- Add flag to control global resource deployment
- Update network admin policy to manage bastion in network compartment
- Add bastion subnet to flow logging
- Add CMK for audit log bucket
- Update provider version
- Remove default from security list examples
- Add notification service
- Separate tagging into a module
- Add consumption tags
- Separate VSS into a module
- Modify terraform version
- Resolved Cloud Guard reporting region issue
- Resolved audit log retention days when not using audit logging
- Enable compartment deletion (Sandbox Mode only)
- Hide administrator group from accidentally showing up in ORM
- Changed CloudGuard Detector recipes again - the CloudGuard service continues to rename these, and we're trying to keep up. We have a backlog item to make this more resilient.
- Allow audit logs to be as low as 1 day; default is now 1 day
- Updated bad variable name in example tfvars (advanced_logging)
- Update zip file name to include date stamp (01282022)
- Terraform linting built into project
- Terraform version added to provider requirements
- The Administrator group is no longer created - instead we use the existing Administrator group, and add the break glass users to this group
- CloudGuard Detector recipes were renamed (on the backend) - value updated in CG config
- Better defaults for private and shared subnets, which are optional. Updated regular expression to allow empty value for when these subnets are not created.
- Finish rename for fss-subnet module in the top level vcn.tf file