FEATURES:
- New Data Source:
azurerm_spring_cloud_app
(#10678) - New Resource:
azurerm_databox_edge_device
(#10730) - New Resource:
azurerm_databox_edge_order
(#10730) - New Resource:
azurerm_kusto_iothub_data_connection
(#8626) - New Resource:
azurerm_redis_enterprise_cluster
(#10706) - New Resource:
azurerm_redis_enterprise_database
(#10706) - New Resource:
azurerm_security_center_assessment_metadata
(#10124) - New Resource:
azurerm_spring_cloud_custom_domain
(#10404)
ENHANCEMENTS:
- dependencies: updating
github.com/hashicorp/terraform-plugin-sdk
to the latest1.x
branch (#10692) - dependencies: updating
github.com/hashicorp/go-azure-helpers
tov0.14.0
(#10740) - dependencies: updating
github.com/Azure/go-autorest/autorest
tov0.11.18
(#10740) - testing: updating the tests to use the Terraform release binaries when running acceptance tests (#10523)
azurerm_api_management
- support for thetenant_access
block (#10475)azurerm_api_management_logger
- support for configuring aresource_id
(#10652)azurerm_data_factory_linked_service_azure_blob_storage
- now supports thesas_uri
property (#10551)azurerm_data_factory_linked_service_azure_blob_storage
- now supports Managed Identity and Service Principal authentication (#10551)azurerm_monitor_smart_detector_alert_rule
- supports for thetags
property (#10646)azurerm_netapp_volume
- support for thedata_protection_replication
block (#10610)azurerm_sentinel_alert_rule_ms_security_incident
- supportMicrosoft Defender Advanced Threat Protection
andOffice 365 Advanced Threat Protection
values for theproduct_filter
property (#10725)azurerm_service_fabric_cluster
- Add support for theupgrade policy
block (#10713)
BUG FIXES:
- provider: fixing support for Azure Cloud Shell (#10740)
- provider: MSI authentication is explicitly unavailable in Azure App Service and Function Apps as these are intentionally not supported (#10740)
- provider: only showing the deprecation message if
skip_credentials_registration
is explicitly configured (#10699) azurerm_batch_certificate
- allow emptypassword
when format is pfx (#10642)azurerm_data_factory_integration_runtime_azure_ssis
- theadministrator_login
andadministrator_password
properties are now optional (#10474)azurerm_data_factory_integration_runtime_managed
- theadministrator_login
andadministrator_password
properties are now optional (#10640)azurerm_eventhub_namespace
- thecapacity
property can now be greater than50
(#10734)azurerm_key_vault_certificate
- waiting for deletion to complete before purging (#10577)azurerm_key_vault_key
- now waits for deletion to complete before purging (#10577)azurerm_key_vault_secret
- now waits for deletion to complete before purging (#10577)azurerm_kusto_cluster
- changing thevirtual_network_configuration
property forces a new resource to be created (#10640)azurerm_lb_outbound_rule
- fixing a crash whenfrontendIPConfigurations
is omitted in the API response (#10696)azurerm_media_content_key_policy
- fix an encoding bug which prevented configuringask
in thefairplay_configuration
block (#10684)
FEATURES:
- New Data Source:
azurerm_application_gateway
(#10268)
ENHANCEMENTS:
- dependencies: updating to build using Go 1.16 which adds support for
darwin/arm64
(Apple Silicon) (#10615) - dependencies: updating
github.com/Azure/azure-sdk-for-go
tov51.2.0
(#10561) - Data Source:
azurerm_bastion_host
- updating to use a Resource ID Formatter (#10570) - Data Source:
azurerm_point_to_site_vpn_gateway
- updating to use a Resource ID Formatter (#10570) - Data Source:
azurerm_kubernetes_cluster
- exposing theupgrade_settings
block (#10376) - Data Source:
azurerm_kubernetes_cluster_node_pool
- exposing theupgrade_settings
block (#10376) - Data Source:
azurerm_route
- pdating to use a Resource ID Formatter (#10570) - Data Source:
azurerm_subnet
- updating to use a Resource ID Formatter (#10570) - Data Source:
azurerm_subscriptions
- adding the fieldid
to thesubscriptions
block (#10598) - Data Source:
azurerm_virtual_network
- updating to use a Resource ID Formatter (#10570) azurerm_bastion_host
- updating to use a Resource ID Formatter (#10570)azurerm_bastion_host
- support for enhanced import validation (#10570)azurerm_kubernetes_cluster
- support for configuring theupgrade_settings
block (#10376)azurerm_kubernetes_cluster
- support forautomatic_channel_upgrade
(#10530)azurerm_kubernetes_cluster
- support forskip_nodes_with_local_storage
within theauto_scaler_profile
block (#10531)azurerm_kubernetes_cluster
- support forskip_nodes_with_system_pods
within theauto_scaler_profile
block (#10531)azurerm_kubernetes_cluster_node_pool
- support for configuring theupgrade_settings
block (#10376)azurerm_lighthouse_definition
- add support forprincipal_id_display_name
property (#10613)azurerm_log_analytics_workspace
- Support forcapacity_reservation_level
property andCapacityReservation
SKU (#10612)azurerm_point_to_site_vpn_gateway
- updating to use a Resource ID Formatter (#10570)azurerm_point_to_site_vpn_gateway
- support for enhanced import validation (#10570)azurerm_route
- updating to use a Resource ID Formatter (#10570)azurerm_route
- support for enhanced import validation (#10570)azurerm_subnet
- updating to use a Resource ID Formatter (#10570)azurerm_subnet
- support for enhanced import validation (#10570)synapse_workspace_resource
- support for theazure_devops_repo
andgithub_repo
blocks (#10157)azurerm_virtual_network
- updating to use a Resource ID Formatter (#10570)azurerm_virtual_network
- support for enhanced import validation (#10570)
BUG FIXES:
azurerm_eventgrid_event_subscription
- change the number of possibleadvanced_filter
items from5
to25
(#10625)azurerm_key_vault
- normalizing the casing on thecertificate_permissions
,key_permissions
,secret_permissions
andstorage_permissions
fields within theaccess_policy
block (#10593)azurerm_key_vault_access_policy
- normalizing the casing on thecertificate_permissions
,key_permissions
,secret_permissions
andstorage_permissions
fields (#10593)azurerm_mariadb_firewall_rule
- correctly validate thename
property (#10579)azurerm_postgresql_server
- correctly changessl_minimal_tls_version_enforced
on update (#10606)azurerm_private_endpoint
- only updating the associated Private DNS Zone Group when there's changes (#10559)azurerm_resource_group_template_deployment
- fixing an issue where the API version for nested items couldn't be found during deletion (#10565)
UPGRADE NOTES
azurerm_frontdoor
&azurerm_frontdoor_custom_https_configuration
- the new fieldsbackend_pool_health_probes
,backend_pool_load_balancing_settings
,backend_pools
,frontend_endpoints
,routing_rules
have been added to theazurerm_frontdoor
resource, which are a map of name-ID references. An upcoming version of the Azure Provider will change the blocksbackend_pool
,backend_pool_health_probe
,backend_pool_load_balancing
,frontend_endpoint
androuting_rule
from a List to a Set to work around an ordering issue within the Azure API - as such you should update your Terraform Configuration to reference these new Maps, rather than the Lists directly, due to the upcoming breaking change. For example, changingazurerm_frontdoor.example.frontend_endpoint[1].id
toazurerm_frontdoor.example.frontend_endpoints["exampleFrontendEndpoint2"]
(#9357)azurerm_lb_backend_address_pool
- the fieldbackend_addresses
has been deprecated and is no longer functional - instead theazurerm_lb_backend_address_pool_address
resource offers the same functionality. (#10488)azurerm_linux_virtual_machine_scale_set
&azurerm_windows_virtual_machine_scale_set
- the in-lineextension
block is now GA - the environment variableARM_PROVIDER_VMSS_EXTENSIONS_BETA
no longer has any effect and can be removed (#10528)azurerm_data_factory_integration_runtime_managed
- this resource has been renamed/deprecated in favour ofazurerm_data_factory_integration_runtime_azure_ssis
(#10236)- The provider-block field
skip_credentials_validation
is now deprecated since this was non-functional and will be removed in 3.0 of the Azure Provider (#10464)
FEATURES:
- New Data Source:
azurerm_key_vault_certificate_data
(#8184) - New Resource:
azurerm_application_insights_smart_detection_rule
(#10539) - New Resource:
azurerm_data_factory_integration_runtime_azure
(#10236) - New Resource:
azurerm_data_factory_integration_runtime_azure_ssis
(#10236) - New Resource:
azurerm_lb_backend_address_pool_address
(#10488)
ENHANCEMENTS:
- dependencies: updating
github.com/hashicorp/terraform-plugin-sdk
tov1.16.0
(#10521) azurerm_frontdoor
- added the new fieldsbackend_pool_health_probes
,backend_pool_load_balancing_settings
,backend_pools
,frontend_endpoints
,routing_rules
which are a map of name-ID references (#9357)azurerm_kubernetes_cluster
- updating the validation for thelog_analytics_workspace_id
field within theoms_agent
block within theaddon_profile
block (#10520)azurerm_kubernetes_cluster
- support for configuringonly_critical_addons_enabled
(#10307)azurerm_kubernetes_cluster
- support for configuringprivate_dns_zone_id
(#10201)azurerm_linux_virtual_machine_scale_set
- theextension
block is now GA and available without enabling the beta (#10528)azurerm_media_streaming_endpoint
- exporting the fieldhost_name
(#10527)azurerm_mssql_virtual_machine
- support forauto_backup
(#10460)azurerm_windows_virtual_machine_scale_set
- theextension
block is now GA and available without enabling the beta (#10528)azurerm_site_recovery_replicated_vm
- support for therecovery_public_ip_address_id
property and changingtarget_static_ip
ortarget_static_ip
force a new resource to be created (#10446)
BUG FIXES:
- provider: the provider-block field
skip_credentials_validation
is now deprecated since this was non-functional. This will be removed in 3.0 of the Azure Provider (#10464) - Data Source:
azurerm_shared_image_versions
- retrieving all versions of the image prior to filtering (#10519) azurerm_app_service
- theip_restriction.x.ip_address
propertynow accepts anything other than an empty string (#10440)azurerm_cosmosdb_account
- validate thekey_vault_key_id
property is versionless (#10420)azurerm_cosmosdb_account
- will no longer panic if the response is nil (#10525)azurerm_eventhub_namespace
- correctly downgrade to theBasic
sku (#10536)azurerm_key_vault_key
- export theversionless_id
attribute (#10420)azurerm_lb_backend_address_pool
- thebackend_addresses
block is now deprecated and non-functional - use theazurerm_lb_backend_address_pool_address
resource instead (#10488)azurerm_linux_virtual_machine_scale_set
- fixing a bug whenprotected_settings
within theextension
block was an empty string (#10528)azurerm_linux_virtual_machine_scale_set
- fixing a bug whensettings
within theextension
block was an empty string (#10528)azurerm_monitor_diagnostic_setting
- changing thelog_analytics_workspace_id
property no longer creates a new resource (#10512)azurerm_storage_data_lake_gen2_filesystem
- do not set/retrieve ACLs when HNS is not enabled (#10470)azurerm_windows_virtual_machine_scale_set
- fixing a bug whenprotected_settings
within theextension
block was an empty string (#10528)azurerm_windows_virtual_machine_scale_set
- fixing a bug whensettings
within theextension
block was an empty string (#10528)
BUG FIXES:
azurerm_lb_backend_address_pool
- markbackend_address
as computed (#10481)
FEATURES:
- New Resource:
azurerm_api_management_identity_provider_aadb2c
(#10240) - New Resource:
azurerm_cosmosdb_cassandra_table
(#10328)
ENHANCEMENTS:
- dependencies: updating
recoveryservices
to API version2018-07-10
(#10373) azurerm_api_management_diagnostic
- support for thealways_log_errors
,http_correlation_protocol
,log_client_ip
,sampling_percentage
andverbosity
properties (#10325)azurerm_api_management_diagnostic
- support for thefrontend_request
,frontend_response
,backend_request
andbackend_response
blocks (#10325)azurerm_kubernetes_cluster
- support for configuring the fieldenable_host_encryption
within thedefault_node_pool
block (#10398)azurerm_kubernetes_cluster
- added length validation to theadmin_password
field within thewindows_profile
block (#10452)azurerm_kubernetes_cluster_node_pool
- support forenable_host_encryption
(#10398)azurerm_lb_backend_address_pool
- support for thebackend_address
block (#10291)azurerm_redis_cache
- support for thepublic_network_access_enabled
property (#10410)azurerm_role_assignment
- adding validation for that thescope
is either a Management Group, Subscription, Resource Group or Resource ID (#10438)azurerm_service_fabric_cluster
- support for thereverse_proxy_certificate_common_names
block (#10367)azurerm_monitor_metric_alert
- support for theskip_metric_validation
property (#10422)
BUG FIXES:
- Data Source:
azurerm_api_management
fix an exception with User Assigned Managed Identities (#10429) azurerm_api_management_api_diagnostic
- fix a bug where specifyinglog_client_ip = false
would not disable the setting (#10325)azurerm_key_vault
- fixing a race condition when setting the cache (#10447)azurerm_key_vault_certificate
- fixing a race condition when setting the cache (#10447)azurerm_key_vault_key
- fixing a race condition when setting the cache (#10447)azurerm_key_vault_secret
- fixing a race condition when setting the cache (#10447)azurerm_mssql_virtual_machine
- fixing a crash where the KeyVault was nil in the API response (#10469)azurerm_storage_account_datasource
- prevent panics from passing in an emptyname
(#10370)azurerm_storage_data_lake_gen2_filesystem
- change theace
property to a TypeSet to ensure consistent ordering (#10372)azurerm_storage_data_lake_gen2_path
- change theace
property to a TypeSet to ensure consistent ordering (#10372)
BUG FIXES:
azurerm_app_service_environment
- prevent a panic when the API returns a nil cluster settings (#10365)
FEATURES:
- New Data Source
azurerm_search_service
(#10181) - New Resource:
azurerm_data_factory_linked_service_snowflake
(#10239) - New Resource:
azurerm_data_factory_linked_service_azure_table_storage
(#10305) - New Resource:
azurerm_iothub_enrichment
(#9239) - New Resource:
azurerm_iot_security_solution
(#10034) - New Resource:
azurerm_media_streaming_policy
(#10133) - New Resource:
azurerm_spring_cloud_active_deployment
(#9959) - New Resource:
azurerm_spring_cloud_java_deployment
(#9959)
IMPROVEMENTS:
- dependencies: updating to
v0.11.17
ofgithub.com/Azure/go-autorest/autorest
(#10259) - dependencies: updating the
firewall
resources to use the Networking API2020-07-01
(#10252) - dependencies: updating the
load balancer
resources to use the Networking API version2020-05-01
(#10263) - Data Source:
azurerm_app_service_environment
- export thecluster_setting
block (#10303) - Data Source:
azurerm_key_vault_certificate
- support for thecertificate_data_base64
attribute (#10275) azurerm_app_service
- support for the propetynumber_of_workers
(#10143)azurerm_app_service_environment
- support for thecluster_setting
block (#10303)azurerm_data_factory_dataset_delimited_text
- support for thecompression_codec
property (#10182)azurerm_firewall_policy
- support for thesku
property (#10186)azurerm_iothub
- support for theenrichment
property (#9239)azurerm_key_vault
- optimised loading of and added caching when retrieving the Key Vault (#10330)azurerm_key_vault
- support both ipv4 and cidr formats for thenetwork_acls.ip_rules
property (#10266)azurerm_key_vault_certificate
- optimised loading of and added caching when retrieving the Key Vault (#10330)azurerm_key_vault_key
- optimised loading of and added caching when retrieving the Key Vault (#10330)azurerm_key_vault_secret
- optimised loading of and added caching when retrieving the Key Vault (#10330)azurerm_key_vault_certificate
- support for thecertificate_data_base64
attribute (#10275)azurerm_linux_virtual_machine
- skipping shutdown for a machine in a failed state (#10189)azurerm_media_services_account
- support for setting thestorage_authentication_type
field toSystem
(#10133)azurerm_redis_cache
- support multiple availability zones (#10283)azurerm_storage_data_lake_gen2_filesystem
- support for theace
block (#9917)azurerm_servicebus_namespace
- will now allow a capacity of16
for thePremium
SKU (#10337)azurerm_windows_virtual_machine
- skipping shutdown for a machine in a failed state (#10189)azurerm_linux_virtual_machine_scale_set
- support for theextensions_time_budget
property (#10298)azurerm_windows_virtual_machine_scale_set
- support for theextensions_time_budget
property (#10298)
BUG FIXES:
azurerm_iot_time_series_insights_reference_data_set
- the fielddata_string_comparison_behavior
is nowForceNew
(#10343)azurerm_iot_time_series_insights_reference_data_set
- thekey_property
block is nowForceNew
(#10343)azurerm_linux_virtual_machine_scale_set
- fixing an issue whereprotected_settings
field within theextension
block couldn't be empty (#10351)azurerm_linux_virtual_machine_scale_set
- fixing an issue wheresettings
