You can see the latest product updates for all of Google Cloud on the Google Cloud release notes page.
To get the latest product updates delivered to you, add the URL of this page to your
feed
reader, or add the feed URL directly: https://cloud.google.com/feeds/configconnector-release-notes.xml
February 09, 2021
Config Connector version 1.38.1 is now available
Miscellaneous bug fixes
February 05, 2021
Config Connector version 1.38.0 is now available
Added resourceID support to: ContainerCluster, ContainerNodePool, SourceRepoRepository and AccessContextManager resources
config-connector bulk-export now operates on LoggingLogSink resources
Increased CPU and Memory limit for ConfigConnector Operator
January 27, 2021
Config Connector version 1.37.0 is now available.
Added a column Status Age showing the last transition time for the value in Status, and added the column Age back to the default output of kubectl get for all Config Connector resources. Improved the value at Status and Ready columns to match against the condition name.
Added resourceID support for ArtifactRegistryRepository, Bigtable resources, DataflowJob, DNS resources, Monitoring resources, RedisInstance, ResourceManagerLien, SecretManagerSecret, Spanner resources, StorageTransferJob.
Fixed the issue with the legacy Common Name field on x509 certificate. Config Connector should be working on clusters of K8s 1.19+. (Issue #335)
January 22, 2021
Config Connector version 1.36.0 is now available
Added a column 'Ready' showing the value of the .status.conditions0, and associated Status to the default output of kubectl get for all Config Connector resources.
Added support for referencing an organization to IAMCustomRole.
Added a new sub-command to the CLI, config-connector print-resources which shows all config connector resources and their associated level of export and bulk-export support.
Reduce the memory usage of deletiondefender and controller-manager in high-scale scenarios (1000+ resources under management).
Added resourceID support to the Compute resources.
January 13, 2021
Config Connector version 1.35.0 is now available.
Added resourceID support for: SQL resources, PubSub resources, LoggingLogSink, StorageBucket, KMS resources, IAMCustomRole.
Added support for the MonitoringGroup resource.
January 06, 2021
Config Connector version 1.34.0 is now available.
Added support for IAM Member References. This allows users to create an IAMPolicyMember that references another resource as the IAM member (e.g. IAMServiceAccount, LoggingLogSink). For more information, see the memberFrom field in the IAMPolicyMember reference documentation. Support for IAM Member References is added only to IAMPolicyMember, not IAMPolicy.
Added support for the GameServicesRealm resource.
Added IAM support for ComputeDisk.
Added cacheMode, clientTtl, defaultTtl, maxTtl, negativeCaching, negativeCachingPolicy, serveWhileStale, and customResponseHeaders fields to ComputeBackendBucket.
Added customTimeBefore, daysSinceCustomTime, daysSinceNoncurrentTime, and noncurrentTimeBefore fields to StorageBucket.
Allow for IAMPolicy, IAMPolicyMember, and IAMAuditConfig to reference resources in other namespaces.
Added support for UpdateFailed, DeleteFailed, DependencyNotFound, and DependencyNotReady events to IAMPolicy, IAMPoicyMember, IAMAuditConfig.
Allow for Project and Folder resources to be migrated across folders and organizations by updating the folder-id/organization-id annotation. Only folder-to-folder or organization-to-organization migrations are allowed; folder-to-organization migrations or vice versa are not yet supported.
December 09, 2020
Config Connector version 1.33.0 is now available.
Added support for the ComputeProjectMetadata resource
Added resourceID field to ServiceUsageService and StorageNotification
Added computeResponseHeaders field to ComputeBackendService
Added maintenancePolicy.maintenanceExclusion field to ContainerCluster
Added description and disabled fields to LoggingLogSink
DataflowJobs can now be acquired via name
Added IAM support to BigtableTable
December 01, 2020
Config Connector version 1.32.0 is now available.
Added the resourceID field to Folder, BigQueryTable, BigQueryJob, and BigQueryDataset. (Issue #147 and #128)
Added the customResponseHeaders field to ComputeBackendService.
Added the maintenancePolicy.maintenanceExclusion field to ContainerCluster.
Added the description and disabled fields to LoggingLogSink.
Added "ORC" as a new available value to the CRD description of externalDataConfiguration.sourceFormat field in BigQueryTable.
