chore(deps): update terraform gitlab to v17 (!1770) · Merge requests · Forge / infra / infrastructure

Renovate Bot requested to merge renovate/gitlab-17.x into main May 17, 2024

This MR contains the following updates:

Package	Type	Update	Change
gitlab (source)	required_provider	major	`~> 3.20.0` -> `~> 17.9.0`

⚠ Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

gitlabhq/terraform-provider-gitlab (gitlab)

`v17.9.0`

Compare Source

This release was tested against GitLab 17.9, 17.8, and 17.7 for both CE and EE

KNOWN ISSUES (1 change)

resource/gitlab_integration_jira: comment_on_event_enabled isn't persisting properly to the underlying integration. This appears to be an upstream issue, but can be tracked here. This will cause an immediate plan after apply if that attribute is included in the config. Removing the attribute from the config temporarily will allow it to be modified via the UI until this issue is resolved.

Maintenance (2 changes)

`v17.8.0`

Compare Source

This release was tested against GitLab 17.8, 17.7, and 17.6 for both CE and EE

BREAKING CHANGES (1 change)

Note: While we normally attempt to avoid breaking changes until major releases, this change aligns the gitlab_project_issues resource to the upstream API. That means that if we held off on implementing it, our users could pass in multiple values to several attributes, and the API would ignore all but the first of them. Weighing the breaking change against the bad user experience and potential confusion in user plan operations, we determined it was better to accept the small breaking change now than hold off another 4 months for 18.0.

datasource/gitlab_project_issues: Update several attributes to support a maximum of 1 item in their list to align to the GitLab API by @gitlab-dependency-update-bot (merge request)

FEATURE (1 change)

New Resource resource/gitlab_value_stream_analytics: Adds support managing value stream stages by @calee1 (merge request)

IMPROVEMENTS (3 changes)

resource/gitlab_group: Add 'owner' support for project creation level by @mness (merge request)
resource/gitlab_group_hook: Add a validator to prevent spaces in the URL by @PatrickRice (merge request)
resource/gitlab_project_hook: Add name and description to gitlab_project_hook resource by @heidi.berry (merge request)
datasource/gitlab_project_membership: Support user_ids attribute by @timofurrer (merge request)

`v17.7.1`

Compare Source

This release was tested against GitLab 17.7, 17.6, and 17.5 for both CE and EE

BUG FIXES (2 changes)

resource/gitlab_group_access_token: Update token deletion logic to include a revoke check by @PatrickRice (merge request)
resource/gitlab_project_access_token: Update token deletion logic to include a revoke check by @PatrickRice (merge request)

`v17.7.0`

Compare Source

This release was tested against GitLab 17.7, 17.6, and 17.5 for both CE and EE

FEATURES (1 change)

New Resource resource/gitlab_instance_service_account: Allows managing instance-level service accounts by @ipsavitsky234 (merge request)

IMPROVEMENTS (2 changes)

resource/gitlab_integration_jira: Align Jira integration resource with the API by @slaup1 (merge request)
resource/gitlab_project: Add support for 'prevent_merge_without_jira_issue' by @slaup1 (merge request)
resource/gitlab_branch: Add support for keep_on_destroy, which will preserve a branch when a destroy operation is performed by @jae-sorcero (merge request)

BUG FIXES (4 changes)

resource/gitlab_group_service_account_access_token: Fixed an issue where revoking a service account token required more permissions than the documentation suggested when using SaaS by @u120230 (merge request)
resource/gitlab_group: Fixed an issue where older versions of GitLab may fail due to missing DefaultBranchProtectionDefaults by @PatrickRice (merge request)
resource/gitlab_application_settings: Fixed an issue where DefaultBranchProtectionDefaults didn't apply properly by @PatrickRice (merge request)
resource/gitlab_project: Fixed an issue where restrict_user_defined_variables caused a perpetual plan when not included in the config by @PatrickRice (merge request)

`v17.6.1`

Compare Source

This release was tested against GitLab 17.6, 17.5, and 17.4 for both CE and EE

IMPROVEMENTS (1 change)

resource/gitlab_group_service_account_token: Add support for rotation_configuration with a limited set of attributes by @heidi.berry (merge request)

BUG FIXES (2 changes)

resource/gitlab_project_compliance_frameworks: Fixed an issue where project compliance frameworks didn't delete compliance frameworks properly. Fixed a bug where compliance frameworks weren't set properly on a project where they were removed outside of TF by @mness (merge request)
resource/gitlab_group: Fixed an issue where an allowed_email_domain_list added outside of TF would be unset when upgrading the provider to 17.6 by @PatrickRice (merge request)

`v17.6.0`

Compare Source

This release was tested against GitLab 17.6, 17.5, and 17.4 for both CE and EE

FEATURES (4 changes)

New Resource resource/gitlab_project_compliance_frameworks: Add new resource gitlab_project_compliance_frameworks, allowing managing multiple compliance frameworks on a single project by @mness (merge request)
New Datasource datasource/gitlab_group_billable_member_memberships: Add new data source gitlab_group_billable_member_memberships by @mdroessler (merge request)
New Datasource datasource/gitlab_project_environments: Add new data source gitlab_project_environments by @ruben.aleman (merge request)
New Datasource data/gitlab_runners: Add new data source gitlab_runners by @ruben.aleman (merge request)

