From d6a4819145242d7201c45dcb478a5bb225bf7877 Mon Sep 17 00:00:00 2001
From: "kierra.searle@ibm.com" <kierra.searle@ibm.com>
Date: Thu, 25 Jul 2024 14:25:29 -0400
Subject: [PATCH 1/3] feat: add support for at management events

---
 README.md    | 2 +-
 cos.tf       | 1 +
 variables.tf | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index c7bac7f55..8aaa83dde 100644
--- a/README.md
+++ b/README.md
@@ -909,7 +909,7 @@ module "cluster_pattern" {
 | <a name="input_appid"></a> [appid](#input\_appid) | The App ID instance to be used for the teleport vsi deployments | <pre>object({<br>    name           = optional(string)<br>    resource_group = optional(string)<br>    use_data       = optional(bool)<br>    keys           = optional(list(string))<br>    use_appid      = bool<br>  })</pre> | <pre>{<br>  "use_appid": false<br>}</pre> | no |
 | <a name="input_atracker"></a> [atracker](#input\_atracker) | atracker variables | <pre>object({<br>    resource_group        = string<br>    receive_global_events = bool<br>    collector_bucket_name = string<br>    add_route             = bool<br>  })</pre> | n/a | yes |
 | <a name="input_clusters"></a> [clusters](#input\_clusters) | A list describing clusters workloads to create | <pre>list(<br>    object({<br>      name                                = string           # Name of Cluster<br>      vpc_name                            = string           # Name of VPC<br>      subnet_names                        = list(string)     # List of vpc subnets for cluster<br>      workers_per_subnet                  = number           # Worker nodes per subnet.<br>      machine_type                        = string           # Worker node flavor<br>      kube_type                           = string           # iks or openshift<br>      kube_version                        = optional(string) # Can be a version from `ibmcloud ks versions` or `default`<br>      entitlement                         = optional(string) # entitlement option for openshift<br>      secondary_storage                   = optional(string) # Secondary storage type<br>      pod_subnet                          = optional(string) # Portable subnet for pods<br>      service_subnet                      = optional(string) # Portable subnet for services<br>      resource_group                      = string           # Resource Group used for cluster<br>      cos_name                            = optional(string) # Name of COS instance Required only for OpenShift clusters<br>      access_tags                         = optional(list(string), [])<br>      boot_volume_crk_name                = optional(string)      # Boot volume encryption key name<br>      disable_public_endpoint             = optional(bool, true)  # disable cluster public, leaving only private endpoint<br>      disable_outbound_traffic_protection = optional(bool, false) # public outbound access from the cluster workers<br>      cluster_force_delete_storage        = optional(bool, false) # force the removal of persistent storage associated with the cluster during cluster deletion<br>      kms_wait_for_apply                  = optional(bool, true)  # make terraform wait until KMS is applied to master and it is ready and deployed<br>      addons = optional(object({                                  # Map of OCP cluster add-on versions to install<br>        debug-tool                = optional(string)<br>        image-key-synchronizer    = optional(string)<br>        openshift-data-foundation = optional(string)<br>        vpc-file-csi-driver       = optional(string)<br>        static-route              = optional(string)<br>        cluster-autoscaler        = optional(string)<br>        vpc-block-csi-driver      = optional(string)<br>        ibm-storage-operator      = optional(string)<br>      }), {})<br>      manage_all_addons = optional(bool, false) # Instructs Terraform to manage all cluster addons, even if addons were installed outside of the module. If set to 'true' this module will destroy any addons that were installed by other sources.