config_retention_configuration
(#15136)aws_securityhub_automation_rule
(#34781)aws_shield_proactive_engagement
(#34667)ENHANCEMENTS:
custom_time_zone
and file_extension
arguments to the extended_S3_configuration
configuration block (#35969)task.source_fields
to be a null
value (#35993)trigger
configuration block (#35475)aws_config_organization_custom_rule.lambda_function_arn
(#15136)read
timeout (#35955)aws_instance
, add ebs_block_device.*.tags_all
and root_block_device.*.tags_all
attributes which include default tags (#33769)data_replication_mode
and data_replication_primary_broker_arn
arguments, enabling support for cross-region data replication (#35990)endpoint_management
attribute (#35961)admin_password_secret_kms_key_id
and manage_admin_password
(#35965)read
timeout (#35955)application_integration_url
attribute (#35974)BUG FIXES:
iam_roles
attribute on read (#35965)task.task_type
is set to Map_all
(#35993)panic: interface conversion: interface {} is nil, not map[string]interface {}
when recording_group.exclusion_by_resource_types
is empty (#15136)name
to ForceNew (#15136)InvalidParameterValueException: PolicyText is required when Owner is CUSTOM_POLICY
errors on resource Update (#15136)container_definitions
diffs when Name
s are ordered differently (#36029)detect_and_copy_new_topics
attribute value from state read/refresh (#35966)max_capacity
removal (#36032)base_capacity
and max_capacity
(#36032)log_bucket
and role_arn_association_id
to ForceNew (#34667)FEATURES:
aws_batch_job_definition
(#34663)aws_cognito_user_group
(#34046)aws_cognito_user_groups
(#34046)ENHANCEMENTS:
load_balancer_arns
attribute (#34364)maximum_network_cards
attribute (#35840)vpc_id
attribute (#35887)load_balancer_arns
attribute (#34364)token_bucket_rate_limiter_capacity
parameter (#35926)load_balancer_arns
attribute (#34364)arn
attribute (#35888)execution_mode
argument (#35875)recording_mode
configuration block (#35527)performance_insights_retention_period
(#35870)vpc_id
attribute (#35887)load_balancer_arns
attribute (#34364)max_capacity
argument (#35720)TransferSecurityPolicy-2024-01
and TransferSecurityPolicy-FIPS-2024-01
as valid values for security_policy_name
(#35879)BUG FIXES:
sts_region
is specified (#35860)cluster_name
plan-time validation, allowing single-character names (#35874)cluster_name
plan-time validation, allowing single-character names (#35874)name
plan-time validation, allowing single-character names (#35874)index_field
options response values (#35900)cluster_name
plan-time validation, allowing single-character names (#35874)cluster_name
plan-time validation, allowing single-character names (#35874)cluster_name
plan-time validation, allowing single-character names (#35874)name
plan-time validation, allowing single-character names (#35874)cluster_name
plan-time validation, allowing single-character names (#35874)cluster_name
plan-time validation, allowing single-character names (#35874)NOTES:
FEATURES:
aws_db_parameter_group
(#35698)aws_bedrock_provisioned_model_throughput
(#35689)aws_cloudfront_key_value_store
(#35663)aws_redshift_data_share_consumer_association
(#35771)ENHANCEMENTS:
credential_arn
attribute (#34475)client_token
argument (#34402)skip_final_snapshot
argument (#35698)latest
, preferred_major_targets
, and preferred_upgrade_targets
. Add version_actual
attribute (#35698)engine_latest_version
and supports_clusters
arguments and converting read_replica_capable
, supported_engine_modes
, supported_network_types
, and supports_multi_az
to arguments for use as search criteria (#35698)introspection_config
, query_depth_limit
, and resolver_count_limit
arguments (#35631)s3_bucket_arn
attribute (#35760)credential_arn
argument (#34475)service_connect_configuration.service.timeout
and service_connect_configuration.service.tls
configuration blocks (#35684)track_latest
argument (#30154)federated_database
argument (#35799)timeouts
(#35542)domain
and domain_iam_role_name