IMPROVEMENTS (17 changes)

docs: add import block examples to resources by @ruben.aleman (merge request)
data/gitlab_project: Add ci_pipeline_variables_minimum_role setting by @hfyngvason (merge request)
data/gitlab_projects: Add ci_pipeline_variables_minimum_role setting by @hfyngvason (merge request)
data/gitlab_metadata: Add external_kas_proxy_url setting by @timofurrer (merge request)
resource/gitlab_user_runner: Add maintenance_note setting by @ruben.aleman (merge request)
resource/gitlab_group: Add allowed_email_domains_list setting by @jeremad (merge request)
resource/gitlab_project: Add ci_pipeline_variables_minimum_role setting by @hfyngvason (merge request)
resource/gitlab_project_environment: Add support for multiple attributes related to cluster agents by @timofurrer (merge request)
resource/gitlab_project_hook: Add custom_headers support by @PatrickRice (merge request)
resource/gitlab_group_hook: Add custom_headers support by @PatrickRice (merge request)
resource/gitlab_branch_protection: Add deploy_key support to allowed_to_push by @nicolas.boussuge.fintech (merge request)
resource/gitlab_group_security_policy_attachment: Update documentation to make usage with compliance frameworks and policies more clear by @odupre (merge request)
resource/personal_access_token: Remove the "RequiresReplace()" modifier on rotation_config for access tokens by @PatrickRice (merge request)
resource/project_access_token: Remove the "RequiresReplace()" modifier on rotation_config for access tokens by @PatrickRice (merge request)
resource/group_access_token: Remove the "RequiresReplace()" modifier on rotation_config for access tokens by @PatrickRice (merge request)
resource/gitlab_service_account_access_token: Improve example documentation and include better information on required permissions for gitlab.com by @heidi.berry (merge request)
resource/gitlab_member_role: Add documentation examples and import examples by @john.shimmin (merge request)

BUG FIXES (8 changes)

resource/gitlab_group_label: Fix an issue where apply fails when changing the name attribute by @krzywykrzych (merge request)
resource/gitlab_application_settings: Fix panic when using valid_runner_registrars by @PatrickRice (merge request)
resource/gitlab_service_account_access_token: Fix an issue where non-admin tokens cannot use the service account access token resource by @PatrickRice (merge request)
resource/gitlab_service_account_access_token: Fix invalid HCL in the example by @telliffoshea (merge request)
resource/gitlab_member_role: Fix an issue where enabled_permissions could cause issues due to sorting by @john.shimmin (merge request)
resource/gitlab_group_access_token: Fix an issue where removing rotation_configuration after an apply operation caused a provider panic by @PatrickRice (merge request)
resource/gitlab_project_access_token: Fix an issue where removing rotation_configuration after an apply operation caused a provider panic by @PatrickRice (merge request)
resource/gitlab_personal_access_token: Fix an issue where removing rotation_configuration after an apply operation caused a provider panic by @PatrickRice (merge request)

`v17.5.0`

Compare Source

This release was tested against GitLab 17.5, 17.4, and 17.3 for both CE and EE

FEATURES (4 changes)

New Resource resource/gitlab_group_service_account: Allows creating service accounts for a gitlab group by @michal.szczepek (merge request)
New Resource resource/gitlab_group_service_account_token: Allows creating service account tokens for a service account by @michal.szczepek (merge request)
New Datasource data/gitlab_group_service_account: Allows creating service accounts for a gitlab group by @michal.szczepek (merge request)
New Datasource data/gitlab_group_provisioned_users: Allows listing users provisioned by an Identity Provider by @nvh04121 (merge request)

IMPROVEMENTS (9 changes)

provider/gitlab: Add support for headers to the provider to allow setting custom headers by @ruben.aleman (merge request)
resource/gitlab_application_settings: Add support for 20 additional new fields by @Jitsusama (merge request)
resource/gitlab_application_settings: Add support for 23 (for a total of 43 in 17.5) additional new fields by @Jitsusama (merge request)
resource/gitlab_project: Support allow_pipeline_trigger_approve_deployment by @loozhengyuan (merge request)
resource/gitlab_project: Support model_experiments_access_level and model_registry_access_level by @jeremad (merge request)
resource/gitlab_group: Add support for specifying the default branch by @jae-sorcero (merge request)
resource/gitlab_group: Add no one as a valid permissions when using default_branch_protection_defaults by @jae-sorcero (merge request)
resource/gitlab_personal_access_token: Add support for rotation_configuration by @ruben.aleman (merge request)
data/gitlab_pipeline_schedules: Add id for each schedule found using the datasource by @nicolas.boussuge.fintech (merge request)

BUG FIXES (1 change)

resource/gitlab_project: Only apply use_custom_template during creation if the value is true. Fixes an issue where using use_custom_template = false would cause a 500 error by @PatrickRice (merge request)

`v17.4.0`

Compare Source

This release was tested against GitLab 17.4, 17.3, and 17.2 for both CE and EE

FEATURES (4 changes)

New Resource resource/gitlab_member_role: Allows creating custom roles at an instance or group level by @slaup1 (merge request)
New Resource resource/user_impersonation_token: Adds support for generating an impersonation token with an admin user by @slaup1 (merge request)
New Datasource data/gitlab_protected_tag(s): Two new datasources allow retrieving a single tag or list of tags by project by @mness (merge request)
New Datasource data/gitlab_pipeline_schedule(s): Two new datasources allow retrieving a single pipeline schedule or list of pipeline scheduled by project by @heidi.berry (merge request)

IMPROVEMENTS (12 changes)

resource/gitlab_group: Add support for default_branch_protection_defaults by @heidi.berry (merge request)
resource/gitlab_group: Add support for reject_non_dco_commits by @mness (merge request)
resource/gitlab_project_approval_rule: Add support for report_type, allowing the creation of Coverage-Check rules by @MDeVilliers1 (merge request)
resource/gitlab_group_label: Update format of the resource ID to allow name updates by @nvh04121 (merge request)
resource/gitlab_group_label: Updating name no longer forces destroy/creation of the label by @PatrickRice (merge request
resource/gitlab_service_jira: Aligned fields to upstream API, adding support for 9 new fields by @deepflame (merge request
resource/gitlab_application_settings: Add support for 25 new fields by @Jitsusama (merge request)
resource/gitlab_project: Add support for pre_receive_secret_detection_enabled by @PatrickRice (merge request)
resource/gitlab_project: Add support for reject_non_dco_commits by @mness (merge request)
resource/gitlab_project_push_rules: Add support for reject_non_dco_commits by @mness (merge request)
resource/gitlab_user: Add support for extern_uid and external_provider by @heidi.berry (merge request)
docs/use-case-tech-lead-bootstrapping-small-team: Added new documentation to the provider with an example of creating a small team using GitLab by @Jitsusama (merge request)

