v7.4.2

• Fixed a Linux hostname change timeout issue
• Updated how Windows host ssh keys get regenerated to be more robust
• Fixed Windows installation issues in gitlab_runner role
• Added retries when stopping UsoSvc for stability
• Set caddy version to 2.11.1
• Set loop_var for all tasks in trusted_certificates role to avoid collisions
• Set gitlab version to 18.9.1
• Trying to recover from batch cloning error during failed VM remove on Proxmox

v7.4.1

• Added variables to define snapshot name and mode in template_os_configuration role
• Changed the default vSphere behaviour where existing snapshot is overwritten if a new one is created with the same name in snapshots role
• Added more Windows sysprep cleanup paths to finalize role
• Fixed an issue where Ubuntu Desktop netplan did not apply

v7.4.0

• Defaulting to empty vSphere cdrom config in machine_operations role to avoid adding unintentional extra cdroms
• Fixed an issue that caused incorrect mapping of policy to group in vault role
• Made sure auto-generated rails key is consisten across deploys of not pre-defined in providentia role
• Added installers as one of nexus default repos
• Fixed an issue where connection role did not detect DHCP/SLAAC adresses for BSD based systems
• Removing unneeded conditions from Windows Update stop command in cleanup role
• Using nova.core.powerstate for Pf/OPNsense shutdown/poweron to wait for Guest tools to be running before moving on
• Fixed an issue where network configuration always failed for Windows on Proxmox when dynamic address protocol was used
• Fixed an issue where proxmox_validate_certs variable did not apply correctly for all modules
• Added a feature to define environment specific deployer username and password in Ansible vault
• Set keycloak version to 26.5.4
• Set gitlab version to 18.9.0
• Added longer timeout to community.routeros.facts in gather_facts role
• Not applying netplan when removing old config to avoid connection loss in configure_networking role
• Fixed incorrect workflow current version check
• Added support to deploy Linode VM to a specific VPC

v7.3.1

• Bumped the version to fix the release action
• In template_os_configuration restored the working config for removing extra cdroms on vSphere
• In machine_operations role added folder and datacenter values for vSphere to better target the VM being configured
• Added a variable for setting certificate country value in vault role
• Fixed IP address family detection in monolith role when using Samba
• Set outline version to 1.5.0

v7.3.0

• Fixed an issue where enable password login did not work for RouterOS 7 in accounts role
• Added flag to not try and recover from broken trust in join_domain role
• Added a featue to install Samba AD with monolith
• Set nexus version to 3.89.1
• Getting full permissions set from default user in tuoni role
• Converting vault policies to lowercase to avoid API warnings
• Added a flag to skip install in vault role
• Using major version Postgres tag for keycloak and outline
• Set keycloak version to 26.5.3
• Set gitlab version to 18.8.4
• Unified the method how OUs are created in accounts role
• Added a feature to create Samba AD groups,users and OUs with accounts role
• Linted vault role
• Removed --fresh from update-ca-certificates command in trusted_certificates role since its' not usually needed
• Added nova.core.samba role for Samba 4 based domain setup
• Not setting temp hostname for Linux hosts in os_configuration role
• Not deleting all RouterOS files in cleanup role
• Set outline version to 1.4.0
• Replaced deprecated vmware.vmware_rest modules in template_os_configuration role
• Added Fedora Linux support
• In machine_operations role for VMware Workstation enabling timesync over VMTools by default
• Removed unused defaults from machine_operations role
• Set keycloak-cli version to 6.4.1-26 in keycloak role
• Fixed an issue in machine_operations role where Proxmox sequential cloning did not work when Ansible serial was used
• Refactored machine_operations role to not include unneeded tasks for fast deploy modes
• Disabling CPU and RAM hot add by default for vSphere VMs in machine_operations role to improve performance.
• Added a feature to configure memory lock for vSphere VMs in machine_operations role
• Fixed some outline paths so container name change does not break the application
• For nova.core.providentia_v3 plugin flattening Providentia output to speed up inventory generation
• For nova.core.providentia_v3 plugin caching Providentia inventory locally to speed up inventory generation