arguments to support Kerberos authentication (#35753)geoproximity_routing_policy
configuration block to support geoproximity routing (#35565)target_ip.protocol
argument (#35744)routing_config
argument. Enables the specification of a routing_strategy
. (#34777)ownership_settings
, space_sharing_settings
, space_settings.app_type
, space_settings.code_editor_app_settings
, space_settings.custom_file_system
, space_settings.jupyter_lab_app_settings
, and space_settings.space_storage_settings
arguments (#35116)BUG FIXES:
failed to get rate limit token, retry quota exceeded
errors (#35817)ownership_verification_certificate_arn
on update (#35777)BadRequestException: Unable to update route. Authorizer type is invalid or null
errors when updating authorizer_id
(#35821)report_override
values (#35778)report_override
arguments (#35778)auth
from TypeList
to TypeSet
as order is not significant (#35819)value
(#33393)container_definitions
diffs when Secrets
are ordered differently (#35792)ReservationCapacityExceeded
errors when updating instance_type
and capacity_reservation_specification.capacity_reservation_target.capacity_reservation_id
(#33412)false
values for use_service_linked_role
(#35799)client_cache
to hls_group_settings
. (#35738)ACTIVE
status (#35771)access_control_policy
when switching configuration to acl
. (#35775)NOTES:
FEATURES:
aws_controltower_landing_zone
(#34595)aws_osis_pipeline
(#35582)aws_redshift_data_share_authorization
(#35703)aws_securitylake_custom_log_source
(#35354)ENHANCEMENTS:
output_format
(#35569)diag.log
and notify.log
as valid values for enabled_cloudwatch_logs_exports
(#35626)domain_auth_secret_arn
, domain_dns_ips
, domain_fqdn
, and domain_ou
arguments to support self-managed Active Directory (#35500)filter.access_point
argument (#35590)sse_configuration
argument (#34055)BUG FIXES:
password
attribute correctly (#35589)replica
s are always set on Read (#35630)launch_specifications.on_demand_specification.allocation_strategy
and launch_specifications.spot_specification.allocation_strategy
values to fix perpetual state differences (#34367)extended_s3_configuration.processing_configuration.processors.parameters
from TypeList
to TypeSet
as order is not significant (#35672)logging_config
when values for application_log_level
or system_log_level
are not specified (#35694)default_action
parameters which don't match the type
. (#35678)default_action[].target_group_arn
when ignore_changes
was set. (#35671)default_action[].forward
in state if only a single target_group
was set. (#35671)action
parameters which don't match the type
. (#35678)action[].target_group_arn
when ignore_changes
was set. (#35671)action[].forward
in state if only a single target_group
was set. (#35671)json
as Computed if there are content changes (#35606)FEATURES:
aws_bedrock_custom_model
(#34310)aws_bedrock_custom_models
(#34310)aws_ssmcontacts_rotation
(#32710)aws_bedrock_custom_model
(#34310)aws_lexv2models_slot
(#34617)aws_lexv2models_slot_type
(#35555)aws_rekognition_collection
(#35407)aws_sesv2_email_identity_policy
(#35486)aws_ssmcontacts_rotation
(#32710)ENHANCEMENTS:
multi_az
attribute (#35508)hybrid_access_enabled
argument (#35571)with_federation
argument (#35154)multi_az
argument (#35508)owner_account
argument (#35509)header_order
to field_to_match
configuration blocks (#35521)header_order
to field_to_match
configuration blocks (#35521)BUG FIXES:
core_network_configuration.edge_locations
maximum item limit (#35585)InvalidParameterValueException: Invalid lifecycle. EBS Cold Tier is not yet supported
errors on resource Create in AWS GovCloud (US) (#35560)/
(#35501)source_ids
as Optional. This fixes a regression introduced in v5.31.0 (#35541)lifecycle_policy
maximum item limit to 3 (#35522)command_line_arguments
max length restriction from 50 to 1024. (#35581)FEATURES:
aws_rekognition_project
(#35429)aws_route53domains_delegation_signer_record