Fixed the bug that the Bigtable Garbage Collection Policy can't be created via the Config Connector BigQueryGCPolicy resource. (Issue #300)
November 29, 2020
Config Connector version 1.31.1 is now available
Miscellaneous fixes and improvements
November 23, 2020
Config Connector version 1.31.0 is now available
Added support for the ComputeTargetGRPCProxy resource
Added support for the ResourceManagerLien resource
Fixed issue where IAMPolicyMember and IAMPolicy resources cannot be deleted if an invalid
configuration is applied (such as referencing a non-existent resource)
Fixed issue where notificationConfig.pubsub.topicRef was not usable
November 10, 2020
Config Connector version 1.30.0 is now available.
Added support for the MonitoringAlertPolicy resource.
Added maintenancePolicy field to ComputeNodeGroup.
Added exclusions field to LoggingLogSink.
Added authEnabled field to RedisInstance.
Added interface field to ComputeDisk.
Added mtu field to ComputeNetwork.
Added privateIpv6GoogleAccess field to ComputeSubnetwork.
Added confidentialNodes field to ContainerCluster.
Added skipInitialVersionCreation field to KMSCryptoKey.
Added "Immutable." to CRD descriptions for immutable fields in IAMPolicy, IAMPolicyMember, IAMAuditConfig.
Added more field descriptions.
Fixed bug where DataflowJob would fail to create if zone is unspecified even if region is specified.
Fixed bug in operator where ConfigConnector was not being re-enqueued for reconciliation when there is an error during reconciliation.
November 06, 2020
Config Connector version 1.29.0 is now available.
Field descriptions now document immutability.
DataflowJob labels are now mutable.
October 28, 2020
ConfigConnector version 1.28.0 released
Add spec.requestProjectPolicy field to ConfigConnectorContext CRD
October 21, 2020
Added support for externally referencing billing account and organizations in IAMPolicyMember
Added LoggingLogSink resource for creating log sinks at project, folder, and organization scopes
Added ResourceManagerPolicy resource for setting organization policy at project, folder, and organization scopes
October 19, 2020
Fixes "413 Request Entity Too Large" seen across multiple resource types
Adds support for MonitoringNotificationChannel
October 15, 2020
Support export sub-command in the config-connector CLI
Add support for the AccessContextManagerServicePerimeter resource
Add support for Folder-level IAM Audit Configs
Fix deadLetterTopicRef in the PubSubSubscription resource (Issue #281)
October 07, 2020
Add support for the DataflowFlexTemplateJob resource
Add the transformNameMapping field to DataflowJob
Add the auditConfigs field to IAMPolicy
Add the loadBalancerType, datapathProvider, and notificationConfig fields to ContainerCluster
Add the artifacts and options fields to CloudBuildTrigger
Add support for the GRPC protocol for ComputeBackendService
Add logic to auto-trigger server-side apply metadata on resources on K8s clusters with server-side apply enabled (i.e. K8s 1.16+)
Fix issue where kubectl get gcp did not include IAMPolicy, IAMPolicyMember, and IAMAuditConfig resources (Issue #286)
October 02, 2020
Added Cloud IAM support for ComputeImage.
Fixed an issue where an IAMPolicy cannot be deleted when the externally referenced resource does not exist.
Fixed an infinite diff condition on spec.minMasterVersion.
September 03, 2020
BigtableInstance: numNodes on resources is now optional. You can then programmatically scale your Bigtable instances. You cannot add the numNodes field after creating a BigtableInstance.
For production instances where the numNodes will be managed by Config Connector, this field is required with a minimum of 1. For a development instance or for an existing instance where the numNodes is managed outside of Config Connector, this field must be left unset.
August 27, 2020
Support referencing org-level IAM custom roles for IAMPolicy/IAMPolicyMember
Increase support for cross-project references
August 19, 2020
Add support for configuring Bigtable garbage collection policies with the BigtableGCPolicy resource
Fixes issue where SQLUser would constantly update despite there being no changes.
Fix issue where Deletion Defender would sometimes panic during uninstallation of Config Connector, preventing uninstallation to complete.
Performance improvements.
August 13, 2020
The Config Connector GKE Add-on is launched to GA. Users can now enable the GKE Add-on on cluster creation with the gcloud CLI or on the Cloud Console.