<br>      kms_config = optional(<br>        object({<br>          crk_name         = string         # Name of key<br>          private_endpoint = optional(bool) # Private endpoint<br>        })<br>      )<br>      worker_pools = optional(<br>        list(<br>          object({<br>            name                 = string           # Worker pool name<br>            vpc_name             = string           # VPC name<br>            workers_per_subnet   = number           # Worker nodes per subnet<br>            flavor               = string           # Worker node flavor<br>            subnet_names         = list(string)     # List of vpc subnets for worker pool<br>            entitlement          = optional(string) # entitlement option for openshift<br>            secondary_storage    = optional(string) # Secondary storage type<br>            boot_volume_crk_name = optional(string) # Boot volume encryption key name<br>          })<br>        )<br>      )<br>    })<br>  )</pre> | n/a | yes |
-| <a name="input_cos"></a> [cos](#input\_cos) | Object describing the cloud object storage instance, buckets, and keys. Set `use_data` to false to create instance | <pre>list(<br>    object({<br>      name           = string<br>      use_data       = optional(bool)<br>      resource_group = string<br>      plan           = optional(string)<br>      random_suffix  = optional(bool) # Use a random suffix for COS instance<br>      access_tags    = optional(list(string), [])<br>      buckets = list(object({<br>        name                  = string<br>        storage_class         = string<br>        endpoint_type         = string<br>        force_delete          = bool<br>        single_site_location  = optional(string)<br>        region_location       = optional(string)<br>        cross_region_location = optional(string)<br>        kms_key               = optional(string)<br>        access_tags           = optional(list(string), [])<br>        allowed_ip            = optional(list(string), [])<br>        hard_quota            = optional(number)<br>        archive_rule = optional(object({<br>          days    = number<br>          enable  = bool<br>          rule_id = optional(string)<br>          type    = string<br>        }))<br>        expire_rule = optional(object({<br>          days                         = optional(number)<br>          date                         = optional(string)<br>          enable                       = bool<br>          expired_object_delete_marker = optional(string)<br>          prefix                       = optional(string)<br>          rule_id                      = optional(string)<br>        }))<br>        activity_tracking = optional(object({<br>          activity_tracker_crn = string<br>          read_data_events     = bool<br>          write_data_events    = bool<br>        }))<br>        metrics_monitoring = optional(object({<br>          metrics_monitoring_crn  = string<br>          request_metrics_enabled = optional(bool)<br>          usage_metrics_enabled   = optional(bool)<br>        }))<br>      }))<br>      keys = optional(<br>        list(object({<br>          name        = string<br>          role        = string<br>          enable_HMAC = bool<br>        }))<br>      )<br><br>    })<br>  )</pre> | n/a | yes |
+| <a name="input_cos"></a> [cos](#input\_cos) | Object describing the cloud object storage instance, buckets, and keys. Set `use_data` to false to create instance | <pre>list(<br>    object({<br>      name           = string<br>      use_data       = optional(bool)<br>      resource_group = string<br>      plan           = optional(string)<br>      random_suffix  = optional(bool) # Use a random suffix for COS instance<br>      access_tags    = optional(list(string), [])<br>      buckets = list(object({<br>        name                  = string<br>        storage_class         = string<br>        endpoint_type         = string<br>        force_delete          = bool<br>        single_site_location  = optional(string)<br>        region_location       = optional(string)<br>        cross_region_location = optional(string)<br>        kms_key               = optional(string)<br>        access_tags           = optional(list(string), [])<br>        allowed_ip            = optional(list(string), [])<br>        hard_quota            = optional(number)<br>        archive_rule = optional(object({<br>          days    = number<br>          enable  = bool<br>          rule_id = optional(string)<br>          type    = string<br>        }))<br>        expire_rule = optional(object({<br>          days                         = optional(number)<br>          date                         = optional(string)<br>          enable                       = bool<br>          expired_object_delete_marker = optional(string)<br>          prefix                       = optional(string)<br>          rule_id                      = optional(string)<br>        }))<br>        activity_tracking = optional(object({<br>          activity_tracker_crn = string<br>          read_data_events     = bool<br>          write_data_events    = bool<br>          management_events    = bool<br>        }))<br>        metrics_monitoring = optional(object({<br>          metrics_monitoring_crn  = string<br>          request_metrics_enabled = optional(bool)<br>          usage_metrics_enabled   = optional(bool)<br>        }))<br>      }))<br>      keys = optional(<br>        list(object({<br>          name        = string<br>          role        = string<br>          enable_HMAC = bool<br>        }))<br>      )<br><br>    })<br>  )</pre> | n/a | yes |
 | <a name="input_enable_transit_gateway"></a> [enable\_transit\_gateway](#input\_enable\_transit\_gateway) | Create transit gateway | `bool` | `true` | no |
 | <a name="input_f5_template_data"></a> [f5\_template\_data](#input\_f5\_template\_data) | Data for all f5 templates | <pre>object({<br>    tmos_admin_password     = optional(string)<br>    license_type            = optional(string)<br>    byol_license_basekey    = optional(string)<br>    license_host            = optional(string)<br>    license_username        = optional(string)<br>    license_password        = optional(string)<br>    license_pool            = optional(string)<br>    license_sku_keyword_1   = optional(string)<br>    license_sku_keyword_2   = optional(string)<br>    license_unit_of_measure = optional(string)<br>    do_declaration_url      = optional(string)<br>    as3_declaration_url     = optional(string)<br>    ts_declaration_url      = optional(string)<br>    phone_home_url          = optional(string)<br>    template_source         = optional(string)<br>    template_version        = optional(string)<br>    app_id                  = optional(string)<br>    tgactive_url            = optional(string)<br>    tgstandby_url           = optional(string)<br>    tgrefresh_url           = optional(string)<br>  })</pre> | <pre>{<br>  "license_type": "none"<br>}</pre> | no |
 | <a name="input_f5_vsi"></a> [f5\_vsi](#input\_f5\_vsi) | A list describing F5 VSI workloads to create | <pre>list(<br>    object({<br>      name                   = string<br>      vpc_name               = string<br>      primary_subnet_name    = string<br>      secondary_subnet_names = list(string)<br>      secondary_subnet_security_group_names = list(<br>        object({<br>          group_name     = string<br>          interface_name = string<br>        })<br>      )<br>      ssh_keys                        = list(string)<br>      f5_image_name                   = string<br>      machine_type                    = string<br>      resource_group                  = optional(string)<br>      enable_management_floating_ip   = optional(bool)<br>      enable_external_floating_ip     = optional(bool)<br>      security_groups                 = optional(list(string))<br>      boot_volume_encryption_key_name = optional(string)<br>      hostname                        = string<br>      domain                          = string<br>      access_tags                     = optional(list(string), [])<br>      security_group = optional(<br>        object({<br>          name = string<br>          rules = list(<br>            object({<br>              name      = string<br>              direction = string<br>              source    = string<br>              tcp = optional(<br>                object({<br>                  port_max = number<br>                  port_min = number<br>                })<br>              )<br>              udp = optional(<br>                object({<br>                  port_max = number<br>                  port_min = number<br>                })<br>              )<br>              icmp = optional(<br>                object({<br>                  type = number<br>                  code = number<br>                })<br>              )<br>            })<br>          )<br>        })<br>      )<br>      block_storage_volumes = optional(list(<br>        object({<br>          name           = string<br>          profile        = string<br>          capacity       = optional(number)<br>          iops           = optional(number)<br>          encryption_key = optional(string)<br>        })<br>      ))<br>      load_balancers = optional(list(<br>        object({<br>          name                    = string<br>          type                    = string<br>          listener_port           = number<br>          listener_protocol       = string<br>          connection_limit        = number<br>          algorithm               = string<br>          protocol                = string<br>          health_delay            = number<br>          health_retries          = number<br>          health_timeout          = number<br>          health_type             = string<br>          pool_member_port        = string<br>          idle_connection_timeout = optional(number)<br>          security_group = optional(<br>            object({<br>              name = string<br>              rules = list(<br>                object({<br>                  name      = string<br>                  direction = string<br>                  source    = string<br>                  tcp = optional(<br>                    object({<br>                      port_max = number<br>                      port_min = number<br>                    })<br>                  )<br>                  udp = optional(<br>                    object({<br>                      port_max = number<br>                      port_min = number<br>                    })<br>                  )<br>                  icmp = optional(<br>                    object({<br>                      type = number<br>                      code = number<br>                    })<br>                  )<br>                })<br>              )<br>            })<br>          )<br>        })<br>      ))<br>    })<br>  )</pre> | `[]` | no |
diff --git a/cos.tf b/cos.tf
index 792f99acf..8347dac04 100644
--- a/cos.tf
+++ b/cos.tf
@@ -141,6 +141,7 @@ resource "ibm_cos_bucket" "buckets" {
       activity_tracker_crn = activity_tracking.value.activity_tracker_crn
       read_data_events     = activity_tracking.value.read_data_events
       write_data_events    = activity_tracking.value.write_data_events
+      management_events    = activity_tracking.value.management_events
     }
   }
 
diff --git a/variables.tf b/variables.tf
index 91e1011ea..281ed9eae 100644
--- a/variables.tf
+++ b/variables.tf
@@ -541,6 +541,7 @@ variable "cos" {
           activity_tracker_crn = string
           read_data_events     = bool
           write_data_events    = bool
+          management_events    = bool
         }))
         metrics_monitoring = optional(object({
           metrics_monitoring_crn  = string

From 0acc39930c5b76ca61807c0a4a9e0e9882db3496 Mon Sep 17 00:00:00 2001
From: "kierra.searle@ibm.com" <kierra.searle@ibm.com>
Date: Tue, 30 Jul 2024 10:08:24 -0400
Subject: [PATCH 2/3] chore: ibm cloud version bump

---
 examples/one-vpc-one-vsi/version.tf  | 2 +-
 examples/override-example/version.tf | 2 +-
 patterns/mixed/versions.tf           | 2 +-
 patterns/roks-quickstart/version.tf  | 2 +-
 patterns/roks/versions.tf            | 2 +-
 patterns/vpc/version.tf              | 2 +-
 patterns/vsi-extension/version.tf    | 2 +-
 patterns/vsi-quickstart/version.tf   | 2 +-
 patterns/vsi/versions.tf             | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/examples/one-vpc-one-vsi/version.tf b/examples/one-vpc-one-vsi/version.tf
index 61acc7e99..1452e364f 100644
--- a/examples/one-vpc-one-vsi/version.tf
+++ b/examples/one-vpc-one-vsi/version.tf
@@ -3,7 +3,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
   }
 }
diff --git a/examples/override-example/version.tf b/examples/override-example/version.tf
index 61acc7e99..1452e364f 100644
--- a/examples/override-example/version.tf
+++ b/examples/override-example/version.tf
@@ -3,7 +3,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
   }
 }
diff --git a/patterns/mixed/versions.tf b/patterns/mixed/versions.tf
index b5505b0e3..09f373b85 100644
--- a/patterns/mixed/versions.tf
+++ b/patterns/mixed/versions.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
     external = {
       source  = "hashicorp/external"
diff --git a/patterns/roks-quickstart/version.tf b/patterns/roks-quickstart/version.tf
index d525e26a0..deb0921ca 100644
--- a/patterns/roks-quickstart/version.tf
+++ b/patterns/roks-quickstart/version.tf
@@ -4,7 +4,7 @@ terraform {
