Skip to content

chore(deps): update terraform cloudflare to v3

Renovate Bot requested to merge renovate/cloudflare-3.x into master

This MR contains the following updates:

Package Type Update Change
cloudflare (source) required_provider major 2.26.1 -> 3.4.0

Release Notes

cloudflare/terraform-provider-cloudflare (cloudflare)

v3.4.0

Compare Source

ENHANCEMENTS:

  • provider: add the ability to configure a different hostname and base path for the API client (#​1270)
  • resource/cloudflare_access_application: add support for 'skip_interstitial' and 'logo_url' properties (#​1262)
  • resource/cloudflare_custom_hostname: add settings.early_hints to ssl schema (#​1286)
  • resource/cloudflare_ruleset: add support for exposed credential checks (#​1263)
  • resource/cloudflare_zone_setting_override: add support for overriding early_hints (#​1285)

BUG FIXES:

  • resource/cloudflare_ruleset: allow action parameter override enabled to be true/false or uninitialised (#​1275)
  • resource/cloudflare_ruleset: allow setting uri and path action parmeters together in a single rule (#​1271)

v3.3.0

Compare Source

FEATURES:

  • New Data Source: cloudflare_account_roles (#​1238)

ENHANCEMENTS:

  • resource/cloudflare_access_application: add support for 'SameSite' and 'HttpOnly' cookie attributes (#​1241)
  • resource/cloudflare_argo_tunnel: add cname as exported attribute (#​1259)
  • resource/cloudflare_load_balancer_pool: add support for origin steering (#​1240)
  • resource/cloudflare_ruleset: add support for 'Action' and 'Enabled' action_parameters > overrides attributes (#​1249)
  • resource/cloudflare_zone_setting_override: add support for overriding binary_ast (#​1261)
  • resource/cloudflare_zone_setting_override: add support for overriding filter_logs_to_cloudflare (#​1261)
  • resource/cloudflare_zone_setting_override: add support for overriding log_to_cloudflare (#​1261)
  • resource/cloudflare_zone_setting_override: add support for overriding orange_to_orange (#​1261)
  • resource/cloudflare_zone_setting_override: add support for overriding proxy_read_timeout (#​1261)
  • resource/cloudflare_zone_setting_override: add support for overriding visitor_ip (#​1261)

BUG FIXES:

  • resource/cloudflare_access_policy: handle empty nil values for building policies (#​1237)
  • resource/cloudflare_ruleset: don't attempt to update "custom" rulesets using the phase entrypoint (#​1245)

v3.2.0

Compare Source

NOTES:

  • provider: cloudflare-go has been upgraded to v0.25.0 (#​1236)

FEATURES:

  • New Data Source: cloudflare_zone (#​1213)
  • New Resource: cloudflare_split_tunnel (#​1207)

ENHANCEMENTS:

  • provider: add support for debugging via debuggers (like delve) (#​1217)
  • resource/cloudflare_access_policy: add support for approval_required flag (#​1230)

BUG FIXES:

  • resource/cloudflare_account_member: handle role changes made in the dashboard (#​1202)
  • resource/cloudflare_origin_ca_certificate: ignore requested_validity changes due to the value decreasing but still store it (#​1214)
  • resource/cloudflare_record: handle Updates for records with data blocks (#​1229)

v3.1.0

Compare Source

ENHANCEMENTS:

  • resource/cloudflare_ruleset: add support for ddos_l7 configuration (#​1212)

v3.0.1

Compare Source

ENHANCEMENTS:

  • resource/cloudflare_access_rule: add state migrator for 3.x (#​1211)
  • resource/cloudflare_custom_ssl: add state migrator for 3.x (#​1211)
  • resource/cloudflare_load_balancer: add state migrator for 3.x (#​1211)
  • resource/cloudflare_record: add state migrator for 3.x (#​1211)

v3.0.0

Compare Source

2.x to 3.x upgrade guide

BREAKING CHANGES:

  • resource/cloudflare_access_rule: configuration is now a TypeList instead of a TypeMap (#​1188)
  • resource/cloudflare_custom_ssl: custom_ssl_options is now a TypeList instead of TypeMap (#​1188)
  • resource/cloudflare_load_balancer: fixed_response is now a TypeList instead of a TypeMap (#​1188)
  • resource/cloudflare_load_balancer: fixed_response.status_codeis now aTypeIntinstead of aTypeString` (#​1188)
  • resource/cloudflare_record: data is now a TypeList instead of a TypeMap (#​1188)

