v1.3.59 - 2021-09-02T11:53:26Z

v1.3.59 - 2021-09-02T11:53:26Z

• eb7bd02 Updating CHANGELOG.md via make changelog-patch for v1.3.59 [ci skip]
• f13359b Reduce number of subnets in Network and add a few more permissions to DevOps role in Shared (#306)

v1.3.58 - 2021-09-01T01:50:31Z

• 311586f Updating CHANGELOG.md via make changelog-patch for v1.3.58 [ci skip]
• 8c11965 Fix undeclared variable warning (#304)

v1.3.57 - 2021-08-31T18:45:58Z

• 86c98b6 Updating CHANGELOG.md via make changelog-patch for ^@^@v1.3.57 [ci skip]
• 525d2ba Update DevOps and DeployMaster permissions (#303)

v1.3.56 - 2021-08-27T13:53:02Z

• 7aaaaec Updating CHANGELOG.md via make changelog-patch for v1.3.56 [ci skip]
• b9e23bc Fix Shared VPC FlowLogs, add DevOps role permissions on Athena, and create a role for Grafana on the network account (#302)

v1.3.55 - 2021-08-26T23:32:35Z

v1.3.55 - 2021-08-26T23:32:35Z

• 8d967ba Updating CHANGELOG.md via make changelog-patch for v1.3.55 [ci skip]
• bb11e4d Merge pull request #301 from binbashar/fix/cws-locals
• ee60b3b Add README for the HOME_NET use case
• 75fb461 Add HOME_NET variable in stateful-group-1 rule
• 5b657c6 Remove not longer used customer_gateways variable
• f16cf44 Move customer gateways definitions to a locals file
• dd7b37c Move customer gateways definitions to a locals file

v1.3.54 - 2021-08-25T13:53:53Z

• 23b809b Updating CHANGELOG.md via make changelog-patch for v1.3.54 [ci skip]
• 556d036 Merge pull request #300 from binbashar/feature/nfw-module
• e765cb7 Add deny domain access example for the AWS NFW
• 12a4202 Add a count for nfw module definition
• f94d5a2 Change NFW implemteation to the module approach

v1.3.53 - 2021-08-19T13:36:34Z

v1.3.53 - 2021-08-19T13:36:34Z

• a2c18be Updating CHANGELOG.md via make changelog-patch for v1.3.53 [ci skip]
• bd1941b Create a reference code for exporting RDS snapshots to S3 (#299)

v1.3.52 - 2021-08-15T04:23:19Z 

• 7cb3faf Updating CHANGELOG.md via make changelog-patch for v1.3.52 [ci skip]
• 97f7af0 Merge pull request #298 from binbashar/feature/nfw-deploymaster
• 493430e Add grant network firewall to deploymaster role

v1.3.51 - 2021-08-09T18:20:35Z

• 386e1f2 Updating CHANGELOG.md via make changelog-patch for v1.3.51 [ci skip]
• 089969d Fix missing backend in RDS Aurora (#297)

v1.3.50 - 2021-08-09T13:36:56Z

• 445b270 Updating CHANGELOG.md via make changelog-patch for ^@^@v1.3.50 [ci skip]
• 5f9fc87 Demoapps (#296)

v1.3.49 - 2021-08-07T17:00:33Z

v1.3.49 - 2021-08-07T17:00:33Z

• 71fd3e3 Updating CHANGELOG.md via make changelog-patch for v1.3.49 [ci skip]
• ac2afa8 Merge pull request #295 from binbashar/fix/tgw-nfw
• 20e987c Disable TGW by default
• c444129 Add enable_tgw in the common.config example file
• 4dc42ab Fix wrong condition for TGW/Peerings toggle
• 4f5e7d6 Pinterraform-aws-vpn-gateway module
• 9ecbaf1 Fix wrong inspection route table id output value
• ebb248e Add local_ipv4_network_cidr and remote_ipv4_network_cidr support
• 6b4bac4 Add TGW VPN route table associations
• 88cdb1b Set single nat gateway for all AZs as default
• 2e9b36b Add TGW VPN route table associationsç
• f607b79 Add vpn_connection_static_routes_only parameter in auto.tfvars
• a38c75f Fix Network Firewall endpoints issue when adding / removing subnets
• 992919d Fix Network Firewall endpoints issue when adding / removing subnets
• c801c7a Separate logic for network-base and TGW layers

