v5.0.3

Added

Support for Forseti v2.23.3 [#600]

• Fixed model creation issue due to duplicate permissions in some roles

v5.1.4

Added

Support for Forseti v2.24.3 [#599]

• Fixed model creation issue due to duplicate permissions in some roles

v5.2.2

Added

Support for Forseti v2.25.2 [#598]

• Fixed model creation issue due to duplicate permissions in some roles

v5.2.1

Added

Support for Forseti v2.25.1 [#563]

• Fixed method calls for organization policies.

v5.2.0

Added

• Configure firewall rules in support of private Client and Server #391
• Add Service Account Key to CAI assets in Server config #393
• Add policy_library_repository_branch to GCE module #394
• Add sql instance user and password #399
• Conditional firewall rules #400
• Conditional service networking #401
• Create stale.yml for Stale Bot #402
• Enable uniform bucket-level access #405
• Add Cloud SQL DB User and Password as outputs #407
• Added install-simple tests #408
• Use network project for private IP address in CloudSQL submodule #412
• Allow user to configure Scanner Rules path to GCS or local dir #414
• Update version in README #426
• Removed simple_example #444
• Create CONTRIBUTORS file #454
• Expose Cloud SQL instance IP #483
• CAI - Add k8s.io/Service resource #485
• Ability to configure shielded instance config #488
• Create Governance file #535
• Update stale bot #534
• Support Bring-Your-Own Service Accounts #546
• Automated roles and APIs needed for Forseti on-GKE deployment #498
• Bump google provider version to 3.7 #502
• Update Cloud shell tutorial and other links to point to modulerelease512 [#503]
• Ability to exclude client VM [#504]
• Added functionality to enable/disable role scanner #526
• Input for the Policy Library check of the CV scanner #529
• Update stale.yml #534
• Create GOVERNANCE.md #535

Fixed

• Fix space in Location Rules template #392
• Fix string interpolation warnings #395
• Remove the % character from the Cloud SQL password #417
• Base64 encode CloudSQL username and password for the helm chart secrets #419
• Style fixes #430
• Add spanner.googleapis.com #435
• Update the Bigquery api to the new name #437
• Fix validate error #449
• Increased open files limit to fix OSError: [Errno 24] Too many open files #450
• Sync policy library with gsutil rsync #463
• Fix security reviewer role name #466
• Fix cloudsql password #472
• Add service usage service resource [#473]
• Use internal DNS for client -> server communication #482
• Pin helm provider version to 0.10.* for Helm 2 #495
• Fix GKE example #508
• manage_rules_enabled=false should not prevent Forseti service from starting #512
• Corrected description for blacklist scanner #525

v5.1.3

Added

Support for Forseti v2.24.2 [#524]

v5.0.2

Added

Support for Forseti v2.23.2 [#518]

v5.0.1

Added

• Support for Forseti v2.23.1 [#476]

v5.1.2

Added

• Support for Forseti v2.24.1 [#499]

v5.1.0

Added

• Support for Forseti v2.24.0 [#386]
• Parameterized Kubernetes version [#385]
• GCS bucket location to tutorials and examples [#382]
• Improved existing resource import in v5.0.0 [#354]
• Starting Forseti service automatically at boot (#286) [#275]
• Ignoring the size of the CloudSQL disk on re-apply [#371]
• Root outputs.tf to include forseti-cai-storage-bucket [#374]
• The On GKE end-to-end example to have the same machine type and disk type as the defaults for GCE. Moved these variables out of main.tf into the variables.tf file. [#369]
• setup.sh to reuse existing deployer service account [#357]
• GCS as a policy-library store for on-GKE [#356]
• Support for the case where the user is syncing from GCS and not SSH key is present [#362]
• CIS Annotations CIS 2.1 [#348] [#349] [#350] [#351]
• GKE module support for custom Cloud SQL database names [#314]

Fixed

• Changing the branch names to branches without special characters [#383]
• Test fixtures to use master branch of Forseti [#378]
• Correct server bucket variable being passed to helm_release resource. [#320]

Removed

• Issue templates [#365]