Terraform
Terraform Enterprise v202404-2 (764)
Last required release: v202207-2 (642)
Flexible Deployment Options terraform-enterprise
container digest: amd64/linux sha256:3b564b51884573aca0dc59e7042ab6dab1cf9136284e56560805c6fef6567d69
Changes Since v202404-1
- TFE will now properly detect S3 bucket prefixes, allowing it to read and write to the blob storage without issues.
- External service passwords and vault encryption passwords with special characters will no longer prevent startup.
- External vault tokens now refresh properly.
- The global run tasks feature can now be enabled.
- The private registry will list module versions.
- The footer now shows the correct version of the application,
v202404-2
instead ofdev
.
Deprecations
Terraform Enterprise now supports new deployment options and will end support for the Replicated Native Scheduler option. The final Replicated release of Terraform Enterprise will be in November 2024. HashiCorp will support this release until April 1, 2026.
To ensure you continue to receive the latest features and fixes, please plan to migrate to a new deployment option by November 2024. For more information, check out Flexible Deployment Options or contact your HashiCorp account representative.
RedHat Enterprise will end support for RHEL v7 on June 30th, 2024. As such, Terraform Enterprise will no longer be supported on that operating system after that date.
Features
- Podman is now a supported deployment option. Requirements, installation and migration instructions from Replicated are available.
- You can configure which projects can use repositories from a VCS connection. By default each VCS connection is enabled for all workspaces in the organization. If you need to limit which projects can use repositories from a given VCS connection, you can change this setting to enable the connection for only workspaces in the selected projects. This blog post covers this new setting in more detail.
- You can now associate a Run Task to all workspaces in the organization. This blog post explains more about this new feature.
- You can now create runs with debugging mode enabled from the UI and API, allowing quick access to trace level run logs.
- You can now provide a custom pod template for worker pods with v1.2.0 of the helm chart.
Improvements
- Hosted agents now dequeue jobs in priority order.
- When a user creates a new project or updates a project name whitespace is now removed from both ends of the name. The allows for a better user experience if a user accidentally adds spaces before or after.
- Breadcrumbs for projects-related pages are now a more accurate representation of the user's location in Terraform Enterprise.
- Bitbucket Data Center is now a supported VCS integration.
- Workspace tasks can now be associated to more than one run stage.
Bug Fixes
- Environment variables in priority variable sets will now overwrite workspace variables with the same key. Previously, priority variable sets did not work for environment-type variables.
- Workspaces can now be fully deleted even if they contain a state version which was rolled back. Previously, a bug caused issues with deleting workspaces under these conditions, leading to incomplete removal.
- Searching for a Policy Set no longer is interrupted by unexpected reloads.
- Workspaces with long names in a Kubernetes-hosted Terraform Enterprise installation can now successfully run plan or apply operations. Previously, a bug caused these operations to fail.
- You can now use
tfe-backup-restore
to generate blob storage backups. - Any
tfectl
command that executes across remote nodes and takes more than 30 seconds to complete no longer fails silently. - All Docker container metrics now have an associated
name
label, ensuring proper identification and monitoring. - Terraform Enterprise no longer silently fails runs in organizations with a plan or apply timeout value exceeding 24 hours. If you had previously configured this setting to greater than 24 hours, it will be reduced to 24 hours on start.
- The
tfectl support bundle
command now generates a complete manifest.json file.
Security
- Each service now runs under a unique user id inside the Terraform Enterprise container.
- Container and binary updates address reported vulnerabilities (CVEs) in underlying base images, packages, and dependencies.