- Added singular data source for Object Storage objects
- Fixed an issue where the default retry timeout is zero seconds if
retry_duration_secondsisn't specified - Modifying immutable
metadatafields such asssh_authorized_keysanduser_datashould result in new instances. Issue #673 - Vendored Terraform helper/schema SDK to return matching data type for maps in case of empty state. Issue #685
- Support for
retry_duration_secondsoption to configure length of retry in the face of HTTP 429 and 500 errors - Support for custom header insertion, extension, and removal for Load Balancer listener resource
- Support for consistent volume names in the Block Volume attachments
- Retried SDK calls are now jittered to avoid herding of retry requests in high parallelism scenarios
- Fail the initialization of the provider if either of
user_ocid,fingerprint,private_key,private_key_pathorprivate_key_passwordare specified forInstancePrincipalorInstancePrincipalWithCertsauth mode.
- Examples and test updated to use VM.Standard2.1
- Windows example image updated to Windows-Server-2012-R2-Standard-Edition-VM-Gen2-2018.12.12-0
- Reverted previous fix for immutable
metadatafieldsssh_authorized_keysanduser_datathat results in new instances due to a crash when using interpolations in TypeMap with customdiff (Issue #685)
- LoadBalancer BackendSets to have TypeSet for Backends to avoid out of order diffs
- Regression in handling of failed work-requests to pass the errors to the user and fail the apply
- Removing certificates from load balancer listeners can be done by omitting
ssl_configuration - Load balancer resources that are stuck in failed state during deletion can now be deleted after upgrading
- Modifying immutable
metadatafields such asssh_authorized_keysanduser_datashould result in new instances
- Support for tagging in
oci_dns_zone - New attribute
nameserversis added tooci_dns_zone - Support for in-transit encryption for paravirtualized boot and data attachment
- Identify latest database version with
oci_databse_db_versionsdata source usingis_latest_for_major_versionproperty - Support for importing tag. Note tag uses custom Id(import only) format (tagNamespaces/{tagNamespaceId}/tags/{tagName}) to support import.
- Support for provisioning user capabilities for native and federation shadow users
- Support
idattribute foroci_identity_availability_domains - Support
freeform_attributesattribute for theoci_identity_identity_provider - Support for
sparse_diskgroupfor Exadata dbsystem
- Support for attaching Route Table to Subnet. Issue #270
- Support for the Instance Pools & Instance Configurations
- Support for the Block Volume cross-region backups
- Support for 'approximate_count' and 'approximate_size' for bucket resource
- Support VCN Transit
- New parameter
is_hydratedinoci_core_volume_groupsresource and data source - Support for public IP prefixes (CIDRs) up to 31
- Support for tagging in
oci_file_storage_file_system,oci_file_storage_mount_target, andoci_file_storage_snapshot
- Make
route_table_id,dhcp_options_idinoci_core_subnetupdatable - Make
security_list_idsinoci_core_subnetoptional and updatable
- Volumes: The
backup_policy_idattribute is now deprecated. Backup policy should be assigned throughvolume_backup_policy_assignmentsresource instead. - BootVolumes: The
backup_policy_idattribute is now deprecated. Backup policy should be assigned throughvolume_backup_policy_assignmentsresource instead.
- New parameters
db_nameandstateinoci_database_databasedata source - New parameters
display_nameandstateinoci_database_db_homesdata source - New parameter
stateparameter inoci_database_db_nodesdata source - New parameters
availability_domain,display_name, andstateinoci_database_db_systemsdata source - Support for Partner Image Catalog
- Support for Key Management Service
- Support for encrypting the contents of an Object Storage bucket using a Key Management Service key
- Support for specifying a Key Management Service key when launching a compute instance in the Compute service
- Support for specifying a Key Management Service key when backing up or restoring a block storage volume in the Block Volume service
- Support enabling cost tracking for tags using
is_cost_trackingfield - Support returning maintenance reboot time for compute instances using
time_maintenance_reboot_duefield - Support nesting and deleting compartments. Compartment delete requires opt in, see compartment documentation
- Data type for properties with type as TypeSet to TypeList in following datasources:
oci_core_route_tables,oci_core_security_lists,oci_core_volume, andoci_core_service_gatewaysto allow referencing by indexes in Terraform configs.