NOTES:

  • provider: Golang version has been upgraded to 1.17 (#​1188)
  • provider: HTTP user agent is now "terraform/:version terraform-plugin-sdk/:version terraform-provider-cloudflare/:version" (#​1188)
  • provider: Minimum Terraform core version is now 0.14 (#​1188)
  • provider: terraform-plugin-sdk has been upgraded to 2.x (#​1188)

ENHANCEMENTS:

  • resource/cloudflare_custom_hostname: settings.ciphers is now a TypeSet internally to handle suppress ordering changes. Schema representation remains the same (#​1188)
  • resource/cloudflare_custom_hostname: settings is now Optional/Computed to reflect the stricter schema validation introduced in terraform-plugin-sdk v2 (#​1188)
  • resource/cloudflare_custom_hostname: status is now Computed as the value isn't managed by an end user (#​1188)

v2.27.0

Compare Source

NOTES:

  • provider: Update to cloudflare-go v0.22.0 (#​1184)

FEATURES:

  • New Resource: cloudflare_access_keys_configuration (#​1186)
  • New Resource: cloudflare_teams_account (#​1173)
  • New Resource: cloudflare_teams_rule (#​1173)

ENHANCEMENTS:

  • resource/cloudflare_access_policy: add support for purpose justification and approvals (#​1199)
  • resource/cloudflare_ruleset: add support for HTTP rate limiting (#​1179)
  • resource/cloudflare_ruleset: add support for Transform Rules (#​1169)
  • resource/cloudflare_ruleset: add support for WAF payload logging (#​1174)
  • resource/cloudflare_ruleset: add support for more complex skip ruleset configurations (#​1201)

BUG FIXES:

  • resource/cloudflare_ruleset: fix state handling for terraform-plugin-sdk v2 (#​1183)
  • resource/cloudflare_zone_settings_override: remap zero_rtt => 0rtt for resource delete (#​1175)

v2.26.1

Compare Source

Fixes

  • resource/cloudflare_ruleset: Send a single payload for rules instead of many individual payloads to prevent overwriting previous rules (#​1171)

v2.26.0

Compare Source

  • New resource: cloudflare_notification_policy (#​1138)
  • New resource: cloudflare_notification_policy_webhooks (#​1151)
  • New resource: cloudflare_ruleset (#​1143)
  • New resource: cloudflare_teams_location (#​1154)
  • New datasource: cloudflare_origin_ca_root_certificate (#​1158)

Improvements

  • resource/cloudflare_waiting_room: Add support for json_response_enabled as an argument (#​1122)

v2.25.0

Compare Source

Improvements

  • resource/cloudflare_access_device_posture_rule: Add support for domain_joined, firewall, os_version, and disk_encryption (#​1137)
  • provider: bump cloudflare-go to v0.20.0 (#​1146)

v2.24.0

Compare Source

Improvements

  • resource/cloudflare_logpush_job: Add support for "nel_reports" as a dataset (#​1122)
  • resource/cloudflare_custom_hostname: Allow SSL options to be optional when not required (#​1131)
  • resource/cloudflare_access_identity_provider: Support optional Okta API token (#​1119)
  • resource/cloudflare_load_balancer_pool: Add support for load shedding (#​1108)
  • resource/cloudflare_load_balancer_pool: Add support for longitude and latitude (#​1093)

Fixes

  • resource/cloudflare_record: Use correct Import method on resource (#​1116)
  • resource/cloudflare_worker_cron_trigger: Account for deletion of scripts and force a refresh of triggers (#​1121)
  • resource/cloudflare_rate_limit: Handle origin_traffic missing from API response (#​1125)
  • resource/cloudflare_record: Support allow_overwrite for root records (#​1129)

v2.23.0

Compare Source

  • New resource: cloudflare_waiting_room (#​1053)

Improvements

  • datasource/cloudflare_waf_rules: Export default_mode as an attribute (#​1079)