(#33596)ENHANCEMENTS:
kms_key_id
attribute (#35095)ThirdParty
owner
value (#35286)ThirdParty
owner
value (#35286)ThirdParty
owner
value (#35286)json
attribute to facilitate use with S3 buckets (#33402)configuration
configuration block (#35310)flow_status
attribute (#34948)kms_key_id
argument (#35095)trigger.destination_arn
and trigger.events
(#35095)auto_scaling_group_provider.managed_draining
argument (#35421)AutoScalingGroups
, Buckets
, ReplicationGroups
, Tables
and TransitGateways
to action.*.target
(#35300)skip_final_backup
argument (#35320)role_arn
attribute (#35453)json
attribute to facilitate use with S3 buckets (#33402)challenge_config
argument (#35367)BUG FIXES:
build_batch_config
to be removed on Update (#34121)kubernetes_groups
as Computed (#35391)type
and user_name
as Optional, allowing values to be configured (#35391)workspace_id
attribute after import (#35290)UnsupportedOperation: The functionality you requested is not available in this region
errors on Read in certain partitions (#33484)FEATURES:
aws_eks_access_entry
(#35037)aws_eks_access_entry
(#35037)aws_eks_access_policy_association
(#35037)aws_lexv2models_intent
(#34891)ENHANCEMENTS:
access_config
attribute (#35037)created_date
and last_changed_date
attributes (#35117)created_date
attribute (#35117)rule.lifecycle.opt_in_to_archive_for_supported_resources
and rule.copy_action.lifecycle.opt_in_to_archive_for_supported_resources
and arguments (#34994)access_config
configuration block (#35037)use_service_linked_role
argument (#35284)rotate_immediately
argument (#35105)BUG FIXES:
schedule
to be removed successfully (#35282)target.resource_arns
or target.resource_tag
attributes. (#35254)ValidationError: Mutual Authentication mode passthrough does not support ignoring certificate expiry
errors when mutual_authentication.mode
is set to passthrough
(#35289)InvalidParameterException: The parameter RemoveFromVersionId can't be empty. Staging label AWSCURRENT is currently attached to version ..., so you must explicitly reference that version in RemoveFromVersionId
errors when a secret is updated outside Terraform (#19943)BUG FIXES:
most_recent
is not also latest
(#35269)registration_config.role_arn
from TypeBool
to TypeString
, fixing Inappropriate value for attribute "role_arn": a bool is required
errors (#35234)interface conversion: interface {} is *schema.Set, not []string
panic (#35265)FEATURES:
aws_mq_broker_engine_types
(#34232)aws_msk_bootstrap_brokers
(#32484)aws_verifiedpermissions_policy_store
(#32204)aws_ebs_fast_snapshot_restore
(#35211)aws_elasticache_serverless_cache
(#34951)aws_imagebuilder_workflow
(#35097)aws_kinesis_resource_policy
(#35167)aws_prometheus_scraper
(#34749)aws_securitylake_aws_log_source
(#34974)aws_ssoadmin_application_access_scope
(#34811)aws_verifiedpermissions_policy_store
(#32204)aws_verifiedpermissions_policy_template
(#32205)aws_verifiedpermissions_schema
(#32204)ENHANCEMENTS:
update_policy
attribute (#34353)image_uri
attribute (#24526)lifecycle_policy.transition_to_archive
attribute (#35096)protection
attribute (#35029)il-central-1
AWS Region (#35131)ca-west-1
AWS Region (#35131)ha_pairs
and throughput_capacity_per_ha_pair
attributes (#34993)region
attribute to target_table
block. (#34817)logging_config
attribute (#35050)ca-west-1
AWS Region (#35131)load_balancing_anomaly_mitigation
attribute (#35083)name
length validation (#34399)firewall_policy.tls_inspection_configuration_arn
attribute (#35094)kms_key_arn
attribute (#35062)protocols
attribute (#35098)resolver_endpoint_type
attribute (#34798)ca-west-1
AWS Region (#35131)ca-west-1
as a valid AWS Region (#35131)destination_connector_properties.s3.s3_output_format_config.target_file_size
argument (#35215)idle_disconnect_timeout_in_seconds
max value for validation to 360000 (#35173)instance_refresh.preferences.max_healthy_percentage
attribute (#34929)ValidationError: The instance ... is not part of Auto Scaling group ...
