Tags

Tags give the ability to mark specific points in history as being important

v3.5.0

157fc26a · Merge branch 'jhaney/ICRN-65/k8s-cis-hardening' into 'main' · Jul 16, 2025

### Added
- added option `rke2_cis_hardening` (default false) to install RKE2 security options for CIS Benchmark compliance
  - add etcd user/group
  - configure kernel params for CIS benchmark
  - add option for RKE2 CIS profile if `rke2_cis_hardening` enabled
- added option to define pod security admission (PSA) template
### Changed
- upgraded metallb to 0.14.*
- define machine labels as map(string), not array of key=value strings

v3.4.0

43bec8e3 · Merge branch 'node-variable' into 'main' · May 08, 2025

Release: Release 3.4.0
```
### Changed
- changed the data structure in variables that holds the machine definition
```

v3.3.0

742fb98f · Update CHANGELOG.md · May 04, 2025

Release: Release 3.3.0

### Added
- can now configure Qualys agent
### Changed
- bumped monitoring to 106.*
- set retentionSize for prometheus to be 10GB

v3.2.2

2620ab23 · fix missing local · Feb 15, 2025

Release: Release 3.2.2

### Fixed
- removed hard coded image in cinder
- traefik fix redirct to be redirections 
### Added
- added timeouts for traefik (fixes harbor)
### Changed
- disable FRR in metallb since we only use L2 announcements
- bumped monitoring to 105.*

v3.2.1

18c02a3d · update changelog · Sep 07, 2024

Release: Release 3.2.1

### Changed
- if ncsa_security, disable snap
- if ncsa_security, limit ssh hosts to ncsa only

v3.2.0

80075b79 · Merge branch 'rke2-k3s' into 'main' · Aug 15, 2024

Release: Release 3.2.0

This allows to create a cluster that is RKE2 or K3S as well as RKE1. RKE1 is deprecated and will stop to be supported on July 31st, 2025. If you want to use either RKE2 or K3S you will need to change the `network_plugin`.
In version 3.5.0 the default network for RKE1 will be set to canal, please make sure to either upgrade or explicitly say to use weave.
In version 4.0.0 RKE1 will be removed
### Added
- can use RKE2 or K3S clusters by setting kubernetes_version (leave blank to create RKE1 cluster)
- can specify the key to use for the cluster, and not create a new key for each cluster (`openstack_ssh_key`)
### Changed
- renamed rke1 module to cluster module, until version 4.0.0 rke1 module will be pushed as well as cluster module.
- added commands to clean up default chrony sources
### Removed
- removed rke2 module, this is now part of cluster module

v3.1.3-alpha2

4ee6b549 · add missing endif · Jul 29, 2024
v3.1.3-alpha

af66d7fa · update changelog · Jul 22, 2024
```
Release 3.1.3-alpha
```
v3.1.2

1761ca09 · curl instead of ping · Jul 03, 2024
```
Release 3.1.2
```
v3.1.1

40f03a5f · only show protocols if any enabled in manila · Jun 09, 2024
```
Release 3.1.1
```
v3.1.0

d6f36ce5 · manila not manilla · Jun 03, 2024
```
Release 3.1.0
```
v3.0.0

7f5f7e8a · Update variables.tf · Feb 22, 2024
```
Release 3.0.0
```
v2.4.0

c639d596 · Merge branch 'ncsa-security' into 'main' · Feb 07, 2024
```
Release 2.4.0
```
v2.3.4

60ae0cc5 · update template for argocd · Sep 09, 2023
```
Release 2.3.4
```
v2.3.3

999d1729 · allow to use monitoring in argocd · Sep 09, 2023
```
Release 2.3.3
```
v2.3.2

db69453a · fix critical issue where nodes could be destroyed · Aug 30, 2023
```
Release 2.3.2
```
v2.3.1

ce9df166 · change argocd url · Aug 26, 2023
```
Release 2.3.1
```
v2.3.0

d843f86d · allow to set ssh access · Aug 25, 2023
```
Release 2.3.0
```
v2.2.0

25a9d9e8 · removed nodeport in securitygroup · Aug 07, 2023
```
Release 2.2.0
```
v2.1.1

edef3cf8 · fix rancher ip · Aug 03, 2023
```
Release 2.1.1
```