BUG FIXES (2 changes)

resource/gitlab_user_runner: Fix an issue where managing an imported runner would fail with an error that token was unknown by @PatrickRice (merge request)
resource/gitlab_personal_access_token: Fix an issue where tokens with no expiration date encountered a provider error by @PatrickRice (merge request)

`v17.3.1`

Compare Source

This release was tested against GitLab 17.3, 17.2, and 17.1 for both CE and EE

IMPROVEMENTS (1 change)

The provider now uses an exponential backoff when no RateLimit-Reset headers are sent from GitLab by @PatrickRice (merge request)

BUG FIXES (7 changes)

resource/gitlab_project_access_token: Fixed an error when applying an update using a plan file that could cause the ID to return an error when rotating by @PatrickRice (merge request)
resource/gitlab_project_access_token: Fixed an error when applying an update using a plan from from a previous day to rotate an access token by @PatrickRice (merge request)
resource/gitlab_group_access_token: Fixed an error when applying an update using a plan file that could cause the ID to return an error when rotating by @PatrickRice (merge request)
resource/gitlab_group_access_token: Fixed an error when applying an update using a plan from from a previous day to rotate an access token by @PatrickRice (merge request)
resource/gitlab_group_protected_environment: Updated documentation for deploy_access_levels to be more specific by @mness (merge request)
resource/gitlab_project_protected_environment: Updated documentation for deploy_access_levels to be more specific by @mness (merge request)
resource/gitlab_group_saml_link: Updated documentation for access_level to be more descriptive when using custom roles by @PatrickRice (merge request)

`v17.3.0`

Compare Source

This release was tested against GitLab 17.3, 17.2, and 17.1 for both CE and EE

IMPROVEMENTS (8 changes)

New Resource resource/gitlab_group_security_policy_attachment: Add new resource for association security policy projects to a group by @PatrickRice (merge request)
New Datasource data/gitlab_group_ids: Add new datasource retrieving group ID, Full Path, or GraphQL ID based on group ID or Url-encoded path by @PatrickRice (merge request)
New Datasource data/gitlab_project_ids: Add new datasource retrieving project ID, Full Path, or GraphQL ID based on project ID or Url-encoded path by @PatrickRice (merge request)
resource/gitlab_project_job_token_scopes: Add support for target_group_ids, allowing groups to be used in the allow list by @chapsuK (merge request)
resource/gitlab_group: Add support for permanently_remove_on_delete, allowing groups to be permanently deleted on destroy instead of entering a waiting period by @PatrickRice (merge request)
resource/gitlab_application_settings: Add support for max_terraform_state_size_bytes, allowing configuration of terraform state size at an instance level by @christian.affolter (merge request)
resource/gitlab_project_push_rules: gitlab_project_push_rules will now take over ownership of existing push rules, since a default set is created on project creation by @mness (merge request)
resource/gitlab_project_job_token_scopes: Added support for project, allowing the use of the resource by project ID or url-encoded path by @heidi.berry (merge request)

BUG FIXES (4 changes)

resource/gitlab_group_access_token: Fix example to use the proper resource by @blrz (merge request)
resource/gitlab_group_security_policy_attachment: Fix example to use the proper resource by @calebw (merge request)
resource/gitlab_project_security_policy_attachment: Fix example to use the proper resource by @calebw (merge request)
resource/gitlab_user_runner: Fix description to remove typo in group_type by @clemenschuaccso (merge request)

`v17.2.0`

Compare Source

This release was tested against GitLab 17.2, 17.1, and 17.0 for both CE and EE

BREAKING CHANGES (1 change)

Note: As a security related change, this breaking change is allowed outside a major release. If a non-sensitive token is required for migration purposes users can use the nonsensitive() TF function.

resource/gitlab_cluster_agent_token: Mark GitLab cluster agent token as sensitive by @CarbonCollins (merge request)

IMPROVEMENTS (1 change)

New Resource resource/gitlab_project_security_policy_attachment: Add new resource for associating security policy projects to a project by @PatrickRice (merge request)
resource/gitlab_personal_access_token: Migrate gitlab_personal_access_token from SDK to TF Plugin Framework by @theipster (merge request)

BUG FIXES (4 changes)

resource/gitlab_deploy_key: Fix deploy key documentation reference to point to the correct resource for enabling a pre-existing deploy key by @blrz (merge request)
resource/gitlab_user_runner: Fix an issue with gitlab_user_runner causing inconsistent TF plans by @PatrickRice (merge request)

`v17.1.0`

Compare Source

This release was tested against GitLab 17.1, 17.0, and 16.11 for both CE and EE

BUG FIXES (3 changes)

resource/gitlab_project_job_token_scopes: Correct examples for resource project_job_token_scopes by @heidi.berry (merge request)
resource/gitlab_group_access_token: Fix an issue where using access tokens with a time provider caused segfaults by @PatrickRice (merge request)
resource/gitlab_project_access_token: Fix an issue where using access tokens with a time provider caused segfaults by @PatrickRice (merge request)

IMPROVEMENTS (8 changes)

New Resource resource/gitlab_telegram_integration: Implement Telegram Integration by @alxrem (merge request)
resource/gitlab_group_saml_link: Add ability to set custom roles on group SAML links by @heidi.berry (merge request)
resource/gitlab_integration_slack: Add confidential_note_channel to slack integration by @0oMarko0 (merge request)
resource/gitlab_personal_access_token: Implement manage_runner access token scope (merge request)
resource/gitlab_personal_access_token: Mark expires_at attribute as optional by @erezo9 (merge request)
resource/gitlab_group_access_token: Fixed several documentation issues with access token resources by @theipster (merge request)
resource/gitlab_project_access_token: Fixed several documentation issues with access token resources by @theipster (merge request)
resource/gitlab_project: Update initialize_with_readme to add border case documentation by @PatrickRice (merge request)

`v17.0.1`

Compare Source

This release was tested against GitLab 17.0, 16.11, and 16.10 for both CE and EE

BUG FIXES:

Fixed an issue where sensitive tokens were not masked properly in debug log files (!1997)

`v17.0.0`

Compare Source

This release was tested against GitLab 17.0, 16.11, and 16.10 for both CE and EE

KNOWN ISSUES:

gitlab_current_user returns an empty string for public_email (#6305)