Fixes

  • resource/cloudflare_access_application: Revert removal of schema changes causing existing applications unable to re-apply (#​1118)

v2.22.0

Compare Source

  • New resource: cloudflare_static_route (#​1098)

Improvements

  • resource/cloudflare_origin_ca: Ignore decreasing requested_validity (#​1043)
  • resource/waf_override: Allow rules to be optional (#​1090)
  • resource/cloudflare_zone: Don't attempt to set free zone rate plans as that is already the default (#​1102)
  • resource/cloudflare_access_application: Ability to set type for Applications (#​1076)
  • resource/cloudflare_zone_lockdown: Update documentation to show examples of multiple configurations (#​1106)

v2.21.0

Compare Source

  • New resource: cloudflare_device_posture_rule (#​1058)
  • New resource: cloudflare_teams_list (#​1058)

Improvements

  • provider: Update to terraform-plugin-sdk v1.17.1 (#​1035, #​1043)
  • resource/cloudflare_logpush_job: Allow ownership_challenge to be optional to account for Datadog, Splunk or S3-Compatible endpoints (#​1048)
  • resource/cloudflare_access_group: Add support for login_method (#​1066)
  • resource/cloudflare_load_balancer: Add support for promixity based steering (#​1072)
  • resource/cloudflare_access_application: Prevent bad CORS configuration when credentials and all origins are permitted (#​1073)
  • resource/cloudflare_access_service_tokens: Allow configuration to manage automatic renewal when the threshold is crossed and Terraform operations are performed within the window (#​1057)
  • resource/cloudflare_load_balancer_pool: Allow support for Host header settings (#​1042)

Fixes

  • resource/cloudflare_access_policy: Allow empty slices in blocks when building policies (#​1034)
  • resource/cloudflare_load_balancer: Fix override attributes pop_pools and region_pools referencing incorrect values causing a panic (#​1039)

v2.20.0

Compare Source

New resource: cloudflare_access_ca_certificate (#​995)

Improvements

  • resource/cloudflare_access_application: Improve documentation for Import usage (#​1002)
  • resource/cloudflare_logpush_job: Update documentation to reflect requirements for destination_conf to match across all uses (#​1024)
  • resource/cloudflare_custom_hostname_fallback: Better handle service lag when updating existing resources by attempting retries (#​1014)
  • resource/cloudflare_waf_group: Simplify error handling using inbuilt helpers (#​1015)
  • resource/cloudflare_waf_rule: Simplify error handling using inbuilt helpers (#​1015)
  • resource/cloudflare_waf_package: Simplify error handling using inbuilt helpers (#​1015)
  • resource/cloudflare_access_group: Add support for login_method (#​1018)
  • provider: Update to cloudflare-go v0.16.0 (#​1018)
  • provider: Update to terraform-plugin-sdk v1.16.1 (#​1003)
  • resource/cloudflare_load_balancer: Add support for rules (#​1016)

v2.19.2

Compare Source

Fixes

  • resource/cloudflare_record: Address regression from 2.19.1 by checking the API response instead of the schema output for Priority (#​992)

v2.19.1

Compare Source

Fixes

  • resource/cloudflare_record: Update Priority handling for MX parked records (#​986)

v2.19.0

Compare Source

Fixes

  • resource/cloudflare_access_group: Fix crash when constructing a GSuite group (#​940)
  • resource/cloudflare_access_policy: Make precedence required (#​941)
  • resource/cloudflare_access_group: Fix crash when constructing a SAML group (#​948)
  • resource/cloudflare_zone: Update Retry logic to look at an available field for passing conditions (#​973)
  • resource/cloudflare_page_rule: Allow ignoring/including all query string parameters for cache_key_fields (#​975)

Improvements

  • resource/cloudflare_access_policy: Enable zone and account level resources to be imported (#​956)
  • resource/cloudflare_origin_ca_certificate: Smoother import process with less recreation (#​955)
  • provider: Update internals to match cloudflare-go 0.14 for better error handling and context aware methods (#​976)
cloudflare/terraform-provider-cloudflare (cloudflare)

Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about these updates again.

  • If you want to rebase/retry this MR, click this checkbox.

This MR has been generated by Renovate Bot.

Edited by Renovate Bot

Merge request reports