field within theextension
block couldn't be empty (#10351)azurerm_media_streaming_endpoint
- stopping the streaming endpoint prior to deletion if the endpoint is in a running state (#10216)azurerm_role_definition
- don't addscope
toassignable_scopes
unless none are specified (#8624)azurerm_windows_virtual_machine_scale_set
- fixing an issue whereprotected_settings
field within theextension
block couldn't be empty (#10351)azurerm_windows_virtual_machine_scale_set
- fixing an issue wheresettings
field within theextension
block couldn't be empty (#10351)
FEATURES:
IMPROVEMENTS:
- dependencies: updating
github.com/Azure/go-autorest
tov0.11.16
(#10164) - dependencies: updating
appconfiguration
to API version2020-06-01
(#10176) - dependencies: updating
appplatform
to API version2020-07-01
(#10175) - dependencies: updating
containerservice
to API version2020-12-01
(#10171) - dependencies: updating
msi
to API version2018-11-30
(#10174) - Data Source:
azurerm_kubernetes_cluster
- support for the fielduser_assigned_identity_id
within theidentity
block (#8737) azurerm_api_management
- support additional TLS ciphers within thesecurity
block (#9276)azurerm_api_management_api_diagnostic
- support thesampling_percentage
property (#9321)azurerm_container_group
- support for updatingtags
(#10210)azurerm_kubernetes_cluster
- the fieldtype
within theidentity
block can now be set toUserAssigned
(#8737)azurerm_kubernetes_cluster
- support for the fieldnew_pod_scale_up_delay
within theauto_scaler_profile
block (#9291)azurerm_kubernetes_cluster
- support for the fielduser_assigned_identity_id
within theidentity
block (#8737)azurerm_monitor_autoscale_setting
- now supports thedimensions
property (#9795)azurerm_sentinel_alert_rule_scheduled
- now supports theevent_grouping_setting
property (#10078)
BUG FIXES:
azurerm_backup_protected_file_share
- updating to account for a breaking API change (#9015)azurerm_key_vault_certificate
- fixing a crash whensubject
within thecertificate_policy
block was nil (#10200)azurerm_user_assigned_identity
- adding a state migration to update the ID format (#10196)
FEATURES:
- New Data Source:
azurerm_sentinel_alert_rule_template
(#7020)
IMPROVEMENTS:
- Data Source:
azurerm_api_management
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105) - Data Source:
azurerm_kubernetes_cluster
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105) - Data Source:
azurerm_virtual_machine
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105) - Data Source:
azurerm_virtual_machine_scale_set
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105) azurerm_api_management
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_app_service
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_app_service_slot
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_container_group
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_cosmosdb_account
- support foranalytical_storage_enabled property
(#10055)azurerm_cosmosdb_gremlin_graph
- support thedefault_ttl
property (#10159)azurerm_data_factory
- support forpublic_network_enabled
(#9605)azurerm_data_factory_dataset_delimited_text
- support for thecompression_type
property (#10070)azurerm_data_factory_linked_service_sql_server
: support for thekey_vault_password
block (#10032)azurerm_eventgrid_domain
- support for thepublic_network_access_enabled
andinbound_ip_rule
properties (#9922)azurerm_eventgrid_topic
- support for thepublic_network_access_enabled
andinbound_ip_rule
properties (#9922)azurerm_eventhub_namespace
- support thetrusted_service_access_enabled
property (#10169)azurerm_function_app
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_function_app_slot
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_kusto_cluster
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_linux_virtual_machine
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_linux_virtual_machine_scale_set
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_security_center_automation
- the fieldevent_source
within thesource
block now supportsSecureScoreControls
andSecureScores
(#10126)azurerm_synapse_workspace
- support for thesql_identity_control_enabled
property (#10033)azurerm_virtual_machine
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_virtual_machine_scale_set
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_windows_virtual_machine
- adding validation on theidentity_ids
field within theidentity
block (#10105)azurerm_windows_virtual_machine_scale_set
- adding validation on theidentity_ids
field within theidentity
block (#10105)
BUG FIXES:
- Data Source:
azurerm_log_analytics_workspace
- returning the Resource ID in the correct casing (#10162) azurerm_advanced_threat_protection
- fix a regression in the Resouce ID format (#10190)azurerm_api_management
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_app_service
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_app_service_slot
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_application_gateway
- ensuring the casing onidentity_ids
within theidentity
block (#10031)azurerm_blueprint_assignment
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_container_group
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_databricks_workspace
- changing the sku no longer always forces a new resource to be created (#9541)azurerm_function_app
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_function_app_slot
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_kubernetes_cluster
- ensuring the casing of theuser_assigned_identity_id
field within thekubelet_identity
block (#10105)azurerm_kusto_cluster
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_linux_virtual_machine
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_linux_virtual_machine_scale_set
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_monitor_diagnostic_setting
- handling mixed casing of the EventHub Namespace Authorization Rule ID (#10104)azurerm_mssql_virtual_machine
- address persistent diff and use relative expiry for service principal password (#10125)azurerm_role_assignment
- fix race condition in read after create (#10134)azurerm_role_definition
- address eventual consistency issues in update and delete (#10170)azurerm_virtual_machine
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_virtual_machine_scale_set
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_windows_virtual_machine
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)azurerm_windows_virtual_machine_scale_set
- ensuring the casing of theidentity_ids
field within theidentity
block (#10105)
BREAKING CHANGES
azurerm_key_vault
- the fieldsoft_delete_enabled
is now defaulted totrue
to match the breaking change in the Azure API where Key Vaults now have Soft Delete enabled by default, which cannot be disabled. This property is now non-functional, defaults totrue
and will be removed in version 3.0 of the Azure Provider. (#10088)azurerm_key_vault
- the fieldsoft_delete_retention_days
is now defaulted to90
days to match the Azure API behaviour, as the Azure API does not return a value for this field when not explicitly configured, so defaulting this removes a diff with0
. (#10088)
FEATURES:
- New Data Source:
azurerm_eventgrid_domain_topic
(#10050) - New Data Source:
azurerm_ssh_public_key
(#9842) - New Resource:
azurerm_data_factory_linked_service_synapse
(#9928) - New Resource:
azurerm_disk_access
(#9889) - New Resource:
azurerm_media_streaming_locator
(#9992) - New Resource:
azurerm_sentinel_alert_rule_fusion
(#9829) - New Resource:
azurerm_ssh_public_key
(#9842)
IMPROVEMENTS:
- batch: updating to API version
2020-03-01
(#10036) - dependencies: upgrading to
v49.2.0
ofgithub.com/Azure/azure-sdk-for-go
(#10042) - dependencies: upgrading to
v0.15.1
ofgithub.com/tombuildsstuff/giovanni
(#10035) - Data Source:
azurerm_hdinsight_cluster
- support for thekafka_rest_proxy_endpoint
property (#8064) - Data Source:
azurerm_databricks_workspace
- support for thetags
property (#9933) - Data Source:
azurerm_subscription
- support for thetags
property (#8064) azurerm_app_service
- now supportsdetailed_error_mesage_enabled
andfailed_request_tracing_enabled
logs settings (#9162)azurerm_app_service
- now supportsservice_tag
inip_restriction
blocks (#9609)azurerm_app_service_slot
- now supportsdetailed_error_mesage_enabled
andfailed_request_tracing_enabled
logs settings (#9162)azurerm_batch_pool
support for thepublic_address_provisioning_type
property (#10036)azurerm_api_management
- supportConsumption_0
for thesku_name
property (#6868)azurerm_cdn_endpoint
- only sendcontent_types_to_compress
andgeo_filter
to the API when actually set (#9902)azurerm_cosmosdb_mongo_collection
- correctly read back the_id
index when mongo 3.6 (#8690)azurerm_container_group
- support for thevolume.empty_dir
property (#9836)azurerm_data_factory_linked_service_azure_file_storage
- support for thefile_share
property (#9934)azurerm_dedicated_host
- support for addtionalsku_name
values (#9951)azurerm_devspace_controller
- deprecating since new DevSpace Controllers can no longer be provisioned, this will be removed in version 3.0 of the Azure Provider (#10049)azurerm_function_app
- makepre_warmed_instance_count
computed to use azure's default (#9069)azurerm_function_app
- now supportsservice_tag
inip_restriction
blocks (#9609)azurerm_hdinsight_hadoop_cluster
- allow the valueStandard_D4a_V4
for thevm_type
property (#10000)azurerm_hdinsight_kafka_cluster
- support for therest_proxy
andkafka_management_node
blocks (#8064)azurerm_key_vault
- the fieldsoft_delete_enabled
is now defaulted totrue
to match the Azure API behaviour where Soft Delete is force-enabled and can no longer be disabled. This field is deprecated, can be safely removed from your Terraform Configuration, and will be removed in version 3.0 of the Azure Provider. (#10088)azurerm_kubernetes_cluster
- add support for network_mode (#8828)azurerm_log_analytics_linked_service
- add validation for resource ID type (#9932)azurerm_log_analytics_linked_service
- update validation to use generated validate functions (#9950)azurerm_monitor_diagnostic_setting
- validation thateventhub_authorization_rule_id
is a EventHub Namespace Authorization Rule ID (#9914)azurerm_monitor_diagnostic_setting
- validation thatlog_analytics_workspace_id
is a Log Analytics Workspace ID (#9914)azurerm_monitor_diagnostic_setting
- validation thatstorage_account_id
is a Storage Account ID (#9914)azurerm_network_security_rule
- increase allowed the number ofapplication_security_group
blocks allowed (#9884)azurerm_sentinel_alert_rule_ms_security_incident
- support thealert_rule_template_guid
anddisplay_name_exclude_filter
properties (#9797)azurerm_sentinel_alert_rule_scheduled
- support for thealert_rule_template_guid
property (#9712)azurerm_sentinel_alert_rule_scheduled
- support for creating incidents (#8564)azurerm_spring_cloud_app
- support the propertieshttps_only
,is_public
, andpersistent_disk
(#9957)azurerm_subscription
- support for thetags
property (#9047)azurerm_synapse_workspace
- support for themanaged_resource_group_name
property (#10017)azurerm_traffic_manager_profile
- support for thetraffic_view_enabled
property (#10005)
BUG FIXES:
provider: will not correctly register the Microsoft.Blueprint
and Microsoft.HealthcareApis
RPs (#10062)
azurerm_application_gateway
- allow750
forfile_upload_limit_mb
when the sku isWAF_v2
(#8753)azurerm_firewall_policy_rule_collection_group
- correctly validate thenetwork_rule_collection.destination_ports
property (#9490)azurerm_cdn_endpoint
- changing manydelivery_rule
conditionmatch_values
to optional (#8850)azurerm_cosmosdb_account
- always includekey_vault_id
in update requests for azure policy enginer compatibility (#9966)azurerm_cosmosdb_table
- do not call the throughput api when serverless (#9749)azurerm_key_vault
- the fieldsoft_delete_retention_days
is now defaulted to90
days to match the Azure API behaviour. (#10088)azurerm_kubernetes_cluster
- parse omslog_analytics_workspace_id
to ensure correct casing (#9976)azurerm_role_assignment
fix crash in retry logic (#10051)azurerm_storage_account
- allow hns whenaccount_tier
isPremium
(#9548)azurerm_storage_share_file
- allowing files smaller than 4KB to be uploaded (#10035)
UPGRADE NOTES:
azurerm_key_vault
- Azure will be introducing a breaking change on December 31st, 2020 by force-enabling Soft Delete on all new and existing Key Vaults. To workaround this, this release of the Azure Provider still allows you to configure Soft Delete on before this date (but once this is enabled this cannot be disabled). Since new Key Vaults will automatically be provisioned using Soft Delete in the future, and existing Key Vaults will be upgraded - a future release will deprecate thesoft_delete_enabled
field and default this to true early in 2021. (#9911)azurerm_key_vault_certificate
- Terraform will now attempt topurge
Certificates during deletion due to the upcoming breaking change in the Azure API where Key Vaults will have soft-delete force-enabled. This can be disabled by setting thepurge_soft_delete_on_destroy
field within thefeatures -> keyvault
block tofalse
. (#9911)azurerm_key_vault_key
- Terraform will now attempt topurge
Keys during deletion due to the upcoming breaking change in the Azure API where Key Vaults will have soft-delete force-enabled. This can be disabled by setting thepurge_soft_delete_on_destroy
field within thefeatures -> keyvault
block tofalse
. (#9911)azurerm_key_vault_secret
- Terraform will now attempt topurge
Secrets during deletion due to the upcoming breaking change in the Azure API where Key Vaults will have soft-delete force-enabled. This can be disabled by setting thepurge_soft_delete_on_destroy
field within thefeatures -> keyvault
block tofalse
. (#9911)
FEATURES:
- New Resource:
azurerm_eventgrid_system_topic_event_subscription
(#9852) - New Resource:
azurerm_media_job
(#9859) - New Resource:
azurerm_media_streaming_endpoint
(#9537) - New Resource:
azurerm_subnet_service_endpoint_storage_policy
(#8966) - New Resource:
azurerm_synapse_managed_private_endpoint
(#9260)
IMPROVEMENTS:
azurerm_app_service
- Add support foroutbound_ip_address_list
andpossible_outbound_ip_address_list
(#9871)azurerm_disk_encryption_set
- support for updatingkey_vault_key_id
(#7913)azurerm_iot_time_series_insights_gen2_environment
- exposingdata_access_fqdn
(#9848)azurerm_key_vault_certificate
- performing a "purge" of the Certificate during deletion if the feature is opted-in within thefeatures
block, see the "Upgrade Notes" for more information (#9911)azurerm_key_vault_key
- performing a "purge" of the Key during deletion if the feature is opted-in within thefeatures
block, see the "Upgrade Notes" for more information (#9911)azurerm_key_vault_secret
- performing a "purge" of the Secret during deletion if the feature is opted-in within thefeatures
block, see the "Upgrade Notes" for more information (#9911)azurerm_log_analytics_linked_service
- Add new fieldsworkspace_id
,read_access_id
, andwrite_access_id
(#9410)azurerm_linux_virtual_machine
- Normalise SSH keys to cover VM import cases (#9897)azurerm_subnet
- support for theservice_endpoint_policy
block (#8966)azurerm_traffic_manager_profile
- support for new fieldmax_return
and support fortraffic_routing_method
to beMultiValue
(#9487)
BUG FIXES:
azurerm_key_vault_certificate
- readingdns_names
andemails
within thesubject_alternative_names
block from the Certificate if not returned from the API (#8631)azurerm_key_vault_certificate
- polling until the Certificate is fully deleted during deletion (#9911)azurerm_key_vault_key
- polling until the Key is fully deleted during deletion (#9911)azurerm_key_vault_secret
- polling until the Secret is fully deleted during deletion (#9911)azurerm_log_analytics_workspace
- adding a state migration to correctly update the Resource ID (#9853)
FEATURES:
- New Resource:
azurerm_app_service_certificate_binding
(#9415) - New Resource:
azurerm_digital_twins_endpoint_eventhub
(#9673) - New Resource:
azurerm_digital_twins_endpoint_servicebus
(#9702) - New Resource:
azurerm_media_asset
(#9387) - New Resource:
azurerm_media_transform
(#9663) - New Resource:
azurerm_resource_provider
(#7951) - New Resource:
azurerm_stack_hci_cluster
(#9134) - New Resource:
azurerm_storage_share_file
(#9406) - New Resource:
azurerm_storage_sync_cloud_endpoint
(#8540)
IMPROVEMENTS:
- dependencies: upgrading
github.com/Azure/go-autorest/validation
tov0.3.1
(#9783) - dependencies: updating Log Analytics to API version
2020-08-01
(#9764) - internal: disabling the Azure SDK's validation since it's superfluous (#9783)
azurerm_app_service
- support for PHP version7.4
(#9727)azurerm_bot_channel_directline
- support for enhanced import validation (#9690)azurerm_bot_channel_email
- support for enhanced import validation (#9690)azurerm_bot_channel_ms_teams
