Newsletter Alerts
aws Terraform AWS Provider Releases · · 6.51.0

Terraform AWS Provider v6.51.0: New resources, enhancements, and bug fixes

terraforminfraawsgadeprecationengineer
feature patch announcement

This release introduces new resources for AWS services like ACM, Bedrock Agent, and SageMaker Hub, along with several enhancements to existing resources, including EKS cluster configurations and CloudFront distributions. Several bug fixes are also included, addressing issues with ACM certificates, DMS S3 endpoints, and Elasticache replication groups, among others. Users should note a deprecation in the DMS S3 endpoint resource for KMS key ARN configurations.

  • New List Resource: aws_acm_certificate
  • New List Resource: aws_bedrockagentcore_evaluator
  • New List Resource: aws_sagemaker_hub_content_reference
  • New Resource: aws_bedrockagentcore_evaluator
  • New Resource: aws_sagemaker_hub_content_reference
Features (5)
  • aws_acm_certificate New List Resource: aws_acm_certificate
    #48283
  • aws_bedrockagentcore_evaluator New List Resource: aws_bedrockagentcore_evaluator
    #47964
  • aws_sagemaker_hub_content_reference New List Resource: aws_sagemaker_hub_content_reference
    #48379
  • aws_bedrockagentcore_evaluator New Resource: aws_bedrockagentcore_evaluator
    #47964
  • aws_sagemaker_hub_content_reference New Resource: aws_sagemaker_hub_content_reference
    #48379
Enhancements (12)
  • aws_eks_cluster Add outpost_config.control_plane_placement.spread_level, outpost_config.etcd_instance_type, and outpost_config.etcd_placement attributes
    #48367
  • aws_cloudfront_distribution Add origin.custom_origin_config.origin_mtls_config argument
    #46421
  • aws_cloudfront_multitenant_distribution Add origin.custom_origin_config.origin_mtls_config argument
    #46421
  • aws_detective_graph Add Resource Identity support
    #48383
  • aws_detective_organization_configuration Add Resource Identity support
    #48383
  • aws_eks_cluster Add outpost_config.control_plane_placement.spread_level, outpost_config.etcd_instance_type, and outpost_config.etcd_placement arguments
    #48367
  • aws_eks_cluster Change outpost_config.control_plane_placement.group_name to Optional
    #48367
  • aws_elasticache_replication_group Add durability argument
    #48254
  • aws_elasticache_serverless_cache Add network_type argument
    #48371
  • aws_msk_replicator Add Resource Identity support
    #48338
  • aws_observabilityadmin_centralization_rule_for_organization Add destination_metrics_configuration and source_metrics_configuration blocks
    #48303
  • aws_opensearchserverless_collection Add vector_options.serverless_vector_acceleration argument
    #47018
Fixes (11)
  • aws_acm_certificate Correctly updates subject_alternative_names for Imported certificates
    #48362
  • aws_acmpca_certificate_authority Prevents hang when trying to create resources over the quota limit
    #48365
  • aws_cloudfront_distribution_tenant Configured operation timeouts are now correctly honored, preventing potential indefinite hangs
    #47839
  • aws_dms_s3_endpoint Fix perpetual diff when kms_key_arn is set but not returned by the API for S3 engine endpoints
    #48441
  • aws_elasticache_replication_group

    Fix error when adding a log_delivery_configuration with log_type = "slow-log" while simultaneously upgrading the engine from Redis 5 to Redis 6 or Valkey 7

    #46526
  • aws_kinesis_firehose_delivery_stream

    Fix InvalidArgumentException errors when creating or updating extended_s3_configuration in AWS partitions that report unsupported custom_time_zone and file_extension attributes in a combined error message

    #48369
  • aws_lakeformation_opt_in Fix handling of out-of-band deletion of linked resource
    #48416
  • aws_lakeformation_opt_in Prevent crash by making the principal block required
    #48416
  • aws_lakeformation_resource_lf_tag Prevent crash when processing null tag values during read operations
    #48417
  • aws_msk_replicator Fix runtime error: index out of range [0] with length 0 panic when importing a replicator with no replication configurations
    #48338
  • aws_ses_domain_mail_from Correctly detect resources deleted outside of Terraform when refreshing state
    #48387
Notes (3)
  • aws_cloudfront_distribution_tenant

    When using managed_certificate_request, managed certificate issuance uses a fixed 3-hour timeout regardless of the configured resource timeout. This behavior will be updated in a future major version

    #47839
  • aws_dms_s3_endpoint

    The kms_key_arn attribute has been deprecated. All configurations using kms_key_arn should be updated to use the server_side_encryption_kms_key_id attribute instead

    #48441
  • aws_eks_cluster Because we cannot easily test the behavior of outpost_config, the changes are best effort and we ask for community help in testing
    #48367
Read the original announcement →

https://github.com/hashicorp/terraform-provider-aws/releases/tag/v6.51.0