- Support for Cross Region Copy of objects
- Support for object lifecycle policies on a bucket on object storage. See Using Object Lifecycle Management
- Support for singular data source for a bucket
- Additional nested field in
oci_database_backupsdata source andoci_database_backupresource, under thebackupsproperty calleddatabase_size_in_gbs - Support for generating and downloading wallets for Autonomous Database and Autonomous Data Warehouse. See Connecting to Autonomous Data Warehouse for more details.
- Nested field in
oci_database_backupsdata source andoci_database_backupresource, under thebackupsproperty calleddb_data_size_in_mbsmarked as deprecated
- Support for clone and resize of Boot Volume
- Support for specifying a backup policy at the time of creating a Boot Volume
- Support for offline resizing of Boot Volume
- Support for tagging of Boot Volume
- Support for NAT Gateways
- Support for singular data sources that can query individual Volumes, Subnets, and Instances
- Fields "assigned_entity_id" and "assigned_entity_type" to Public IPs to allow distinguishing Public IPs of the NAT Gateway.
- Importing of volumes with backup policies. Issue #590
- Updating of Virtual Circuits fails with field bgpMd5AuthKey is not supported
- Support for new Image launch mode: paravirtualization
- Fix logic to prevent unexpected diffs related to numbers. Issue #607
- Support updating size of offline volumes
- Specifying lifecycle state in container engine cluster datasource properly filters. Issue #600
- Importing the assign_public_ip attribute for instances has the correct default. Issue #593
- ADW and ATP resources destruction still succeeds if the database lifecycle state becomes
Unavailable
- Fixed bug with load balancer compositeId. Issue #612
- Support for importing load balancer related resources such as backend, backend set, hostname, listeners, and path route sets
- Support for updating an instance's metadata and extended metadata
- Fixed bug with DNS Records when the user specified more than 50 records in a terraform config. Issue #581
- This is the first provider version that can be automatically downloaded and installed with the
terraform initcommand.
- Support for Autonomous Data Warehouse and manual backups
- Support for Autonomous Transaction Processing (a.k.a Autonomous Database) and manual backups
- Support for specifying a backup policy at the time of creating a Volume
- Support for listing Fault Domains in an AD and specifying them when launching an Instance
- Support for Boot Volume Backups. See Boot Volume Backup Resources and Backing Up a Boot Volume
- Support for efficient large file uploads in Object Storage using multi-part API by providing
sourcepath. See Object Resources and Using Multipart Uploads
- Fix to security lists to avoid diffs after an apply in certain cases (#565)
- Support Audit Events Data Source
- Support for export options in the File Storage service for improved access controls
- Support for tagging on Load Balancer Resource. See Tagging Resources
- Support for large integers (int64) on
oci_core_volume.size_in_gbs,load_balancer_listener.idle_timeout_in_seconds,oci_file_storage_export_set.max_fs_stat_bytes, andoci_file_storage_export_set.max_fs_stat_filesinputs - Include additional exported attributes related to computed sizes in VolumeGroup and VolumeGroupBackup
- This release updates the OCI Provider code dependencies to Terraform v0.11.7, the result is that users with Terraform binary versions earlier than v0.10.1 will need to update--we recommend using the latest 0.11.x binary
- Fix bug that was causing creation of tags and tagging namespaces to fail (#562)
- Support for Container Engine for Kubernetes, adding resources for clusters, node pools, and data source for kubeconfig
- Support for FastConnect, cross-connect group and virtual circuits resources and data sources
- Fix bug introduced in v2.1.14 (#558), failure updating a Route Table's Route Rules when they contain a rule that includes a Service Gateway ID
###Notes This build contains a known issue where updates to a Route Table's Route Rules (when they contain a rule that includes a Service Gateway ID) fail with a 400 service error code (#558). The issue is fixed in v2.1.15.