- support for enhanced import validation (#9690)azurerm_bot_channel_slack
- support for enhanced import validation (#9690)azurerm_bot_channels_registration
- support for enhanced import validation (#9690)azurerm_bot_connection
- support for enhanced import validation (#9690)azurerm_bot_web_app
- support for enhanced import validation (#9690)azurerm_cosmosdb_sql_container
- support for thepartition_key_version
property (#9496)azurerm_kusto_cluster
- support for theengine
property (#9696)azurerm_kusto_eventhub_data_connection
- support forcompression
(#9692)azurerm_iothub
- support for themin_tls_version
property (#9670)azurerm_recovery_services_vault
- support for theidentity
block (#9689)azurerm_redis_cache
- adding enhanced import validation (#9771)azurerm_redis_cache
- adding validation thatsubnet_id
is a valid Subnet ID (#9771)azurerm_redis_firewall_rule
- adding enhanced import validation (#9771)azurerm_redis_linked_server
- adding enhanced import validation (#9771)azurerm_redis_linked_server
- adding validation thatlinked_redis_cache_id
is a valid Redis Cache ID (#9771)azurerm_security_center_automation
- support for thedescription
andtags
properties (#9676)azurerm_stream_analytics_reference_input_blob
- support for enhanced import validation (#9735)azurerm_stream_analytics_stream_input_blob
- support for enhanced import validation (#9735)azurerm_stream_analytics_stream_input_iothub
- support for enhanced import validation (#9735)azurerm_stream_analytics_stream_input_eventhub
- support for enhanced import validation (#9735)azurerm_storage_account
- enable theallow_blob_public_access
andazurerm_storage_account
properties in US Government Cloud (#9540)
BUG FIXES:
azurerm_app_service_managed_certificate
- create certificate in service plan resource group to prevent diff loop (#9701)azurerm_bot_channel_directline
- the fieldbot_name
is now ForceNew to match the documentation/API behaviour (#9690)azurerm_bot_channel_ms_teams
- the fieldbot_name
is now ForceNew to match the documentation/API behaviour (#9690)azurerm_bot_channel_slack
- the fieldbot_name
is now ForceNew to match the documentation/API behaviour (#9690)azurerm_bot_connection
- the fieldbot_name
is now ForceNew to match the documentation/API behaviour (#9690)azurerm_frontdoor
- working around an upstream API issue by rewriting the returned ID's within Terraform (#9750)azurerm_frontdoor_custom_https_configuration
- working around an upstream API issue by rewriting the returned ID's within Terraform (#9750)azurerm_frontdoor_firewall_policy
- working around an upstream API issue by rewriting the returned ID's within Terraform (#9750)azurerm_media_services_account
- fixing a bug wherestorage_authentication_type
wasn't set (#9663)azurerm_media_service_account
- checking for the presence of an existing account during creation (#9802)azurerm_postgresql_server
- changing thegeo_redundant_backup_enabled
property now forces a new resource (#9694)azurerm_postgresql_server
- Fix issue when specifying empty threat detection list attributes (#9739)azurerm_signar_service
- having an emptyallowed_origins
in thecors
block will no longer cause a panic (#9671)
FEATURES:
- New Resource:
azurerm_api_management_policy
(#9215) - New Resource:
azurerm_digital_twins_endpoint_eventgrid
(#9489) - New Resource:
azurerm_iot_time_series_insights_gen2_environment
(#9616)
IMPROVEMENTS:
azurerm_dashboard
- adding validation at import time to ensure the ID is for a Dashboard (#9530)azurerm_keyvault_certificate
- add3072
to allowed values forkey_size
(#9524)azurerm_media_services_account
- support for theidentity
,tags
, andstorage_authentication
properties (#9457)azurerm_notification_hub_authorization_rule
- adding validation at import time to ensure the ID is for a Notification Hub Authorization Rule (#9529)azurerm_notification_hub_namespace
- adding validation at import time to ensure the ID is for a Notification Hub Namespace (#9529)azurerm_postgresql_active_directory_administrator
- validating during import that the ID is for a PostgreSQL Active Directory Administrator (#9532)azurerm_postgresql_configuration
- validating during import that the ID is for a PostgreSQL Configuration (#9532)azurerm_postgresql_database
- validating during import that the ID is for a PostgreSQL Database (#9532)azurerm_postgresql_firewall_rule
- validating during import that the ID is for a PostgreSQL Firewall Rule (#9532)azurerm_postgresql_virtual_network_rule
- validating during import that the ID is for a PostgreSQL Virtual Network Rule (#9532)azurerm_traffic_manager_profile
- allow up to2147483647
for thettl
property (#9522)
BUG FIXES:
azurerm_security_center_workspace
- fixing the casing on theworkspace_id
(#9651)azurerm_eventhub_dedicated_cluster
- thesku_name
capacity can be greater then1
(#9649)
FEATURES:
- New Resource
azurerm_app_service_managed_certificate
(#9378) - New Data Source:
azurerm_digital_twins_instance
(#9430) - New Data Source:
azurerm_virtual_wan
(#9382) - New Resource:
azurerm_digital_twins_instance
(#9430)
IMPROVEMENTS:
- dependencies: updating App Service to API version
2020-06-01
(#9409) - Data Source
azurerm_app_service
now exports thecustom_domain_verification_id
attribute (#9378) - Data Source
azurerm_function_app
now exports thecustom_domain_verification_id
attribute (#9378) - Data Source:
azurerm_spring_cloud_service
- now exports theoutbound_public_ip_addresses
attribute (#9261) azurerm_app_service
now exportscustom_domain_verification_id
(#9378)azurerm_application_insights
- validating the resource ID is correct during import (#9446)azurerm_application_insights_web_test
- validating the resource ID is correct during import (#9446)azurerm_express_route_circuit_peering
- support for theipv6
block (#9235)azurerm_function_app
now exports thecustom_domain_verification_id
attribute (#9378)azurerm_vpn_server_configuration
- deprecate theradius_server
block in favour of theradius
block which supports multiple servers (#9308)azurerm_spring_cloud_service
- now exports theoutbound_public_ip_addresses
attribute (#9261)azurerm_virtual_network_gateway
- support for thedpd_timeout_seconds
andlocal_azure_ip_address_enabled
properties (#9330)azurerm_virtual_network_gateway_connection
- support for theprivate_ip_address_enabled
propeties and thecustom_route
block (#9330)
BUG FIXES:
azurerm_api_management
- fixing an issue where developer portal certificates are updated on every apply (#7299)azurerm_cosmosdb_account
- corrently updates thezone_redundant
property during updates (#9485)azurerm_search_service
-allowed_ips
now supports specifying a CIDR Block in addition to an IPv4 address (#9493)azurerm_virtual_desktop_application_group
- adding a state migration to avoid a breaking change when upgrading fromv2.35.0
or later (#9495)azurerm_virtual_desktop_host_pool
- adding a state migration to avoid a breaking change when upgrading fromv2.35.0
or later (#9495)azurerm_virtual_desktop_workspace
- adding a state migration to avoid a breaking change when upgrading fromv2.35.0
or later (#9495)azurerm_virtual_desktop_workspace_application_group_association
- adding a state migration to avoid a breaking change when upgrading fromv2.35.0
or later (#9495)azurerm_windows_virtual_machine
- no longer setspatch_mode
on creation if it is the default value (#9495)
FEATURES:
- New Data Source:
azurerm_servicebus_subscription
(#9272) - New Data Source:
azurerm_storage_encryption_scope
(#8894) - New Resource:
azurerm_log_analytics_cluster
(#8946) - New Resource:
azurerm_log_analytics_cluster_customer_managed_key
(#8946) - New Resource:
azurerm_security_center_automation
(#8781) - New Resource:
azurerm_storage_data_lake_gen2_path
(#7521) - New Resource:
azurerm_storage_encryption_scope
(#8894) - New Resource:
azurerm_vpn_gateway_connection
(#9160)
IMPROVEMENTS:
- storage: foundational improvements to support toggling between the Data Plane and Resource Manager Storage API's in the future (#9314)
- Data Source:
azurerm_firewall
- exposingdns_servers
,firewall_policy_id
,sku_name
,sku_tier
,threat_intel_mode
,virtual_hub
andzones
(#8879) - Data Source:
azurerm_firewall
- exposingpublic_ip_address_id
andprivate_ip_address_id
within theip_configuration
block (#8879) - Data Source:
azurerm_firewall
- exposingname
within themanagement_ip_configuration
block (#8879) - Data Source:
azurerm_kubernetes_node_pool
- exposingos_disk_type
(#9166) azurerm_api_management_api_diagnostic
- support for thealways_log_errors
,http_correlation_protocol
,log_client_ip
andverbosity
attributes (#9172)azurerm_api_management_api_diagnostic
- support thefrontend_request
,frontend_response
,backend_request
andbackend_response
blocks (#9172)azurerm_container_group
- support for secret container volumes with thecontainer.#.volume.#.secret
attribute (#9117)azurerm_cosmosdb_account
- support for thepublic_network_access_enabled
property (#9236)azurerm_cosmosdb_cassandra_keyspace
-throughput
can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_cosmosdb_gremlin_database
-throughput
can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_cosmosdb_mongo_database
-throughput
can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_cosmosdb_sql_container
-max_throughput
within theautoscale_settings
block can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_cosmosdb_sql_database
-throughput
can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_cosmosdb_table
-throughput
can now be set to higher than1000000
if enabled by Azure Support (#9050)azurerm_dns_zone
- support for thesoa_record
block (#9319)azurerm_firewall
- support forfirewall_policy_id
,sku_name
,sku_tier
andvirtual_hub
(#8879)azurerm_kubernetes_cluster
- support for configuringos_disk_type
within thedefault_node_pool
block (#9166)azurerm_kubernetes_cluster
-max_count
within thedefault_node_pool
block can now be set to a maximum value of1000
(#9227)azurerm_kubernetes_cluster
-min_count
within thedefault_node_pool
block can now be set to a maximum value of1000
(#9227)azurerm_kubernetes_cluster
-node_count
within thedefault_node_pool
block can now be set to a maximum value of1000
(#9227)azurerm_kubernetes_cluster
- the blockhttp_application_routing
within theaddon_profile
block can now be updated/removed (#9358)azurerm_kubernetes_node_pool
- support for configuringos_disk_type
(#9166)azurerm_kubernetes_node_pool
-max_count
can now be set to a maximum value of1000
(#9227)azurerm_kubernetes_node_pool
-min_count
can now be set to a maximum value of1000
(#9227)azurerm_kubernetes_node_pool
-node_count
can now be set to a maximum value of1000
(#9227)azurerm_linux_virtual_machine
- support for theextensions_time_budget
property (#9257)azurerm_linux_virtual_machine
- updating thededicated_host_id
no longer forces a new resource (#9264)azurerm_linux_virtual_machine
- support for graceful shutdowns (via the features block) (#8470)azurerm_linux_virtual_machine_scale_set
- support for theplatform_fault_domain_count
,disk_iops_read_write
, anddisk_mbps_read_write
properties (#9262)azurerm_mssql_database
-sku_name
supports moreDWxxxc
options (#9370)azurerm_policy_set_definition
- support for thepolicy_definition_group
block (#9259)azurerm_postgresql_server
- increase max storage to 16TiB (#9373)azurerm_private_dns_zone
- support for thesoa_record
block (#9319)azurerm_storage_blob
- support forcontent_md5
(#7786)azurerm_windows_virtual_machine
- support for theextensions_time_budget
property (#9257)azurerm_windows_virtual_machine
- updating thededicated_host_id
nolonger forces a new resource (#9264)azurerm_windows_virtual_machine
- support for graceful shutdowns (via the features block) (#8470)azurerm_windows_virtual_machine
- support for thepatch_mode
property (#9258)azurerm_windows_virtual_machine_scale_set
- support for theplatform_fault_domain_count
,disk_iops_read_write
, anddisk_mbps_read_write
properties (#9262)
BUG FIXES:
- Data Source:
azurerm_key_vault_certificate
- fixing a crash when serializing the certificate policy block (#9355) azurerm_api_management
- the fieldxml_content
within thepolicy
block now supports C#/.net interpolations (#9296)azurerm_cosmosdb_sql_container
- no longer attempts to get throughput settings when cosmos account is serverless (#9311)azurerm_firewall_policy
- deprecate thedns.network_rule_fqdn_enabled
property as the API no longer allows it to be set (#9332)azurerm_key_vault_certificate
- fixing a crash when serializing the certificate policy block (#9355)azurerm_mssql_virtual_machine
- fixing a crash when serializingauto_patching
(#9388)azurerm_resource_group_template_deployment
- fixing an issue during deletion where the API version of nested resources couldn't be determined (#9364)
UPGRADE NOTES:
azurerm_network_connection_monitor
- has been updated to work with v2 of the resource as the service team is deprecating v1 - all v1 properties have been deprecated and will be removed in version3.0
of the provider and v2 propeties added. (#8640)
FEATURES:
- New Data Source:
azurerm_data_share_dataset_kusto_database
(#8544) - New Data Source:
azurerm_traffic_manager_profile
(#9229) - New Resource:
azurerm_api_management_custom_domain
(#8228) - New Resource:
azurerm_data_share_dataset_kusto_database
(#8544) - New Resource:
azurerm_log_analytics_storage_insights
(#9014) - New Resource:
azurerm_monitor_smart_detector_alert_rule
(#9032) - New Resource:
azurerm_virtual_hub_security_partner_provider
(#8978) - New Resource:
azurerm_virtual_hub_bgp_connection
(#8959)
IMPROVEMENTS:
- dependencies: upgrading to
v0.4.2
ofgithub.com/Azure/go-autorest/autorest/azure/cli
(#9168) - dependencies: upgrading to
v48.1.0
ofgithub.com/Azure/azure-sdk-for-go
(#9213) - dependencies: upgrading to
v0.13.0
ofgithub.com/hashicorp/go-azure-helpers
(#9191) - dependencies: upgrading to
v0.14.0
ofgithub.com/tombuildsstuff/giovanni
(#9189) - storage: upgrading the Data Plane API's to API Version
2019-12-12
(#9192) - Data Source
azurerm_kubernetes_node_pool
- exportingproximity_placement_group_id
(#9195) azurerm_app_service
supportv5.0
for thedotnet_framework_version
(#9251)azurerm_availability_set
- adding validation to thename
field (#9279)azurerm_cosmosdb_account
- support for thekey_vault_key_id
property allowing use of Customer Managed Keys (#8919)azurerm_eventgrid_domain
- adding validation to thename
field (#9281)azurerm_eventgrid_domain_topic
- adding validation to thename
field (#9281)azurerm_eventgrid_domain_topic
- adding validation to thedomain_name
field (#9281)azurerm_eventgrid_event_subscription
- adding validation to thename
field (#9281)azurerm_eventgrid_topic
- adding validation to thename
field (#9281)azurerm_eventgrid_system_topic
- adding validation to thename
field (#9281)azurerm_function_app
- support for thehealth_check_path
property under site_config (#9233)azurerm_linux_virtual_machine
- support for managed boot diagnostics by leaving thestorage_account_uri
property empty (#8917)azurerm_linux_virtual_machine_scale_set
- support for managed boot diagnostics by leaving thestorage_account_uri
property empty (#8917)azurerm_log_analytics_workspace
- support for theinternet_ingestion_enabled
andinternet_query_enabled
properties (#9033)azurerm_logic_app_workflow
added logicapp name validation (#9282)azurerm_kubernetes_cluster
- support forproximity_placement_group_id
within thedefault_node_pool
block (#9195)azurerm_kubernetes_node_pool
- support forproximity_placement_group_id
(#9195)azurerm_policy_remediation
- support for theresource_discovery_mode
property (#9210)azurerm_point_to_site_vpn_gateway
- support for theroute
block (#9158)azurerm_virtual_network
- support for thebgp_community
andvnet_protection_enabled
(#8979)azurerm_vpn_gateway
- support for theinstance_0_bgp_peering_addresses
andinstance_1_bgp_peering_addresses
blocks (#9035)azurerm_windows_virtual_machine
- support for managed boot diagnostics by leaving thestorage_account_uri
property empty (#8917)azurerm_windows_virtual_machine_scale_set
- support for managed boot diagnostics by leaving thestorage_account_uri
property empty (#8917)
BUG FIXES:
azurerm_cosmosdb_sql_database
no longer attempts to get throughput settings when cosmos account is serverless (#9187)azurerm_kubernetes_cluster
- changing the fieldavailability_zones
within thedefault_node_pool
block now requires recreating the resource to match the behaviour of the Azure API (#8814)azurerm_kubernetes_cluster_node_pool
- changing the fieldavailability_zones
now requires recreating the resource to match the behaviour of the Azure API (#8814)azurerm_log_analytics_workspace
- fix theFree
tier from setting thedaily_quota_gb
property (#9228)azurerm_linux_virtual_machine
- the fielddisk_size_gb
within theos_disk
block can now be configured up to4095
(#9202)azurerm_linux_virtual_machine_scale_set
- the fielddisk_size_gb
within theos_disk
block can now be configured up to4095
