Skip to content

Releases: cloudflare/terraform-provider-cloudflare

v4.7.1

31 May 10:17
@jacobbednarz jacobbednarz
v4.7.1
122b6fb
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.7.1

BUG FIXES:

  • resource/cloudflare_list: remove IsIPAddress validation that doesn't take into account CIDR notation (#2486)
Loading

v4.7.0

31 May 00:48
@jacobbednarz jacobbednarz
v4.7.0
8127fb3
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.7.0

NOTES:

FEATURES:

  • New Resource: cloudflare_r2_bucket (#2378)

ENHANCEMENTS:

  • resource/cloudflare_account: provide account ID for error handling in resourceCloudflareAccountDelete (#2436)
  • resource/cloudflare_device_posture_integration: add api_url to uptycs posture integration config. (#2468)
  • resource/cloudflare_list: add support for Hostname and ASN lists. (#2483)
  • resource/cloudflare_tunnel_config: add support for origin config on ingress rule and access (#2477)

BUG FIXES:

  • resource/cloudflare_logpush_job: Properly set dataset field when importing logpush jobs (#2444)
  • resource/cloudflare_pages_project: suggest a better default value for root_dir (#2440)
  • resource/cloudflare_ruleset: Validation of ttls for action_parameters with edge_ttl or browser_ttl mode of override_origin (#2454)
  • resource/cloudflare_workers_kv: Fix import to properly parse the id (#2434)

DEPENDENCIES:

  • provider: bumps dependabot/fetch-metadata from 1.4.0 to 1.5.0 (#2463)
  • provider: bumps dependabot/fetch-metadata from 1.5.0 to 1.5.1 (#2469)
  • provider: bumps github.com/cloudflare/cloudflare-go from 0.67.0 to 0.68.0 (#2466)
  • provider: bumps github.com/stretchr/testify from 1.8.2 to 1.8.3 (#2457)
  • provider: bumps github.com/stretchr/testify from 1.8.3 to 1.8.4 (#2484)
Loading

v4.6.0

17 May 01:45
@jacobbednarz jacobbednarz
v4.6.0
483e9b5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.6.0

ENHANCEMENTS:

  • resource/cloudflare_ruleset: add support for auto compression in the compress_response action (#2409)
  • resource/cloudflare_waiting_room_settings: add support for waiting room zone-level settings. (#2419)

BUG FIXES:

  • resource/cloudflare_notification_policy: Fix unexpected crashes when setting target_hostname with a filters attribute (#2425)
  • resource/cloudflare_ruleset: allow FromValue.PreserveQueryString to be nullable and handled correctly (#2414)
  • resource/cloudflare_ruleset: allow using 0 as an edge TTL value without conflicting with Go types for zeros (#2415)
  • resource/cloudflare_turnstile_widget: align schema to match what is returned by the API and fix updating the widget (#2413)

DEPENDENCIES:

  • provider: bumps github.com/cloudflare/cloudflare-go from 0.66.0 to 0.67.0 (#2429)
  • provider: bumps golang.org/x/net from 0.9.0 to 0.10.0 (#2421)
Loading

v4.5.0

03 May 01:21
@jacobbednarz jacobbednarz
v4.5.0
cab0d9b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.5.0

FEATURES:

  • New Resource: cloudflare_regional_hostname (#2396)
  • New Resource: cloudflare_turnstile_widget (#2380)

ENHANCEMENTS:

  • resource/cloudflare_device_posture_rule: Add support for sentinelone type. (#2279)
  • resource/cloudflare_logpush_job: Fix schema for logpush job dataset field (#2397)
  • resource/cloudflare_logpush_job: add max upload parameters (#2394)
  • resource/cloudflare_logpush_job: add support for device_posture_results and zero_trust_network_sessions. (#2405)
  • resource/cloudflare_notification_policy: Added support for setting Megabits per second threshold for dos alert in Cloudflare notification policy resource. (#2404)
  • resource/cloudflare_pages_project: added secrets to Pages project. Secrets are encrypted environment variables, ideal for secrets such as API tokens. See documentation here: https://developers.cloudflare.com/pages/platform/functions/bindings/#secrets (#2399)
  • resource/cloudflare_ruleset: add support for the compress_response action (#2372)
  • resource/cloudflare_ruleset: add support for the http_response_compression phase (#2372)

