v1.15.0

Changes by Kind

Feature

• Set PrincipalType in RoleAssignment creation API call when using SystemAssigned identity. (#4625, @whites11)
• Users can now create a VM and associate it to a capacity reservation group during the VM creation. A new field, CapacityReservationGroupID, is added to AzureMachineSpec to support this feature. The capacity reservation group should already exist before the VM creation. (#4698, @arkadeepsen)
• Allow setting ResourceGroupName in AzureManagedControlPlaneTemplate (#4723, @willie-yao)
• An experimental ASO-based API for AKS clusters is now available behind the ASOAPI feature flag and can be enabled through he EXP_ASO_API environment variable when installing CAPZ. See the docs for more details. (#4802, @nojnhuh)

Documentation

• Added documentation describing how to adopt an existing AKS cluster. (#4697, @nojnhuh)
• Improve release process docs (#4642, @dtzar)

Bug or Regression

• A regression making spec.subsciptionID required on AzureCluster and AzureManagedControlPlane has been fixed. Users can specify a global subscription ID with the AZURE_SUBSCRIPTION_ID_B64 environment variable when CAPZ is installed as was possible in CAPZ v1.10 and earlier. (#4784, @nojnhuh)
• Allow upper-case Azure resource names (#4725, @willie-yao)
• Don't allow fleetsMembers to have capital letters. Default fleet spec.group. (#4800, @willie-yao)
• Enable per-sub msi client (#4712, @jackfrancis)
• Fix ClusterClass MP: Don't include vnet name in template type. BREAKING Go API but not real-world usage (#4735, @willie-yao)
• Make AKS extension.Plan optional (#4677, @willie-yao)
• Use correct resource group for Bastion with custom vnet (#4801, @willie-yao)
• AZURE_SYNC_PERIOD for ASO now defaults to 1h instead of "effectively never" (#4764, @nojnhuh)

Other (Cleanup or Flake)

• Set nonzero default control plane node count in templates (#4660, @nawazh)
• Bump CAPI to v1.6.3 (#4643, @mboersma)
• Bump CAPI to v1.6.4 (#4739, @mboersma)
• Bump CAPI to v1.7.0 (#4740, @mboersma)
• Bump CAPI to v1.7.1 (#4767, @mboersma)
• Bump helm to v3.14.4 (#4736, @damdo)
• CAPZ now installs ASO v2.6.0 (#4751, @nojnhuh)
• Upgrade controller-gen to v1.14.0 (#4718, @jackfrancis)

Dependencies

Added

• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerregistry/armcontainerregistry: v1.2.0
• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/signalr/armsignalr: v1.2.0
• github.com/chromedp/cdproto: 3cf4e6d
• github.com/chromedp/chromedp: v0.9.2
• github.com/chromedp/sysutil: v1.0.0
• github.com/containerd/log: v0.1.0
• github.com/felixge/fgprof: v0.9.3
• github.com/go-task/slim-sprig/v3: v3.0.0
• github.com/gobwas/httphead: v0.1.0
• github.com/gobwas/pool: v0.2.1
• github.com/gobwas/ws: v1.2.1
• github.com/golang-sql/civil: b832511
• github.com/golang-sql/sqlexp: v0.1.0
• github.com/mattn/go-ieproxy: v0.0.11
• github.com/microsoft/go-mssqldb: v1.6.0
• github.com/modocache/gover: b58185e
• github.com/pkg/profile: v1.7.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp: v1.22.0
• golang.org/x/telemetry: f48c80b
• gopkg.in/dnaeon/go-vcr.v3: v3.2.0
• sigs.k8s.io/cloud-provider-azure/pkg/azclient/configloader: v0.0.1
• sigs.k8s.io/cloud-provider-azure/pkg/azclient: v0.0.2