BREAKING CHANGES:

resources/project_protected_environment: Removed support for required_approval_count field, use required_approvals in approval_rules or deploy_access_level instead (!1940)
resources/group_protected_environment: Removed support for required_approval_count field, use required_approvals in approval_rules or deploy_access_level instead (!1940)
resources/gitlab_group: Removed a version check related to commit_committer_check and reject_unsigned_commits that would prevent their use in versions prior to GitLab 16.4. If used with versions earlier than 16.4, these attributes will cause an error instead of being excluded. (!1937)
resources/gitlab_group: Removed support for emails_disabled, use emails_enabled instead (!1929)
resources/gitlab_project: Removed support for emails_disabled, use emails_enabled instead (!1929)
resources/gitlab_pipeline_schedule: ref now requires the full ref instead of allowing the use of the short ref. If you previously used main, you now need to use refs/heads/main instead, for example (!1923)
resources/gitlab_pipeline_trigger: token can no longer be imported. (!1905)
resources/gitlab_pipeline_trigger: Updating the project attribute will now force the creation of a new pipeline trigger (!1905)
data/gitlab_group(s): Removed support for emails_disabled, use emails_enabled instead (!1929)
data/gitlab_project(s): Removed support for emails_disabled, use emails_enabled instead (!1929)
data/gitlab_project(s): Removed support for public, use visibility instead (!1929)
master is no longer a valid access level on any resource that supports the use of access levels. This impacts the resources listed below. (!1903)
- gitlab_group_access_token
- gitlab_group_ldap_link
- gitlab_group_membership
- gitlab_group_share_group
- gitlab_project_access_token
- gitlab_project_membership
- gitlab_project_share_group

IMPROVEMENTS:

New Resource resource/gitlab_integration_jenkins: Allows managing a project Jenkins integration (!1919)
New Resource resource/gitlab_project_push_rules: Allows managing the lifecycle of push rules on a project (!1893)
New Resource resource/gitlab_project_job_token_scopes: This resource sets a strict list of project job token scopes, and removes any job token scopes not managed by the resource. This can be useful to explicitly deny job token scopes on a project. (!1907)
resources/gitlab_pipeline_schedule_variable: Added support for the use of variable_type (!1952)
resources/gitlab_group: Added support for the use of commit_committer_name_check to the push_rules block (!1937)
resources/gitlab_project: Added support for the use of commit_committer_name_check to the push_rules block (!1918)
resources/gitlab_instance_variable: Added support for the use of description (!1950)
resources/gitlab_user_runner: Added example documentation for this resource to make it easier to consume (!1928)
resources/gitlab_application_settings: Add support for minimum_password_length to the resource (!1917)
resources/gitlab_personal_access_token: Updated the API used to read personal access token data, which improves performance of this resource in situations where many tokens are being maintained, and improves reliability of the resource in high concurrency situations (!1908)
data/gitlab_instance_variable: Added support for description (!1950)
provider: Added documentation that the use of Project Access Tokens or Group Access Tokens may not work with all resources (!1928)

BUG FIXES:

resources/gitlab_pipeline_schedule: Fixed a provider crash in situations where the scheduled pipeline fails to create (!1899)
resources/gitlab_group: Fixed a provider error when attempting to create groups with push_rules on GitLab CE where push_rules are not supported (!1891)
resources/gitlab_group_access_token: Fixed an issue with token rotation using rotation_configuration where tokens wouldn't rotate properly after expires_at was stored in state. Added additional debug logging for token rotation. (!1953)
resources/gitlab_group_access_token: Fixed an issue with token rotation where manually managing expiration using expires_at would encounter an error after updating expires_at twice (!1916)
resources/gitlab_project_access_token: Fixed an issue with token rotation using rotation_configuration where tokens wouldn't rotate properly after expires_at was stored in state. Added additional debug logging for token rotation. (!1953)
resources/gitlab_project_access_token: Fixed an issue with token rotation where manually managing expiration using expires_at would encounter an error after updating expires_at twice (!1916)
resources/gitlab_pipeline_trigger: Fixed a bug where applying TF with different users could corrupt the pipeline trigger token !1905

`v16.11.0`

Compare Source

This release was tested against GitLab 16.9, 16.10, and 16.11 for both CE and EE

IMPROVEMENTS:

New Data Source data/gitlab_compliance_framework: Allows querying Compliance Frameworks to help retrieve the ID for use in downstream resources (!1880)
resources/gitlab_project_access_token: Added support for the use of rotation_configuration to automatically rotate tokens periodically. (!1887)
resources/gitlab_project_access_token: Added support for rotating the token by changing the expires_at instead of deleting and re-creating the token. (!1887)
resources/gitlab_group_access_token: Added support for the use of rotation_configuration to automatically rotate tokens periodically. (!1887)
resources/gitlab_group_access_token: Added support for rotating the token by changing the expires_at instead of deleting and re-creating the token. (!1887)
resources/gitlab_project_access_token: Added support for new token scopes related to AI, k8s, and observability (!1878)
resources/gitlab_group_access_token: Added support for new token scopes related to AI, k8s, and observability (!1878)
resources/gitlab_project: Added support for emails_enabled and deprecated support for emails_disabled, which will be removed in 17.0 (!1881)
resources/gitlab_project_protected_environment: Added support for group_inheritance_type (!1855)
resources/gitlab_group_protected_environment: Added support for group_inheritance_type (!1855)
resources/gitlab_project_hook: Added support for custom_webhook_template (!1862)
resources/gitlab_group_hook: Added support for custom_webhook_template (!1862)
resources/gitlab_group_membership: Added support for member_role_id, enabling the use of a custom role when assigning users to a group (!1809)
data/gitlab_project_hook(s): Added support for custom_webhook_template (!1862)
data/gitlab_group_hook(s): Added support for custom_webhook_template (!1862)

BUG FIXES:

resource/gitlab_project_hook: Fixed an issue where changing the project value didn't force a new resource (!1871)

