diff --git a/CHANGELOG.md b/CHANGELOG.md index 60f0e948..5202440f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,6 +5,18 @@ All notable changes to this project will be documented in this file. The format is based on [Common Changelog](https://common-changelog.org), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [3.14.0] - 2024-08-13 + +### Added + +- Add module `azure/api_connectors/sftp_ssh` ([#428](https://github.com/recognizegroup/terraform/pull/428)) ([@patrik-pa4k](https://github.com/patrik-pa4k)) +- `azure/postgresql`: Add variable `authentication_active_directory_auth_enabled` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) +- `azure/postgresql`: Add variable `authentication_password_auth_enabled` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) +- `azure/postgresql`: Add variable `authentication_tenant_id` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) +- `azure/postgresql_public`: Add variable `authentication_active_directory_auth_enabled` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) +- `azure/postgresql_public`: Add variable `authentication_password_auth_enabled` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) +- `azure/postgresql_public`: Add variable `authentication_tenant_id` ([#429](https://github.com/recognizegroup/terraform/pull/429)) ([@tom-reinders](https://github.com/tom-reinders)) + ## [3.13.0] - 2024-07-18 ### Changed @@ -278,6 +290,7 @@ _If you are upgrading: please see [UPGRADE_3.0.md](UPGRADE_3.0.md)._ - **Breaking:** Remove module `azure/monitoring`, replace with `azure/azure/monitoring_action_group` and `azure/monitoring_log_analytics_alert` ([#268](https://github.com/recognizegroup/terraform/pull/268)) ([`5bd013c1`](https://github.com/recognizegroup/terraform/commit/5bd013c1)) ([@pipalmic](https://github.com/pipalmic)) - **Breaking:** Remove module `azure/api_connectors/storage_account`, replace with `azure/api_connectors/storage_blob` and `azure/api_connectors/storage_table` ([#276](https://github.com/recognizegroup/terraform/pull/276)) ([`7a483886`](https://github.com/recognizegroup/terraform/commit/7a483886)) ([@pipalmic](https://github.com/pipalmic)) +[3.14.0]: https://github.com/recognizegroup/terraform/releases/tag/v3.14.0 [3.13.0]: https://github.com/recognizegroup/terraform/releases/tag/v3.13.0 [3.12.1]: https://github.com/recognizegroup/terraform/releases/tag/v3.12.1 [3.12.0]: https://github.com/recognizegroup/terraform/releases/tag/v3.12.0 diff --git a/modules/azure/postgresql/main.tf b/modules/azure/postgresql/main.tf index 4e743b21..5ad473f4 100644 --- a/modules/azure/postgresql/main.tf +++ b/modules/azure/postgresql/main.tf @@ -44,6 +44,12 @@ resource "azurerm_postgresql_flexible_server" "postgresql_server" { delegated_subnet_id = var.delegated_subnet_id private_dns_zone_id = var.private_dns_zone_id + authentication { + active_directory_auth_enabled = var.authentication_active_directory_auth_enabled + password_auth_enabled = var.authentication_password_auth_enabled + tenant_id = var.authentication_tenant_id + } + maintenance_window { day_of_week = 1 # Monday start_hour = 2 diff --git a/modules/azure/postgresql/variables.tf b/modules/azure/postgresql/variables.tf index d2be8190..6605c243 100644 --- a/modules/azure/postgresql/variables.tf +++ b/modules/azure/postgresql/variables.tf @@ -72,6 +72,24 @@ variable "private_dns_zone_id" { description = "ID of the private DNS zone." } +variable "authentication_active_directory_auth_enabled" { + type = bool + description = "Specifies whether or not Active Directory authentication is enabled for this PostgreSQL Server" + default = false +} + +variable "authentication_password_auth_enabled" { + type = bool + description = "Specifies whether or not password authentication is enabled for this PostgreSQL Server" + default = true +} + +variable "authentication_tenant_id" { + type = string + description = "Specifies the Tenant ID for this PostgreSQL Server" + default = null +} + variable "password_keeper" { type = map(string) description = "Random map of strings, when changed the postgresql admin password will rotate." diff --git a/modules/azure/postgresql_public/main.tf b/modules/azure/postgresql_public/main.tf index a2eb0cc0..906e35b9 100644 --- a/modules/azure/postgresql_public/main.tf +++ b/modules/azure/postgresql_public/main.tf @@ -41,6 +41,12 @@ resource "azurerm_postgresql_flexible_server" "postgresql_server" { version = var.postgresql_version zone = "1" + authentication { + active_directory_auth_enabled = var.authentication_active_directory_auth_enabled + password_auth_enabled = var.authentication_password_auth_enabled + tenant_id = var.authentication_tenant_id + } + maintenance_window { day_of_week = 1 # Monday start_hour = 2 diff --git a/modules/azure/postgresql_public/variables.tf b/modules/azure/postgresql_public/variables.tf index dd2e13bd..87c52f37 100644 --- a/modules/azure/postgresql_public/variables.tf +++ b/modules/azure/postgresql_public/variables.tf @@ -55,6 +55,24 @@ variable "password_keeper" { description = "Random map of strings, when changed the postgresql admin password will rotate." } +variable "authentication_active_directory_auth_enabled" { + type = bool + description = "Specifies whether or not Active Directory authentication is enabled for this PostgreSQL Server" + default = false +} + +variable "authentication_password_auth_enabled" { + type = bool + description = "Specifies whether or not password authentication is enabled for this PostgreSQL Server" + default = true +} + +variable "authentication_tenant_id" { + type = string + description = "Specifies the Tenant ID for this PostgreSQL Server" + default = null +} + variable "whitelist_ip_addresses" { type = set(string) description = "List of IP addresses to whitelist."