Releases: cloudflare/terraform-provider-cloudflare
Releases · cloudflare/terraform-provider-cloudflare
v4.50.0
ENHANCEMENTS:
- cloudflare_teams_location: support endpoints + BYOIPv6 + DNS IPv4 destinations (#4805)
- resource/cloudflare_zone_settings_override: Add support for
aegis(#4820) - resource/cloudflare_zone_settings_override: add support for
ssl_automatic_mode(#4465)
BUG FIXES:
- resource/cloudflare_access_application: Fix access application saas apps attributes crashing provider when no changes were made to those (#4843)
DEPENDENCIES:
v4.49.1
Functionally the same as v4.49.0 but retagged to fix the Terraform Registry having a bad checksum due to a failed build asset being used.
v4.49.0
- resource/cloudflare_teams_location: remove unusable
policy_idsattribute (#4817)
FEATURES:
- New Resource:
cloudflare_content_scanning_expression(#4734) - New Resource:
cloudflare_content_scanning(#4719)
ENHANCEMENTS:
- resource/access_application: support multi-valued + Access service token authentication for SCIM provisioning to Access applications (#4743)
BUG FIXES:
- resource/cloudflare_ruleset: handle when
disable_stale_while_updatingis an empty object but not nil (#4814)
DEPENDENCIES:
- provider: bump github.com/cloudflare/cloudflare-go from 0.111.0 to 0.112.0 (#4803)
- provider: bump github.com/hashicorp/terraform-plugin-framework-validators from 0.15.0 to 0.16.0 (#4762)
- provider: bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /tools (#4755)
- provider: bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#4756)
- provider: bump golang.org/x/net from 0.32.0 to 0.33.0 (#4802)
v4.48.0
NOTES:
- resource/cloudflare_ruleset: rules must now be given an explicit
refto avoid their IDs changing across ruleset updates, see https://developers.cloudflare.com/terraform/troubleshooting/rule-id-changes/ (#4697)
FEATURES:
- New Resource:
cloudflare_leaked_credential_check(#4674) - New Resource:
cloudflare_leaked_credential_check_rule(#4676) - New Resource:
cloudflare_snippet(#4565) - New Resource:
cloudflare_snippet_rules(#4565)
ENHANCEMENTS:
- resource/access_application: add support for destinations and domain_type (#4661)
- resource/access_identity_provider: document scim_config fields (#4721)
- resource/cloudflare_access_policy: adds support for Access infrastructure
allow_email_aliasconnection rule flag (#4665) - resource/cloudflare_ruleset: improve diffs when only some rules are changed (#4697)
- resource/cloudflare_teams_list: use PUT call to update list items (#4737)
- resource/cloudflare_zero_trust_access_policy: adds support for Access infrastructure
allow_email_aliasconnection rule flag (#4665)
BUG FIXES:
- resource/cloudflare_authenticated_origin_pulls: Fix issue where resources are disabled instead of being destroyed on
tf destroy(#4649) - resource/cloudflare_leaked_credential_check_rule: Fix bug in update method (#4741)
DEPENDENCIES:
v4.47.0
ENHANCEMENTS:
- resource/cloudflare_access_application: support SCIM schema strictness setting for outbound provisioning (#4419)
- resource/cloudflare_access_identity_provider: Adds identity update behavior field in SCIM configuration (#4602)
- resource/cloudflare_notification_policy: Added support for D1 in the
cloudflare_notification_policyresource and data source. (#4615) - resource/cloudflare_notification_policy: add support for
image_resizing_notificationalert type (#4588) - resource/cloudflare_r2_bucket: Added support for Oceania region in location hints. (#4660)
BUG FIXES:
- resource/cloudflare_logpush_job: add dlp_forensic_copies to allowed dataset values (#4598)
- resource/cloudflare_zero_trust_access_policy: make gsuite parameters required (#4597)
DEPENDENCIES:
v4.46.0
ENHANCEMENTS:
- resource/cloudflare_waiting_room: add "bg-BG", "hr-HR", "cs-CZ", "da-DK", "fi-FI", "lt-LT", "ms-MY", "nb-NO", "ro-RO", "el-GR", "he-IL" "hi-IN", "hu-HU", "sr-BA", "sk-SK", "sl-SI", "sv-SE", "tl-PH", "th-TH", "uk-UA", and "vi-VN" to default_template_language field (#4509)
BUG FIXES:
- resource/cloudflare_certificate_pack: Fix importing existing resources issue due to 3 ignored required fields in importer (#4544)
- resource/cloudflare_list: Don't read list items if there are none configured (#4511)
- resource/cloudflare_zero_trust_list: Consider
items_with_descriptionwhen updating a ZT list (#4477) - resource/turnstile: Force recreate on region update (#4496)
DEPENDENCIES:
- provider: bump github.com/cloudflare/cloudflare-go from 0.108.0 to 0.109.0 (#4523)
- provider: bump github.com/hashicorp/terraform-plugin-framework-validators from 0.14.0 to 0.15.0 (#4492)
- provider: bump github.com/hashicorp/terraform-plugin-go from 0.24.0 to 0.25.0 (#4483)
- provider: bump github.com/hashicorp/terraform-plugin-mux from 0.16.0 to 0.17.0 (#4484)
- provider: bump github.com/hashicorp/terraform-plugin-sdk/v2 from 2.34.0 to 2.35.0 (#4491)
- provider: bump golang.org/x/net from 0.30.0 to 0.31.0 (#4541)
- provider: bump goreleaser/goreleaser-action from 6.0.0 to 6.1.0 (#4531)