Changed

• cloud.google.com/go/storage: v1.14.0 → v1.35.1
• cloud.google.com/go: v0.111.0 → v0.110.10
• github.com/Azure/azure-kusto-go: v0.14.0 → v0.15.1
• github.com/Azure/azure-pipeline-go: v0.1.8 → v0.2.3
• github.com/Azure/azure-sdk-for-go/sdk/azcore: v1.10.0 → v1.11.1
• github.com/Azure/azure-sdk-for-go/sdk/azidentity: v1.5.1 → v1.5.2
• github.com/Azure/azure-sdk-for-go/sdk/internal: v1.5.2 → v1.6.0
• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute/v5: v5.5.0 → v5.7.0
• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v4: v4.7.0 → v4.8.0
• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/subscription/armsubscription: v1.1.0 → v1.2.0
• github.com/Azure/azure-sdk-for-go/sdk/storage/azblob: v1.0.0 → v1.1.0
• github.com/Azure/azure-service-operator/v2: v2.5.0 → v2.6.0
• github.com/Azure/azure-storage-queue-go: 6368018 → c06a8ef
• github.com/AzureAD/microsoft-authentication-library-for-go: v1.2.1 → v1.2.2
• github.com/alecthomas/kingpin/v2: v2.3.2 → v2.4.0
• github.com/chzyer/readline: 2972be2 → v1.5.1
• github.com/creack/pty: v1.1.9 → v1.1.18
• github.com/docker/docker: v24.0.7+incompatible → v25.0.5+incompatible
• github.com/docker/go-connections: v0.4.0 → v0.5.0
• github.com/emicklei/go-restful/v3: v3.11.0 → v3.12.0
• github.com/evanphx/json-patch: [v5.7.0+incompatible → v5.9.0+incompatible](https://github.com/evanphx/...

v1.14.4

Changes by Kind

Bug or Regression

• Don't allow fleetsMembers to have capital letters. Default fleet spec.group. (#4818, @willie-yao)
• AZURE_SYNC_PERIOD for ASO now defaults to 1h instead of "effectively never" (#4783, @nojnhuh)
• Allow upper-case Azure resource names (#4815, @willie-yao)
• Use correct resource group for Bastion with custom vnet (#4816, @willie-yao)

Dependencies

Nothing has changed.

Details

v1.14.3...v1.14.4

v1.13.6

Changes by Kind

Bug or Regression

• AZURE_SYNC_PERIOD for ASO now defaults to 1h instead of "effectively never" (#4782, @nojnhuh)
• Don't allow fleetsMembers to have capital letters. Default fleet spec.group. (#4820, @willie-yao)
• Use correct resource group for Bastion with custom vnet (#4817, @nojnhuh)

Dependencies

Nothing has changed.

Details

v1.13.5...v1.13.6

v1.14.3

Changes by Kind

Other (Cleanup or Flake)

• Bump CAPI to v1.6.4 (#4742, @mboersma)
• Bump helm to v3.14.4 (#4773, @damdo)

Dependencies

Added

Nothing has changed.

Changed

• github.com/docker/docker: v24.0.7+incompatible → v24.0.9+incompatible
• golang.org/x/crypto: v0.20.0 → v0.21.0
• golang.org/x/net: v0.21.0 → v0.23.0
• golang.org/x/sys: v0.17.0 → v0.18.0
• golang.org/x/term: v0.17.0 → v0.18.0
• sigs.k8s.io/cluster-api/test: v1.6.3 → v1.6.4
• sigs.k8s.io/cluster-api: v1.6.3 → v1.6.4

Removed

Nothing has changed.

Details

v1.14.2...v1.14.3

v1.13.5

Changes by Kind

Feature

• Use existing virtualNetwork from a different rg (#4747, @willie-yao)

Other (Cleanup or Flake)

• Bump CAPI to v1.6.4 (#4743, @mboersma)
• Bump helm to v3.14.4 (#4774, @damdo)

Dependencies

Added

Nothing has changed.

Changed

• github.com/docker/docker: v24.0.7+incompatible → v24.0.9+incompatible
• golang.org/x/crypto: v0.18.0 → v0.21.0
• golang.org/x/net: v0.19.0 → v0.23.0
• golang.org/x/oauth2: v0.14.0 → v0.15.0
• golang.org/x/sync: v0.5.0 → v0.6.0
• golang.org/x/sys: v0.16.0 → v0.19.0
• golang.org/x/term: v0.16.0 → v0.19.0
• sigs.k8s.io/cluster-api/test: v1.6.3 → v1.6.4
• sigs.k8s.io/cluster-api: v1.6.3 → v1.6.4

Removed

Nothing has changed.