`v16.10.0`

Compare Source

This release was tested against GitLab 16.8, 16.9, and 16.10 for both CE and EE

NOTES:

scripts/gitlab.rb has been updated for local development to set the license mode and customer portal URL for testing. If you're using a personal license for local development, you may need to update this file temporarily to run EE locally. (!1861)

IMPROVEMENTS:

New Data Source datasource/gitlab_release: Allows querying a GitLab Release by project and tag name to get release information or assets (!1851)

BUG FIXES:

resources/gitlab_project_level_mr_approvals: fixed a documentation issue with the use of merge_requests_disable_committers_approval (!1864)
resources/gitlab_group_ldap_link: fixed an issue where deleting the group associated to an LDAP link would result in a TF state that required manual intervention. Using a value of true with the force attribute will now remove the LDAP link from state when the group is deleted. (!1842)
resources/gitlab_cluster_agent: fixed the example documentation to show the file contents as encoded (!1852)
resources/gitlab_pipeline_schedule: fixed a potential panic on the provider that could occur when there was an error editing the pipeline schedule (!1847)

`v16.9.1`

Compare Source

This release was tested against GitLab 16.7, 16.8, and 16.9 for both CE and EE

BUG FIXES:

Fixed a Go version mismatch when using goreleaser that prevented v16.9.0 from being published properly (!1839)

`v16.8.1`

Compare Source

This release was tested against GitLab 16.6, 16.7, and 16.8 for both CE and EE

BUG FIXES:

resource/gitlab_compliance_framework: Improved permissions-based error handling for the resource, so permissions errors don't result in a "provider error" warning (!6193)
resource/gitlab_pipeline_schedule: Fixed an issue with take_ownership = true where the ownership would only be updated when a separate attribute change was identified. The provider will now always assume ownership even if no other changes are identified (!1765)

`v16.8.0`

Compare Source

This release was tested against GitLab 16.6, 16.7, and 16.8 for both CE and EE

BREAKING CHANGE:

gitlab_application_settings: Removed support for delayed_group_deletion and delayed_project_deletion, which haven't been supported since GitLab 16.0 (!1799)

IMPROVEMENTS:

New Resource gitlab_global_level_notifications allows managing global notifications for the user (!1801)
resource/gitlab_project: Added support for the timeouts block, to allow configurable timeouts for creating projects (!1797)
resource/gitlab_application_settings: Added support for housekeeping_optimize_repository_period, and updated the description of housekeeping_enabled to be more descriptive of what fields were required for a successful apply (!1777)
datasource/gitlab_project: Added support for shared_with_groups which includes groups that are shared with the project (!1795)
datasource/gitlab_group: Added support for shared_with_groups which includes groups that are shared with the group (!1769)
datasource/gitlab_user: Added support for the is_bot attribute (!1798)
datasource/gitlab_users: Added support for the is_bot attribute (!1798)

BUG FIXES:

resource/gitlab_pipeline_schedule_variable: Fixed an issue where deleting the pipeline associated to the variable outside of terraform would cause the resource to be stuck in an error state (!1796)
resource/gitlab_project_hook: Fixed an issue where changing the URL of a webhook would delete the associated token. Changing the URL will now force a new webhook to be created (!1794)

`v16.7.0`

Compare Source

This release was tested against GitLab 16.5, 16.6, and 16.7 for both CE and EE

DEPRECATION:

This release updates the recommended Terraform version for this Provider from 1.0.0 to 1.4.0, and updates the version of Terraform we use for CI/CD to 1.4.0 as a result. This is related to a bug that was fixed in Terraform 1.4.0 related to how complex objects are compared. Without using Terraform 1.4.0, the provider cannot guarantee that plan output using nested objects is the same every time. Prior versions will likely still result in a successul plan and apply, but we will ask you to update prior to assisting with issue triage.

IMPROVEMENTS:

resource/gitlab_branch_protection: Updating allowed_to_push will no longer destroy and re-create branch protection, it will instead update it in-place (!1593)
resource/gitlab_group_issue_board: Issue boards now supports the use of scoped labels, and label position can be explicitly configured (!1771)
resource/gitlab_project: Add support for group_runners_enabled (!1735)
datasource/gitlab_group: Groups with many projects will now be retrieved significantly faster (!1770)
datasource/gitlab_project: Add support for group_runners_enabled (!1735)

BUG FIXES:

resource/gitlab_pipeline_schedule: Fixed an issue where a pipeline schedule with no owner could cause a provider panic (!1762)
resource/gitlab_group_ldap_link: Fixed an issue with force that could cause an error when attempting to delete an ldap link (!1757)

`v16.6.0`

Compare Source

This release was tested against GitLab 16.4, 16.5, and 16.6 for both CE and EE

KNOWN ISSUES:

Attempting to use the gitlab_users datasource with sort will not return users in the specified sort order when used with GitLab 16.6.0, as GitLab 16.6.0 uses relevancy sorting and ignores sort. This will be resolved with GitLab 16.6.1.

IMPROVEMENTS:

New Resource: gitlab_project_level_notifications allows managing notification events for project (!1715)
resource/gitlab_project_approval_rule: added support for applies_to_all_protected_branches (!1755)
resource/gitlab_pipeline_schedule: added support for take_ownership, which will take ownership of the pipeline schedule prior to attempting an update (!1745)
resource/gitlab_group: added support for push_rules (!1730)

BUG FIXES:

resource/gitlab_user_runner: Fixed an issue where not including maximum_timeout could cause an issue when updating the runner (!1758)
datasource/gitlab_user: When using email, the the data source will now return the first user returned from the API instead of encountering an error when more than one is identified. When used with GitLab 16.6.0, this will always be the exact match if an exact match is available. (!1743)

`v16.5.0`

Compare Source

This release was tested against GitLab 16.3, 16.4, and 16.5 for both CE and EE

IMPROVEMENTS:

New Resource: gitlab_group_protected_environment allows managing group-level protected environments (!1707)
resource/gitlab_user_sshkey: Added support for creating an SSH key for the current user by making user_id optional (!1726)
resource/gitlab_group: Added support for managing the shared_runners_setting attribute (!1710)
resource/gitlab_project: Added support for creating an empty repository using the empty_repo attribute (!1713)
resource/gitlab_project: Added support for the public_jobs attribute, deprecating the old public_builds attribute (!1700)
datasource/gitlab_project: Added support for reading the empty_repo attribute (!1713)
datasource/gitlab_projects: Added support for reading the empty_repo attribute (!1713)
datasource/gitlab_group: Added support for reading the shared_runner_setting attribute (!1717)
datasource/gitlab_groups: Added support for reading the shared_runner_setting attribute (!1717)
datasource/gitlab_group_subgroups: Added support for reading the shared_runner_setting attribute (!1719)

BUG FIXES:

resource/gitlab_group: Removed "default" hints in the documentation, since defaults can be changed by admins in some cases (!1696)
resource/gitlab_group_ldap_link: Fixed an issue where changing CN or Filter didn't force a new resource (!1729)
resource/gitlab_project: Fixed an issue where the documentation didn't contain valid values for several fields (!1714)
resource/gitlab_tag_protection: Fix d an issue where the resource read the wrong create_access_level when using no one (!1694)

`v16.4.1`

Compare Source

This release was tested against GitLab 16.2, 16.3, and 16.4 for both CE and EE

BUG FIXES:

resource/gitlab_project_protected_environment: Fix segfault when using for_each for deploy_access_levels when approval_rules are not specified (!1699)

`v16.4.0`

Compare Source

This release was tested against GitLab 16.2, 16.3, and 16.4 for both CE and EE

BREAKING CHANGES:

This breaking change was made early for security reasons. If a configuration relies on the value being non-sensitive, users can use the nonsensitive() function in Terraform.

resource/gitlab_user_runner: token is now marked as sensitive (!1688)

IMPROVEMENTS:

resource/gitlab_project_mirror: Updated documentation to include a warning about keep_divergent_refs default value (!1691)
resource/gitlab_project_protected_environment: Add support for approval_rules (!1679)
resource/gitlab_group_access_token: Add support for the create_runner scope (!1675)
resource/gitlab_personal_access_token: Add support for the create_runner scope (!1675)
resource/gitlab_project_access_token: Add support for the create_runner scope (!1675)

BUG FIXES:

resource/gitlab_branch: No longer returns an error when the branch is missing during a destroy (!1690)
datasource/gitlab_cluster_agents: Fixed an issue where agent_id was always 0 (!1677)
datasource/gitlab_group_subgroups: Fixed an issue where the data source returned a maximum of 20 subgroups (!1689)

`v16.3.0`

Compare Source

This release was tested against GitLab 16.0, 16.1, and 16.2 for both CE and EE

IMPROVEMENTS:

New Resource: gitlab_user_runner allows managing runners using the new runner flow without using a registration token (!1618)
New Resource: gitlab_group_epic_board allows managing epic boards for groups (!1658)
New Resource: gitlab_project_job_token_allow allows managing the inbound allow list for a project when using Job Tokens (!1631)
resource/repository_file: Add the ability to specify a different commit message for Create/Update/Delete operation (!1629)
resource/gitlab_project_level_mr_approvals: Add support for selective_code_owner_removals (!1641)
resource/gitlab_group: Add support for wiki_access_level (!1656)
resource/gitlab_group_badge: Add support for name (!1655)
datasource/gitlab_group: Add support for wiki_access_level (!1656)
datasource/gitlab_groups: Add support for wiki_access_level (!1656)

BUG FIXES:

resource/gitlab_group_access_token: Require the expires_at attribute (!1661)
resource/gitlab_personal_access_token: Require the expires_at attribute (!1661)
resource/gitlab_project_access_token: Require the expires_at attribute (!1661)
resource/gitlab_pipeline_schedule_variable: Fix several spelling errors in the documentation that would make examples non-functional (!1647)

`v16.2.0`

Compare Source

This release was tested against GitLab 15.11, 16.0 and 16.1 for both CE and EE.

IMPROVEMENTS:

New Resource: gitlab_project_compliance_framework (!1616)
New Resource: gitlab_compliance_framework (!1599)
resource/gitlab_group_badge: Improve examples to contain common badges (!1627)
resource/branch_protection: Add support for admin as a value for unprotect_access_level (!1626)
datasource/gitlab_groups: Add top_level_only support (!1606)
datasource/gitlab_project: Add topic support (!1610)

BUG FIXES:

resource/gitlab_application_settings: Fix documentation to list the correct import_sources (!1638)
resource/gitlab_project: Previously, name_regex_delete was improperly deprecated. Remove deprecation notice, and add notice to name_regex, which is the proper field (!1600)
resource/gitlab_repository_file: Fix an issue where updating a repository file when using the text encoding returned a base64 encoding error (!1642)

`v16.1.1`

Compare Source

This release was tested against GitLab 15.11, 16.0 and 16.1 for both CE and EE.

IMRPOVEMENTS:

resource/gitlab_repository_file: Support the use of the encoding parameter. This allows using text encoding, which re-introduces the ability to have plaintext comparisons during a plan operation (!1633)

`v16.1.0`

Compare Source

This release was tested against GitLab 15.11, 16.0 and 16.1 for both CE and EE.

IMRPOVEMENTS:

resource/gitlab_tag_protection: Support allowed_to_create attribute (!1549)

BUG FIXES:

resource/gitlab_deploy_token: Fix dynamic username attribute reading after creation (!1569)
resource/gitlab_branch_protection: Remove unsupported no one value for unprotect_access_level (!1594)
resource/gitlab_project: Fix deprecation of name_regex attribute (!1600)

MISC:

Added a new guide for how to contribute a new resource from scratch (!1487)

`v16.0.3`

Compare Source

This release was tested against GitLab 15.10, 15.11 and 16.0 for both CE and EE.

BREAKING CHANGES:

Since this is a bug fix release for a major release with breaking changes you may want to follow the Terraform GitLab Provider Version 16.0 Upgrade Guide for details.

BUG FIXES:

resource/gitlab_group_ldap_link: Fix state migration for group_id to group

`v16.0.2`

Compare Source

This release was tested against GitLab 15.10, 15.11 and 16.0 for both CE and EE.

BREAKING CHANGES:

Since this is a bug fix release for a major release with breaking changes you may want to follow the Terraform GitLab Provider Version 16.0 Upgrade Guide for details.

