v0.4.0

• No changes

v0.3.0

support event subscription @czerasz (#30)

what

• add support for event_subscription block

why

• improve module

references

• Terraform documentation: inspector_assessment_template

git.io->cloudposse.tools update @dylanbannon (#26)

what and why

Change all references to git.io/build-harness into cloudposse.tools/build-harness, since git.io redirects will stop working on April 29th, 2022.

References

• DEV-143

v0.2.11

🤖 Automatic Updates

Update Terraform cloudposse/iam-role/aws to v0.16.2 @renovate (#25)

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/iam-role/aws (source)	module	patch	0.16.1 -> 0.16.2

---

Release Notes

cloudposse/terraform-aws-iam-role

v0.16.2

Compare Source

🚀 Enhancements

Add enabled check to data source @​nitrocode (#​45)

##### what * [x] Add enabled check to data source * [x] Add TestExamplesCompleteDisabled check ##### why * Prevent creation if enabled is false ##### references * https://github.com/cloudposse/terraform-aws-s3-bucket/pull/148

---

v0.2.10

🤖 Automatic Updates

Update Terraform cloudposse/iam-role/aws to v0.16.1 @renovate (#24)

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/iam-role/aws (source)	module	patch	0.16.0 -> 0.16.1

---

Release Notes

cloudposse/terraform-aws-iam-role

v0.16.1

Compare Source

🚀 Enhancements

Disabling all tags in all iam resources @​jamengual (#​44)

#### what * In https://github.com/cloudposse/terraform-aws-iam-role/pull/43 I added the option to disable role tags but in environments where roles are created under very strict controls, the policy tags for the roles sometimes can't be tagged. This change disable tags for all IAM related resources. * #### why * to disable tags for role-related things. Use one variable instead of two. #### references * https://github.com/cloudposse/terraform-aws-iam-role/pull/43

---

v0.2.9

🤖 Automatic Updates

Update Terraform cloudposse/iam-role/aws to v0.16.0 @renovate (#23)

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/iam-role/aws (source)	module	minor	0.15.0 -> 0.16.0

---

Release Notes

cloudposse/terraform-aws-iam-role

v0.16.0

Compare Source

Making tags for roles optional @​jamengual (#​43)

#### what * Make role tags optional * #### why * Restrictive policy boundaries do not allow tag roles in highly secure environments.

---

v0.2.8

Also: update workflows and other Terraform Module boilerplate to current Cloud Posse standards.

🚀 Enhancements

Add tags to aws_cloudwatch_event_rule @nitrocode (#21)

what

• Add tags to aws_cloudwatch_event_rule

why

• Tag everything

references

N/A

v0.2.7

🐛 Bug Fixes

README update @nitrocode (#13)

what

• Standardize module source in README

why

• Standardizing

references

• Closes #18

v0.2.6

🤖 Automatic Updates

Update Terraform cloudposse/iam-role/aws to v0.15.0 @renovate (#20)

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/iam-role/aws (source)	module	minor	0.13.0 -> 0.15.0

---

Release Notes

cloudposse/terraform-aws-iam-role

v0.15.0

Compare Source

allow to set role and policy path @​1david5 (#​40)

#### what * Add `path` argument to role and policy resources #### why * Allow users to set path for role and policy

v0.14.1

Compare Source

Fix: Fix Variable Description Typo for `var.use_fullname` @​korenyoni (#​36)

#### what * Fix variable description typo introduced in #​35 for `var.use_fullname` #### why * Minor typo (unmatched right bracket). #### references * #​35

Drop unused null provider @​Xerkus (#​34)

#### what * Drop `hashicorp/null` provider from dependencies #### why * As far as I can tell the null provider is not used and I do not think it is needed for any kind of indirect dependency * I think it was needed at some point for terraform-null-label #### references * Closes #​31

Fix: fix variable description for `var.use_fullname`, run `make github/init` @​korenyoni (#​35)

#### what - Fix variable description for `var.use_fullname`. - Run `make github/init`. #### why - The `var.use_fullname` variable description is incorrect and refers to ECR repositories instead of IAM roles. - Running `make github/init` will update GHA-workflow related files (and CODEOWNERS), the former of which is required for the `no-release` label (which allows for consolidating multiple small PRs such as this into one release). #### references * N/A

#### 🚀 Enhancements

Add tags to policy @​nitrocode (#​37)

#### what * Add tags to policy #### why * Tag it all #### references N/A

v0.14.0

Compare Source

Add assume role policy conditions and managed iam policies @​sebastianmacarescu (#​33)

#### what * option to attach AWS Managed IAM policies to created role * option to add conditions to trust policy #### why * we should be able to use aws managed policies (or any other policies) and not create new ones dedicated for this role * we should be able to add conditions on who can assume this role (mfa enabled, be part of organization, specific session name, etc) #### references * closes #​24 * documentation for conditions: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document * documentation for conditions in trust role policies: https://aws.amazon.com/blogs/security/how-to-use-trust-policies-with-iam-roles/

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

v0.2.5

🤖 Automatic Updates

Update context.tf @cloudpossebot (#19)

what

This is an auto-generated PR that updates the context.tf file to the latest version from cloudposse/terraform-null-label

why

To support all the features of the context interface.

v0.2.4

🤖 Automatic Updates

Update Terraform cloudposse/iam-role/aws to v0.13.0 @renovate (#17)

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/iam-role/aws (source)	module	minor	0.11.0 -> 0.13.0

---

Release Notes

cloudposse/terraform-aws-iam-role

v0.13.0

Compare Source

Add permissions_boundary as a variable @​mmorejon (#​30)

#### what * Add `permissions_boundary` as a parameter #### why * This parameter is missing in the module as an option. #### references * [iam_role#permissions_boundary](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role#permissions_boundary)

Signed-off-by: Manuel Morejon [email protected]

v0.12.0

Compare Source

update assume actions variable to support multiple actions @​mcalhoun (#​29)

#### what

• Rename the assume_role_action variable to assume_role_actions
• Update the assume_role_action to allow multiple actions
• Update the default action to include sts:TagSession

why

• Allow the flexibility of adding multiple actions to the trust policy

NOTE: THIS PR CONTAINS A BACKWARD-INCOMPATIBLE CHANGE

---

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Renovate will not automatically rebase this PR, because other commits have been found.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by WhiteSource Renovate. View repository job log here.