- Ability to create and manage email approved senders, suppressions, and SMTP credentials
- Adding Service Gateway resource and data source, update Route Table and Security List
- Add Audit service configuration resource
- Support Identity Federation
- Users may notice larger diffs for Security List's
ingress_security_rules,egress_security_rulesand Route Table'sroute_rules. The internal representation has been changed from Lists to Sets, which results in unexpected but innocuous Terraform behavior. See this issue for discussion: hashicorp/terraform#15180 - Default timeout changed from 5 minutes to 15 minutes to accommodate some resources that may take longer to succeed
- Ability to update compartment of an Object Storage Bucket
- Updated Database data source to support tags
- Delete behavior fixed on Load Balancer resources for failed work requests
- Add defined and freeform tags to applicable resources, see Tagging Resources
- Manage defined tags
- Filter by tags in data sources
- Support health status datasources for load balancer, backends, and backend sets
- Object Storage Buckets supports storage tier settings.
- Object Storage Objects can be renamed.
- Object Storage Objects data source supports specifying a
delimiter. - DBsystems supports update. This allows scaling up the cpu_core_count in and the data_storage_size_in_gb.
- Create backups from a database.
- Support creating a DBSystem from a Database backup.
- Support db_system_id for db_versions data source.
- The db_system_shapes data source results now include information about max/min node count, and min core count supported by the relevant shape.
- Assign backup policies to volumes.
- Support additional ways of finding a Public IP via custom Public IP data source.
- Ability to create and manage console connections.
- Object Storage Object's attributes other than
nameare now markedforceNew. This is consistent with the behavior of the service as defined here.
- Multiple updates on Object Storage Object's metadata used to cause contents of the file to get overwritten by its md5 value.
- DBSystems cpu_core_count was made optional as the service ignores it when you provide a VM shape. #517, #539.
- Support importing images from object store or external sources.
- Updated Terraform Provider to use LaunchDbSystemDetails to provision DbSystem resource.
- Fix orphaned load balancer backend on port change #519.
- Fix to example in Route Tables documentation file.
- Added support for AuthToken Resource (replacement of deprecated SwiftPasswords) in Identity Service.
- Added support for Volume Group and Volume Group Backup.
- HCL syntax highlighting in docs
- Nil checks for time properties to avoid panic
- Support for dynamic group resources and data sources
- Support for object storage namespace metadata resources and data sources
- Support for region subscription data sources
- Added support for customer secret keys. More details can be found here.
- Added boot volume attachments data source. More details can be found here.
- Added region data source. More details can be found here.
- Added tenancy data source. More details can be found here.
- Added support for remote VCN peering. More details can be found here, and an example here.
- Added a data source for boot volumes. More details can be found here.
- Fixed a crash that can occur when using the
oci_identity_api_keyresource and editing the API key outside of Terraform.
- Added support for virtual host names for Load balancer listeners. See listeners, hostnames for more details.
- New features for images -
- Image launch mode can be specified when creating an image
- The image size can be read from image resources and data sources
- Image data sources can query using a “shape” filter
- New features for boot volumes -
- Custom instance boot volume sizes can be specified at launch time
- Launch options can be read from instance and image resources and data sources
- New features for block volumes -
- Volume attachments can enable CHAP authentication for iSCSI attachments
- Volume attachments can be specified as read-only
- Paravirtualized volume attachments can be created
- Volume backups can specify whether a full or incremental backup type should be created
- Filters support all Terraform primitives (string, bool, int, float)
- Imports for Load Balancer resource are now enabled
- Fixed policy version_date bug (#508)
- New features for Instances
- Add “preserve_boot_volume” attribute for preserving attached boot volume on destroy.
- Add “source_details” attribute for specifying either an image or an existing boot volume when launching.
- More details can be found here.
- Added support for Local VCN Peering. More details can be found here.
- DNS service integration: adds Zone and Record resources, datasources, documentation and basic examples. More details can be found here.
- Instances: The “image” attribute is now deprecated. Please use the “source_details” with “source_type” set to “image” instead.
- Add support for Public IPs. More details can be found here.
- Added export set resource to File Storage Service. Users can now update FSSTAT related parameters on the export set resource.
- Support a new resource name for load balancer backend set that is consistent with other resources. The new name is 'oci_load_balancer_backend_set'. The previous usage of 'oci_load_balancer_backendset' is still supported.
- File Storage Service: Allows management of NFS filesystems, mount targets, exports, and snapshots. (#440) More details can be found here.
- Load Balancer PathRouteSets: Added support for load balancer request routing using path route sets. (#434)
- Load Balancer Listeners: Added connection_configuration attribute for specifying idle timeouts. (#425)
- Instance Principals: Allows Terraform OCI provider running within an authorized instance to reach Oracle Cloud Infrastructure services. More details can be found here.