BUG FIXES:

resource/gitlab_project_level_mr_approvals: Fix state migration for project_id to project when already on v16
resource/gitlab_project_freeze_period: Fix state migration for project_id to project when already on v16
resource/gitlab_project_membership: Fix state migration for project_id to project when already on v16
resource/gitlab_project_share_group: Fix state migration for project_id to project when already on v16

`v16.0.1`

Compare Source

This release was tested against GitLab 15.10, 15.11 and 16.0 for both CE and EE.

BREAKING CHANGES:

Since this is a bug fix release for a major release with breaking changes you may want to follow the Terraform GitLab Provider Version 16.0 Upgrade Guide for details.

BUG FIXES:

resource/gitlab_pipeline_schedule_variable: Fix panic when pipeline_schedule_id is a float64 in state
resource/gitlab_project_variable: Fix panic when upgrading from a state that was created prior to GitLab 13.4
resource/gitlab_project_level_mr_approvals: Add state migration for project_id to project
resource/gitlab_project_freeze_period: Add state migration for project_id to project
resource/gitlab_project_membership: Add state migration for project_id to project
resource/gitlab_project_share_group: Add state migration for project_id to project
resource/gitlab_project_access_token: Mark expires_at as computed
resource/gitlab_group_access_token: Mark expires_at as computed

`v16.0.0`

Compare Source

This release was tested against GitLab 15.10, 15.11 and 16.0 for both CE and EE.
Note: this is a major release and breaks some interfaces in resources and data sources of this provider, but also drops support for older GitLab versions.

BREAKING CHANGES:

See Terraform GitLab Provider Version 16.0 Upgrade Guide for details.

BREAKING CHANGES:

resource/gitlab_instance_variable: Change value attribute to non-sensitive (!1521)
resource/gitlab_group_variable: Change value attribute to non-sensitive (!1521)
resource/gitlab_project_variable: Change value attribute to non-sensitive (!1521)
resource/gitlab_deploy_token: Change resource id format to <token-type>:<type-id>:<token-id> (!1523)
resource/gitlab_deploy_key: Change resource id format to <project>:<key-id> (!1522)
resource/gitlab_project_hook: Change resource id format to <project>:<hook-id> (!1483)
resource/gitlab_group_label: Change resource id format to <group>:<label-name> (!1525)
resource/gitlab_label: Rename resource to gitlab_project_label (!1526)
resource/gitlab_project_label: Change resource id format to <project>:<label-name> (!1526)
resource/gitlab_managed_license: Remove resource (!1512)
resource/gitlab_pipeline_schedule_variable: Change resource id format to <project>:<schedule-id>:<variable-id> (!1529)
resource/gitlab_repository_file: Remove support for auto-encoding logic (!1530)
resource/gitlab_group_ldap_link: Change resource id format to <group>:<provider>:[cn]:[filter] (!1527)
resource/gitlab_group_ldap_link: Rename group_id attribute to group (!1532)
resource/gitlab_service_*: Rename gitlab_service_* resources to gitlab_integration_* (!1534)
resource/gitlab_project: Remove operations_access_level (!1548)
datasource/gitlab_project: Remove operations_access_level (!1548)
datasource/gitlab_projects: Remove operations_access_level (!1548)
resource/gitlab_pipeline_trigger: Change resource id format to <project>:<trigger-id> (!1551)
resource/gitlab_pipeline_schedule: Change resource id format to <project>:<schedule-id> (!1551)
resource/gitlab_project_freeze_period: Change project_id attribute to project (!1553)
resource/gitlab_project_level_mr_approvals: Change project_id attribute to project (!1553)
resource/gitlab_project_membership: Change project_id attribute to project (!1553)
resource/gitlab_project_share_group: Change project_id attribute to project (!1553)
resource/gitlab_project_access_token: Require expires_at attribute (!1557)

FEATURES:

resource/gitlab_instance_variable: Support raw attribute (!1533)
resource/gitlab_group_variable: Support raw attribute (!1533)
resource/gitlab_project_variable: Support raw attribute (!1533)
datasource/gitlab_instance_variable: Support raw attribute (!1533)
datasource/gitlab_group_variable: Support raw attribute (!1533)
datasource/gitlab_project_variable: Support raw attribute (!1533)

IMPROVEMENTS:

resource/gitlab_project_environment: Wait for environment to stop before deleting it (!1509)

`v15.11.0`

Compare Source

This release was tested against GitLab 15.9, 15.10 and 15.11 for both CE and EE.

BREAKING CHANGES:

resource/gitlab_project: Remove specialized branch protection logic for GitLab prior to 14.11 (!1486)

IMPROVEMENTS:

resource/gitlab_application_settings: Support can_create_group attribute (!1484)
resource/gitlab_project: Support keep_latest_artifact attribute (!1506)
resource/gitlab_group_subgroups: Support skip_groups attribute (!1516)
datasource/gitlab_project: Support keep_latest_artifact attribute (!1506)
datasource/gitlab_projects: Support keep_latest_artifact attribute (!1506)

BUG FIXES:

resource/gitlab_project: Fix waiting when skip_wait_for_default_branch_protection is disabled (!1489)
resource/gitlab_group_ldap_link: Fix re-creating LDAP link if it was removed out of bounds (!1495)
resource/gitlab_runner: Fix plan for tags attribute to make it order independent (!1492)

`v15.10.0`

Compare Source

This release was tested against GitLab 15.8, 15.9 and 15.10 for both CE and EE.