(#9202)azurerm_linux_virtual_machine_scale_set
- the fieldcomputer_name_prefix
can now end with a dash (#9182)azurerm_windows_virtual_machine
- the fielddisk_size_gb
within theos_disk
block can now be configured up to4095
(#9202)azurerm_windows_virtual_machine_scale_set
- the fielddisk_size_gb
within theos_disk
block can now be configured up to4095
(#9202)
UPGRADE NOTES:
azurerm_kubernetes_cluster
- the fieldenable_pod_security_policy
andnode_taints
(within thedefault_node_pool
block) can no longer be configured - see below for more details (#8982)
FEATURES:
- New Data Source:
azurerm_images
(#8629) - New Resource:
azurerm_firewall_policy_rule_collection_group
(#8603) - New Resource:
azurerm_virtual_hub_ip_configuration
(#8912) - New Resource:
azurerm_virtual_hub_route_table
(#8939)
IMPROVEMENTS:
- dependencies: updating
containerservice
to API version2020-09-01
(#8982) - dependencies: updating
iottimeseriesinsights
to API Version2020-05-15
(#9129) azurerm_data_factory_linked_service_data_lake_storage_gen2
- Supports managed identity auth throughuse_managed_identity
(#8938)azurerm_firewall
- support thedns_servers
property (#8878)azurerm_firewall_network_rule_collection
- support thedestination_fqdns
property in therule
block (#8878)azurerm_virtual_hub_connection
- support for therouting
block (#8950)
BUG FIXES:
- Fixed regression that prevented Synapse client registering in all Azure environments (#9100)
azurerm_cosmosdb_mongo_database
no longer attempts to get throughput settings when cosmos account is serverless (#8673)azurerm_key_vault_access_policy
- check access policy consistency before committing to state (#9125)azurerm_kubernetes_cluster
- the fieldenable_pod_security_policy
can no longer be set, due to this functionality being removed from AKS as of2020-10-15
(#8982)azurerm_kubernetes_cluster
- the fieldnode_taints
can no longer be set on thedefault_node_pool
block, to match the behaviour of AKS (#8982)azurerm_virtual_desktop_application_group
- adding validation to thehost_pool_id
field (#9057)azurerm_virtual_desktop_workspace_application_group_association
- adding validation to theapplication_group_id
field (#9057)azurerm_virtual_desktop_workspace_application_group_association
- adding validation to theworkspace_id
field (#9057)azurerm_virtual_desktop_workspace_application_group_association
- validating the ID during import is a Workspace Application Group Association ID (#9057)azurerm_postgresql_firewall_rule
- add validation forstart_ip_address
andend_ip_address
properties (#8963)
UPGRADE NOTES
azurerm_api_management_api
- fixing a regression introduced in v2.16 where this value forsubscription_required
was defaulted tofalse
instead oftrue
(#7963)
FEATURES:
- New Data Source:
azurerm_cognitive_account
(#8773) - New Resource:
azurerm_log_analytics_data_export_rule
(#8995) - New Resource:
azurerm_log_analytics_linked_storage_account
(#9002) - New Resource:
azurerm_security_center_auto_provisioning
(#8595) - New Resource:
azurerm_synapse_role_assignment
(#8863) - New Resource:
azurerm_vpn_site
(#8896)
IMPROVEMENTS:
- Data Source:
azurerm_policy_definition
- can now look up built-in policy by name (#9078) azurerm_backup_policy_vm
- support for the propertyinstant_restore_retention_days
(#8822)azurerm_container_group
- support for the propertygit_repo
within thevolume
block (#7924)azurerm_iothub
- support for theresource_group
property within theendpoint
block (#8032)azurerm_key_vault
- support for thecontact
block (#8937)azurerm_log_analytics_saved_search
- support fortags
(#9034)azurerm_log_analytics_solution
- support fortags
(#9048)azurerm_logic_app_trigger_recurrence
- support fortime_zone
[#8829]azurerm_policy_definition
- can now look up builtin policy by name (#9078)
BUG FIXES:
azurerm_automation_module
- raising the full error from the Azure API during creation (#8498)azurerm_api_management_api
- fixing a regression introduced in v2.16 where the value forsubscription_required
was defaulted tofalse
instead oftrue
(#7963)azurerm_app_service
- fixing a crash when provisioning an app service inside an App Service Environment which doesn't exist (#8993)azurerm_cdn_endpoint
- disable persisting default value foris_compression_enabled
to state file (#8610)azurerm_databricks_workspace
correctly validate thename
property (#8997)azurerm_dev_test_policy
- now correctly deletes (#9077)azurerm_log_analytics_workspace
- support for thedaily_quota_gb
property (#8861)azurerm_local_network_gateway
- support for thegateway_fqdn
property (#8998)azurerm_key_vault
- prevent unwanted diff due to inconsistent casing for thesku_name
property (#8983)azurerm_kubernetes_cluster
- fix issue wheremin_count
andmax_count
couldn't be equal (#8957)azurerm_kubernetes_cluster
-min_count
can be updated whenenable_auto_scaling
is set to true (#8619)azurerm_private_dns_zone_virtual_network_link
- fixes case issue inname
(#8617)azurerm_private_endpoint
- fix crash when deleting private endpoint (#9068)azurerm_signalr_service
- switching thefeatures
block to a set so order is irrelevant (#8815)azurerm_virtual_desktop_application_group
- correctly validate thename
property (#9030)
UPGRADE NOTES
- This release includes a workaround for a breaking change in Azure’s API related to the Extended Auditing Policy of the SQL and MSSQL resources. The Service Team have confirmed that this Regression will first roll out to all regions before the bug fix is deployed - as such this workaround will be removed in a future release once the fix for the Azure API has been rolled out to all regions.
FEATURES:
- New Resource:
azurerm_service_fabric_mesh_secret
(#8933) - New Resource:
azurerm_service_fabric_mesh_secret_value
(#8933)
IMPROVEMENTS:
- Data Source:
azurerm_shared_image_version
- exposingos_disk_image_size_gb
(#8904) azurerm_app_configuration
- support for theidentity
block (#8875)azurerm_cosmosdb_sql_container
- support for composite indexes (#8792)azurerm_mssql_database
- do not set longterm and shortterm retention policies when using theDW
SKUs (#8899)azurerm_mysql_firewall_rule
- validating thestart_ip_address
andend_ip_address
fields are IP Addresses (#8948)azurerm_redis_firewall_rule
- validating thestart_ip
andend_ip
fields are IP Addresses (#8948)azurerm_search_service
- support for theidentity
block (#8907)azurerm_sql_firewall_rule
- adding validation for thestart_ip_address
andend_ip_address
fields (#8935)
BUG FIXES:
azurerm_application_gateway
- now supportsignore_changes
forssl_certificate
when using pre-existing certificates (#8761)azurerm_mssql_database
- working around a breaking change/regression in the Azure API (#8975)azurerm_mssql_database_extended_auditing_policy
- working around a breaking change/regression in the Azure API (#8975)azurerm_mssql_server
- working around a breaking change/regression in the Azure API (#8975)azurerm_mssql_server_extended_auditing_policy
- working around a breaking change/regression in the Azure API (#8975)azurerm_sql_database
- working around a breaking change/regression in the Azure API (#8975)azurerm_sql_server
- working around a breaking change/regression in the Azure API (#8975)azurerm_policy_set_definition
- Fix updates forparameters
andparameter_values
inpolicy_definition_reference
blocks (#8882)
FEATURES:
- New data source:
azurerm_mysql_server
(#8787) - New resource:
azurerm_security_center_setting
(#8783) - New Resource:
azurerm_service_fabric_mesh_local_network
(#8838) - New resource:
azurerm_eventgrid_system_topic
(#8735)
IMPROVEMENTS:
azurerm_container_registry
- support for thetrust_policy
andretention_policy
blocks (#8698)azurerm_security_center_contact
- override SDK creat function to handle201
response code (#8774)
IMPROVEMENTS:
azurerm_cognitive_account
-kind
now supportsPersonalizer
(#8860)azurerm_search_service
-sku
now supportsstorage_optimized_l1
andstorage_optimized_l2
(#8859)azurerm_storage_share
- setmetadata
toComputed
and setacl
start
andexpiry
toOptional
(#8811)
BUG FIXES:
azurerm_dedicated_hardware_security_module
-stamp_id
now optional to allow use in Locations which usezones
(#8826)azurerm_storage_account
-large_file_share_enabled
marked as computed to prevent existing storage shares from attempting to disable the default (#8807)
UPGRADE NOTES
- This release updates the
azurerm_security_center_subscription_pricing
resource to use the latest version of the Security API which now allows configuring multiple Resource Types - as such a new fieldresource_type
is now available. Configurations default theresource_type
toVirtualMachines
which matches the behaviour of the previous release - but your Terraform Configuration may need updating.
FEATURES:
- New Resource:
azurerm_service_fabric_mesh_application
(#6761) - New Resource:
azurerm_virtual_desktop_application_group
(#8605) - New Resource:
azurerm_virtual_desktop_workspace_application_group_association
(#8605) - New Resource:
azurerm_virtual_desktop_host_pool
(#8605) - New Resource:
azurerm_virtual_desktop_workspace
(#8605)
IMPROVEMENTS:
- dependencies: updating
github.com/Azure/azure-sdk-for-go
tov46.4.0
(#8642) data.azurerm_application_insights
- support for theconnection_string
property (#8699)azurerm_app_service
- support for IPV6 addresses in theip_restriction
property (#8599)azurerm_application_insights
- support for theconnection_string
property (#8699)azurerm_backup_policy_vm
- validate daily backups is >7
(#7898)azurerm_dedicated_host
- add support for theDSv4-Type1
andsku_name
properties (#8718)azurerm_iothub
- Support for thepublic_network_access_enabled
property (#8586)azurerm_key_vault_certificate_issuer
- theorg_id
property is now optional (#8687)azurerm_kubernetes_cluster_node_pool
- themax_node
,min_node
, andnode_count
properties can now be set to0
(#8300)azurerm_mssql_database
- themin_capacity
property can now be set to0
(#8308)azurerm_mssql_database
- support forlong_term_retention_policy
andshort_term_retention_policy
blocks [#8765]azurerm_mssql_server
- support theminimum_tls_version
property (#8361)azurerm_mssql_virtual_machine
- support forstorage_configuration_settings
(#8623)azurerm_security_center_subscription_pricing
- now supports perresource_type
pricing (#8549)azurerm_storage_account
- support for thelarge_file_share_enabled
property (#8789)azurerm_storage_share
- support for large quotas (up to102400
GB) (#8666)
BUG FIXES:
azurerm_function_app
- mark theapp_settings
block as computed (#8682)azurerm_function_app_slot
- mark theapp_settings
block as computed (#8682)azurerm_policy_set_definition
- corrects issue with emptyparameter_values
attribute (#8668)azurerm_policy_definition
-mode
property now enforces correct case (#8795)
UPGRADE NOTES
- This release renames certain fields within the
azurerm_cosmosdb_account
(data source & resource) andazurerm_function_app_host_keys
data source to follow HashiCorp's inclusive language guidelines - where fields have been renamed, existing fields will continue to remain available until the next major version of the Azure Provider (v3.0
)
FEATURES:
- New Data Source:
azurerm_cosmosdb_sql_storedprocedure
(#6189) - New Data Source:
azurerm_ip_groups
(#8556) - New Resource:
azurerm_ip_groups
(#8556) - New Resource:
azurerm_resource_group_template_deployment
(#8672) - New Resource:
azurerm_subscription_template_deployment
(#8672)
IMPROVEMENTS:
- dependencies: updating
iothub
to2020-03-01
(#8688) - dependencies: updating
storagecache
to2020-03-01
(#8078) - dependencies: updating
resources
to API Version2020-06-01
(#8672) azurerm_analysis_services_server
- support for theS8v2
andS9v2
SKU's (#8707)azurerm_cognitive_account
- support for theS
sku
(#8639)azurerm_container_group
- support for thedns_config
block (#7912)azurerm_cosmosdb_account
- support thezone_reduntant
property (#8295)azurerm_cosmosdb_mongo_collection
- will now respect the order of thekeys
property in theindex
block (#8602)azurerm_hpc_cache
- support themtu
androot_squash_enabled
properties (#8078)azurerm_key_vault
- add support forenable_rbac_authorization
(#8670)azurerm_lighthouse_assignment
- limit thescope
property to subsriptions (#8601)azurerm_logic_app_workflow
- support for theintegration_service_environment_id
property (#8504)azurerm_servicebus_topic
- validate themax_size_in_megabytes
property (#8648)azurerm_servicebus_queue
- validate themax_size_in_megabytes
property (#8648)azurerm_servicebus_subscription_rule
- support thecorrelation_filter.properties
property (#8646)azurerm_storage_management_policy
- support theappendBlob
value forblob_types
(#8659)
BUG FIXES:
azurerm_monitor_metric_alert
- property wait when creating/updating multiple monitor metric alerts (#8667)azurerm_linux_virtual_machine_scale_set
- fix empty JSON error insettings
andprotected_settings
when these values are not used (#8627)
UPGRADE NOTES:
azurerm_api_management
- the valueNone
has been removed from theidentity
block to match other resources, to specify an API Management Service with no Managed Identity remove theidentity
block (#8411)azurerm_container_registry
- thestorage_account_id
property now forces a new resource as required by the updated API version (#8477)azurerm_virtual_hub_connection
- deprecating the fieldvitual_network_to_hub_gateways_traffic_allowed
since due to a breaking change in the API behaviour this is no longer used (#7601)azurerm_virtual_hub_connection
- deprecating the fieldhub_to_vitual_network_traffic_allowed
since due to a breaking change in the API behaviour this is no longer used (#7601)azurerm_virtual_wan
- deprecating the fieldallow_vnet_to_vnet_traffic
since due to a breaking change in the API behaviour this is no longer used (#7601)
FEATURES:
- New Data Source:
azurerm_data_share_dataset_kusto_cluster
(#8464) - New Data Source:
azurerm_databricks_workspace
(#8502) - New Data Source:
azurerm_firewall_policy
(#7390) - New Data Source:
azurerm_storage_sync_group
(#8462) - New Data Source:
azurerm_mssql_server
(#7917) - New Resource:
azurerm_data_share_dataset_kusto_cluster
(#8464) - New Resource:
azurerm_firewall_policy
(#7390) - New Resource:
azurerm_mysql_server_key
(#8125) - New Resource:
azurerm_postgresql_server_key
(#8126)
IMPROVEMENTS:
- dependencies: updating
github.com/Azure/azure-sdk-for-go
tov46.3.0
(#8592) - dependencies: updating
containerregistry
to2019-05-01
(#8477) - Data Source:
azurerm_api_management
- export theprivate_ip_addresses
attribute for primary and additional locations (#8290) azurerm_api_management
- support thevirtual_network_configuration
block for additional locations (#8290)azurerm_api_management
- export theprivate_ip_addresses
attribute for additional locations (#8290)azurerm_cosmosdb_account
- support theServerless
value for thecapabilities
property (#8533)azurerm_cosmosdb_sql_container
- support for theindexing_policy
property (#8461)azurerm_mssql_server
- support for therecover_database_id
andrestore_dropped_database_id
properties (#7917)azurerm_policy_set_definition
- support for typed parameter values other then string inthe policy_definition_reference
block deprecatingparameters
in favour ofparameter_vcaluess
(#8270)azurerm_search_service
- Add support forallowed_ips
(#8557)azurerm_service_fabric_cluster
- Remove two block limit forclient_certificate_thumbprint
(#8521)azurerm_signalr_service
- support for delta updates (#8541)azurerm_spring_cloud_service
- support for configuring thenetwork
block (#8568)azurerm_virtual_hub_connection
- deprecating the fieldvitual_network_to_hub_gateways_traffic_allowed
since due to a breaking change in the API behaviour this is no longer used (#7601)azurerm_virtual_hub_connection
- deprecating the fieldhub_to_vitual_network_traffic_allowed
since due to a breaking change in the API behaviour this is no longer used (#7601)azurerm_virtual_hub_connection
- switching to use the now separate API for provisioning these resources (#7601)azurerm_virtual_wan
- deprecating the fieldallow_vnet_to_vnet_traffic
since due to a breaking change in the API behaviour this is no longer used (#7601)azurerm_windows_virtual_machine
- support for updating thelicense_type
field (#8542)
BUG FIXES:
azurerm_api_management
- the valueNone
for the fieldtype
within theidentity
block has been removed - to remove a managed identity remove theidentity
block (#8411)azurerm_app_service
- don't try to manage source_control when scm_type isVSTSRM
(#8531)azurerm_function_app
- don't try to manage source_control when scm_type isVSTSRM
(#8531)azurerm_kubernetes_cluster
- picking the first system node pool if the originaldefault_node_pool
has been removed (#8503)
UPGRADE NOTES
- The
id
field for theazurerm_role_definition
changed in release 2.27.0 to work around a bug in the Azure API when using management groups, where the Scope isn't returned - the existingid
field is available asrole_definition_resource_id
from this version of the Azure Provider.