v7.2.11

• Added a feature to set AWS EC2 OS disk size in machine_operations role
• Refactored snapshots role to need fewer commands on vSphere
• Set keycloak version to 26.5.2
• Redesigned machine_operations role to get the VM SCSI controller info from template or VM itself
• Added connection_address_info & flattened_addresses features to addresses plugin
• Added Fortigate network configuration support to configure_networking role
• Added a feature to define LDAP user attribute in vault role
• Keeping RouterOS as close to original as possible in template_os_configuration role
• Fixed some outline paths so container name change does not break the application
• Added RouterOS support to the cleanup role
• Added a feature to import CA with vault role and define more parameters for PKI role

v7.1.12

• In docker role upgrading Archlinux before trying to install Docker
• Fixed an issue where upgrading Python caused the play to fail on Archlinux
• Set gitlab version to 18.8.2

v7.1.10

• Set outline version to 1.3.0
• Fixed an issue where VM did not start after snap on Proxmox in snapshots role
• Allowing all SSH keys for RouterOS in accounts role since RouterOS 7 supports EC keys
• Added build flag to community.docker.docker_compose_v2 module to avoid warnings with the latest Docker versions
• Not waiting for vault to be unsealed when not configuring it
• Set nexus version to 3.87.2
• Fixed an issue where old RedHat kernels were not removed corretly in updates role
• Set gitlab version to 18.8.0
• Added another sysprep breaking package removal to win_sysprep role
• Not running requirements tasks on monolith when only passing a single role
• Added a feature to create SAML clients and pass custom config files with keycloak role
• keycloak: add support for pre-configuring service account flow
• Removed deprecated s3 support from outline role
• Brought back the feature to set cleanup policy for all nexus repos if it exists
• In configure_networking for Kali on Proxmox also implemented root check and remount
• In configure_networking fixed an issue where Alpine configuration failed when the template did report any IP
• In configure_networking added a configure_networking_proxmox_timeout variable to increase the timeout for long running tasks on low-end systems
• In configure_networking setting Proxmox node and VM as fact and using that in subsequent tasks
• In machine_operations fixed a typo in Proxmox disk cleanup timeout calculation
• Fixed an issue where gitlab folder permissions were always updated during deploy
• Added a variable to template_os_configuration to skip creating a snapshot as the last task
• Set vault version to 1.21.2
• Using nova.core.powerstate to reboot pfSense in os_configuration since it's more stable
• Added pfSense network configuration support for Proxmox to configure_networking role
• Added a variable to skip updating password on every run for tuoni users
• Set keycloak version to 26.5.0
• Added a variable to skip saving account passwords to Vault in secrets_to_vault role

v6.10.17

• Refactored secrets_to_vault to make fewer web requests to Vault and be generally faster and simpler
• Added aws_vpc_id variable to machine_operations role and documentation on how to use it
• In configure_networking role for nmcli on vSphere added a reboot during rescue for stability
• Allowing network control over RDP with linux_xrdp_server role polkit
• Fixed an issue where accounts role did not always generate complex enough passwords for Windows
• Using chocolatey.chocolatey.win_chocolatey module in template_os_configuration role to install itself
• In os_configuration role redesigned how Gnome and Xfce get installed on cloud hosts to make it more stable
• Looking up if MacOS has Python during connection role and setting manual system fact if it does not instead of pre-defining it
• Set gitlab version to 18.7.0
• Moved SSHD MaxAuthTries parameter reconfiguration to accounts role, otherwise deploy will sometimes fail for people with more than 6 keys in their agent
• Saving default connection parameters and restoring them in accounts role for AWS instances for the deployment to be more stable
• Forcing Windows to also use SSH key based auth on first run on AWS
• In snapshots role for VMware Workstation printing out a message when no snapshot exists while reverting
• Refactored ansible_facts to be compatible with Ansible 2.20+

v6.10.4

• Set gitlab version to 18.6.2
• Added a session_token variable to aws_defaults
• In machine_operations role fixed an issue whre deploy failed when default subnet did not exist
• In machine_operations role added a feature to attach multiple pre-exising security groups to an AWS EC2 instance
• Fixed an issue where DNS server from DHCP were overwritten for FreeBSD in configure_networking role
• In accounts role using nova.core.powerstate for OPNsense/pfSense reboot to avoid shell race condition
• Fixed an issue where VMTools running state was not always waited in powerstate role