Details

v1.13.4...v1.13.5

v1.14.2

Changes by Kind

Bug or Regression

• Enable per-sub msi client (#4717, @jackfrancis)

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

v1.13.4

Changes by Kind

Bug or Regression

• Enable per-sub msi client (#4716, @jackfrancis)

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

v1.14.1

Changes by Kind

Bug Fix or Regression

• Make AKS extension.Plan optional (#4683, @willie-yao)
• Set PrincipalType in RoleAssignment creation API call when using SystemAssigned identity. (#4663, @whites11)

Other (Cleanup or Flake)

• Bump CAPI to v1.6.3 (#4644, @mboersma)

Dependencies

Added

Nothing has changed.

Changed

• google.golang.org/protobuf: v1.32.0 → v1.33.0
• sigs.k8s.io/cluster-api/test: v1.6.2 → v1.6.3
• sigs.k8s.io/cluster-api: v1.6.2 → v1.6.3

Removed

Nothing has changed.

Details

v1.14.0...v1.14.1

v1.13.3

Changes by Kind

Bug Fix or Regression

• Set PrincipalType in RoleAssignment creation API call when using SystemAssigned identity. (#4664, @whites11)

Other (Cleanup or Flake)

• Bump CAPI to v1.6.3 (#4645, @mboersma)

Dependencies

Added

Nothing has changed.

Changed

• google.golang.org/protobuf: v1.31.0 → v1.33.0
• sigs.k8s.io/cluster-api/test: v1.6.2 → v1.6.3
• sigs.k8s.io/cluster-api: v1.6.2 → v1.6.3

Removed

Nothing has changed.

Details

v1.13.2...v1.13.3

v1.14.0

Changes by Kind

Feature

• Add additional Printer Columns like "Ready", "Severity", "Reason" and "Message" to CAPZ resources (#4442, @prashantrewar)
• Add support for AKS Extensions and Marketplace Offers (#4360, @willie-yao)
• Add support for Azure CNI Powered by Cilium (#4522, @willie-yao)
• Allow ASO to install other CRDs (#4547, @nawazkh)
• Allow adding pre-existing privateDNSZone to AKS clusters (#4572, @nawazkh)
• CAPZ now uses metadata.ownerReferences instead of the sigs.k8s.io_cluster-api-provider-azure_owned label to track ownership of ASO resources (#4499, @nojnhuh)
• EXPERIMENTAL: Added fields to AzureManagedControlPlane and AzureManagedMachinePool to supply arbitrary JSON merge patches to underlying ASO resources (#4527, @nojnhuh)
• Enable ASO in creating configMap for OIDC Issuer URL (#4551, @nawazkh)
• Expose AKS preview features (#4617, @willie-yao)
• Support for AKS Security Profile (#4245, @LochanRn)
• Support for Auto upgrade channels in AKS. (#4129, @LochanRn)
• Support to deploy infra clusters using a single subnet for both control plane and worker nodes. (#4253, @LochanRn)
• Use existing virtualNetwork from a different rg (#4606, @nawazkh)

Bug or Regression

• CAPZ now deletes ASO resources it manages if references to them are removed from CAPZ resource specs (#4506, @nojnhuh)
• Correcting AzureManagedMachinePool subnet name validation webhook to match Azure subnet naming rules. (#4511, @MagnusRef)
• Fixed a bug where tags applied by Azure Policy were keeping CAPZ from reconciling ASO ResourceGroups and ManagedClusters (#4531, @nojnhuh)
• Make PlatformFaultDomainCount & ZoneBalance configurable on AzureMachinePools (#4554, @willie-yao)
• Service CIDR addition to AKS Cluster should be independent of DNS Service IP (#4503, @nawazkh)

Other (Cleanup or Flake)

• Bump CAPI to v1.6.2 (#4585, @mboersma)

Dependencies

Added

• github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/kubernetesconfiguration/armkubernetesconfiguration: v1.1.1