FEATURES:
- New Data Source:
azurerm_data_share_dataset_data_lake_gen2
[#7907] - New Data Source:
azurerm_servicebus_queue_authorization_rule
(#8438) - New Data Source:
azurerm_storage_sync
[#7843] - New Resource:
azurerm_data_share_dataset_data_lake_gen2
(#7907) - New Resource:
azurerm_lighthouse_definition
(#6560) - New Resource:
azurerm_lighthouse_assignment
(#6560) - New Resource:
azurerm_mssql_server_extended_auditing_policy
(#8447) - New Resource:
azurerm_storage_sync
(#7843) - New Resource:
azurerm_synapse_sql_pool
(#8095)
IMPROVEMENTS:
- Data Source:
azurerm_app_service_environment
- Expose vip information of an app service environment (#8487) - Data Source:
azurerm_function_app
- export theidentity
block (#8389) azurerm_app_service_hybrid_connection
- support relays in different namespaces (#8370)azurerm_cosmosdb_cassandra_keyspace
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_gremlin_database
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_gremlin_graph
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_mongo_collection
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_mongo_database
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_sql_container
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_sql_database
- support theautoscale_settings
block (#7773)azurerm_cosmosdb_table
- support theautoscale_settings
block (#7773)azurerm_firewall
- support themanagement_ip_configuration
block (#8235)azurerm_storage_account_customer_managed_key
- support for key rotation (#7836)
BUG FIXES:
- Data Source:
azurerm_function_app_host_keys
- Fix a crash when null ID sometimes returned by API (#8430) azurerm_cognitive_account
- correctly wait on update logic (#8386)azurerm_eventhub_consumer_group
- allow thename
property to be set to$Default
(#8388)azurerm_kubernetes_cluster
- ensure the OMS Agent Log Analytics Workspace case is preserved after disabling/enabling (#8374)azurerm_management_group_id
- loosen case restritions during parsing of management group ID (#8024)azurerm_packet_capture
- fix to ID path to match change in API (#8167)azurerm_role_definition
- exposerole_definition_resource_id
(#8492)
UPGRADE NOTES
- The
id
field for theazurerm_role_definition
has changed in this release to work around a bug in the Azure API when using management groups, where the Scope isn't returned - the existingid
field is available asrole_definition_resource_id
on the new resource from version 2.28.0 of the Azure Provider.
FEATURES:
- New Data Source:
azurerm_attestation_provider
(#7885) - New Data Source:
azurerm_function_app_host_keys
(#7902) - New Data Source:
azurerm_lb_rule
(#8365) - New Resource:
azurerm_mssql_database_extended_auditing_policy
(#7793) - New Resource:
azurerm_attestation_provider
(#7885) - New Resource:
azurerm_api_management_api_diagnostic
(#7873) - New Resource:
azurerm_data_factory_linked_service_azure_sql_database
(#8349)
IMPROVEMENTS:
- Data Source:
azurerm_virtual_network_gateway
- exposingaad_audience
,aad_issuer
andaad_tenant
within thevpn_client_configuration
block (#8294) azurerm_cosmosdb_account
- supporting the valueAllowSelfServeUpgradeToMongo36
for thename
field within thecapabilities
block (#8335)azurerm_linux_virtual_machine
- Add support forencryption_at_host_enabled
(#8322)azurerm_linux_virtual_machine_scale_set
- Add support forencryption_at_host_enabled
(#8322)azurerm_servicebus_subscription
- add support fordead_lettering_on_filter_evaluation_error
(#8412)azurerm_spring_cloud_app
- support for theidentity
block (#8336)azurerm_storage_share_directory
- Update name validation (#8366)azurerm_virtual_network_gateway
- support foraad_audience
,aad_issuer
andaad_tenant
within thevpn_client_configuration
block (#8294)azurerm_windows_virtual_machine
- Add support forencryption_at_host_enabled
(#8322)azurerm_windows_virtual_machine_scale_set
- Add support forencryption_at_host_enabled
(#8322)
BUG FIXES:
azurerm_api_management_x.y.api_name
- validation fix (#8409)azurerm_application_insights_webtests
- Fix an issue where thekind
property is sometimes set tonull
(#8372)azurerm_cognitive_account
- Fixes a crash when provisioning a QnAMaker and supports AnomalyDetector (#8357)azurerm_linux_virtual_machine
- Add WaitForState on VM delete (#8383)azurerm_network_security_group
- fixed issue where updates would fail for resource (#8384)azurerm_role_definition
- fixed delete operation when role is scoped to Management Group (#6107)azurerm_windows_virtual_machine
- Add WaitForState on VM delete (#8383)
UPGRADE NOTES:
- Opt-In Beta: This release introduces an opt-in beta for in-line Virtual Machine Scale Set Extensions. This functionality enables the resource to be used with Azure Service Fabric and other extensions that may require creation time inclusion on Scale Set members. Please see the documentation for
azurerm_linux_virtual_machine_scale_set
andazurerm_windows_virtual_machine_scale_set
for information.
FEATURES:
- New Resource:
azurerm_log_analytics_saved_search
(#8253)
IMPROVEMENTS:
- dependencies: updating
loganalytics
to2020-03-01-preview
(#8234) azurerm_api_management_subscription
- Supportallow_tracing property
(#7969)azurerm_application_gateway
- Add support forprobe.properties.port
(#8278)azurerm_linux_virtual_machine_scale_set
- Beta support forextension
blocks (#8222)azurerm_log_analytics_workspace
- thesku
value is now optional and defaults toPerGB2018
(#8272)azurerm_windows_virtual_machine_scale_set
- Beta support forextension
blocks (#8222)
BUG FIXES:
azurerm_cdn_endpoint
- fixing the casing of the Resource ID to be consistent (#8237)azurerm_cdn_profile
- fixing the casing of the Resource ID to be consistent (#8237)azurerm_key_vault_key
- updating the latest version of the key when updating metadata (#8304)azurerm_key_vault_secret
- updating the latest version of the secret when updating metadata (#8304)azurerm_linux_virtual_machine
- allow updatingallow_extension_operations
regardless of the value ofprovision_vm_agent
(for when the VM Agent has been installed manually) (#8001)azurerm_linux_virtual_machine_scale_set
- working around a bug in the Azure API by always sending the existing Storage Image Reference during updates (#7983)azurerm_network_interface_application_gateway_association
- handling the Network Interface being deleted during a refresh (#8267)azurerm_network_interface_application_security_group_association
- handling the Network Interface being deleted during a refresh (#8267)azurerm_network_interface_backend_address_pool_association
- handling the Network Interface being deleted during a refresh (#8267)azurerm_network_interface_nat_rule_association_resource
- handling the Network Interface being deleted during a refresh (#8267)azurerm_network_interface_network_security_group_association
- handling the Network Interface being deleted during a refresh (#8267)azurerm_windows_virtual_machine
- allow updatingallow_extension_operations
regardless of the value ofprovision_vm_agent
(for when the VM Agent has been installed manually) (#8001)azurerm_windows_virtual_machine_scale_set
- working around a bug in the Azure API by always sending the existing Storage Image Reference during updates (#7983)
UPGRADE NOTES:
azurerm_container_group
- Thesecure_environment_variables
field within thecontainer
now maps keys with empty values, which differs from previous versions of this provider which ignored empty values (#8151)
FEATURES:
- New Resource
azurerm_spring_cloud_certificate
(#8067)
IMPROVEMENTS:
- dependencies: updating
keyvault
to2019-09-01
(#7822) azurerm_app_service_slot_virtual_network_swift_connection
- adding validation that theapp_service_id
is an App Service / Function App ID (#8111)azurerm_app_service_slot_virtual_network_swift_connection
- adding validation that thesubnet
is a Subnet ID (#8111)azurerm_batch_pool
- Removenetwork_configuration
from update payload (#8189)azurerm_frontdoor_firewall_policy
-match_variable
within thematch_condition
block can now be set toSocketAddr
(#8244)azurerm_linux_virtual_machine_scale_set
-upgrade_mode="Automatic"
no longer requires health probe (#6667)azurerm_key_vault
- support forsoft_delete_retention_days
(#7822)azurerm_shared_image
- Support forpurchase_plan
(#8124)azurerm_shared_image_gallery
- validating at import time that the ID is for a Shared Image Gallery (#8240)azurerm_windows_virtual_machine_scale_set
-upgrade_mode="Automatic"
no longer requires health probe (#6667)
BUG FIXES:
- Data Source:
azurerm_app_service
- ensuring thesite_config
block is correctly set into the state (#8212) - Enhanced Validation: supporting "centralindia", "southindia" and "westindia" as valid regions in Azure Public (working around invalid data from the Azure API) (#8217)
azurerm_application_gateway
- allow settingip_addresses
within thebackend_address_pool
block to an empty list (#8210)azurerm_application_gateway
- adding validation to thezone
field (#8233)azurerm_container_group
- thesecure_environment_variables
field within thecontainer
now maps keys with empty values (#8151)azurerm_dedicated_host
- waiting for the resource to be gone 20 times rather than 10 to work around an API issue (#8221)azurerm_dedicated_host_group
- adding validation to thezone
field (#8233)azurerm_firewall
- adding validation to thezone
field (#8233)azurerm_hardware_security_module
- adding validation to thezone
field (#8233)azurerm_lb
- adding validation to thezone
field (#8233)azurerm_linux_virtual_machine
- support for updatingultra_ssd_enabled
within theadditional_capabilities
block without recreating the virtual machine (#8015)azurerm_linux_virtual_machine_scale_set
- adding validation to thezone
field (#8233)azurerm_managed_disk
- adding validation to thezone
field (#8233)azurerm_nat_gateway
- adding validation to thezone
field (#8233)azurerm_orchestrated_virtual_machine_scale_set
- adding validation to thezone
field (#8233)azurerm_public_ip_prefix
- adding validation to thezone
field (#8233)azurerm_public_ip
- adding validation to thezone
field (#8233)azurerm_redis_cache
- adding validation to thezone
field (#8233)azurerm_virtual_machine
- adding validation to thezone
field (#8233)azurerm_virtual_machine_scale_set
- adding validation to thezone
field (#8233)azurerm_windows_virtual_machine
- support for updatingultra_ssd_enabled
within theadditional_capabilities
block without recreating the virtual machine (#8015)azurerm_windows_virtual_machine_scale_set
- adding validation to thezone
field (#8233)
FEATURES:
- New Resource:
azurerm_synapse_spark_pool
(#7886)
IMPROVEMENTS:
- dependencies: update
containerinstance
to API version2019-12-01
(#8110) azurerm_api_management_api
- now supportsoauth2_authorization
andopenid_authentication
(#7617)azurerm_policy_definition
-mode
can now be updated without recreating the resource (#7976)
BUG FIXES:
azurerm_frontdoor
- ensuring all fields are set into the state (#8146)azurerm_frontdoor
- rewriting case-inconsistent Resource ID's to ensure they're reliable (#8146)azurerm_frontdoor_firewall_policy
- ensuring all fields are set into the state (#8146)azurerm_frontdoor_firewall_policy
- rewriting case-inconsistent Resource ID's to ensure they're reliable (#8146)azurerm_frontdoor_custom_https_configuration
- ensuring all fields are set into the state (#8146)azurerm_frontdoor_custom_https_configuration
- ensuring theresource_group_name
field is set into the state (#8173)azurerm_frontdoor_custom_https_configuration
- rewriting case-inconsistent Resource ID's to ensure they're reliable (#8146)azurerm_frontdoor_custom_https_configuration
- updating the ID to use the frontendEndpoint's Resource ID rather than a custom Resource ID (#8146)azurerm_lb
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_backend_address_pool
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_backend_address_pool
- ensuring all fields are always set into the state (#8172)azurerm_lb_backend_address_pool
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_nat_pool
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_nat_pool
- ensuring all fields are always set into the state (#8172)azurerm_lb_nat_pool
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_nat_rule
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_nat_rule
- ensuring all fields are always set into the state (#8172)azurerm_lb_nat_rule
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_outbound_rule
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_outbound_rule
- ensuring all fields are always set into the state (#8172)azurerm_lb_outbound_rule
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_probe
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_probe
- ensuring all fields are always set into the state (#8172)azurerm_lb_probe
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_lb_rule
- adding more specific validation for the Load Balancer ID field (#8172)azurerm_lb_rule
- ensuring all fields are always set into the state (#8172)azurerm_lb_rule
- switching to use API version2020-03-01
to workaround a bug in API version2020-05-01
(#8006)azurerm_storage_account
- only sendingallow_blob_public_access
andmin_tls_version
in Azure Public since these are currently not supported in other regions (#8148)
FEATURES:
- New Resource:
azurerm_integration_service_environment
(#7763) - New Resource:
azurerm_redis_linked_server
(#8026) - New Resource:
azurerm_synapse_firewall_rule
(#7904)
IMPROVEMENTS:
- dependencies: updating
containerservice
to2020-04-01
(#7894) - dependencies: updating
mysql
to2020-01-01
(#8062) - dependencies: updating
postgresql
to2020-01-01
(#8045) - Data Source:
azurerm_app_service
now exportssource_control
configuration (#7945) - Data Source:
azurerm_function_app
now exportssource_control
configuration (#7945) - Data Source:
azurerm_function_app
now exportssite_config
configuration (#7945) azurerm_app_service
now supportssource_control
configuration (#7945)azurerm_function_app
now supportssource_control
configuration (#7945)azurerm_function_app
now supports fullip_restriction
configuration (#7945)azurerm_function_app
now supports fullscm_ip_restriction
configuration (#7945)azurerm_eventhub_namespace
- support for theidentity
block (#8065)azurerm_postgresql_server
- support for theidentity
block (#8044)azurerm_site_recovery_replicated_vm
- support settingtarget_network_id
andnetwork_interface
on failover (#5688)azurerm_storage_account
- supportstatic_website
forBlockBlobStorage
account type (#7890)azurerm_storage_account
- filterallow_blob_public_access
andmin_tls_version
from Azure US Government (#8092)
BUG FIXES:
- All resources using a
location
field - allowing the valueglobal
when using enhanced validation (#8042) - Data Source:
azurerm_api_management_user
-user_id
now accepts single characters (#7975) azurerm_application_gateway
- enforce case for therule_type
property (#8061)azurerm_iothub_consumer_group
- lock during creation and deletion to workaround an API issue (#8041)azurerm_iothub
- theendpoint
androute
lists can now be cleared by setting them to[]
(#8028)azurerm_linux_virtual_machine
- handling machines which are already stopped/deallocated (#8000)azurerm_mariadb_virtual_network_rule
will now work across subscriptions (#8100)azurerm_monitor_metric_alert_resource
- continue usingSingleResourceMultiMetricCriteria
for existing alerts (#7995)azurerm_mysql_server
- prevent a non empty plan when usingthreat_detection_policy
(#7981)azurerm_orchestrated_virtual_machine_scale_set
- allowsingle_placement_group
to betrue
(#7821)azurerm_mysql_server
- support for theidentity
block (#8059)azurerm_storage_account
- set default formin_tls_version
toTLS_10
(#8152)azurerm_traffic_manager_profile
- updating no longer clears all endpoints (#7846)azurerm_windows_virtual_machine
- handling machines which are already stopped/deallocated [#8000]'azurerm_data_factory_dataset_delimited_text
- fix issue with propertyazure_blob_storage_account
(#7953)
DEPENDENCIES:
- updating
github.com/Azure/azure-sdk-for-go
tov44.2.0
(#7933)
IMPROVEMENTS:
azurerm_cosmosdb_account
- supportDisableRateLimitingResponses
with thecapabilities
property (#8016)azurerm_storage_account
- support for themin_tls_version
property (#7879)azurerm_storage_account_sas
- support for thesigned_version attribute
property (#8020)azurerm_servicebus_queue
- support for theenable_batched_operations
,status
,forward_to
, andforward_dead_lettered_messages_to
(#7990)
BUG FIXES:
- Data Source:
azurerm_key_vault_certificate
- fixing a crash when using acmebot certificates (#8029) azurerm_iothub_shared_access_policy
- preventprimary_connection_string
&secondary_connection_string
from regenerating during every apply (#8017)
DEPENDENCIES:
FEATURES:
- New Data Source:
azurerm_data_share_dataset_data_lake_gen1
(#7840) - New Resource:
azurerm_dedicated_hardware_security_module
(#7727)
IMPROVEMENTS:
azurerm_api_management_identity_provider_aad
- Support forsignin_tenant
(#7901)azurerm_app_service_plan
- update the relation betweenkind
andreserved
(#7943)azurerm_automation_runbook
- recreateazurerm_automation_job_schedule
after an update (#7555)azurerm_app_service_slot
- support for theapplication_logs.file_system
(#7311)azurerm_firewall
- no longer requires azone
(#7817)azurerm_function_app_slot
- support for thesite_config.auto_swap_slot_name
property (#7859)azurerm_kubernetes_cluster
- support for in-place upgrade fromFree
toPaid
forsku_tier
(#7927)azurerm_monitor_scheduled_query_rules_alert
-action.0.custom_webhook_payload
is now sent as empty to allow for Azure's default to take effect(#7838)azurerm_search_service
- support for thepublic_network_access_enabled
property (#7867)azurerm_servicebus_subscription
- support for thestatus
property (#7852)
BUG FIXES:
azurerm_automation_runbook
- allowpublish_content_link
resource to not be set (#7824)azurerm_api_management_named_value
- thevalue
has been marked as sensitive to hide secret values (#7819)azurerm_cognitive_account
- allowqname_runtime_endpoint
to not be set (#7916)azurerm_iothub_dps
- the only valid value for thesku
property for the API is nowS1
(#7847)azurerm_eventgrid_event_subscription
- deprecate thetopic_name
as it is now readonly in the API (#7871)azurerm_kubernetes_cluster
- updates will no longer fail when using managed AAD integration (#7874)
UPGRADE NOTES
- Enhanced Validation for Locations - the Azure Provider now validates that the value for the
location
argument is a supported Azure Region within the Azure Environment being used (from the Azure Metadata Service) - which allows us to catch configuration errors for this field atterraform plan
time, rather than during aterraform apply
. This functionality is now enabled by default, and can be opted-out of by setting the Environment VariableARM_PROVIDER_ENHANCED_VALIDATION
tofalse
azurerm_storage_account
- will now defaultallow_blob_public_access
to false to align with the portal and be secure by default (#7784)
DEPENDENCIES:
FEATURES:
- New Data Source:
azurerm_synapse_workspace
(#7517) - New Resource:
azurerm_data_share_dataset_data_lake_gen1
- adddataset_data_lake_gen1
suppport forazurerm_data_share
(#7511) - New Resource:
azurerm_frontdoor_custom_https_configuration
- move the front doorcustom_https_configuration
to its own resource to allow for parallel creation/update of custom https certificates. (#7498) - New Resource:
azurerm_kusto_cluster_customer_managed_key
(#7520) - New Resource:
azurerm_synapse_workspace
(#7517)
IMPROVEMENTS:
azurerm_cosmos_db_account
- add support for theenable_free_tier
property (#7814)
BUG FIXES:
- Data Source:
azurerm_private_dns_zone
- fix a crash when the zone does not exist (#7783) azurerm_application_gateway
- fix crash withgateway_ip_configuration
(#7789)azurerm_cosmos_account
- thegeo_location.prefix
property has been deprecated as service no longer accepts it as an input since Apr 25, 2019 (#7597)azurerm_monitor_autoscale_setting
- fix crash innotification
(#7835)azurerm_storage_account
- will now defaultallow_blob_public_access
to false to align with the portal and be secure by default (#7784)
UPGRADE NOTES:
- HDInsight 3.6 will be retired (in Azure Public) on 2020-12-30 - HDInsight 4.0 does not support ML Services, RServer or Storm Clusters - as such the
azurerm_hdinsight_ml_services_cluster
,azurerm_hdinsight_rserver_cluster
andazurerm_hdinsight_storm_cluster
resources are deprecated and will be removed in the next major version of the Azure Provider. (#7706) - provider: no longer auto register the Microsoft.StorageCache RP (#7768)
FEATURES:
IMPROVEMENTS:
- dependencies: updating to v44.0.0 of
github.com/Azure/azure-sdk-for-go
(#7616) - dependencies: updating the
machinelearning
API to version2020-04-01
(#7703) - Data Source:
azurerm_storage_account
- exposingallow_blob_public_access
(#7739) - Data Source:
azurerm_dns_zone
- now provides feedback if aresource_group_name
is needed to resolve ambiguous zone (#7680) azurerm_automation_schedule
- Updated validation for timezone strings (#7754)azurerm_express_route_circuit_peering
- support for theroute_filter_id
property (#6341)azurerm_kubernetes_cluster
- no longer sending thekubernetes_dashboard
addon in Azure China since this is not supported in this region (#7714)azurerm_local_network_gateway
-address_space
order can now be changed (#7745)azurerm_machine_learning_workspace
- adding the fieldhigh_business_impact
(#7703)azurerm_monitor_metric_alert
- support for multiple scopes and associated criteria (#7159)azurerm_mssql_database
elastic_pool_id
remove forcenew (#7628)azurerm_policy_assignment
- support formetadata
property (#7725)azurerm_policy_set_definition
- support for thepolicy_definition_reference_id
property (#7018)azurerm_storage_account
- support for configuringallow_blob_public_access
(#7739)azurerm_storage_container
- container creation will retry if a container of the same name has not completed its delete operation (#7179)azurerm_storage_share
- share creation will retry if a share of the same name has not completed its previous delete operation (#7179)azurerm_virtual_network_gateway_connection
- support for thetraffic_selector_policy
block (#6586)azurerm_orchestrated_virtual_machine_scale_set
- support for theproximity_placement_group_id
property (#7510)
BUG FIXES:
- provider: deprecating
metadata_url
tometadata_host
since this is a hostname (#7740) azurerm_*_virtual_machine
-allow_extensions_operations
can now be updated (#7749)azurerm_eventhub_namespace
- changing tozone_redundant
now force a new resource (#7612)azurerm_express_route_circuit
- fix eventual consistency issue in create (#7753)azurerm_express_route_circuit
- fix potential crash (#7776)azurerm_managed_disk
- allow up to65536
GB for thedisk_size_gb
property (#7689)azurerm_machine_learning_workspace
- waiting until the Machine Learning Workspace has been fully deleted (#7635)azurerm_mysql_server
-ssl_minimal_tls_version_enforced
now correctly set in updates (#7307)azurerm_notification_hub
- validating that the ID is in the correct format when importing the resource (#7690)azurerm_redis_cache
- fixing a bug when provisioning with authentication disabled (#7734)azurerm_virtual_hub
- the fieldaddress_prefix
is nowForceNew
to match the behaviour of the Azure API (#7713)azurerm_virtual_hub_connection
- using the delete timeout if specified (#7731)
FEATURES:
metadata_url
can be set at the provider level to use an environment provided by a specific url (#7664)- New Data Source:
azurerm_key_vault_certificate_issuer
(#7074) - New Data Source:
azurerm_web_application_firewall_policy
(#7469) - New Resource:
azurerm_automation_connection
(#6847) - New Resource:
azurerm_automation_connection_certificate
(#6847) - New Resource:
azurerm_automation_connection_classic_certificate
(#6847) - New Resource:
azurerm_automation_connection_service_pricipal
(#6847) - New Resource:
azurerm_app_service_slot_virtual_network_swift_connection
(#5916) - New Resource:
azurerm_data_factory_dataset_azure_blob
(#6366) - New Resource:
azurerm_data_factory_dataset_cosmosdb_sqlapi
(#6366) - New Resource:
azurerm_data_factory_dataset_delimited_text
(#6366) - New Resource:
azurerm_data_factory_dataset_http
(#6366) - New Resource:
azurerm_data_factory_dataset_json
(#6366) - New Resource:
azurerm_data_factory_linked_service_azure_blob_storage
(#6366) - New Resource:
azurerm_data_factory_linked_service_azure_file_storage
(#6366) - New Resource:
azurerm_data_factory_linked_service_azure_file_storage
(#6366) - New Resource:
azurerm_data_factory_linked_service_cosmosdb
(#6366) - New Resource:
azurerm_data_factory_linked_service_sftp
(#6366) - New Resource:
azurerm_data_factory_linked_service_sftp
(#6366) - New Resource:
azurerm_key_vault_certificate_issuer
(#7074) - New Resource:
azurerm_kusto_attached_database_configuration
(#7377) - New Resource:
azurerm_kusto_database_principal_assignment
(#7484) - New Resource:
azurerm_mysql_active_directory_administrator
(#7621)
IMPROVEMENTS:
- dependencies: updating
github.com/tombuildsstuff/giovanni
tov0.11.0
(#7608) - dependencies: updating
network
to2020-05-01
(#7585) - Data Source:
azurerm_eventhub_namespace
- exposing thededicated_cluster_id
field (#7548) azurerm_cosmosdb_account
- support for theignore_missing_vnet_service_endpoint
property (#7348)azurerm_application_gateway
- support for thefirewall_policy_id
attribute within thehttp_listener
block (#7580)azurerm_eventhub_namespace
- support for configuring thededicated_cluster_id
field (#7548)azurerm_eventhub_namespace
- support for settingpartition_count
to1024
when using a Dedicated Cluster (#7548)azurerm_eventhub_namespace
- support for settingretention_count
to90
when using a Dedicated Cluster (#7548)azurerm_hdinsight_hadoop_cluster
- now supports Azure Monitor (#7045)azurerm_hdinsight_hbase_cluster
- now supports external metastores (#6969)azurerm_hdinsight_hbase_cluster
- now supports Azure Monitor (#7045)azurerm_hdinsight_interactive_query_cluster
- now supports external metastores (#6969)azurerm_hdinsight_interactive_query_cluster
- now supports Azure Monitor (#7045)azurerm_hdinsight_kafka_cluster
- now supports external metastores (#6969)azurerm_hdinsight_kafka_cluster
- now supports external Azure Monitor (#7045)azurerm_hdinsight_spark_cluster
- now supports external metastores (#6969)azurerm_hdinsight_spark_cluster
- now supports external Azure Monitor (#7045)azurerm_hdinsight_storm_cluster
- now supports external metastores (#6969)azurerm_hdinsight_storm_cluster
- now supports external Azure Monitor (#7045)azurerm_policy_set_definition
- themanagement_group_id
property has been deprecated in favour ofmanagement_group_name
to align with the behaviour inazurerm_policy_definition
(#6943)azurerm_kusto_cluster
- support for thelanguage_extensions
property (#7421)azurerm_kusto_cluster
- Support for theoptimized_auto_scale
property (#7371)azurerm_mysql_server
- support for thethreat_detection_policy
property (#7156)azurerm_mssql_database
- thesku_name
property now only forces a new resource for theHS
(HyperScale) family (#7559)azurerm_web_application_firewall_policy
- allow settingversion
to0.1
(for whentype
is set toMicrosoft_BotManagerRuleSet
) (#7579)azurerm_web_application_firewall_policy
- support thetransforms
property in thecustom_rules.match_conditions
block (#7545)azurerm_web_application_firewall_policy
- support therequest_body_check
,file_upload_limit_in_mb
, andmax_request_body_size_in_kb
properties in thepolicy_settings
block (#7363)
BUG FIXES:
azurerm_api_management_api_operation_policy
- correctly parse XLM (#7345)azurerm_application_insights_api_key
- now correctly checks if the resource exists upon creation (#7650)azurerm_api_management_identity_provider_aad
- fix perpetual diff on theclient_secret
property (#7529)azurerm_eventhub_namespace_authorization_rule
- correctly update old resource IDs (#7622)azurerm_policy_remediation
- removing the validation for thepolicy_definition_reference_id
field since this isn't a Resource ID (#7600)azurerm_storage_data_lake_gen2_filesystem
- prevent a crash during plan if storage account was deleted (#7378)
UPGRADE NOTES:
azurerm_hdinsight_hadoop_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_hbase_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_interactive_query_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_kafka_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_ml_services_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_rserver_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_spark_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)azurerm_hdinsight_storm_cluster
- theenabled
property within thegateway
block now defaults totrue
and cannot be disabled, due to a behavioural change in the Azure API (#7111)
FEATURES:
- New Resource:
azurerm_kusto_cluster_principal_assignment
(#7533)
IMPROVEMENTS:
- dependencies: updating to v43.2.0 of
github.com/Azure/azure-sdk-for-go
(#7546) - Data Source:
azurerm_eventhub_namespace
- exposing thezone_redundant
property (#7534) - Data Source:
azurerm_postgresql_server
- exposingsku_name
(#7523) azurerm_app_service_environment
- the propertyuser_whitelisted_ip_ranges
has been deprecated and renamed toallowed_user_ip_cidrs
to clarify the function and expected format (#7499)azurerm_eventhub_namespace
- support for thezone_redundant
property (#7534)azurerm_key_vault_certificate
- exposing thecertificate_attribute
block (#7387)azurerm_kusto_cluster
- Supporttrusted_external_tenants
(#7374)azurerm_sentinel_alert_rule_ms_security_incident
- the propertytext_whitelist
has been deprecated and renamed todisplay_name_filter
to better match the api (#7499)azurerm_shared_image
- support for specialized images via thespecialized
property (#7277)azurerm_shared_image_version
- support for specialized images via thespecialized
property (#7277)azurerm_spring_cloud_service
- support forsku_name
(#7531)azurerm_spring_cloud_service
- support for thetrace
block (#7531)
BUG FIXES:
azurerm_api_management_named_value
- polling until the property is fully created (#7547)azurerm_api_management_property
- polling until the property is fully created (#7547)azurerm_linux_virtual_machine_scale_set
- using the provider featureroll_instances_when_required
whenupgrade_mode
is set toManual
(#7513)azurerm_marketplace_agreement
- fix issue around import (#7515)azurerm_windows_virtual_machine_scale_set
- using the provider featureroll_instances_when_required
whenupgrade_mode
is set toManual
(#7513)
DEPENDENCIES:
- updating
github.com/Azure/go-autorest/azure/cli
tov0.3.1
(#7433)
FEATURES:
- New Resource:
azurerm_postgresql_active_directory_administrator
(#7411)
IMPROVEMENTS:
- authentication: Azure CLI - support for access tokens in custom directories (#7433)
azurerm_api_management_api
- support for thesubscription_required
property (#4885)azurerm_app_service_environment
- support a value ofWeb, Publishing
for theinternal_load_balancing_mode
property (#7346)azurerm_kusto_cluster
- support for theidentity
block (#7367)azurerm_kusto_cluster
- support forvirtual_network_configuration
block (#7369)azurerm_kusto_cluster
- supoport for thezone
property (#7373)azurerm_firewall
- support for configuringthreat_intel_mode
(#7437)azurerm_management_group
- waiting until the Management Group has been fully replicated after creating (#7473)azurerm_monitor_activity_log_alert
- support for the fieldsrecommendation_category
,recommendation_impact
andrecommendation_type
in thecriteria
block (#7458)azurerm_mssql_database
- support up to5
for themin_capacity
property (#7457)azurerm_mssql_database
- supportGP_S_Gen5
SKUs up toGP_S_Gen5_40
(#7453)
BUG FIXES:
azurerm_api_management_api
- allowing dots as a prefix of thename
field (#7478)azurerm_function_app
- state fixes forapp_settings
(#7440)azurerm_hdinsight_hadoop_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_hbase_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_interactive_query_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_kafka_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_ml_services_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_rserver_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_spark_cluster
- fixes for node and instance count validation (#7430)azurerm_hdinsight_storm_cluster
- fixes for node and instance count validation (#7430)azurerm_monitor_autoscale_settings
- support for settingtime_aggregation
toLast
as per the documentation (#7480)azurerm_postgresql_server
- can now update the tier ofsku_name
by recreating the resource (#7456)azurerm_network_interface_security_group_association
- is now considered delete whtn the network interfact is notfound (#7459)azurerm_role_definition
- terraform import now sets scope to prevent a force recreate (#7424)azurerm_storage_account_network_rules
- corretly clearip_rules
,virtual_network_subnet_ids
when set to[]
(#7385)
UPGRADE NOTES:
azurerm_orchestrated_virtual_machine_scale_set
- thesingle_placement_group
property is now required to befalse
by the service team in the2019-12-01
compute API (#7188)
DEPENDENCIES
- updating to
v43.1.0
ofgithub.com/Azure/azure-sdk-for-go
(#7188) - upgrading
kusto
to2019-12-01
(#7101) - upgrading
kusto
to2020-02-15
(#6838)
FEATURES
- New Data Source:
azurerm_data_share_dataset_blob_storage
(#7107) - New Resource:
azurerm_data_factory_integration_runtime_self_hosted
(#6535) - New Resource:
azurerm_data_share_dataset_blob_storage
(#7107) - New Resource:
azurerm_eventhub_cluster
(#7306) - New Resource:
azurerm_maintenance_assignment_dedicated_host
(#6713) - New Resource:
azurerm_maintenance_assignment_virtual_machine
(#6713)
IMPROVEMENTS:
- Data Source:
azurerm_management_group
- support lookup viadisplay_name
(#6845) azurerm_api_management
- support for thedeveloper_portal_url
property (#7263)azurerm_app_service
- support forscm_ip_restriction
(#6955)azurerm_app_service_certificate
- support for thehosting_environment_profile_id
propety (#7087)azurerm_app_service_environment
- support for theuser_whitelisted_ip_ranges
property (#7324)azurerm_kusto_cluster
- Support forenable_purge
(#7375)azurerm_kusto_cluster
- Support for extended Kusto Cluster SKUs (#7372)azurerm_policy_assignment
- added support forenforcement_mode
(#7331)azurerm_private_endpoint
- support for theprivate_dns_zone_group
,private_dns_zone_configs
, andcustom_dns_configs
blocks (#7246)azurerm_storage_share_directory
-name
can now contain one nested directory (#7382)
BUG FIXES:
azurerm_api_management_api
- correctly wait for future on create/update (#7273)azurerm_bot_connection
- adding a runtime check for the available service providers in the Azure Region being used (#7279)azurerm_healthcare_service
- theaccess_policy_object_ids
property is now optional (#7296)azurerm_hdinsight_cluster
- deprecating themin_instance_count
property (#7272)azurerm_network_watcher_flow_log
- propertly disable the flowlog on destroy (#7154)
UPGRADE NOTES:
azurerm_kubernetes_cluster
- the Azure Policy add-on now only supportsv2
(as per the Azure API) (#7233)
DEPENDENCIES:
FEATURES:
- New Data Source:
azurerm_blueprint_definition
(#6930) - New Data Source:
azurerm_blueprint_published_version
(#6930) - New Data Source:
azurerm_key_vault_certificate
(#7285) - New Data Source:
azurerm_kubernetes_cluster_node_pool
(#7233) - New Resource:
azurerm_blueprint_assignment
(#6930) - New Resource:
azurerm_data_factory_linked_service_key_vault
(#6971) - New Resource:
azurerm_iot_time_series_insights_access_policy
(#7202) - New Resource:
azurerm_iot_time_series_insights_reference_data_set
(#7112) - New Resource:
azurerm_app_service_hybrid_connection
(#7224)
ENHANCEMENTS:
- Data Source:
azurerm_kubernetes_cluster
- exposing theversion
of the Azure Policy add-on (#7233) - Data Source:
azurerm_kubernetes_cluster
- exposing theorchestrator_version
being used for each Node Pool (#7233) - Data Source:
azurerm_kubernetes_cluster
- exposing thedisk_encryption_set_id
field (#7233) azurerm_api_management_api
- ensuringwsdl_selector
is populated whencontent_format
iswsdl
(#7076)azurerm_cosmosdb_account
modifyinggeo_location
no longer triggers a recreation of the resource (#7217)azurerm_eventgrid_event_subscription
- support forazure_function_endpoint
(#7182)azurerm_eventgrid_event_subscription
- exposingbase_url
,max_events_per_batch
,preferred_batch_size_in_kilobytes
,active_directory_tenant_id
andactive_directory_app_id_or_uri
in thewebhook_endpoint
block (#7207)azurerm_kubernetes_cluster
- support for configuring/updating the version of Kubernetes used in the Default Node Pool (#7233)azurerm_kubernetes_cluster
- support for Azure Active Directory (Managed) Integration v2 (#7233)azurerm_kubernetes_cluster
- support for using a Disk Encryption Set (#7233)azurerm_kubernetes_cluster
- support for configuring the Auto-Scale Profile (#7233)azurerm_kubernetes_cluster
- support for configuringoutbound_ports_allocated
andidle_timeout_in_minutes
within theload_balancer_profile
block (#7233)azurerm_kubernetes_cluster
- support for the Uptime SLA / Paid SKU (#7233)azurerm_kubernetes_cluster
- exposing theprivate_fqdn
of the cluster (#7233)azurerm_kubernetes_cluster_node_pool
- support for configuring/updating the version of Kubernetes (#7233)azurerm_kubernetes_cluster_node_pool
- support for Spot Node Pools (#7233)azurerm_kubernetes_cluster_node_pool
- support for System & User Node Pools (#7233)azurerm_web_application_firewall_policy
- Add support forGeoMatch
operator in request filter (#7181)
BUG FIXES:
- Data Source:
azurerm_kubernetes_cluster
- fixing an issue where some read-only fields were unintentionally marked as user-configurable (#7233) azurerm_application_gateway
- support for specifying the ID of a Key Vault Secret without a version (#7095)azurerm_bot_channel_ms_teams
- only sendingcalling_web_hook
when it's got a value (#7294)azurerm_eventhub_namespace_authorization_rule
- handling the Resource ID changing on Azure's side fromauthorizationRules
toAuthorizationRules
(#7248)azurerm_eventgrid_event_subscription
- fixing a crash whensubject_filter
was omitted (#7222)azurerm_function_app
- fix app_settings when using linux consumption plan (#7230)azurerm_linux_virtual_machine_scale_set
- adding validation for themax_bid_price
field (#7233)azurerm_kubernetes_cluster
- the Azure Policy add-on is not supported in Azure China and no longer sent (#7233)azurerm_kubernetes_cluster
- the Azure Policy add-on is not supported in Azure US Government and no longer sent (#7233)azurerm_kubernetes_cluster
- the Kubernetes Dashboard add-on is not supported in Azure US Government and no longer sent (#7233)azurerm_kubernetes_cluster
- searching for a system node pool when importing thedefault_node_pool
(#7233)azurerm_kubernetes_cluster_node_pool
- changes to thenode_taints
field now force a new resource, matching the updated API behaviour (#7233)azurerm_management_group
- using the Subscription ID rather than Subscription Resource ID when detaching Subscriptions from Management Groups during deletion (#7216)azurerm_windows_virtual_machine_scale_set
- adding validation for themax_bid_price
field (#7233)
FEATURES:
- New Data Source:
azurerm_logic_app_integration_account
(#7099) - New Data Source:
azurerm_virtual_machine_scale_set
(#7141) - New Resource:
azurerm_logic_app_integration_account
(#7099) - New Resource:
azurerm_monitor_action_rule_action_group
(#6563) - New Resource:
azurerm_monitor_action_rule_suppression
(#6563)
IMPROVEMENTS:
azurerm_data_factory_pipeline
- Support foractivities
(#6224)azurerm_eventgrid_event_subscription
- support for advanced filtering (#6861)azurerm_signalr_service
- support forEnableMessagingLogs
feature (#7094)
BUG FIXES:
azurerm_app_service
- default priority now set on ip restricitons when not explicitly specified (#7059)azurerm_app_service
- App Services check correct scope for name availability in ASE (#7157)azurerm_cdn_endpoint
-origin_host_header
can now be set to empty (#7164)azurerm_cosmosdb_account
- workaround for CheckNameExists 500 response code bug (#7189)azurerm_eventhub_authorization_rule
- Fix intermittent 404 errors (#7122)azurerm_eventgrid_event_subscription
- fixing an error when setting thehybrid_connection_endpoint
block (#7203)azurerm_function_app
- correctly setKind
whenos_type
islinux
(#7140)azurerm_key_vault_certificate
- always setting thecertificate_data
andthumbprint
fields (#7204)azurerm_role_assignment
- support for Preview role assignments (#7205)azurerm_virtual_network_gateway
-vpn_client_protocols
is now also computed to prevent permanent diffs (#7168)
FEATURES:
- New Data Source:
azurerm_advisor_recommendations
(#6867) - New Resource:
azurerm_dev_test_global_shutdown_schedule
(#5536) - New Resource:
azurerm_nat_gateway_public_ip_association
(#6450)
IMPROVEMENTS:
- Data Source:
azurerm_kubernetes_cluster
- exposing theoms_agent_identity
block within theaddon_profile
block (#7056) - Data Source:
azurerm_kubernetes_cluster
- exposing theidentity
andkubelet_identity
properties (#6527) azurerm_batch_pool
- support thecontainer_image_names
property (#6689)azurerm_eventgrid_event_subscription
- support for theexpiration_time_utc
,service_bus_topic_endpoint
, andservice_bus_queue_endpoint
, property (#6860)azurerm_eventgrid_event_subscription
- theeventhub_endpoint
was deprecated in favour of theeventhub_endpoint_id
property (#6860)azurerm_eventgrid_event_subscription
- thehybrid_connection_endpoint
was deprecated in favour of thehybrid_connection_endpoint_id
property (#6860)azurerm_eventgrid_topic
- support forinput_schema
,input_mapping_fields
, andinput_mapping_default_values
(#6858)azurerm_kubernetes_cluster
- exposing theoms_agent_identity
block within theaddon_profile
block (#7056)azurerm_logic_app_action_http
- support for therun_after
property (#7079)azurerm_storage_account
- supportRAGZRS
andGZRS
for theaccount_replication_type
property (#7080)
BUG FIXES:
azurerm_api_management_api_version_set
- handling changes to the Azure Resource ID (#7071)azurerm_key_vault_certificate
- fixing a bug when using externally-signed certificates (using theUnknown
issuer) where polling would continue indefinitely (#6979)azurerm_linux_virtual_machine
- correctly validating the rsa sshpublic_key
properties length (#7061)azurerm_linux_virtual_machine
- allow settingvirtual_machine_scale_set_id
in non-zonal deployment (#7057)azurerm_servicebus_topic
- support for numbers in thename
field (#7027)azurerm_shared_image_version
-target_region.x.storage_account_type
is now defaulted and multipletarget_region
s can be added/removed (#6940)azurerm_sql_virtual_network_rule
- updating the validation for thename
field (#6968)azurerm_windows_virtual_machine
- allow settingvirtual_machine_scale_set_id
in non-zonal deployment (#7057)azurerm_windows_virtual_machine
- correctly validating the rsa sshpublic_key
properties length (#7061)
DEPENDENCIES:
- updating
github.com/Azure/azure-sdk-for-go
tov42.1.0
(#6725) - updating
network
to2020-03-01
(#6727)
FEATURES:
- Opt-In/Experimental Enhanced Validation for Locations: This allows validating that the
location
field being specified is a valid Azure Region within the Azure Environment being used - which can be caught viaterraform plan
rather thanterraform apply
. This can be enabled by setting the Environment VariableARM_PROVIDER_ENHANCED_VALIDATION
totrue
and will be enabled by default in a future release of the AzureRM Provider (#6927) - Data Source:
azurerm_data_share
(#6789) - New Resource:
azurerm_data_share
(#6789) - New Resource:
azurerm_iot_time_series_insights_standard_environment
(#7012) - New Resource:
azurerm_orchestrated_virtual_machine_scale_set
(#6626)
IMPROVEMENTS:
- Data Source:
azurerm_platform_image
- support forversion
filter (#6948) azurerm_api_management_api_version_set
- updating the validation for thename
field (#6947)azurerm_app_service
- theip_restriction
block now supports theaction
property (#6967)azurerm_databricks_workspace
- exposingworkspace_id
andworkspace_url
(#6973)azurerm_netapp_volume
- support themount_ip_addresses
property (#5526)azurerm_redis_cache
- support new maxmemory policiesallkeys-lfu
&volatile-lfu
(#7031)azurerm_storage_account
- allowing the valuePATCH
forallowed_methods
within thecors_rule
block within theblob_properties
block (#6964)
BUG FIXES:
- Data Source:
azurerm_api_management_group
- raising an error when the Group cannot be found (#7024) - Data Source:
azurerm_image
- raising an error when the Image cannot be found (#7024) - Data Source:
azurerm_data_lake_store
- raising an error when Data Lake Store cannot be found (#7024) - Data Source:
azurerm_data_share_account
- raising an error when Data Share Account cannot be found (#7024) - Data Source:
azurerm_hdinsight_cluster
- raising an error when the HDInsight Cluster cannot be found (#7024) - Data Source:
azurerm_healthcare_service
- raising an error when the HealthCare Service cannot be found (#7024) - Data Source:
azurerm_healthcare_service
- ensuring all blocks are set in the response (#7024) - Data Source:
azurerm_firewall
- raising an error when the Firewall cannot be found (#7024) - Data Source:
azurerm_maintenance_configuration
- raising an error when the Maintenance Configuration cannot be found (#7024) - Data Source:
azurerm_private_endpoint_connection
- raising an error when the Private Endpoint Connection cannot be found (#7024) - Data Source:
azurerm_resources
- does not return all matched resources sometimes (#7036) - Data Source:
azurerm_shared_image_version
- raising an error when the Image Version cannot be found (#7024) - Data Source:
azurerm_shared_image_versions
- raising an error when Image Versions cannot be found (#7024) - Data Source:
azurerm_user_assigned_identity
- raising an error when the User Assigned Identity cannot be found (#7024) azurerm_api_management_subscription
- fix the export ofprimary_key
andsecondary_key
(#6938)azurerm_eventgrid_event_subscription
- correctly parsing the ID (#6958)azurerm_healthcare_service
- ensuring all blocks are set in the response (#7024)azurerm_linux_virtual_machine
- allowing name to end with a capital letter (#7023)azurerm_linux_virtual_machine_scale_set
- allowing name to end with a capital (#7023)azurerm_management_group
- workaround for 403 bug in service response (#6668)azurerm_postgresql_server
- do not attempt to get the threat protection when thesku
isbasic
(#7015)azurerm_windows_virtual_machine
- allowing name to end with a capital (#7023)azurerm_windows_virtual_machine_scale_set
- allowing name to end with a capital (#7023)
DEPENDENCIES:
FEATURES:
IMPROVEMENTS:
- All Data Sources: adding validation for the
resource_group_name
field to not be empty where it's Required (#6864) - Data Source:
azurerm_virtual_machine
- exportidentity
attribute (#6826) azurerm_api_management
- support for configuring the Developer Portal (#6724)azurerm_api_management
- support for user assigned managed identities (#6783)azurerm_api_management
- supportkey_vault_id
that do not have a version (#6723)azurerm_api_management_diagnostic
- support required propertyapi_management_logger_id
(#6682)azurerm_application_gateway
- support for WAF policies (#6105)azurerm_app_service_environment
- support specifying explicit resource group (#6821)azurerm_express_route_circuit
- de-provision and re-provision circuit when changing the bandwidth reduction (#6601)azurerm_frontdoor
- expose theheader_frontdoor_id
attribute (#6916)azurerm_log_analytics_workspace
- add support forrentention_in_days
for Free Tier (#6844)azurerm_mariadb_server
- support for thecreate_mode
property allowing the creation of replicas, point in time restores, and geo restors (#6865)azurerm_mariadb_server
- support for thepublic_network_access_enabled
property (#6865)azurerm_mariadb_server
- all properties in thestorage_profile
block have been moved to the top level (#6865)azurerm_mariadb_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
azurerm_mysql_server
- support for thecreate_mode
property allowing the creation of replicas, point in time restores, and geo restors (#6833)azurerm_mysql_server
- support for thepublic_network_access_enabled
property (#6833)azurerm_mysql_server
- all properties in thestorage_profile
block have been moved to the top level (#6833)azurerm_mysql_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
toauto_grow_enabled
(#6833)azurerm_mssql_server
- add support for theazuread_administrator
property (#6822)azurerm_postgres_server
- support for thethreat_detection_policy
property (#6721)azurerm_storage_account
- enable migration ofaccount_kind
fromStorage
toStorageV2
(#6580)azurerm_windows_virtual_machine
- theos_disk.disk_encryption_set_id
can now be updated (#6846)
BUG FIXES:
- Data Source:
azurerm_automation_account
- using the ID of the Automation Account, rather than the ID of the Automation Account's Registration Info (#6848) - Data Source:
azurerm_security_group
- fixing crash where id is nil (#6910) - Data Source:
azurerm_mysql_server
- removeadministrator_login_password
property as it is not returned from the api (#6865) azurerm_api_management
- fixing a crash whenpolicy
is nil (#6862)azurerm_api_management
- only sending thehostname_configuration
properties if they are not empty (#6850)azurerm_api_management_diagnostic
- can now be provision again by supportingapi_management_logger_id
(#6682)azurerm_api_management_named_value
- fix the non empty plan whensecret
is true (#6834)azurerm_application_insights
-retention_in_days
defaults to 90 (#6851)azurerm_data_factory_trigger_schedule
- setting thetype
required for Pipeline References (#6871)azurerm_kubernetes_cluster
- fixes theInvalidLoadbalancerProfile
error (#6534)azurerm_linux_virtual_machine_scale_set
- support for updating thedo_not_run_extensions_on_overprovisioned_machines
property (#6917)azurerm_monitor_diagnostic_setting
- fix possible crash withretention_policy
(#6911)azurerm_mariadb_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6865)azurerm_mysql_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6833)azurerm_role_assignment