BUG FIXES:

  • resource/cloudflare_load_balancer: fixes random_steering being unset on value updates (#2403)
  • resource/cloudflare_pages_project: fixes pages project acceptance test (#2402)
  • resource/cloudflare_ruleset: ensure custom cache keys using query parameters are defined as known values for state handling (#2388)

DEPENDENCIES:

  • provider: bumps github.com/cloudflare/cloudflare-go from 0.65.0 to 0.66.0 (#2398)
  • provider: bumps github.com/hashicorp/terraform-plugin-mux from 0.9.0 to 0.10.0 (#2395)
Loading

v4.4.0

19 Apr 02:59
@jacobbednarz jacobbednarz
v4.4.0
13dd770
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.4.0

NOTES:

  • resource/cloudflare_ruleset: introduced future deprecation warning for the http_request_sbfm phase. (#2382)

ENHANCEMENTS:

  • resource/cloudflare_access_organization: Add auto_redirect_to_identity flag (#2356)
  • resource/cloudflare_access_policy: Add isolation_required flag (#2351)
  • resource/cloudflare_tunnel: Adds config_src parameter (#2369)
  • resource/cloudflare_worker_script: Add logpush attribute (#2375)

INTERNAL:

  • scripts/generate-changelog-entry: make error message match the executable we are expecting (#2357)

DEPENDENCIES:

  • provider: bumps dependabot/fetch-metadata from 1.3.6 to 1.4.0 (#2383)
  • provider: bumps github.com/cloudflare/cloudflare-go from 0.64.0 to 0.65.0 (#2370)
  • provider: bumps golang.org/x/net from 0.8.0 to 0.9.0 (#2359)
  • provider: bumps peter-evans/create-or-update-comment from 2 to 3 (#2355)
Loading

v4.3.0

04 Apr 22:04
@jacobbednarz jacobbednarz
v4.3.0
44e5dc6
This commit was signed with the committer’s verified signature.
jacobbednarz Jacob Bednarz
GPG key ID: 9846E532AF49C75E
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.3.0

NOTES:

  • adds support for a basic flox environment project (#2345)

FEATURES:

  • New Resource: cloudflare_device_dex_tests (#2250)
  • New Resource: cloudflare_worker_domain (#2339)

ENHANCEMENTS:

  • resource/cloudflare_access_group: Add example of usage of Azure (#2332)
  • resource/cloudflare_access_identity_provider: add claims and scopes fields (#2313)
  • resource/cloudflare_access_identity_provider: add ability for users to enable SCIM provisioning on their Identity Providers (#2147)
  • resource/cloudflare_device_posture_integration: add support for managing kolide third party posture provider. (#2321)
  • resource/cloudflare_device_settings_policy: use new cloudflare.ServiceMode type (#2331)
  • resource/cloudflare_ruleset: enforce schema validation of conflicting cache key parameters (#2326)
  • resource/cloudflare_teams_rules: updated gateway rule action audit ssh and rule settings (#2303)
  • resource/cloudflare_worker_script: Add compatibility_flags attribute (#2324)
  • resources/device_settings_policy: add validation for possible service_mode_v2_mode values (#2331)

BUG FIXES:

  • datasource/cloudflare_devices: Fix cloudflare_devices data source to return devices correctly and not error (#2348)
  • resource/cloudflare_custom_ssl: fix json sent to API when geo_restrictions are not used (#2319)

DEPENDENCIES:

  • provider: bumps actions/stale from 7 to 8 (#2322)
  • provider: bumps github.com/cloudflare/cloudflare-go from 0.63.0 to 0.64.0 (#2344)
  • provider: bumps github.com/hashicorp/terraform-plugin-go from 0.14.3 to 0.15.0 (#2333)
  • provider: bumps github.com/hashicorp/terraform-plugin-testing from 1.1.0 to 1.2.0 (#2320)
Loading

v4.2.0

22 Mar 00:17
@jacobbednarz jacobbednarz
v4.2.0
91c789d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.2.0

Warning cloudflare_ruleset has been migrated to the terraform-plugin-framework in doing so addresses issues with the internal representation of zero values. A downside to this is that to get the full benefits, you will need to remove the resource from your Terraform state (terraform state rm ...) and then import the resource back into your state. Along with this, you will need to update any references to status which was the previous workaround for the enabled values. If you have status = "enabled" you will need to replace it with enabled = true and similar for status = "disabled" to be replaced with enabled = false. (#2271)

