community.aws 3.3.0

Minor Changes

• aws_kms - add extra key/value pair to return data (key_policies) to return each policy as a dictionary rather than json string (#1052).
• aws_kms - fix some bugs in integration tests and add check mode support for key rotation as well as document issues with time taken for requested changes to be reflected on AWS (#1052).
• ec2_asg - add check mode support (#1033).
• iam_policy - update broken examples and add RETURN section to documentation; add extra integration tests for idempotency check mode runs (#1093).
• iam_user - add user value to return data structure to deprecate old iam_user (#1059).
• lambda - add kms_key_arn parameter (#1108).
• rds_instance - add deletion_protection parameter (#1105).
• rds_instance - add support for addition/removal of iam roles to db instance (#1002).
• rds_instance_snapshot - add check_mode (#789).
• rds_instance_snapshot - add copy_db_snapshot functionality (#1078).
• rds_instance_snapshot - add integration tests (#789).
• rds_instance_snapshot - update module to use handlers defined in module_utils/rds.py (#789).
• route53 - add support for GeoLocation param (ansible-collections/amazon.aws#1117).

Bugfixes

• dynamodb_table - fix an issue when creating secondary indexes with global_keys_only (#967).
• ecs_service - add missing change detect of health_check_grace_period_seconds parameter (#1145).
• ecs_service - fix broken compare of task_definition that results always in a changed task (#1145).
• ecs_service - fix validation for placement_constraints. It's possible to use distinctInstance placement constraint now (#1058)
• ecs_taskdefinition - fix broken change detect of launch_type parameter (#1145).
• execute_lambda - add waiter for function_updated (#1108).
• execute_lambda - fix check mode and update RETURN documentation (#1115).
• iam_policy - require one of policy_document and policy_json when state is present to prevent MalformedPolicyDocumentException from being thrown (#1093).
• iam_user - don't delete user login profile on check mode (#1059).
• iam_user_info - gracefully handle when no users are found (#1059).
• lambda - fix check mode on creation (#1108).
• rds_instance - fix check_mode and idempotency issues and added integration tests for all tests in suite (#1002).
• rds_instance_snapshot - don't require db_instance_identifier on state = present (#1078).
• s3_lifecycle - add support of value 0 for transition_days (#1077).
• s3_lifecycle - check that configuration is complete before returning (#1085).

New Modules

• aws_api_gateway_domain - Manage AWS API Gateway custom domains

community.aws 2.5.0

Minor Changes

• iam_policy - update broken examples and add RETURN section to documentation; add extra integration tests for idempotency check mode runs (#1093).
• iam_role - delete inline policies prior to deleting role (#1054).
• iam_role - remove global vars and refactor accordingly (#1054).

Bugfixes

• ecs_service - add missing change detect of health_check_grace_period_seconds parameter (#1145).
• ecs_service - fix broken compare of task_definition that results always in a changed task (#1145).
• ecs_service - fix validation for placement_constraints. It's possible to use distinctInstance placement constraint now (#1058)
• ecs_taskdefinition - fix broken change detect of launch_type parameter (#1145).
• execute_lambda - fix check mode and update RETURN documentation (#1115).
• iam_policy - require one of policy_document and policy_json when state is present to prevent MalformedPolicyDocumentException from being thrown (#1093).
• s3_lifecycle - add support of value 0 for transition_days (#1077).
• s3_lifecycle - check that configuration is complete before returning (#1085).

community.aws 3.2.1

Release Summary

This is a bugfix release of the community.aws collection.
The new parameter purge_tags in ec2_asg module, that
was introduced in community.aws 3.2.0 with its default
value true, possibly breaks existing playbooks for users
if they don't update their playbooks and specify
purge_tags: false. However, this release restores the
previous behaviour.

Minor Changes

• iam_role - delete inline policies prior to deleting role (#1054).
• iam_role - remove global vars and refactor accordingly (#1054).

Bugfixes

• ec2_asg - Change the default value of purge_tags to false. Restores previous behaviour (#1064).

community.aws 3.2.0

Major Changes

• s3_bucket_notifications - refactor module to support SNS / SQS targets as well as the existing support for Lambda functions (#140).