v4.45.0
NOTES:
- datasource/cloudflare_infrastructure_access_targets: deprecated in favour of
cloudflare_zero_trust_infrastructure_access_targetsand will be removed in the next major version. (#4403) - resource/cloudflare_infrastructure_access_target: deprecated in favour of
cloudflare_zero_trust_infrastructure_access_targetand will be removed in the next major version. (#4403)
FEATURES:
- New Resource:
cloudflare_zero_trust_infrastructure_access_target(#4403)
ENHANCEMENTS:
- resource/cloudflare_ruleset: add support for
zstdcompression in thecompress_responseaction (#4300)
BUG FIXES:
- resource/cloudflare_workers_cron_trigger: fix incorrectly reported deprecated resource (#4295)
- resource/cloudflare_zero_trust_dlp_profile: Include more fields in
entryset hash function (#4464)
DEPENDENCIES:
v4.44.0
NOTES:
cloudflare_listhas been migrated to theterraform-plugin-frameworkin doing so addresses issues with the internal representation of zero values. A downside to this is that to get the full benefits, you will need to remove the resource from your Terraform state (terraform state rm ...) and then import the resource back into your state. (#4228)
ENHANCEMENTS:
- resource/cloudflare_certificate_pack: Add SSL.com as valid certificate authority (#4267)
- resource/cloudflare_device_posture_rule: Add support for SentinelOne posture check operational_state field (#4200)
BUG FIXES:
- resource/cloudflare_device_posture_rule: fix bug where locations were not parsed correctly for client_certificate_v2 posture rules (#4168)
- resource/cloudflare_teams_rule: start persisting rule settings, wo rules may not stuck in plan cycle (#4261)
- resource/cloudflare_zone: When changing
typeto or frompartialtheverification_keyattribute will properly show that it will receive a new value. (#4019)
INTERNAL:
- resource/cloudflare_list: migrate from SDKv2 to
terraform-plugin-framework(#4228)
DEPENDENCIES:
v4.43.0
FEATURES:
- New Resource:
cloudflare_infrastructure_access_target(#4077)
ENHANCEMENTS:
- resource/cloudflare_access_application: added target contexts support for access application type infrastructure (#4128)
- resource/cloudflare_access_policy: added infrastructure connection rule support for access policy (#4128)
- resource/cloudflare_device_posture_integration: add support for managing
custom_s2sthird party posture provider. (#3917) - resource/cloudflare_device_posture_rule: add ability to create custom_s2s posture rule (#3917)
- resource/cloudflare_zone_settings_override: add support for Speed Brain (#4113)
DEPENDENCIES:
- provider: bump
github.com/aws/aws-sdk-go-v2/configfrom 1.27.34 to 1.27.37 (#4124) - provider: bump
github.com/aws/aws-sdk-go-v2/configfrom 1.27.37 to 1.27.38 (#4127) - provider: bump
github.com/aws/aws-sdk-go-v2/credentialsfrom 1.17.32 to 1.17.35 (#4124) - provider: bump
github.com/aws/aws-sdk-go-v2/credentialsfrom 1.17.35 to 1.17.36 (#4127) - provider: bump
github.com/aws/aws-sdk-go-v2/service/s3from 1.61.2 to 1.63.1 (#4124) - provider: bump
github.com/aws/aws-sdk-go-v2/service/s3from 1.63.1 to 1.63.2 (#4127) - provider: bump
github.com/aws/aws-sdk-go-v2from 1.30.5 to 1.31.0 (#4124) - provider: bump actions/checkout from 3 to 4 (#4101)
- provider: bump github.com/cloudflare/cloudflare-go from 0.104.0 to 0.105.0 (#4125)
- provider: bump github.com/cloudflare/cloudflare-go from 0.105.0 to 0.106.0 (#4137)
- provider: bump github.com/hashicorp/terraform-plugin-framework from 1.11.0 to 1.12.0 (#4061)
- provider: bump github.com/hashicorp/terraform-plugin-go from 0.23.0 to 0.24.0 (#4060)
v5.0.0-alpha1
Warning
v5 of the provider is a ground-up rewrite using code generation from our OpenAPI spec
and migrating internals to use terraform-plugin-framework.
This is an alpha release that includes support for many of the foundational Cloudflare
products however, is not recommended for existing configurations, critical workloads
or production usage. There are known bugs that will be addressed as the stability
increases and we get closer to general availability.
Resources that are expected to work relate to account memberships, zone management,
DNS records, rulesets and some TLS related products. The failure modes of the resources
that are not currently supported will vary from diagnostic warnings to potential state
corruption. At this time, please do not report bugs relating to broken resources as they are
likely already being worked on to release in upcoming versions. All other feedback can be
submitted in the linked discussion.
This release does not include migration guides or codemod documentation though they do
exist if you wish to venture through it yourself.
If you have suitable workloads and would like to test out the release, you can opt-in by updating
your provider version to explicitly match one of the release candidate versions
(~>, > or >= will not work).
terraform {
required_providers {
cloudflare = {
source = "cloudflare/cloudflare"
version = "5.0.0-alpha1"
}
}
}