BREAKING CHANGES:

  • resource/cloudflare_ruleset: status has been removed in favour of enabled now that the workaround for zero values is no longer required (#2271)

FEATURES:

  • New Data Source: cloudflare_list (#2296)
  • New Data Source: cloudflare_lists (#2296)
  • New Resource: cloudflare_address_map (#2290)
  • New Resource: cloudflare_list_item (#2304)

ENHANCEMENTS:

  • resource/access_organization: add ui_read_only_toggle_reason field (#2175)
  • resource/cloudflare_device_posture_rule: Support check_disks in the input block schema. (#2280)
  • resource/cloudflare_notification_policy_webhooks: ensure url triggers recreation, not in-place updates (#2302)
  • resource/cloudflare_tunnel: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
  • resource/cloudflare_tunnel_config: add support for import of cloudflare_tunnel_config (#2298)
  • resource/cloudflare_tunnel_config: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
  • resource/cloudflare_tunnel_route: rename references of cloudflare_argo_tunnel to cloudflare_tunnel in documentation (#2281)
  • resource/cloudflare_worker_script: Add compatibility_date attribute (#2300)

BUG FIXES:

  • resource/cloudflare_ruleset: support cache rules for status range >= and =< operations (#2307)
  • resource/cloudflare_teams_account: fixes an issue where accounts that had never configured DLP payload logging would error upon reading this resource (#2284)

INTERNAL:

  • resource/cloudflare_ruleset: migrate from SDKv2 to terraform-plugin-framework (#2271)
  • test: swap SDKv2 testing harness to github.com/hashicorp/terraform-plugin-testing (#2272)

DEPENDENCIES:

  • provider: bumps actions/setup-go from 3 to 4 (#2291)
  • provider: bumps github.com/cloudflare/cloudflare-go from 0.62.0 to 0.63.0 (#2289)
  • provider: bumps github.com/hashicorp/terraform-plugin-framework from 1.1.1 to 1.2.0 (#2314)
  • provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.25.1-0.20230317190757-53a4ec42ea7e to 2.26.0 (#2308)
  • provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.26.0 to 2.26.1 (#2315)
Loading

v4.1.0

08 Mar 05:06
@jacobbednarz jacobbednarz
v4.1.0
0f9af80
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.1.0

ENHANCEMENTS:

  • resource/cloudflare_cloudflare_teams_rules: Add untrusted_cert setting to teams rules settings (#2256)
  • resource/cloudflare_teams_account: Add support for DLP payload logging public key (#2267)
  • resource/cloudflare_teams_rule: Add support for enabling DLP payload logging per-rule (#2267)
  • resource/cloudflare_waiting_room: add 'ru-RU' and 'fa-IR' to default_template_language field (#2262)

BUG FIXES:

  • resource/cloudflare_access_group: fixes an issue where Azure group rules with different identity provider ids would override each other (#2270)
  • resource/cloudflare_notification_policy: ensure all emails are saved if multiple email_integration values specified (#2248)

DEPENDENCIES:

  • provider: bumps github.com/cloudflare/cloudflare-go from 0.61.0 to 0.62.0 (#2268)
  • provider: bumps github.com/stretchr/testify from 1.8.1 to 1.8.2 (#2263)
  • provider: bumps golang.org/x/net from 0.7.0 to 0.8.0 (#2274)
Loading

v4.0.0

21 Feb 00:20
@jacobbednarz jacobbednarz
v4.0.0
00ebb75
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.0.0

Warning Prior to upgrading you should ensure you have adequate backups in the event you need to rollback to version 3. This is a major version bump and involves backwards incompatible changes.

