chore(deps): update terraform cloudflare to v4
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
cloudflare (source) | required_provider | major |
3.35.0 -> 4.3.0
|
Release Notes
cloudflare/terraform-provider-cloudflare
v4.3.0
NOTES:
- adds support for a basic
flox
environment project (#2345)
FEATURES:
ENHANCEMENTS:
- resource/cloudflare_access_group: Add example of usage of Azure (#2332)
- resource/cloudflare_access_identity_provider: add
claims
andscopes
fields (#2313) - resource/cloudflare_access_identity_provider: add ability for users to enable SCIM provisioning on their Identity Providers (#2147)
- resource/cloudflare_device_posture_integration: add support for managing
kolide
third party posture provider. (#2321) - resource/cloudflare_device_settings_policy: use new
cloudflare.ServiceMode
type (#2331) - resource/cloudflare_ruleset: enforce schema validation of conflicting cache key parameters (#2326)
- resource/cloudflare_teams_rules: updated gateway rule action audit ssh and rule settings (#2303)
- resource/cloudflare_worker_script: Add
compatibility_flags
attribute (#2324) - resources/device_settings_policy: add validation for possible
service_mode_v2_mode
values (#2331)
BUG FIXES:
- datasource/cloudflare_devices: Fix cloudflare_devices data source to return devices correctly and not error (#2348)
- resource/cloudflare_custom_ssl: fix json sent to API when geo_restrictions are not used (#2319)
DEPENDENCIES:
- provider: bumps actions/stale from 7 to 8 (#2322)
- provider: bumps github.com/cloudflare/cloudflare-go from 0.63.0 to 0.64.0 (#2344)
- provider: bumps github.com/hashicorp/terraform-plugin-go from 0.14.3 to 0.15.0 (#2333)
- provider: bumps github.com/hashicorp/terraform-plugin-testing from 1.1.0 to 1.2.0 (#2320)
v4.2.0
BREAKING CHANGES:
- resource/cloudflare_ruleset:
status
has been removed in favour ofenabled
now that the workaround for zero values is no longer required (#2271)
NOTES:
-
cloudflare_ruleset
has been migrated to theterraform-plugin-framework
in doing so addresses issues with the internal representation of zero values. A downside to this is that to get the full benefits, you will need to remove the resource from your Terraform state (terraform state rm ...
) and then import the resource back into your state. Along with this, you will need to update any references tostatus
which was the previous workaround for theenabled
values. If you havestatus = "enabled"
you will need to replace it withenabled = true
and similar forstatus = "disabled"
to be replaced withenabled = false
. (#2271)
FEATURES:
-
New Data Source:
cloudflare_list
(#2296) -
New Data Source:
cloudflare_lists
(#2296) -
New Resource:
cloudflare_address_map
(#2290) -
New Resource:
cloudflare_list_item
(#2304)
ENHANCEMENTS:
- resource/access_organization: add ui_read_only_toggle_reason field (#2175)
- resource/cloudflare_device_posture_rule: Support
check_disks
in theinput
block schema. (#2280) - resource/cloudflare_notification_policy_webhooks: ensure
url
triggers recreation, not in-place updates (#2302) - resource/cloudflare_tunnel: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
- resource/cloudflare_tunnel_config: add support for import of
cloudflare_tunnel_config
(#2298) - resource/cloudflare_tunnel_config: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
- resource/cloudflare_tunnel_route: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
- resource/cloudflare_worker_script: Add
compatibility_date
attribute (#2300)
BUG FIXES:
- resource/cloudflare_ruleset: support cache rules for status range >= and =< operations (#2307)
- resource/cloudflare_teams_account: fixes an issue where accounts that had never configured DLP payload logging would error upon reading this resource (#2284)
INTERNAL:
- resource/cloudflare_ruleset: migrate from SDKv2 to
terraform-plugin-framework
(#2271) - test: swap SDKv2 testing harness to github.com/hashicorp/terraform-plugin-testing (#2272)
DEPENDENCIES:
- provider: bumps actions/setup-go from 3 to 4 (#2291)
- provider: bumps github.com/cloudflare/cloudflare-go from 0.62.0 to 0.63.0 (#2289)
- provider: bumps github.com/hashicorp/terraform-plugin-framework from 1.1.1 to 1.2.0 (#2314)
- provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.25.1-0.20230317190757-53a4ec42ea7e to 2.26.0 (#2308)
- provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.26.0 to 2.26.1 (#2315)
v4.1.0
ENHANCEMENTS:
- resource/cloudflare_cloudflare_teams_rules: Add untrusted_cert setting to teams rules settings (#2256)
- resource/cloudflare_teams_account: Add support for DLP payload logging public key (#2267)
- resource/cloudflare_teams_rule: Add support for enabling DLP payload logging per-rule (#2267)
- resource/cloudflare_waiting_room: add 'ru-RU' and 'fa-IR' to default_template_language field (#2262)
BUG FIXES:
- resource/cloudflare_access_group: fixes an issue where Azure group rules with different identity provider ids would override each other (#2270)
- resource/cloudflare_notification_policy: ensure all emails are saved if multiple
email_integration
values specified (#2248)
DEPENDENCIES:
- provider: bumps github.com/cloudflare/cloudflare-go from 0.61.0 to 0.62.0 (#2268)
- provider: bumps github.com/stretchr/testify from 1.8.1 to 1.8.2 (#2263)
- provider: bumps golang.org/x/net from 0.7.0 to 0.8.0 (#2274)
v4.0.0
Warning Prior to upgrading you should ensure you have adequate backups in the event you need to rollback to version 3. This is a major version bump and involves backwards incompatible changes.
BREAKING CHANGES:
- datasource/cloudflare_waf_groups: removed in favour of
cloudflare_rulesets
(#2138) - datasource/cloudflare_waf_packages: removed in favour of
cloudflare_rulesets
(#2138) - datasource/cloudflare_waf_rules: removed in favour of
cloudflare_rulesets
(#2138) - provider:
account_id
is no longer available as a global configuration option. Instead, use the resource specific attributes. (#2139) - resource/cloudflare_access_bookmark: resource has been removed in favour of configuration on
cloudflare_access_application
(#2136) - resource/cloudflare_access_rule: require explicit
zone_id
oraccount_id
and remove implicit fallback to user level rules (#2157) - resource/cloudflare_account_member:
account_id
is now required (#2153) - resource/cloudflare_account_member: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_argo_tunnel: resource has been renamed to
cloudflare_tunnel
(#2135) - resource/cloudflare_ip_list: removed in favour of
cloudflare_list
(#2137) - resource/cloudflare_load_balancer: Migrate session_affinity_attributes from TypeMap to TypeSet (#1959)
- resource/cloudflare_load_balancer:
session_affinity_attributes.drain_duration
is nowTypeInt
instead ofTypeString
(#1959) - resource/cloudflare_load_balancer_monitor:
account_id
is now required (#2153) - resource/cloudflare_load_balancer_monitor: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_load_balancer_pool:
account_id
is now required (#2153) - resource/cloudflare_load_balancer_pool: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_spectrum_application:
edge_ip_connectivity
is now nested underedge_ips
asconnectivity
(#2219) - resource/cloudflare_spectrum_application:
edge_ips.type
is now a required field (#2219) - resource/cloudflare_spectrum_application:
edge_ips
now contains nested attributes other than IP ranges.type
andconnectivity
have been added.edge_ips.ips
contains the static IP addresses that used to reside atedge_ips
. (#2219) - resource/cloudflare_waf_group: removed in favour of
cloudflare_ruleset
(#2138) - resource/cloudflare_waf_override: removed in favour of
cloudflare_ruleset
(#2138) - resource/cloudflare_waf_package: removed in favour of
cloudflare_ruleset
(#2138) - resource/cloudflare_waf_rule: removed in favour of
cloudflare_ruleset
(#2138) - resource/cloudflare_workers_kv:
account_id
is now required (#2153) - resource/cloudflare_workers_kv: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_workers_kv_namespace:
account_id
is now required (#2153) - resource/cloudflare_workers_kv_namespace: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_workers_script:
account_id
is now required (#2153) - resource/cloudflare_workers_script: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154) - resource/cloudflare_zone:
account_id
is now required (#2153) - resource/cloudflare_zone: no longer sets
client.AccountID
internally and relies on the resource provided value (#2154)
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot. The local configuration can be found in the SI Renovate Bot repository.