errors on resource Delete when disabling scale-in protection for instances that are already fully terminated (#35071)update_policy
parameter (#34353)scheduling_priority
argument and arn_prefix
attribute (#34997)amazonlinux-2023-x86_64
and resolve:ssm:/aws/service/cloud9/amis/amazonlinux-2023-x86_64
as valid values for image_id
(#35020)pipeline_type
argument and variable
configuration block (#34841)cdc_start_time
to use RFC3339 formatted dates in addition to UNIX timestamps (#31917)replication_instance_arn
, allowing in-place migration between DMS instances (#30721)lifecycle_policy.transition_to_archive
argument (#35096)protection
configuration block (#35029)destination.file_system_id
as Optional, enabling EFS replication fallback (#34955)per_unit_storage_throughput
to be updated in-place (#34932)ha_pairs
and throughput_capacity_per_ha_pair
arguments (#34993)disk_iops_configuration.iops
to 2400000
(#34993)throughput_capacity
is Optional (#34993)region
attribute to target_table
block. (#34817)csv_classifier.serde
argument (#34251)opensearch_configuration.document_id_options
configuration block (#35137)splunk_configuration.buffering_interval
and splunk_configuration.buffering_size
arguments (#35137)elasticsearch_configuration.buffering_interval
, http_endpoint_configuration.buffering_interval
, opensearch_configuration.buffering_interval
, opensearchserverless_configuration.buffering_interval
, redshift_configuration.s3_backup_configuration.buffering_interval
,extended_s3_configuration.s3_backup_configuration.buffering_interval
, elasticsearch_configuration.s3_configuration.buffering_interval
, http_endpoint_configuration.s3_configuration.buffering_interval
, opensearch_configuration.s3_configuration.buffering_interval
, opensearchserverless_configuration.s3_configuration.buffering_interval
, redshift_configuration.s3_configuration.buffering_interval
and splunk_configuration.s3_configuration.buffering_interval
minimum values to 0
to support zero buffering (#35137)xks_key_id
attribute (#31216)logging_config
configuration block in support of advanced logging controls (#35050)python3.12
runtime
value (#35049)python3.12
compatible_runtimes
value (#35049)load_balancing_anomaly_mitigation
argument (#35083)weighted_random
as a valid value for load_balancing_algorithm_type
(#35083)storage_type
argument (#34985)storage_type
attribute (#34985)firewall_policy.tls_inspection_configuration_arn
argument (#35094)kms_key_arn
argument, enabling encryption at-rest using AWS KMS Customer Managed Keys (CMK) (#35062)port
argument (#34925)protocols
argument (#35098)resolver_endpoint_type
argument (#34798)TransferSecurityPolicy-PQ-SSH-Experimental-2023-04
and TransferSecurityPolicy-PQ-SSH-FIPS-Experimental-2023-04
as valid values for security_policy_name
(#35129)policy_document
argument (#34264)BUG FIXES:
deregistration_delay
from TypeInt
to TypeString
(#31436)./
from key
to maintain AWS SDK for Go v1 (pre-v5.17.0) compatibility (#35223)./
from key
to maintain AWS SDK for Go v1 (pre-v5.17.0) compatibility (#35223)image_id
is Required (#35020)build_timeout
and queued_timeout
for Lambda compute types (#35043)activation_key
by removing requirement for one of ip_address
or activation_key
to be set (#35150)replication_settings
(#34356)replication_task_settings
(#34356)arn
attribute on read, resolving persistent differences when tags
are configured (#34998)thing_indexing_configuration.filter.named_shadow_names
(#35225)InvalidArgumentException: Both BufferSizeInMBs and BufferIntervalInSeconds are required to configure buffering for lambda processor
errors on resource Update (#26964)extended_s3_configuration.processing_configuration.processors.parameters
diffs when processor type is Lambda
(#35137)source_code_hash
does not change. (#29921)ValidationError: Attributes cannot be empty
errors (#35228)stickiness.cookie_name
when stickiness.type
is lb_cookie
(#31436)snapshotting
status as pending when creating cluster (#31077)reading RAM Resource Share (...) Principal Association (...): couldn't find resource (21 retries)
errors when a high number of principals are associated with a resource share (#34738)./
from key
to maintain AWS SDK for Go v1 (pre-v5.17.0) compatibility (#35223)./
from key
to maintain AWS SDK for Go v1 (pre-v5.17.0) compatibility (#35223)./
from key
to maintain AWS SDK for Go v1 (pre-v5.17.0) compatibility (#35223)rotation_rules.automatically_after_days
when rotation_rules.schedule_expression
is set. (#35024)tracking_options
being omitted from state and resulting in persistent diff (#35056)portal_options.sign_in_options.application_url
triggering ValidationError
when unset (#34967)