Skip to content
This repository has been archived by the owner on Feb 8, 2023. It is now read-only.

Latest commit

 

History

History
39 lines (25 loc) · 2.92 KB

v202202-1.md

File metadata and controls

39 lines (25 loc) · 2.92 KB
Raw

TFE Release v202202-1

APPLICATION LEVEL BREAKING CHANGES:

UPCOMING DEPRECATION NOTICES:

The Terraform Enterprise April 2022 release will:

  1. Remove the demo operational mode, which is also known as the proof of concept (PoC) operational mode. The mounted disk operational mode will replace the demo operational mode for both non-production and production Terraform Enterprise environments. To check which mode your installation is using, run replicatedctl app-config export --template '{{ .installation_type.Value }}'. The value poc indicates that your installation is using the demo operational mode. The April 2022 release notes will contain more information about how to migrate.
  2. Update the names of containers, which may break container monitoring or custom tooling that identifies containers by name. The April 2022 release notes will explain these name changes in more detail and provide a complete list of old and new container names.
  3. Change the default value of restrict_worker_metadata_access to 1 (true) instead of 0 (false). If you rely on the instance metadata endpoint (and make use of its instance profile), you must explicitly set the restrict_worker_metadata_access configuration flag in replicated.conf to 0.

APPLICATION LEVEL FEATURES:

  1. Changed tag name restrictions to include letters, numbers, colons, hyphens, and underscores; and must begin and end with an alphanumeric character.
  2. Added the ability to fuzzy find or find an exact match for Terraform versions using query parameters.

APPLICATION LEVEL BUG FIXES:

  1. Fixed rendering of multi-paragraph Terraform diagnostic messages.
  2. Fixed run source UI "triggered from CLI" when using CLI cloud integration
  3. Fixed deprecated-reason should be null if tool version was undeprecated in the Terraform Versions API
  4. Fixed slow initial UI load for users who belong to hundreds of organizations.
  5. Fixed bug to disallow workspace from being renamed when a run has not completed.
  6. Fixed a UI issue where newly created organisation API tokens weren't shown when the previous one was recently deleted.

APPLICATION LEVEL SECURITY FIXES:

  1. Modified Terraform Enterprise application logging configuration to remediate inadvertent capture of HTTP request bodies (CVE-2022-25374).
  2. Enables ACLs for the internally-managed Nomad service so that requests to Nomad must be authenticated.
  3. Fixed rate limiting to be based on the AuthenticationToken instead of remote IP in some cases.
  4. Updated the version of Rails to address CVE 2022-23633.
  5. Updated the version of the internally-managed Vault server to 1.9.3
  6. Updated the version of the internally-managed Nomad server to 1.2.4
  7. Ongoing container updates to address reported vulnerabilities in underlying packages / dependencies.