Minor Changes

• cloudfront_distribution - Added support for retries (AWSRetry.jittered_backoff) (#296)
• aws_acm - Add tags and purge_tags parameters to tag certificates in ACM (#870).
• ec2_asg - Added functionality to detach specific instances and/or decrement desired capacity from ASG without terminating instances (#933).
• ec2_asg - Restructure integration tests to run in parallel and reduce runtime (#1036).
• ec2_asg - add support for purge_tags to ec2_asg (#960).
• ec2_eip - refactor module by fixing check_mode and more clear return obj. added integration tests (#936)
• elb_application_lb - Add support for alb specific attributes and check_mode support for modifying them (#963).
• elb_application_lb - add check_mode support and refactor integration tests (#894)
• elb_application_lb_info - update documentation and refactor integration tests (#894)
• elb_target_group - add support for alb target_type and update documentation (#966).
• elb_target_group - add support for setting load_balancing_algorithm_type (#1016).
• rds_instance - add choices for valid engine value (#1034).
• rds_subnet_group - add check_mode (#562).
• rds_subnet_group - add tags feature (#562).

Bugfixes

• elb_application_lb_info - Add backoff retry logic (#977)
• ecs_taskdefinition - include launch_type comparison when comparing task definitions (#840)
• elb_application_lb - Fix empty security groups list behaves inconsistently on create/update by treating empty security group as VPC's defaault (#971).
• elb_target_group_info - Add backoff retry logic (#1001)
• iam_role - Removes unnecessary removal of permission boundary from a role when deleting a role. Unlike inline policies, permission boundaries do not need to be removed from an IAM role before deleting the IAM role. This behavior causes issues when a permission boundary is inherited that prevents removal of the permission boundary. (#961)
• redshift_info - fix invalid import path for botocore exceptions (#968).
• wafv2_web_acl - fix exception when a rule contains lists values (#962).

New Modules

• cloudfront_response_headers_policy - Create, update and delete response headers policies to be used in a Cloudfront distribution
• ec2_asg_instance_refresh - Start or cancel an EC2 Auto Scaling Group (ASG) instance refresh in AWS
• ec2_asg_instance_refresh_info - Gather information about ec2 Auto Scaling Group (ASG) Instance Refreshes in AWS
• rds_cluster - rds_cluster module
• rds_cluster_info - Obtain information about one or more RDS clusters
• sns_topic_info - sns_topic_info module

community.aws 2.4.0

Minor Changes

• Added suport for retries (AWSRetry.jittered_backoff) for cloudfront_distribution (#296)

Bugfixes

• Add backoff retry logic to elb_application_lb_info (#977)
• ecs_taskdefinition - include launch_type comparison when comparing task definitions (#840)
• elb_target_group_info - Add backoff retry logic (#1001)
• iam_role - Removes unnecessary removal of permission boundary from a role when deleting a role. Unlike inline policies, permission boundaries do not need to be removed from an IAM role before deleting the IAM role. This behavior causes issues when a permission boundary is inherited that prevents removal of the permission boundary. (#961)
• redshift_info - fix invalid import path for botocore exceptions (#968).
• wafv2_web_acl - fix exception when a rule contains lists values (#962).

community.aws 3.1.0

Minor Changes

• aws_secret - Add resource_policy parameter (#843).
• aws_ssm connection plugin - add parameters to explicitly specify SSE mode and KMS key id for uploads on the file transfer bucket. (#763)
• dynamodb_table - the table_class parameter has been added (#880).
• ec2_launch_template - Add metadata options parameter http_protocol_ipv6 and instance_metadata_tags (#917).
• ec2_lc - add support for throughput parameter (#790).
• ec2_placement_group - add support for partition strategy and partition count (#872).
• elb_instance - wait parameter is no longer ignored (#826)
• elb_target_group - add support for parameter deregistration_connection_termination (#913).
• iam_managed_policy - refactor module adding check_mode and better AWSRetry backoff logic (#893).
• iam_user - add parameter password_reset_required (#860).
• wafv2_web_acl - Documentation updates wafv2_web_acl and aws_waf_web_acl (#721).
• wafv2_web_acl - Extended the wafv2_web_acl module to also take the custom_response_bodies argument (#721).

