Terraform Enterprise v202409-3 (791)
Last required release: v202406-1 (776)
Flexible Deployment Options terraform-enterprise
container digest: amd64/linux sha256:c1297dfe64e97c32693328ec756b3023690b0b6b347a345da1778fc97c55fd32
Changes Since v202409-2
- The
tfectl app config --format docker
compose configuration generation has been enhanced to heighten clarity around generated values and to correct theformatting of some environment variables.
Known Issues
- [Updated September 30, 2024] Some deployments are experiencing memory growth issues on v202401-1 or higher, sometimes resulting in out of memory errors that require a restart to resolve. This issue is currently being investigated. It is strongly recommended that you test in a non-production environment before deploying v202401-1 or higher in production, and monitor memory for unexpected growth. This message will be updated when a fix is available in a published release.
- [Updated November 25, 2024] Terraform Enterprise does not currently support using a username provided via
REDIS_USER
for authenticating with an external Redis instance. To use authentication with Redis, configure Redis to require only a password for the default user by updating your Redis configuration file (redis.conf
) as follows, replacing<your password>
accordingly:
In the Terraform Enterprise environment, set only the REDIS_PASSWORD
variable with the corresponding value.
Deprecations
The
terraform-build-worker-plan-timeout
andterraform-build-worker-apply-timeout
attributes in the admin organization and general settings API have been deprecated and will be removed in a future release of Terraform Enterprise. Use the newplan-timeout
andapply-timeout
attributes instead.Terraform Enterprise now supports new deployment options and will end support for the Replicated Native Scheduler option. The final Replicated release of Terraform Enterprise will be in November 2024. HashiCorp will support this release until April 1, 2026.
To ensure you continue to receive the latest features and fixes, including security updates, please plan to migrate to a new deployment option by November 2024. For more information, check out Flexible Deployment Options or contact your HashiCorp account representative.
The variables API endpoint,
/vars
, is deprecated and will be removed in a future release. All existing integrations with this API should transition to the workspace variables API/workspaces/:workspace_id/vars
.PostgreSQL v12 will reach end of life on November 12 2024 and will no longer be supported in Terraform Enterprise after that date. Please refer to PostgreSQL Requirements for Terraform Enterprise for a complete list of supported versions.
Improvements
- A run task's associated workspaces are now paginated on the page where you edit run tasks, reducing load times for run tasks associated with many workspaces.
- Users with VCS workspaces that contain README files may see improved response times during workspace updates.
- New
tfectl
commands have been added to retrive the application version,tfectl app version
, and the last completed database migrtion,tfectl db last-applied-migration
. - The
tfectl app config --format docker
compose configuration generation has been enhanced to heighten clarity around generated values and to correct theformatting of some environment variables.
Bug Fixes
- You can now delete organizations that contain on-demand policy evaluations.
- Previously single resource instance created with terraform
count
statement orfor-each
in HCP could not be replaced because the state-parser did not parse the index_key. Single resource instances can now be replaced. - Workspace Notifications have been updated to work with workflows in Microsoft Teams.
Security
- The
ruby-saml
gem has been updated to v1.17.0 to address CVE-2024-45409. Analysis of Terraform Enterprise specific exposure to this issue is currently in progress and a HashiCorp security bulletin will be published if determined appropriate. - Container and binary updates address reported vulnerabilities (CVEs) in underlying base images, packages, and dependencies.