v1.3.48 - 2021-08-03T18:56:08Z

v1.3.48 - 2021-08-03T18:56:08Z

• dee5a65 Updating CHANGELOG.md via make changelog-patch for v1.3.48 [ci skip]
• 67976f9 Merge pull request #290 from binbashar/feature/tgw-vpn-attachments
• 3ba5164 Merge branch 'feature/tgw-vpn-attachments' of github.com:binbashar/le-tf-infra-aws into feature/tgw-vpn-attachments
• f4f577b Add all VPN Gateway parameters supported by the module
• f77e064 Add comments for TGW routes in the vpc attachacmemts
• acd560d Support 1 or more rule creation based in the amount of CIDR blocks
• f31a818 Add vpn gateways support
• f747dda Add all VPN Gateway parameters supported by the module
• 9e92f1f Add comments for TGW routes in the vpc attachacmemts
• 1aa27b1 Support 1 or more rule creation based in the amount of CIDR blocks
• 547c3b7 Add vpn gateways support

v1.3.47 - 2021-07-30T14:04:11Z

v1.3.47 - 2021-07-30T14:04:11Z

• 7ee1fad Updating CHANGELOG.md via make changelog-patch for v1.3.47 [ci skip]
• 191c4cf Fix duplicated variable: 'network_account_id' (#294)

v1.3.46 - 2021-07-30T00:28:24Z

• 780b964 Updating CHANGELOG.md via make changelog-patch for v1.3.46 [ci skip]
• fce301d Merge pull request #293 from binbashar/feature/#154-vault-hcp-integration
• cac1e20 #154 | very small circleci sintaxt enhancement

v1.3.45 - 2021-07-30T00:15:46Z

v1.3.45 - 2021-07-30T00:15:46Z

• 1d57560 Updating CHANGELOG.md via make changelog-patch for v1.3.45 [ci skip]
• 8814351 Merge pull request #292 from binbashar/feature/#154-vault-hcp-integration
• 37ad1b7 #154 | updating vm in release job
• df6b13a #154 | adding some pre-commit debugging commands
  ...
• 0af406c #154 | adding some pre-commit debugging commands

v1.3.44 - 2021-07-29T23:42:56Z

• 1b939ba Updating CHANGELOG.md via make changelog-patch for ^@^@v1.3.44 [ci skip]
• b2e94cb Merge pull request #289 from binbashar/feature/#154-vault-hcp-integration
• 4c3cf15 #154 | using pip3 in ci pipeline
• eec86b4 #154 | adding ci step to register HashiCorp GPG keys
• aa51042 #154 | upgrading circleci ubuntu vm version
• c1cd745 #154 | merging latest master code and fixing conflicts
• 3eecc25 #154 | config/common.config.example updated including new supported network account
• e76352b #154 | security/security-monitoring-* layers integrated with vault hcp
• 148f22e #154 | shared/base-identities removing not necessary user
• e3c7823 #154 | integrating cross account notification layers with vault hcp
• c476988 #154 | integrating apps-devstg/databases-* layers with vault hcp
• 0d2571d #154 | adding network_account_id variable cross account layers
• 20dc133 #154 | integrating apps-devstg/databases layers with vault