- Load Balancer Certificates:
passphraseandprivate_keyattributes are now marked as Sensitive. (#447) - Load Balancer work request failures now include extra error details from the service.
- VolumeAttachment: Handle unsupported attachment types. If an unsupported attachment type is returned by the service, the SDK's base interface is used to populate common fields.
- Instances: Add missing state field to datasource.
More details for the changes introduced in 2.1.0 can be found here
- Client side filtering is now enabled for all data sources that return a list.
- Some Core data sources now support server side filtering by
display_nameandstate. - New optional parameters and fields have been added to existing resources and data sources to support new functionality added by the services.
- Documentation files have been updated and improved. Documentation files for resources and data sources of the same entity have now been consolidated into one file.
limitandpageparameters in data sources have been deprecated. All list data sources loop through all the pages and return one aggregated list.- The
time_modifiedfield was deprecated from a few resources as it is no longer set by the service.
- Updates to fields in
oci_objectstorage_preauthrequestresource will force the destruction and recreation of the resource. Updates to fields in this resource had no effect earlier. - Updating some fields resulted in nothing happening. This has been fixed.
- Unexpected destruction and recreation of
oci_objectstorage_objectwas fixed by constraining all keys in themetadatamap to be lower case.
- With this release we started using the new official OCI Go SDK. Widespread changes to the source code were needed to make this happen.
- Removing optional parameters from a created resource will not result in a difference and the value for that field will remain as it was. If you want to reset the field to the default value returned by the service for that field you will have to taint the resource to destroy it and recreate it.
- If upgrading the OCI provider from v1.x.x, see this wiki for migration steps.
- See docs for this version here.
- NA
- Correctly resolve Load Balancer and Listener creation failures so plans can be reapplied (#414 and #430).
- Allow Object Storage Buckets to be renamed in plans by implementing the correct ForceNew behavior (#424).
- A minimum of TLS 1.2 is now enforced by the provider (#394)
- Fixed an issue where importing a default resource would leave the manage_default_resource_id empty in the state file during import of default resources (#393, #379)
- Enhanced security options by adding support for source port range under security list rules. This can be specified in "tcp_options" and "udp_options" (#340).
- Allow configuration of default resources under VCNs (#374). See more details about this feature here.
- Fixed bug wherein policy was not destroyed and recreated when compartment is changed (#389)
- Fixed errors with terraform import because of missing vcn_id in
*.tfstatefiles (internet_gateway, route_tables, dhcp_options) (#388, #379) - Fixed error where same retry token was being used for multiple requests in some development environments when auto retries were activated (Issue #170)
- Code refactoring was done as part of this release. Go source file names have changed, the
providerdirectory has been added. Should not impact the users in any way. - If upgrading from v1, see this wiki for migration steps.
- See docs for this version here.
- Host header and version to signing (#340)
- Support for block volume fast clones (#347)
- Examples of "oci_core_images" data source now filter on "display_name" to accommodate changes to available images (#342 and #345)
- Filters for most core, IAM, and Load Balancer data sources. See docs/Filters.md for details.
- Support for Virtual Machine (VM) DB Systems
- Support for Bring Your Own License (BYOL) licensing model for DB Systems
- Optimize service error retry behavior (#179)
- Object store fixes (#225)
- Properly handle version date in policies, ignore format changes when diffing (#230)
- Ignore case for DNS Labels (#279)
- Oci-tool migration tool fixes (#298) (#292)
- Support update and refresh on Instance and Vnic details
- File upload example
- Block volumes support for size in gigabytes (#297)
- Support for compartment renaming (#250)
- Handle and log URL parsing errors (#277)
- Minor update to bmcs-go-sdk license
- Acceptance test refinements
- Resources are now removed from the state file if in a "terminated" state so that it is recreated on an apply (#113)
- Enable empty route rules (#68)
- Fix import of Subnet prohibit_public_ip_on_vnic
- Adds pagination to all IAM data sources
- General fixes for plans including compartments as a resource
- VNIC skip_source_dest_check property
- Changes name from terraform-provider-baremetal to terraform-provider-oci. See this wiki on migration steps and associated migration tool usage instructions.
- Support for Secondary Private IPs
- For earlier versions, see releases.