{ "id": "edge.24-12-10", "name": "edge.24-12-10", "summary": "Changes TLS certificate provisioning architecture to avoid rate limits on large clusters, adds backwards compatibility for EKS cluster creator privileges, and improves Authentik stability during PostgreSQL failovers.", "skip": false, "highlights": [ "TLS certificate provisioning architecture changed — must upgrade `kube_cert_issuers` then `kube_ingress_nginx` in order", "New `bootstrap_cluster_creator_admin_privileges` input in `aws_eks` for backwards compatibility" ], "changes": [ { "id": "30fbe131-bb91-4789-a67d-7e86e4a5f563", "type": "breaking_change", "summary": "This release changes the way public ingress TLS certificates are provisioned to avoid hitting rate limits on large clusters. Modules", "impacts": [ { "type": "iac-module", "component": "kube_cert_issuers", "summary": "TLS certificate provisioning architecture changed to avoid rate limits" }, { "type": "iac-module", "component": "kube_ingress_nginx", "summary": "Must be upgraded after kube_cert_issuers for new TLS provisioning" } ] }, { "id": "04548359-d3f0-492d-b671-545b95be03ff", "type": "fix", "summary": "Adds `bootstrap_cluster_creator_admin_privileges` input to [`aws_eks`](/docs/edge/reference/infrastructure-modules/direct/aws/aws_eks) to provide backwards compatibility with clusters created with this field set to `true`.", "impacts": [ { "type": "iac-module", "component": "aws_eks", "summary": "Adds backwards-compatible cluster creator admin privileges input" } ] }, { "id": "e560e888-eec7-4ba4-8618-1b188eb11466", "type": "fix", "summary": "Temporary Authentik disruptions caused by PostgreSQL database failovers have been mitigated.", "impacts": [ { "type": "iac-module", "component": "kube_authentik", "summary": "Mitigates disruptions during PostgreSQL database failovers" } ] } ], "on_upgrade_path": true, "list_url": "/docs/changelog/edge.json", "llm_txt_url": "/docs/changelog/edge.24-12-10/llm.txt", "next": "/docs/changelog/edge.24-12-11.json", "prev": "/docs/changelog/edge.24-12-05.json" }