3.x to 4.x upgrade guide

BREAKING CHANGES:

  • datasource/cloudflare_waf_groups: removed in favour of cloudflare_rulesets (#2138)
  • datasource/cloudflare_waf_packages: removed in favour of cloudflare_rulesets (#2138)
  • datasource/cloudflare_waf_rules: removed in favour of cloudflare_rulesets (#2138)
  • provider: account_id is no longer available as a global configuration option. Instead, use the resource specific attributes. (#2139)
  • resource/cloudflare_access_bookmark: resource has been removed in favour of configuration on cloudflare_access_application (#2136)
  • resource/cloudflare_access_rule: require explicit zone_id or account_id and remove implicit fallback to user level rules (#2157)
  • resource/cloudflare_account_member: account_id is now required (#2153)
  • resource/cloudflare_account_member: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_argo_tunnel: resource has been renamed to cloudflare_tunnel (#2135)
  • resource/cloudflare_ip_list: removed in favour of cloudflare_list (#2137)
  • resource/cloudflare_load_balancer: Migrate session_affinity_attributes from TypeMap to TypeSet (#1959)
  • resource/cloudflare_load_balancer: session_affinity_attributes.drain_duration is now TypeInt instead of TypeString (#1959)
  • resource/cloudflare_load_balancer_monitor: account_id is now required (#2153)
  • resource/cloudflare_load_balancer_monitor: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_load_balancer_pool: account_id is now required (#2153)
  • resource/cloudflare_load_balancer_pool: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_spectrum_application: edge_ip_connectivity is now nested under edge_ips as connectivity (#2219)
  • resource/cloudflare_spectrum_application: edge_ips.type is now a required field (#2219)
  • resource/cloudflare_spectrum_application: edge_ips now contains nested attributes other than IP ranges. type and connectivity have been added. edge_ips.ips contains the static IP addresses that used to reside at edge_ips. (#2219)
  • resource/cloudflare_waf_group: removed in favour of cloudflare_ruleset (#2138)
  • resource/cloudflare_waf_override: removed in favour of cloudflare_ruleset (#2138)
  • resource/cloudflare_waf_package: removed in favour of cloudflare_ruleset (#2138)
  • resource/cloudflare_waf_rule: removed in favour of cloudflare_ruleset (#2138)
  • resource/cloudflare_workers_kv: account_id is now required (#2153)
  • resource/cloudflare_workers_kv: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_workers_kv_namespace: account_id is now required (#2153)
  • resource/cloudflare_workers_kv_namespace: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_workers_script: account_id is now required (#2153)
  • resource/cloudflare_workers_script: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
  • resource/cloudflare_zone: account_id is now required (#2153)
  • resource/cloudflare_zone: no longer sets client.AccountID internally and relies on the resource provided value (#2154)
Loading

v3.35.0

20 Feb 04:04
@jacobbednarz jacobbednarz
v3.35.0
de9f917
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.35.0

Note v3.35.0 will be the final release in the 3.x release cycle.

FEATURES:

  • New Data Source: cloudflare_rulesets (#2220)

ENHANCEMENTS:

  • resource/cloudflare_argo_tunnel: mark tunnel_token as sensitive (#2231)
  • resource/cloudflare_device_settings_policy: Add new flag MS IP Exclusion for device policies (#2236)
  • resource/cloudflare_dlp_profile: Add new allowed_match_count field to profiles (#2210)

BUG FIXES:

  • resource/cloudflare_logpush_job: fixing typo in comment (#2238)
  • resource/cloudflare_record: always send tags object which allows removal of unwanted tags (#2205)
  • resource/cloudflare_tunnel_config: use correct notation for nested lists (#2235)

INTERNAL:

  • internal: bump Go version to 1.20 (#2243)

DEPENDENCIES:

  • provider: bump golang.org/x/net to v0.7.0 (#2245)
  • provider: bumps github.com/cloudflare/cloudflare-go from 0.60.0 to 0.61.0 (#2240)
  • provider: bumps github.com/hashicorp/terraform-plugin-framework-validators from 0.9.0 to 0.10.0 (#2227)
  • provider: bumps github.com/hashicorp/terraform-plugin-mux from 0.8.0 to 0.9.0 (#2228)
  • provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.24.1 to 2.25.0 (#2239)
  • provider: bumps golang.org/x/net from 0.6.0 to 0.7.0 (#2241)
Loading