Add support for BigtableAppProfile
August 08, 2020
Added support for BigtableTable
Fix a bug where a CRD would be marked as uninstalling on a dryrun delete
July 31, 2020
Add support for ArtifactRegistryRepository
Changes DataflowJob to allow for spec.parameters and spec.ipConfiguration to be updateable
Fixes issue that was causing ContainerNodePool and SQLDatabase to display UpdateFailed due to the referenced ContainerCluster or SQLDatabase not being ready
Fixes issue preventing the creation of BigQuery resources that read from Google Drive files due to insufficient OAuth 2.0 scopes
Fixes issue causing SourceRepoRepository to constantly update even when there were no changes
July 21, 2020
bug fixes and performance improvements
July 16, 2020
Add support for allowing fields not specified by the user to be externally-managed (i.e. changeable outside of Config Connector). This feature can be enabled for a resource by enabling K8s server-side apply for the resource, which will be the default for all K8s resources starting in K8s 1.18. More detailed docs about the feature coming soon.
Operator improvement: add support for cluster-mode set-ups, which allows users to use one Google Service Account for all namespaces in their cluster. This is very similar to the traditional "Workload Identity" installation set-up.
Fix ContainerCluster validation issue (Issue #242).
Fix OOM issue for the cnrm-resource-stats-recorder pod (Issue #239).
Add support for projectViewer prefix for members in IAMPolicy and IAMPolicyMember (Issue #234).
Reduce spec.revisionHistoryLimit for the cnrm-stats-recorder and cnrm-webhook-manager Deployments from 10 (the default) to 1.
July 09, 2020
Added support for SecretManagerSecret
July 01, 2020
Config Connector now supports --server-dry-run for resource CRDs.
Fix a bug for the BigtableInstance resource that causes constant reconciliation.
Deprecate BigtableInstance's spec.deletionProtection field.
June 25, 2020
Add an option, iam-format, to config-connector to control IAM output, options are policy, policymember, or none.
ComputeForwardingRule's target field now supports referencing a ComputeTargetSSLProxy and ComputeTargetTCPProxy.
DataFlowJob's serviceAccountEmail, network, subnetwork, machineType, and ipConfiguration fields now support updates.
Fix an issue where config-connector would error on a Project resource.
June 16, 2020
You can use config-connector tool to export Google Cloud resources into Config Connector: documentation
Bug fixes
June 12, 2020
- Added ability to update streaming DataflowJobs by updating its spec (e.g.
spec.templateGcsPath). Note that not all fields can be updated, and batch DataflowJobs don't support updates. - Added
IAMPolicyto the output ofconfig-connector
June 03, 2020
Miscellaneous bug fixes and improvements
May 29, 2020
Added support for SQLSSLCert
Supported acquisition of backends added to Compute Backend Services out-of-band of Config Connector
Fixed support for autoscaling and manually resizing node pools with ContainerNodePool
May 27, 2020
Added support for BigQueryJob resource
May 19, 2020
Bug fixes and reliability improvements
Improving handling of scenarios when version field on ContainerNodePool is updated externally
May 15, 2020
fix ContainerNodePool version upgrade scenario
increase the cpu/memory request for webhook and recorder
Miscellaneous bug fixes and improvement
April 30, 2020
Fixes for the examples for the following resources: CloudBuildTrigger, AccessContextManager, ComputeDisk, and ComputeSubNetwork
Reduced memory requirements for deletion defender, recorder, and webhook. Reduced cpu requirements for recorder and webhook Increased CPU for the manager controller from 100m to 200m.
Ensure the webhook process does not signal it is ready until it is serving HTTP traffic
April 21, 2020
Miscellaneous bug fixes and improvements
April 14, 2020
Added readiness probes to Config Connector pods
April 10, 2020
Add the CloudBuildTrigger resource
Add the SourceRepoRepository resource
miscellaneous bug fixes and improvements
April 02, 2020
Fixed the ComputeInstance idempotency issue
March 25, 2020
Add "Deletion Defender" workload -- a pod whose job is to ensure that only resources meant to trigger a delete on the underlying API do so. If this workload goes down for whatever reason, the controller is prevented from performing deletions, thus protecting against accidental deletions in the case of cascading deletions prompted by uninstalling CRDs.
Add support for structured metadata list for ComputeInstance and ComputeInstanceTemplate in the form of a spec.metadata field.