Changed

• cloud.google.com/go/accessapproval: v1.7.1 → v1.7.4
• cloud.google.com/go/accesscontextmanager: v1.8.1 → v1.8.4
• cloud.google.com/go/aiplatform: v1.48.0 → v1.57.0
• cloud.google.com/go/analytics: v0.21.3 → v0.21.6
• cloud.google.com/go/apigateway: v1.6.1 → v1.6.4
• cloud.google.com/go/apigeeconnect: v1.6.1 → v1.6.4
• cloud.google.com/go/apigeeregistry: v0.7.1 → v0.8.2
• cloud.google.com/go/appengine: v1.8.1 → v1.8.4
• cloud.google.com/go/area120: v0.8.1 → v0.8.4
• cloud.google.com/go/artifactregistry: v1.14.1 → v1.14.6
• cloud.google.com/go/asset: v1.14.1 → v1.15.3
• cloud.google.com/go/assuredworkloads: v1.11.1 → v1.11.4
• cloud.google.com/go/automl: v1.13.1 → v1.13.4
• cloud.google.com/go/baremetalsolution: v1.1.1 → v1.2.3
• cloud.google.com/go/batch: v1.3.1 → v1.7.0
• cloud.google.com/go/beyondcorp: v1.0.0 → v1.0.3
• cloud.google.com/go/bigquery: v1.53.0 → v1.57.1
• cloud.google.com/go/billing: v1.16.0 → v1.18.0
• cloud.google.com/go/binaryauthorization: v1.6.1 → v1.8.0
• cloud.google.com/go/certificatemanager: v1.7.1 → v1.7.4
• cloud.google.com/go/channel: v1.16.0 → v1.17.3
• cloud.google.com/go/cloudbuild: v1.13.0 → v1.15.0
• cloud.google.com/go/clouddms: v1.6.1 → v1.7.3
• cloud.google.com/go/cloudtasks: v1.12.1 → v1.12.4
• cloud.google.com/go/compute: v1.23.0 → v1.23.3
• cloud.google.com/go/contactcenterinsights: v1.10.0 → v1.12.1
• cloud.google.com/go/container: v1.24.0 → v1.29.0
• cloud.google.com/go/containeranalysis: v0.10.1 → v0.11.3
• cloud.google.com/go/datacatalog: v1.16.0 → v1.19.0
• cloud.google.com/go/dataflow: v0.9.1 → v0.9.4
• cloud.google.com/go/dataform: v0.8.1 → v0.9.1
• cloud.google.com/go/datafusion: v1.7.1 → v1.7.4
• cloud.google.com/go/datalabeling: v0.8.1 → v0.8.4
• cloud.google.com/go/dataplex: v1.9.0 → v1.13.0
• cloud.google.com/go/dataproc/v2: v2.0.1 → v2.3.0
• cloud.google.com/go/dataqna: v0.8.1 → v0.8.4
• cloud.google.com/go/datastore: v1.13.0 → v1.15.0
• cloud.google.com/go/datastream: v1.10.0 → v1.10.3
• cloud.google.com/go/deploy: v1.13.0 → v1.16.0
• cloud.google.com/go/dialogflow: v1.40.0 → v1.47.0
• cloud.google.com/go/dlp: v1.10.1 → v1.11.1
• cloud.google.com/go/documentai: v1.22.0 → v1.23.6
• cloud.google.com/go/domains: v0.9.1 → v0.9.4
• cloud.google.com/go/edgecontainer: v1.1.1 → v1.1.4
• cloud.google.com/go/essentialcontacts: v1.6.2 → v1.6.5
• cloud.google.com/go/eventarc: v1.13.0 → v1.13.3
• cloud.google.com/go/filestore: v1.7.1 → v1.8.0
• cloud.google.com/go/firestore: v1.13.0 → v1.14.0
• cloud.google.com/go/functions: v1.15.1 → v1.15.4
• cloud.google.com/go/gkebackup: v1.3.0 → v1.3.4
• cloud.google.com/go/gkeconnect: v0.8.1 → v0.8.4
• cloud.google.com/go/gkehub: v0.14.1 → v0.14.4
• cloud.google.com/go/gkemulticloud: v1.0.0 → v1.0.3
• cloud.google.com/go/gsuiteaddons: v1.6.1 → v1.6.4
• cloud.google.com/go/iam: v1.1.1 → v1.1.5