     # renovate is set up to keep provider version at the latest for all DA solutions
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
   }
 }
diff --git a/patterns/roks/versions.tf b/patterns/roks/versions.tf
index 1cdd8f9a5..8737e2622 100644
--- a/patterns/roks/versions.tf
+++ b/patterns/roks/versions.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
     # tflint-ignore: terraform_unused_required_providers
     external = {
diff --git a/patterns/vpc/version.tf b/patterns/vpc/version.tf
index 1cdd8f9a5..8737e2622 100644
--- a/patterns/vpc/version.tf
+++ b/patterns/vpc/version.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
     # tflint-ignore: terraform_unused_required_providers
     external = {
diff --git a/patterns/vsi-extension/version.tf b/patterns/vsi-extension/version.tf
index 1cdd8f9a5..8737e2622 100644
--- a/patterns/vsi-extension/version.tf
+++ b/patterns/vsi-extension/version.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
     # tflint-ignore: terraform_unused_required_providers
     external = {
diff --git a/patterns/vsi-quickstart/version.tf b/patterns/vsi-quickstart/version.tf
index d525e26a0..deb0921ca 100644
--- a/patterns/vsi-quickstart/version.tf
+++ b/patterns/vsi-quickstart/version.tf
@@ -4,7 +4,7 @@ terraform {
     # renovate is set up to keep provider version at the latest for all DA solutions
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
   }
 }
diff --git a/patterns/vsi/versions.tf b/patterns/vsi/versions.tf
index 1cdd8f9a5..8737e2622 100644
--- a/patterns/vsi/versions.tf
+++ b/patterns/vsi/versions.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = "1.66.0"
+      version = "1.67.0"
     }
     # tflint-ignore: terraform_unused_required_providers
     external = {

From d9b10607bd0ae5e2d093fa5d779b078e96d0b815 Mon Sep 17 00:00:00 2001
From: "kierra.searle@ibm.com" <kierra.searle@ibm.com>
Date: Tue, 30 Jul 2024 12:41:09 -0400
Subject: [PATCH 3/3] chore: more version bumps

---
 README.md                        | 2 +-
 patterns/roks/module/versions.tf | 2 +-
 patterns/vpc/module/version.tf   | 2 +-
 patterns/vsi/module/versions.tf  | 2 +-
 version.tf                       | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/README.md b/README.md
index 8aaa83dde..2f14b2b16 100644
--- a/README.md
+++ b/README.md
@@ -842,7 +842,7 @@ module "cluster_pattern" {
 | Name | Version |
 |------|---------|
 | <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.3 |
-| <a name="requirement_ibm"></a> [ibm](#requirement\_ibm) | >= 1.66.0, < 2.0.0 |
+| <a name="requirement_ibm"></a> [ibm](#requirement\_ibm) | >= 1.67.0, < 2.0.0 |
 | <a name="requirement_random"></a> [random](#requirement\_random) | >= 3.4.3, < 4.0.0 |
 | <a name="requirement_time"></a> [time](#requirement\_time) | >= 0.9.1, < 1.0.0 |
 
diff --git a/patterns/roks/module/versions.tf b/patterns/roks/module/versions.tf
index 764672e16..50c900da9 100644
--- a/patterns/roks/module/versions.tf
+++ b/patterns/roks/module/versions.tf
@@ -9,7 +9,7 @@ terraform {
     # tflint-ignore: terraform_unused_required_providers
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = ">= 1.66.0"
+      version = ">= 1.67.0"
     }
     external = {
       source  = "hashicorp/external"
diff --git a/patterns/vpc/module/version.tf b/patterns/vpc/module/version.tf
index 764672e16..50c900da9 100644
--- a/patterns/vpc/module/version.tf
+++ b/patterns/vpc/module/version.tf
@@ -9,7 +9,7 @@ terraform {
     # tflint-ignore: terraform_unused_required_providers
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = ">= 1.66.0"
+      version = ">= 1.67.0"
     }
     external = {
       source  = "hashicorp/external"
diff --git a/patterns/vsi/module/versions.tf b/patterns/vsi/module/versions.tf
index 764672e16..50c900da9 100644
--- a/patterns/vsi/module/versions.tf
+++ b/patterns/vsi/module/versions.tf
@@ -9,7 +9,7 @@ terraform {
     # tflint-ignore: terraform_unused_required_providers
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = ">= 1.66.0"
+      version = ">= 1.67.0"
     }
     external = {
       source  = "hashicorp/external"
diff --git a/version.tf b/version.tf
index 154c0a253..99de062a8 100644
--- a/version.tf
+++ b/version.tf
@@ -8,7 +8,7 @@ terraform {
   required_providers {
     ibm = {
       source  = "IBM-Cloud/ibm"
-      version = ">= 1.66.0, < 2.0.0"
+      version = ">= 1.67.0, < 2.0.0"
     }
     random = {
       source  = "hashicorp/random"