March 23, 2020
Fixed label update issue on ContainerCluster (https://github.com/GoogleCloudPlatform/k8s-config-connector/issues/110)
Bumped memory request and limit for the manager pod as resource usage has gone up and the original limit of 256 Mi was found to not be sufficient for large customers
Changed admission webhooks to return non-200 error codes when denying admission
March 18, 2020
miscellaneous bug fixes and improvements
March 10, 2020
ComputeHealthCheck's location field now supports supplying a region
Fixed an issue with deleting StorageBucketAccessControl when the ServiceAccount did not exist: https://github.com/GoogleCloudPlatform/k8s-config-connector/issues/39
With the exception of role-bindings, moved all system components for namespaced mode into the cnrm-system, note: you must completely uninstall and reinstall to upgrade namespaced mode completely for this release.
Added a version annotation to the Config Connector manifests
February 26, 2020
Added support for DataflowJob resource
February 21, 2020
Added support for ComputeNetworkEndpointGroup resource
February 17, 2020
Added support for DNSPolicy resource
February 09, 2020
Added support for ComputeResourcePolicy resource
January 23, 2020
Config Connector has reached General Availability (GA).
Config Connector now supports configuring GCP resources with sensitive data in GKE Secrets.
Config connector now supports authenticating to multiple Google Service Accounts using different Kubernetes Service accounts in your Config Connector cluster using Namespaced mode.
Some Config Connector resources now support directives, which allow Config Connector to take additional actions beyond creating or deleting resources. For more information, see Resources
January 09, 2020
Added support for DNSRecordSet, Project and ServiceUsage resources
January 02, 2020
Added external resource reference support for IAMPolicy and IAMPolicyMember
Improved initial Prometheus metrics
December 23, 2019
Add support for ComputeNodeTemplate
Add initial support for exporting prometheus metrics
No longer run system components as root
Add a specific ResourceReference structure to IAMPolicy and IAMPolicyMember
December 17, 2019
Added the external field to support the external resource references
Added support for ComputeTargetTCPProxy
December 12, 2019
Added support for SpannerDatabase
November 26, 2019
Added support for ServiceNetworkingConnection and ComputeTargetHTTPSProxy
November 21, 2019
Added support for ComputeInterconnectAttachment, ComputeSSLProxy, ComputeTargetSSLProxy, (Regional)ComputeDisk
November 06, 2019
Added support for FirestoreIndex, ComputeRouterInterface, ComputeRoute, ComputeRouterPeer
November 01, 2019
New resources supported: IAMPolicyMember, BigQueryTable, ComputeVPNTunnel, ComputeImage, ComputeSnapshot, ComputeBackendBucket, ComputeDisk, ComputeSSLCertificate, ComputeHTTPHealthCheck, ComputeRouterNAT, ComputeExternalVPNGateway, ComputeRouter, ComputeVPNTunnel, DNSManagedZone, StorageNotification
Breaking namespace changes for the following resources: - GlobalComputeAddress: v1alpha2->v2apha3 - ComputeNetwork: v1alpha2->v1alpha3 - ComputeSubnetwork: v1alpha2->v1alpha3 - ComputeBackendService: v1alpha2->v1alpha3 - ComputeHealthCheck: v1alpha2->v1alpha3 - ComputeFirewall: v1alpha2->v1alpha3
October 22, 2019
Added new resources and samples for BigQueryTable, ComputeExternalVPNGateway
October 15, 2019
Bump compute api group version to v1alpha2
- rename ComputeGlobalForwardingRule to ComputeForwardingRule
- add required location field to the following existing resources: ComputeAddress, ComputeBackendService, ComputeForwardingRule, ComputeHealthCheck, ComputeTargetHttpProxy, ComputeURLMap
- ComputeAddress CRD now supports both global and regional compute addresses
Add the following new resources with samples: ComputeNetworkPeering, ComputeTargetVPNGateway, ComputeVpnGateway, IAMCustomRole, ComputeHTTPSHealthCheck, ComputeSharedVPCHostProject, ComputeRouter
October 08, 2019
New gcp category in CRDs, so you can view Config Connector resources via kubectl get gcp
September 30, 2019
Config Connector now supports GKE workload identity
Added the ContainerNodePool resource
September 20, 2019
Adding ComputeGlobalForwardingRule resource and examples
September 13, 2019
Fixed an issue with creating service account keys across projects.
September 09, 2019
Update samples for version 0.1.2
September 03, 2019
Added ComputeTargetHTTPProxy, ComputeBackendService, ComputeFirewall, ComputeUrlMap resources
Samples updates for newly added resources, as well bigtablecluster, bigtableinstance, iampolicy
August 16, 2019
Config Connector v0.1.1 is now available in Beta.