Introduction
In Terraform Cloud and Enterprise, there are logs regarding every run that has happened in each existing workspace. Administrators may want to retain or remove these logs for security or data retention requirements.
Recommendation
Terraform Cloud and Enterprise workspace runs logs will exist for as long as the workspace exists in the Organization.
Retention
To retain these logs, simply keep the workspace even if it is no longer an actively used workspace.
Removal
To remove the logs, the workspace must be deleted. A workspace can be deleted through the Terraform GUI by going to workspace settings -> destruction and deletion. From here a terraform destroy plan can be executed to remove all infrastructure that is in the state file, and the workspace can be deleted through the "Delete from Terraform Cloud/Enterprise" button.
Starting with Terraform Enterprise v202311-1 it is possible to create data retention policies both at the Organization and Workspace levels to set state files and configuration versions older than the allotted time in the policy to be deleted. The setting can be found at the Organization level under General and at the Workspace level under Destruction and Deletion .
Please Note: This does not remove run logs, only state files and configuration versions.
Additional Information
For further information on run logs, please see our documentation.