Bugfixes

• Add backoff retry logic to route53_info (#865).
• Add backoff retry logic to route53_zone (#865).
• cloudfront_distribution - Dont pass s3_origin_access_identity_enabled to API request (#881).
• execute_lambda - Wait for Lambda function State = Active before executing (#857)
• lambda - Wait for Lambda function State = Active & LastUpdateStatus = Successful before updating (#857)
• rds_instance - Fix updates of iops or allocated_storage for io1 DB instances when only one value is changing (#878).

community.aws 2.3.0

Minor Changes

• elb_instance - wait parameter is no longer ignored (#826)

Bugfixes

• cloudfront_distribution - Dont pass s3_origin_access_identity_enabled to API request (#881).
• execute_lambda - Wait for Lambda function State = Active before executing (#857)
• lambda - Wait for Lambda function State = Active & LastUpdateStatus = Successful before updating (#857)

community.aws 3.0.1

Release Summary

This is a patch release of the community.aws collection.

Minor Changes

• aws_msk_config - remove duplicated and unspecific requirements (#863).
• ecs_taskdefinition - remove duplicated and unspecific requirements (#863).
• s3_lifecycle - Add abort_incomplete_multipart_upload_days and expire_object_delete_marker parameters (#794).

community.aws 2.2.0

Release Summary

This is a backport release of the community.aws collection.

Minor Changes

• aws_msk_config - remove duplicated and unspecific requirements (#863).
• aws_ssm connection plugin - add parameters to explicitly specify SSE mode and KMS key id for uploads on the file transfer bucket. (#763)
• ecs_taskdefinition - remove duplicated and unspecific requirements (#863).
• iam_user - add boto3 waiter for iam user creation (#822).
• iam_user - add password management support bringing parity with iam module (#822).
• s3_lifecycle - Add abort_incomplete_multipart_upload_days and expire_object_delete_marker parameters (#794).

Bugfixes

• aws_eks - Fix EKS cluster creation with short names (#818).

New Modules

• ec2_asg_scheduled_action - Create, modify and delete ASG scheduled scaling actions.

community.aws 3.0.0

Major Changes

• community.aws collection - The community.aws collection has dropped support for botocore<1.19.0 and boto3<1.16.0. Most modules will continue to work with older versions of the AWS SDK, however compatability with older versions of the SDK is not guaranteed and will not be tested. When using older versions of the SDK a warning will be emitted by Ansible (#809).

Minor Changes

• aws_glue_job - Added command_python_version parameter (#480).
• aws_glue_job - Added glue_version parameter (#480).
• aws_glue_job - Added support for check mode (#480).
• aws_glue_job - Added support for tags (#480).
• aws_ssm connection plugin - add parameters to explicitly specify SSE mode and KMS key id for uploads on the file transfer bucket. (#763)
• iam_user - add boto3 waiter for iam user creation (#822).
• iam_user - add password management support bringing parity with iam module (#822).
• route53 - ttl and value are not required for deleting records (#801).
• route53_info - max_items and type are no longer ignored fixing a regression (#813).