• cloud.google.com/go/iap: v1.8.1 → v1.9.3
• cloud.google.com/go/ids: v1.4.1 → v1.4.4
• cloud.google.com/go/iot: v1.7.1 → v1.7.4
• cloud.google.com/go/kms: v1.15.0 → v1.15.5
• cloud.google.com/go/language: v1.10.1 → v1.12.2
• cloud.google.com/go/lifesciences: v0.9.1 → v0.9.4
• cloud.google.com/go/logging: v1.7.0 → v1.8.1
• cloud.google.com/go/longrunning: v0.5.1 → v0.5.4
• cloud.google.com/go/managedidentities: v1.6.1 → v1.6.4
• cloud.google.com/go/maps: v1.4.0 → v1.6.2
• cloud.google.com/go/mediatranslation: v0.8.1 → v0.8.4
• cloud.google.com/go/memcache: v1.10.1 → v1.10.4
• cloud.google.com/go/metastore: v1.12.0 → v1.13.3
• cloud.google.com/go/monitoring: v1.15.1 → v1.16.3
• cloud.google.com/go/networkconnectivity: v1.12.1 → v1.14.3
• cloud.google.com/go/networkmanagement: v1.8.0 → v1.9.3
• cloud.google.com/go/networksecurity: v0.9.1 → v0.9.4
• cloud.google.com/go/notebooks: v1.9.1 → v1.11.2
• cloud.google.com/go/optimization: v1.4.1 → v1.6.2
• cloud.google.com/go/orchestration: v1.8.1 → v1.8.4
• cloud.google.com/go/orgpolicy: v1.11.1 → v1.11.4
• cloud.google.com/go/osconfig: v1.12.1 → v1.12.4
• cloud.google.com/go/oslogin: v1.10.1 → v1.12.2
• cloud.google.com/go/phishingprotection: v0.8.1 → v0.8.4
• cloud.google.com/go/policytroubleshooter: v1.8.0 → v1.10.2
• cloud.google.com/go/privatecatalog: v0.9.1 → v0.9.4
• cloud.google.com/go/recaptchaenterprise/v2: v2.7.2 → v2.9.0
• cloud.google.com/go/recommendationengine: v0.8.1 → v0.8.4
• cloud.google.com/go/recommender: v1.10.1 → v1.11.3
• cloud.google.com/go/redis: v1.13.1 → v1.14.1
• cloud.google.com/go/resourcemanager: v1.9.1 → v1.9.4
• cloud.google.com/go/resourcesettings: v1.6.1 → v1.6.4
• cloud.google.com/go/retail: v1.14.1 → v1.14.4
• cloud.google.com/go/run: v1.2.0 → v1.3.3
• cloud.google.com/go/scheduler: v1.10.1 → v1.10.5
• cloud.google.com/go/secretmanager: v1.11.1 → v1.11.4
• cloud.google.com/go/security: v1.15.1 → v1.15.4
• cloud.google.com/go/securitycenter: v1.23.0 → v1.24.3
• cloud.google.com/go/servicedirectory: v1.11.0 → v1.11.3
• cloud.google.com/go/shell: v1.7.1 → v1.7.4
• cloud.google.com/go/spanner: v1.47.0 → v1.53.1
• cloud.google.com/go/speech: v1.19.0 → v1.21.0
• cloud.google.com/go/storagetransfer: v1.10.0 → v1.10.3
• cloud.google.com/go/talent: v1.6.2 → v1.6.5
• cloud.google.com/go/texttospeech: v1.7.1 → v1.7.4
• cloud.google.com/go/tpu: v1.6.1 → v1.6.4
• cloud.google.com/go/trace: v1.10.1 → v1.10.4
• cloud.google.com/go/translate: v1.8.2 → v1.9.3
• cloud.google.com/go/video: v1.19.0 → v1.20.3
• cloud.google.com/go/videointelligence: v1.11.1 → v1.11.4
• cloud.google.com/go/vision/v2: v2.7.2 → v2.7.5
• cloud.google.com/go/vmmigration: v1.7.1 → v1.7.4
• cloud.google.com/go/vmwareengine: v1.0.0 → v1.0.3
• cloud.google.com/go/vpcaccess: v1.7.1 → v1.7.4
• cloud.google.com/go/webrisk: v1.9.1 → v1.9.4
• cloud.google.com/go/websecuri...