v3.10.0

BREAKING CHANGES:

• resource/cloudflare_ruleset: rename mitigation_expression to counting_expression (#1477)

ENHANCEMENTS:

• resource/cloudflare_access_rule: add support for managed_challenge action (#1457)
• resource/cloudflare_custom_hostname: adds support for custom_origin_sni (#1482)
• resource/cloudflare_device_policy_certificates: add support for device policy certificate settings (#1467)
• resource/cloudflare_teams_rules: Add insecure_disable_dnssec_validation option to settings (#1469)
• resource/cloudflare_zone: add support for partner rate plans (#1464)

BUG FIXES:

• resource/cloudflare_record: no need to pass the resourceCloudflareRecordUpdate to the NonRetryable handler (#1496)

v3.9.1

NOTES:

• resource/cloudflare_api_token: revert swap from TypeList to TypeSet due to broken migration (#1455)

FEATURES:

• New Data Source: cloudflare_devices (#1453)

v3.9.0

FEATURES:

• New Resource: cloudflare_gre_tunnel (#1423)
• New Resource: cloudflare_zone_cache_variants (#1444)

ENHANCEMENTS:

• cloudflare_ruleset: add support for "managed_challenge" action (#1442)
• resource/certificate_pack: adds validation_errors and validation_records with same format as custom hostnames. (#1424)
• resource/custom_hostname: also adds missing validation_errors, and certificate_authority (#1424)
• resource/custom_hostname: validation tokens are now an array (validation_records) instead of a top level, but the only top level record that was previously here was for cname validation, txt/http/email were entirely missing. (#1424)

BUG FIXES:

• cloudflare_argo_tunnel: conditionally fetch settings based on the provided configuration (#1451)
• resource/cloudflare_api_token: ignore ordering of permission_group IDs (#1425)

v3.8.0

FEATURES:

• New Resource: cloudflare_ipsec_tunnel (#1404)

ENHANCEMENTS:

• datasource/cloudflare_zones: allow filtering by account_id (#1401)
• resource/cloudflare_cloudflare_teams_rules: Add check_session and add_headers attributes to settings (#1402)
• resource/cloudflare_cloudflare_teams_rules: Add disable_download, disable_keyboard, and disable_upload attributes to BISOAdminControls (#1402)
• resource/cloudflare_logpush_job: add support for managing dns_logs (#1400)
• resource/cloudflare_ruleset: add skip support for products and phases (#1391)
• resource/cloudflare_ruleset: smoother handling of UI/API collisions during migrations (#1393)
• resource/cloudflare_teams_accounts: Add the fips field for configuring FIPS-compliant TLS. (#1380)

BUG FIXES:

• resource/cloudflare_fallback_domain: default entries are now restored on delete. (#1399)
• resource/cloudflare_ruleset: conditionally set action parameter "version" (#1388)
• resource/cloudflare_ruleset: fix handling of false values for category/rule overrides (#1405)

v3.7.0

FEATURES:

• New Resource: cloudflare_device_posture_integration (#1340)
• New Resource: cloudflare_fallback_domain (#1356)

ENHANCEMENTS:

• resource/cloudflare_firewall_rule: add support for managed_challenge action (#1378)
• resource/cloudflare_load_balancer_monitor: added support for smtp, icmp_ping, and udp_icmp monitors (#1371)
• resource/cloudflare_logpush_job: add support for account-level logpush jobs (#1311)
• resource/cloudflare_logpush_ownership_challenge: add support for account-level logpush ownership challenges (#1311)

BUG FIXES:

• resource/cloudflare_api_token: modified_on is now read correctly (#1368)

DEPENDENCIES:

• github.com/cloudflare/cloudflare-go v0.29.0 => v0.30.0 (#1379)

v3.6.0

ENHANCEMENTS:

• resource/cloudflare_access_application: add bookmark type to apptypes (#1343)
• resource/cloudflare_teams_rules: GATE-2273: Adds support for device posture gateway rules (#1353)

BUG FIXES:

• resource/cloudflare_load_balancer: handle empty rules for resourceCloudflareLoadBalancerStateUpgradeV1 (#1257)
• resource/cloudflare_split_tunnel: import will now use correct import function (#1345)

v3.5.0

NOTES:

• provider: split schema definition from resource CRUD operations (#1321)

FEATURES:

• New Data Source: cloudflare_access_identity_provider (#1300)

ENHANCEMENTS:

• resource/cloudflare_access_application: add support for app_launcher_visible to the schema (#1303)
• resource/cloudflare_ruleset: add support for rewriting HTTP response headers (#1339)
• resource/cloudflare_zone: support changing type values (#1301)

BUG FIXES:

• resource/cloudflare_access_group: fix mapping error for AzureAD (#1341)
• resource/cloudflare_access_rule: allow "ip6" to be a padded or unpadded value and compare correctly (#1294)
• resource/cloudflare_argo: call Read for Import operations (#1295)
• resource/cloudflare_argo_tunnel: fix import mechanism (#1329)
• resource/cloudflare_argo_tunnel: update CNAME to use cfargotunnel.com (#1293)
• resource/cloudflare_origin_ca_certificate: reintroduce DiffSuppressFunc for requested_validity changes to handle all schema/SDK combinations (#1289)
• resource/cloudflare_split_tunnel: import now works by specifying accountId/mode (#1313)
• resource/cloudflare_teams_list: ignore items ordering (#1338)

v3.4.0

ENHANCEMENTS:

• provider: add the ability to configure a different hostname and base path for the API client (#1270)
• resource/cloudflare_access_application: add support for 'skip_interstitial' and 'logo_url' properties (#1262)
• resource/cloudflare_custom_hostname: add settings.early_hints to ssl schema (#1286)
• resource/cloudflare_ruleset: add support for exposed credential checks (#1263)
• resource/cloudflare_zone_setting_override: add support for overriding early_hints (#1285)

BUG FIXES:

• resource/cloudflare_ruleset: allow action parameter override enabled to be true/false or uninitialised (#1275)
• resource/cloudflare_ruleset: allow setting uri and path action parmeters together in a single rule (#1271)

v3.3.0

FEATURES:

• New Data Source: cloudflare_account_roles (#1238)

ENHANCEMENTS:

• resource/cloudflare_access_application: add support for 'SameSite' and 'HttpOnly' cookie attributes (#1241)
• resource/cloudflare_argo_tunnel: add cname as exported attribute (#1259)
• resource/cloudflare_load_balancer_pool: add support for origin steering (#1240)
• resource/cloudflare_ruleset: add support for 'Action' and 'Enabled' action_parameters > overrides attributes (#1249)
• resource/cloudflare_zone_setting_override: add support for overriding binary_ast (#1261)
• resource/cloudflare_zone_setting_override: add support for overriding filter_logs_to_cloudflare (#1261)
• resource/cloudflare_zone_setting_override: add support for overriding log_to_cloudflare (#1261)
• resource/cloudflare_zone_setting_override: add support for overriding orange_to_orange (#1261)
• resource/cloudflare_zone_setting_override: add support for overriding proxy_read_timeout (#1261)
• resource/cloudflare_zone_setting_override: add support for overriding visitor_ip (#1261)

BUG FIXES:

• resource/cloudflare_access_policy: handle empty nil values for building policies (#1237)
• resource/cloudflare_ruleset: don't attempt to update "custom" rulesets using the phase entrypoint (#1245)

v3.2.0

NOTES:

• provider: cloudflare-go has been upgraded to v0.25.0 (#1236)

FEATURES:

• New Data Source: cloudflare_zone (#1213)
• New Resource: cloudflare_split_tunnel (#1207)

ENHANCEMENTS:

• provider: add support for debugging via debuggers (like delve) (#1217)
• resource/cloudflare_access_policy: add support for approval_required flag (#1230)

BUG FIXES:

• resource/cloudflare_account_member: handle role changes made in the dashboard (#1202)
• resource/cloudflare_origin_ca_certificate: ignore requested_validity changes due to the value decreasing but still store it (#1214)
• resource/cloudflare_record: handle Updates for records with data blocks (#1229)