FEATURES:

New Resource: gitlab_application (#1436)
New Resource: gitlab_service_custom_issue_tracker (#1459)

IMPROVEMENTS:

resource/gitlab_personal_access_token: Support admin_mode as value in the scopes attribute (#1456)
resource/gitlab_group: Remove explicit attribute defaults. This solves an issue where newly imported resources may have plan changes for default attributes. In some cases, the new API-based default values are more permissive than the old provider-based defaults. See The linked MR for details. (#1479)
resource/gitlab_repository_file: Add validator to avoid leading / and ./ in path (#1472)
resource/gitlab_project: Deprecate the name_regex_delete in favor of the name_regex attribute (#1466)
resource/gitlab_project: Support environments_access_level attribute (#1469)
resource/gitlab_project: Support feature_flags_access_level attribute (#1469)
resource/gitlab_project: Support infrastructure_access_level attribute (#1469)
resource/gitlab_project: Support monitor_access_level attribute (#1469)
resource/gitlab_project: Support release_access_level attribute (#1469)
datasource/gitlab_project: Mark runners_token as sensitive (#1461)
datasource/gitlab_project: Support environments_access_level attribute (#1469)
datasource/gitlab_project: Support feature_flags_access_level attribute (#1469)
datasource/gitlab_project: Support infrastructure_access_level attribute (#1469)
datasource/gitlab_project: Support monitor_access_level attribute (#1469)
datasource/gitlab_project: Support release_access_level attribute (#1469)
datasource/gitlab_projects: Support environments_access_level attribute (#1469)
datasource/gitlab_projects: Support feature_flags_access_level attribute (#1469)
datasource/gitlab_projects: Support infrastructure_access_level attribute (#1469)
datasource/gitlab_projects: Support monitor_access_level attribute (#1469)
datasource/gitlab_projects: Support release_access_level attribute (#1469)

BUG FIXES:

resource/gitlab_project: Add validator to the id attribute to prevent misuse (#1476)
resource/gitlab_group: Wait for the group to be fully created and functional (#1465)
resource/gitlab_service_slack: Fix perpetual diff in webhook attribute due to upstream API deprecation (#1470)
resource/gitlab_service_microsoft_teams: Fix perpetual diff in webhook attribute due to upstream API deprecation (#1470)

`v15.9.0`

Compare Source

This release was tested against GitLab 15.7, 15.8 and 15.9 for both CE and EE.

FEATURES:

New Resource: gitlab_pages_domain (#1419)

IMPROVEMENTS:

provider: Support GITLAB_EARLY_AUTH_CHECK environment variable as default for the early_auth_check provider attribute (#1455)
resource/gitlab_project: Support public and private repositories in import_url for imports and pull mirrors (#1452)

BUG FIXES:

resource/gitlab_application_settings: Support "nil" for enabled_git_protocols to disable it (#1457)
resource/gitlab_repository_file: Handle 404s when overwrite_on_create is true (#1433)
datasource/gitlab_project: Don't get push_rules when user does not have permissions for it (#1450)

`v15.8.0`

Compare Source

This release was tested against GitLab 15.6, 15.7 and 15.8 for both CE and EE.

FEATURES:

provider: mask token in provider logs (#1394)

IMPROVEMENTS:

resource/gitlab_project: Add ip_restriction_ranges attribute (#1392)
datasource/gitlab_group_membership: Add inherited attribute to include inherited memberships (#1402)

BUG FIXES:

provider: Fix early_auth_check always set to true (#1414)
resource/gitlab_project_share_group: Fix refreshing shared groups of a project (#1412)
resource/gitlab_project_protected_environment: Fix perpetual diffs of deploy_access_levels (#1421)
resource/gitlab_project_approval_rule: auto-import default any_approver rule during create (#1425)
resource/gitlab_group: Mark shared_runners_minutes_limit and extra_shared_runners_minutes_limit as Computed (#1423)
datasource/gitlab_projects: Support validation for all valid order_by values (#1429)

`v15.7.1`

Compare Source

This release was tested against GitLab 15.5, 15.6 and 15.7 for both CE and EE.

BUG FIXES:

provider: default to gitlab.com as base URL if it is not provided (#1400)

`v15.7.0`

Compare Source

This release was tested against GitLab 15.5, 15.6 and 15.7 for both CE and EE.
This is the first release aligned with GitLab. See #1331.

BREAKING CHANGES:

See Terraform GitLab Provider Version 15.7 Upgrade Guide for details.

Require at least Terraform 1.0 and Terraform Protocol Version 6 (#1336)
Provider token argument has changed to sensitive (#1385)

FEATURES:

resource/gitlab_project: Support forking a project (#1377)
resource/gitlab_project: Support avatars (#1387)
resource/gitlab_group: Support avatars (#1387)
New Data Source: gitlab_metadata (#1355)

IMPROVEMENTS:

resource/gitlab_project: Add ci_separated_caches attribute (#1320)
datasource/gitlab_project: Add ci_separated_catches attribute (#1320)
resource/gitlab_project: Rely on API defaults to only send minimal requests (#1376)
resource/gitlab_project: Add restrict_user_defined_variables attribute (#1372)
resource/gitlab_repository_file: Add overwrite_on_create attribute (#1374)

BUG FIXES:

resource/gitlab_user: Fix suppress logic for skip_confirmation attribute (#1375)
resource/gitlab_project: Fix disabling container_expiration_policy (#1386)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever MR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited Feb 21, 2025 by Renovate Bot

Admin message

chore(deps): update terraform gitlab to v17

Release Notes

KNOWN ISSUES (1 change)

FEATURES (3 changes)

IMPROVEMENTS (8 changes)

BUG FIXES (5 changes)

Maintenance (2 changes)

BREAKING CHANGES (1 change)

FEATURE (1 change)

IMPROVEMENTS (3 changes)

BUG FIXES (2 changes)

FEATURES (1 change)

IMPROVEMENTS (2 changes)

BUG FIXES (4 changes)

IMPROVEMENTS (1 change)

BUG FIXES (2 changes)

FEATURES (4 changes)

IMPROVEMENTS (17 changes)

BUG FIXES (8 changes)

FEATURES (4 changes)

IMPROVEMENTS (9 changes)

BUG FIXES (1 change)

FEATURES (4 changes)

IMPROVEMENTS (12 changes)

BUG FIXES (2 changes)

IMPROVEMENTS (1 change)

BUG FIXES (7 changes)

IMPROVEMENTS (8 changes)

BUG FIXES (4 changes)

BREAKING CHANGES (1 change)

IMPROVEMENTS (1 change)

BUG FIXES (4 changes)

BUG FIXES (3 changes)

IMPROVEMENTS (8 changes)

Configuration

Merge request reports