HashiConf 2024 Now streaming live from Boston! Attend for free
Terraform
Terraform Home

Terraform Enterprise v202502-1 (808)

Last required release: v202406-1 (776)

Flexible Deployment Options terraform-enterprise container digest: amd64/linux sha256:c0b547bcbc29a561936dc6b088253eeb728329da0f3e4b6db5a374b59710c24f

Breaking Changes

  1. Terraform Enterprise no longer supports Postgres 12.

Deprecations

  1. Terraform Enterprise now supports new deployment options and will end support for the Replicated Native Scheduler option. The final Replicated release of Terraform Enterprise will be in March 2025 (extended from November 2024). Effective December 2024, only pre-existing workflows and capabilities will be tested for continued quality on Replicated releases. New features and product improvements will not be validated on Replicated releases. HashiCorp Support will support this release until April 1, 2026, but bug and security fixes backports will not be available after March.
  2. As part of improving support for HA Postgres installations, the following configuration options are deprecated and will be removed in the May 2025 release: TFE_DATABASE_RECONNECT_ENABLED, TFE_DATABASE_RECONNECT_MAX_RETRIES, TFE_DATABASE_RECONNECT_INTERVAL, and TFE_DATABASE_RECONNECT_TIMEOUT.

Highlights

  1. This release introduces project-owned variable sets. Users with project Write, Maintain, Admin, or custom variable set permissions can create and manage variable sets within a project without requiring organization-level permissions.
  2. You can now set auto-destroy settings at a project level, letting you automatically destroy workspace infrastructure in a project after a period of inactivity.

Features

  1. You can add a secondary hostname in Terraform Enterprise and specify whether to use the primary or secondary hostname for OIDC integration.
  2. Module authors can now deprecate module versions in the private registry. Deprecating a module version in your organization’s private registry adds warnings to the module's registry page.
  3. You can now select Enable Debugging mode when enqueuing a run for quick access to trace level Terraform logging.

Improvements

  1. User input is now obfuscated while typing sensitive variables and notification tokens, enhancing security, particularly during screen sharing.
  2. Terraform Enterprise will now automatically attempt to unseal the internal Vault server if it unexpectedly enters a sealed state. This change has no impact on Terraform Enterprise running with an external Vault server.
  3. No-code workspaces now inform users of a pending user action, such as a policy override, and direct users to the run page for further action.

Bug Fixes

  1. Fixes an issue with cost estimation where unexpected AWS RDS instance types could cause the cost estimate to fail.
  2. Fixes a permissions bug where teams with organization permission View all workspaces could not view workspace outputs.
  3. Fixes variable set limitation issue and significantly improves performance for the workspaces-variable page.

Security