Breaking Changes / Porting Guide

• aws_acm_facts - Remove deprecated alias aws_acm_facts. Please use aws_acm_info instead.
• aws_kms_facts - Remove deprecated alias aws_kms_facts. Please use aws_kms_info instead.
• aws_kms_info - Deprecated keys_attr field is now ignored (#838).
• aws_region_facts - Remove deprecated alias aws_region_facts. Please use aws_region_info instead.
• aws_s3_bucket_facts - Remove deprecated alias aws_s3_bucket_facts. Please use aws_s3_bucket_info instead.
• aws_sgw_facts - Remove deprecated alias aws_sgw_facts. Please use aws_sgw_info instead.
• aws_waf_facts - Remove deprecated alias aws_waf_facts. Please use aws_waf_info instead.
• cloudfront_facts - Remove deprecated alias cloudfront_facts. Please use cloudfront_info instead.
• cloudwatchlogs_log_group_facts - Remove deprecated alias cloudwatchlogs_log_group_facts. Please use cloudwatchlogs_log_group_info instead.
• dynamodb_table - deprecated updates currently ignored for primary keys and global_all indexes will now result in a failure. (#837).
• ec2_asg_facts - Remove deprecated alias ec2_asg_facts. Please use ec2_asg_info instead.
• ec2_customer_gateway_facts - Remove deprecated alias ec2_customer_gateway_facts. Please use ec2_customer_gateway_info instead.
• ec2_eip_facts - Remove deprecated alias ec2_eip_facts. Please use ec2_eip_info instead.
• ec2_elb_facts - Remove deprecated alias ec2_elb_facts. Please use ec2_elb_info instead.
• ec2_elb_info - The ec2_elb_info module has been removed. Please use the elb_classic_lb_info`` module.
• ec2_lc_facts - Remove deprecated alias ec2_lc_facts. Please use ec2_lc_info instead.
• ec2_placement_group_facts - Remove deprecated alias ec2_placement_group_facts. Please use ec2_placement_group_info instead.
• ec2_vpc_nacl_facts - Remove deprecated alias ec2_vpc_nacl_facts. Please use ec2_vpc_nacl_info instead.
• ec2_vpc_peering_facts - Remove deprecated alias ec2_vpc_peering_facts. Please use ec2_vpc_peering_info instead.
• ec2_vpc_route_table_facts - Remove deprecated alias ec2_vpc_route_table_facts. Please use ec2_vpc_route_table_info instead.
• ec2_vpc_vgw_facts - Remove deprecated alias ec2_vpc_vgw_facts. Please use ec2_vpc_vgw_info instead.
• ec2_vpc_vpn_facts - Remove deprecated alias ec2_vpc_vpn_facts. Please use ec2_vpc_vpn_info instead.
• ecs_service_facts - Remove deprecated alias ecs_service_facts. Please use ecs_service_info instead.
• ecs_taskdefinition_facts - Remove deprecated alias ecs_taskdefinition_facts. Please use ecs_taskdefinition_info instead.
• efs_facts - Remove deprecated alias efs_facts. Please use efs_info instead.
• elasticache_facts - Remove deprecated alias elasticache_facts. Please use elasticache_info instead.
• elb_application_lb_facts - Remove deprecated alias elb_application_lb_facts. Please use elb_application_lb_info instead.
• elb_classic_lb_facts - Remove deprecated alias elb_classic_lb_facts. Please use elb_classic_lb_info instead.
• elb_target_facts - Remove deprecated alias elb_target_facts. Please use elb_target_info instead.
• elb_target_group_facts - Remove deprecated alias elb_target_group_facts. Please use elb_target_group_info instead.
• iam - Removed deprecated community.aws.iam module. Please use community.aws.iam_user, community.aws.iam_access_key or community.aws.iam_group (#839).
• iam_cert_facts - Remove deprecated alias iam_cert_facts. Please use iam_cert_info instead.
• iam_mfa_device_facts - Remove deprecated alias iam_mfa_device_facts. Please use iam_mfa_device_info instead.
• iam_role_facts - Remove deprecated alias iam_role_facts. Please use iam_role_info instead.
• iam_server_certificate_facts - Remove deprecated alias iam_server_certificate_facts. Please use iam_server_certificate_info instead.
• lambda_facts - Remove deprecated module lambda_facts. Please use lambda_info`` instead.
• rds - Removed deprecated community.aws.rds module. Please use community.aws.rds_instance (#839).
• rds_instance_facts - Remove deprecated alias rds_instance_facts. Please use rds_instance_info instead.
• rds_snapshot_facts - Remove deprecated alias rds_snapshot_facts. Please use rds_snapshot_info instead.
• redshift_facts - Remove deprecated alias redshift_facts. Please use redshift_info instead.
• route53_facts - Remove deprecated alias route53_facts. Please use route53_info instead.

Bugfixes

• aws_eks - Fix EKS cluster creation with short names (#818).