v1.3.43 - 2021-07-22T15:43:10Z

v1.3.43 - 2021-07-22T15:43:10Z

• 7607665 Updating CHANGELOG.md via make changelog-patch for ^@^@v1.3.43 [ci skip]
• 2b1af83 Merge pull request #288 from binbashar/feature/aws-network-firewall
• e018b13 Remove debuggin code
• 34c3ab8 Remove extra lines
• 0b3a81f Add private subnet cidr in NACLs rules
• f2dbc97 * Add enable_network_firewall variable * Add prefix to resource names
• 3b4adfb Update deny example using AWS Network Firewall DomainList
• ac17baa Fix TGW route table associations for NETFW
• 27ad612 Add deny example using AWS Network Firewall DomainList
• 37be4f6 Add route table association toggle
• 24b9350 * Move inspection-vpc into network-firewall layer * Move Network firewall RT login to TGW layer
• fd75c1e Add default routes for inspection and nework firewall route tables
• 9212772 Move inspection vpc definition to inspection-network
• 7313c0d Move inspection vpc definition to base-network
• cbb19aa Add toggle condition for network attachments
• 74073de Add implementation fro the inspection TGW route table
• b357cc4 Fix tgw_vpc_attachments_and_subnet_routes indices ref
• 915ffbe Add disable variable in tfvars
• 2c98303 * Add dynamic RT assignation based on enable_network_firewall var * Add disable variable to prevent some resources to be deploy (for debuggig)
• 64fe825 Add toggle for TGW / VPC peering per VPCs level
• 5c198e6 Add TGW / VPC Peering per VPCwq
• 89784d6 Fix dynamic vpc attachments
• 24872f7 Add toggle in TGW route table association to support AWS Firewall network
• 1fe5519 Add enable_network_firewall for tfvars and ouputs
• 7f9ba4f Change to for_each iteration for modules
• 73d8810 Add treatement for inspection network VPC & TGW
• bb5d24d Add treatement for the default route in the network VPC
• ad1640a Add network inspection & RT togglin per VPC attachment
• 3021267 Add network-firewall layer
• c27a14a Grant access to Devops for AW Firewall Manager and AWS Network Firewall

v1.3.42 - 2021-07-17T01:55:58Z

### v1.3.42 - 2021-07-17T01:55:58Z

• dfb1103 Updating CHANGELOG.md via make changelog-patch for v1.3.42 [ci skip]
• e14cb93 Add missing permissions to sockshop demoapp user (#287)

v1.3.41 - 2021-07-16T18:18:01Z

• e90493f Updating CHANGELOG.md via make changelog-patch for v1.3.41 [ci skip]
• 569fb27 Update Aurora layer to also create MySQL resources for Sock-Shop DemoApp (#286)

v1.3.40 - 2021-07-14T16:01:02Z

• c5e5dea Updating CHANGELOG.md via make changelog-patch for v1.3.40 [ci skip]
• 81ee5a9 Merge pull request #285 from binbashar/fix/nacl-public-subnets
• 4d96dbd Fix NACL and public subnets range
• b61f1cc Fix NACL in shared/base-network
• 571ba26 Fix NACL in apps-devstg/k8s-eks/network$
• fd43e7f Fix NACL in apps-prd/k8s-eks/network
• 588faca Fix NACL in apps-prd/base-network

v1.3.39 - 2021-07-13T22:11:12Z

v1.3.39 - 2021-07-13T22:11:12Z

• c285b56 Downgrade all EKS DemoApps layers to Terraform v0.14.4 (#284)
• 6a2e6fe Update DemoApps layers to Terraform v.0.15.5 (#283)
• 44fdb6a Modify PRD private subnet CIDR to define a single entry that encompas… (#281)
• 09e8d94 Merge pull request #280 from binbashar/feature/add-support-access-devops
• 387d1df Fix dynamic role creation for iam-assumable-role-with-oidc
• df46ca4 Add support access to devops
• 4bcd5ad Add support permissions to DevOps role in Shared (#279)
• 5f8aa6e Merge pull request #278 from binbashar/fix/rename-tgw-filename
• ebe25a7 * Fix typo in transit_gateway.tf * Add comment to use network.auto.tfvars