128 lines (71 loc) · 5.56 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[0.12.0] - 2026-01-22

Compare with previous version

Fixed

Fixed bucket_obj_adm and bucket_obj_vwr variables causing "Invalid for_each argument" error when used with append_random_suffix = true. The for_each key for IAM member resources now uses the static input bucket name instead of the dynamically generated name (with random suffix).

Changed

BREAKING CHANGE for existing users of bucket_obj_adm/bucket_obj_vwr: The for_each key for google_storage_bucket_iam_member.default_storage_admin and google_storage_bucket_iam_member.default_storage_viewer resources has changed from <generated_bucket_name>--<member> to <input_bucket_name>--<member>.

Example: If your bucket input name is myapp and it gets a random suffix a1b2, the key changes from myapp-a1b2--group:admins@example.com to myapp--group:admins@example.com.

Impact: Terraform will plan to destroy and recreate the IAM bindings. This is safe - the IAM permissions will be briefly removed and immediately recreated. No data loss occurs.

Migration: No action required. Run terraform apply to recreate the IAM bindings with the new keys. If you want to avoid the brief permission gap, you can use terraform state mv to rename the resources before applying.

[0.11.0] - 2025-12-10

Compare with previous version

Added additional_transfer_job_excluded_prefixes variable to allow excluding specific prefixes from the transfer job.

[0.10.0] - 2024-11-26

Compare with previous version

Add lifecycle policy rules to dr buckets (default retention: 60 days after becoming non current).
Add disable soft delete as default behaviour.
Add label scope = dr to dr buckets.

[0.9.0] - 2024-11-26

Compare with previous version

Added lifecycle policy rules to buckets (default retention: 30 days after becoming non current)

[0.8.1] - 2024-10-29

Compare with previous version

Fix append_random_suffix is now compatible with tagging buckets

[0.8.0] - 2024-08-09

Compare with previous version

Added soft_delete_retention_seconds property to manage bucket soft delete policy

[0.7.3] - 2024-08-08

Compare with previous version

Fix generated_bucket_names output

[0.7.2] - 2024-08-07

Compare with previous version

Added an output with the list of bucket names generated by the module.

[0.7.1] - 2023-08-09

Compare with previous version

Fix bucket name for tag binding, it was missing the random suffix if present.

[0.7.0] - 2023-08-08

Compare with previous version

BREAKING CHANGES: tags are now passed using a user-friendly name as <TAG_KEY_SHORTNAME>/<TAG_VALUE_SHORTNAME> instead of the tag value.
Support global tags to be applied to all buckets. If a bucket specify a list of tags, the global tags will be overridden and replaced by those specified for the bucket.

[0.6.1] - 2023-08-03

Compare with previous version

Removed ${bucket.bucket_location}-- from tag binding key since it can be null.

[0.6.0] - 2023-07-28

Compare with previous version

Added support for default admin/viewer roles

[0.5.0] - 2023-07-27

Compare with previous version

Added support for bucket label and Google Tags

[0.4.0] - 2023-07-18

Compare with previous version

ATTENTION - BREAKING CHANGE: Remove the roles/storage.objectViewer role as default for all buckets.
Optionally the role roles/storage.legacyObjectReader can be added using the new set_all_users_as_viewer property in the buckets_list variable.

[0.3.0] - 2023-05-23

Renamed the disaster recovery bucket name to stick with existing nomenclature

[0.2.0] - 2023-04-14

Changed

Changed output variable buckets_access_credentials from a list to a map
Moved the force_destroy variable to the buckets_list object list

[0.1.0] - 2023-02-01

Init project.