- added evential consistency check to assignment creation (#6925)azurerm_windows_virtual_machine_scale_set
- support for updating thedo_not_run_extensions_on_overprovisioned_machines
property (#6917)
FEATURES:
- New Data Source:
azurerm_data_share_account
(#6575) - New Resource:
azurerm_data_share_account
(#6575) - New Resource:
azurerm_function_app_slot
(#6435) - New Resource:
azurerm_sentinel_alert_rule_scheduled
(#6650)
IMPROVEMENTS:
- Data Source:
azurerm_eventhub_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708) - Data Source:
azurerm_eventhub_namespace_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708) - Data Source:
azurerm_eventhub_namespace
- support for thedefault_primary_connection_string_alias
an_defaultsecondary_connection_string_alias
propeties (#6708) azurerm_analysis_services_server
- support updating when the Server is paused (#6786)azurerm_app_service
- support for health_check_path preview feature added (#6661)azurerm_app_service
- support forname
andpriority
onip_restrictions
(#6705)azurerm_application_gateway
- support for SSL Certificates without passwords (#6742)azurerm_eventhub_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708)azurerm_eventhub_namespace_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708)azurerm_eventhub_namespace
- support for thedefault_primary_connection_string_alias
an_defaultsecondary_connection_string_alias
propeties (#6708)azurerm_hdinsight_hadoop_cluster
- support for metastores on cluster creation (#6145)azurerm_key_vault_certificate
- support for recovering a soft-deleted certificate if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_key_vault_key
- support for recovering a soft-deleted key if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_key_vault_secret
- support for recovering a soft-deleted secret if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_linux_virtual_machine_scale_set
- support for configuringcreate_mode
for data disks (#6744)azurerm_monitor_diagnostic_setting
-log_analytics_destination_type
supportsAzureDiagnostics
(#6769)azurerm_windows_virtual_machine_scale_set
- support for configuringcreate_mode
for data disks (#6744)
BUG FIXES:
- provider: raising an error when the environment is set to
AZURESTACKCLOUD
(#6817) azurerm_analysis_services_server
- ip restriction name field no longer case sensitive (#6774)azurerm_automation_runbook
- thepublish_content_link
property is now optional (#6813)azurerm_eventhub_namespace_authorization_rule
- lock to prevent multiple resources won't clash (#6701)azurerm_network_interface
- changes to dns servers no longer use incremental update (#6624)azurerm_policy_assignment
- allow polices with scopes withoutsubscription/<id>
(built-in policies) (#6792)azurerm_policy_definition
- changes to the dynamic fields (createdBy
,createdOn
,updatedBy
,updatedOn
) keys in themetadata
field are excluded from diff's (#6734)azurerm_redis_cache
- ensurerdb_storage_connection_string
is set whenrdb_backup_enabled
is enabled (#6819)azurerm_site_recovery_network_mapping
- handling an API Error when checking for the presence of an existing Network Mapping (#6747)
FEATURES:
- New Data Source:
azurerm_sentinel_alert_rule_ms_security_incident
(#6606) - New Data Source:
azurerm_shared_image_versions
(#6700) - New Resource:
azurerm_managed_application
(#6386) - New Resource:
azurerm_mssql_server
(#6677) - New Resource:
azurerm_sentinel_alert_rule_ms_security_incident
(#6606)
IMPROVEMENTS:
azurerm_api_management
-sku_name
supports theConsumption
value forsku
(#6602)azurerm_api_management_api
- support for openapi v3 content formats (#6618)azurerm_application_gateway
- supporthost_names
property (#6630)azurerm_express_route_circuit_peering
- support for thecustomer_asn
androuting_registry_name
propeties (#6596)azurerm_frontdoor
- Add support forbackend_pools_send_receive_timeout_seconds
(#6604)azurerm_mssql_server
-support thepublic_network_access_enabled
property (#6678)azurerm_mssql_database
- support for theextended_auditing_policy
block (#6402)azurerm_mssql_elasticpool
- supportlicense_type
(#6631)azurerm_subnet
: Support for multiple prefixes withaddress_prefixes
(#6493)data.azurerm_shared_image_version
-name
supportslatest
andrecent
(#6707)
BUG FIXES:
azurerm_key_vault
- can now be created without subscription level permissions (#6260)azurerm_linux_virtual_machine
- fix validation forname
to allow full length resource names (#6639)azurerm_linux_virtual_machine_scale_set
- fix validation forname
to allow full length resource names (#6639)azurerm_monitor_diagnostic_setting
- makeretention_policy
andretention_policy
optional (#6603)azurerm_redis_cache
- correctly build connection strings when SSL is disabled (#6635)azurerm_sql_database
- prevent extended auditing policy for secondary databases (#6402)azurerm_web_application_firewall_policy
- support for themanaged_rules
property which is required by the new API version (#6126)azurerm_windows_virtual_machine
- fix validation forname
to allow full length resource names (#6639)azurerm_windows_virtual_machine_scale_set
- fix validation forname
to allow full length resource names (#6639)azurerm_virtual_network_gateway_connection
-shared_key
is now optional whentype
isIPSec
(#6565)
FEATURES:
- New Data Source:
azurerm_private_dns_zone
(#6512) - New Resource:
azurerm_maintenance_configuration
(#6038) - New Resource:
azurerm_servicebus_namespace_network_rule_set
(#6379) - New Resource:
azurerm_spring_cloud_app
(#6384)
DEPENDENCIES:
- updating
apimanagement
to2019-12-01
(#6479) - updating the fork of
github.com/Azure/go-autorest
(#6509)
IMPROVEMENTS:
- Data Source:
app_service_environment
- export thelocation
property (#6538) - Data Source:
azurerm_notification_hub_namespace
- exporttags
(#6578) azurerm_api_management
- support for virtual network integrations (#5769)azurerm_cosmosdb_mongo_collection
- support for theindex
andsystem_index
properties (#6426)azurerm_function_app
- addedstorage_account_id
andstorage_account_access_key
(#6304)azurerm_kubernetes_cluster
- deprecatingprivate_link_enabled
in favour ofprivate_cluster_enabled
(#6431)azurerm_mysql_server
- support for thepublic_network_access_enabled
property (#6590)azurerm_notification_hub
- support fortags
(#6578)azurerm_notification_hub_namespace
- support fortags
(#6578)azurerm_postgres_server
- support for thecreate_mode
property allowing replicas, point in time restores, and geo restores to be created (#6459)azurerm_postgres_server
- support for theinfrastructure_encryption_enabled
,public_network_access_enabled
, andssl_minimal_tls_version_enforced
properties (#6459)azurerm_postgres_server
- all properties in thestorage_profile
block have been moved to the top level (#6459)azurerm_postgres_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
toauto_grow_enabled
(#6459)azurerm_private_endpoint
- Add support fortags
(#6574)azurerm_shared_image
- supporthyper_v_generation
property (#6511)azurerm_linux_virtual_machine_scale_set
- support for theautomatic_instance_repair
property (#6346)azurerm_windows_virtual_machine_scale_set
- support for theautomatic_instance_repair
property (#6346)
BUG FIXES:
- Data Source:
azurerm_private_link_service
- fixing a crash when parsing the response (#6504) azurerm_application_gateway
- prevent panic by disallowing empty values forbackend_address_pool.#.fqdns
(#6549)azurerm_application_gateway
- block reordering without changes no longer causes update (#6476)azurerm_cdn_endpoint
-origin_host_header
is now required (#6550)azurerm_cdn_endpoint
- setting therequest_header_condition
block (#6541)azurerm_iothub_dps
- fix crash when path isn't cased correctly (#6570)azurerm_linux_virtual_machine_scale_set
- fixes crash withboot_diagnositics
(#6569)azurerm_policy_assignment
- allow scopes that don't start withsubscription/<id>
(#6576)azurerm_postgres_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6459)azurerm_public_ip_prefix
- updateprefix_length
validation to accept all valid IPv4 address ranges (#6589)azurerm_route
- add validation to thename
androute_table_name
propeties (#6055)azurerm_virtual_network_gateway
- per api requirements,public_ip_address_id
is required (#6548)
FEATURES:
- New Data Source:
azurerm_policy_set_definition
(#6305)
DEPENDENCIES:
- updating
github.com/Azure/azure-sdk-for-go
tov41.2.0
(#6419)
IMPROVEMENTS:
- Data Source:
azurerm_policy_definition
- can now lookup withname
(#6275) - Data Source:
azurerm_policy_definition
- the fieldmanagement_group_id
has been deprecated and renamed tomanagement_group_name
(#6275) azurerm_application_insights
- support for thedisable_ip_masking
property (#6354)azurerm_cdn_endpoint
- support for configuringdelivery_rule
(#6163)azurerm_cdn_endpoint
- support for configuringglobal_delivery_rule
(#6163)azurerm_function_app
- support for thepre_warmed_instance_count
property (#6333)azurerm_hdinsight_hadoop_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_hbase_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_interactive_query_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_kafka_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_ml_services_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_rserver_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_spark_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_storm_cluster
- support thethreat_detection_policy
property (#6437)azurerm_kubernetes_cluster
- exporting thekubelet_identity
(#6393)azurerm_kubernetes_cluster
- support for updating themanaged_outbound_ip_count
,outbound_ip_prefix_ids
andoutbound_ip_address_ids
fields within theload_balancer_profile
block (#5847)azurerm_network_interface
- export theinternal_domain_name_suffix
property (#6455)azurerm_policy_definition
- themanagement_group_id
has been deprecated and renamed tomanagement_group_name
(#6275)azurerm_sql_server
- support for theconnection_policy
property (#6438)azurerm_virtual_network
- export theguid
attribute (#6445)
BUG FIXES:
- Data Source:
azurerm_data_factory
- fixing a bug where the ID wasn't set (#6492) - Data Source:
azurerm_eventhub_namespace_authorization_rule
- ensuring theid
field is set (#6496) - Data Source:
azurerm_mariadb_server
- ensuring theid
field is set (#6496) - Data Source:
azurerm_network_ddos_protection_plan
- ensuring theid
field is set (#6496) azurerm_function_app
- prevent a panic from the API returning an empty IP Security Restriction (#6442)azurerm_machine_learning_workspace
- theEnterprise
sku will now properly work (#6397)azurerm_managed_disk
- fixing a bug where the machine would be stopped regardless of whether it was currently shut down or not (#4690)
BREAKING CHANGES:
- Azure Kubernetes Service
- Due to a breaking change in the AKS API, the
azurerm_kubernetes_cluster
resource features a significant behavioural change where creating Mixed-Mode Authentication clusters (e.g. using a Service Principal with a Managed Identity) is no longer supported. - The AKS Team have confirmed that existing clusters will be updated by the Azure API to use only MSI when a change is made to the Cluster (but not the Node Pool). Whilst Terraform could perform this automatically some environments have restrictions on which tags can be added/removed - as such this operation will need to be performed out-of-band. Instead, upon detecting a Mixed-Mode Cluster which has not yet been updated - or upon detecting a former Mixed-Mode Cluster where the Terraform Configuration still contains a
service_principal
block - Terraform will output instructions on how to proceed. azurerm_kubernetes_cluster_node_pool
- clusters with auto-scale disabled must ensure thatmin_count
andmax_count
are set tonull
(or omitted) rather than0
(since 0 isn't a valid value for these fields).
- Due to a breaking change in the AKS API, the
NOTES:
- There's currently a bug in the Azure Kubernetes Service (AKS) API where the Tags on Node Pools are returned in the incorrect case - this bug is being tracked in this issue. This affects the
tags
field within thedefault_node_pool
block forazurerm_kubernetes_clusters
and thetags
field for theazurerm_kubernetes_cluster_node_pool
resource.
IMPROVEMENTS:
- dependencies: updating to use version
2020-02-01
of the Containers API (#6095) - New Resource:
azurerm_private_dns_txt_record
(#6309) azurerm_kubernetes_cluster
- making theservice_principal
block optional - so it's now possible to create MSI-only clusters (#6095)azurerm_kubernetes_cluster
- making thewindows_profile
block computed as Windows credentials are now generated by Azure if unspecified (#6095)azurerm_kubernetes_cluster
- support foroutbound_type
within thenetwork_profile
block (#6120)azurerm_linux_virtual_machine
- OS disk encryption settings can no be updated (#6230)azurerm_windows_virtual_machine
- OS disk encryption settings can no be updated (#6230)
BUG FIXES:
azurerm_kubernetes_cluster
- requiring thatmin_count
andmax_count
within thedefault_node_pool
block are set tonull
rather than0
when auto-scaling is disabled (#6095)azurerm_kubernetes_cluster
- ensuring that a value fornode_count
within thedefault_node_pool
block is always passed to the API to match a requirement in the API (#6095)azurerm_kubernetes_cluster
- ensuring thattags
are set into the state for thedefault_node_pool
(#6095)azurerm_kubernetes_cluster
- conditionally sending theaci_connector_linux
block for Azure China (#6370)azurerm_kubernetes_cluster
- conditionally sending thehttp_application_routing
block for Azure China & Azure US Government (#6370)azurerm_kubernetes_cluster_node_pool
- requiring thatmin_count
andmax_count
are set tonull
rather than0
when auto-scaling is disabled (#6095)azurerm_linux_virtual_machine
- if thepriority
property on read is empty assume it to beRegular
(#6301)azurerm_windows_virtual_machine
- if thepriority
property on read is empty assume it to beRegular
(#6301)
FEATURES:
- New Data Source:
azurerm_managed_application_definition
(#6211) - New Resource:
azurerm_hpc_cache_nfs_target
(#6191) - New Resource:
azurerm_log_analytics_datasource_windows_event
(#6321) - New Resource:
azurerm_log_analytics_datasource_windows_performance_counter
(#6274) - New Resource:
azurerm_managed_application_definition
(#6211) - New Resource:
azurerm_spring_cloud_service
(#4928)
IMPROVEMENTS:
azurerm_network_interface
- always sendenable_accelerated_networking
to the api (#6289)azurerm_management_group
- deprecated and rename thegroup_id
property toname
to better match what it represents (#6276)
BUGS:
azurerm_application_gateway
- can now setinclude_path
withtarget_url
(#6175)azurerm_policy_set_definition
- markmetadata
as computed (#6266)
FEATURES:
- New Data Source:
azurerm_mssql_database
(#6083) - New Data source:
azurerm_network_service_tags
(#6229) - New Resource:
azurerm_custom_resource_provider
(#6234) - New Resource:
azurerm_hpc_cache_blob_target
(#6035) - New Resource:
azurerm_machine_learning_workspace
(#5696) - New Resource:
azurerm_mssql_database
(#6083) - New Resource:
azurerm_mssql_virtual_machine
(#5263) - New resource:
azurerm_policy_remediation
(#5746)
IMPROVEMENTS:
- dependencies: updating
github.com/Azure/azure-sdk-for-go
tov40.3.0
(#6134) - dependencies: updating
github.com/terraform-providers/terraform-provider-azuread
tov0.8.0
(#6134) - dependencies: updating
github.com/tombuildsstuff/giovanni
tov0.10.0
(#6169) - all resources using the
location
field - adding validation to ensure this is not an empty string where this field is Required (#6242) - Data Source
azurerm_storage_container
- exposing theresource_manager_id
field (#6170) azurerm_automation_schedule
- adding validation for the timezone field (#5759)azurerm_cognitive_account
- support for theqna_runtime_endpoint
property (#5778)azurerm_hpc_cache
- exposing themount_addresses
field (#6214)azurerm_lb
- allow ipv6 addresses for theprivate_ip_address
property (#6125)azurerm_managed_disk
- thedisk_encryption_set_id
field is no longer ForceNew (#6207)azurerm_public_ip
- support for Dynamic IPv6 Addresses (#6140)azurerm_service_fabric_cluster
- support for theclient_certificate_common_name
property (#6097)azurerm_storage_container
- exposing theresource_manager_id
field (#6170)azurerm_storage_share
- exposing theresource_manager_id
field (#6170)azurerm_traffic_manager_profile
- support for thecustom_header
property (#5923)
BUG FIXES:
azurerm_analysis_server
- switching theipv4_firewall_rule
block to a Set rather than a List to handle this being unordered (#6179)azurerm_linux_virtual_machine
- making thecustom_data
field sensitive (#6225)azurerm_linux_virtual_machine_scale_set
- making thecustom_data
field sensitive (#6225)azurerm_managed_disk
- only rebooting the attached Virtual Machine when changing the Disk Size, Disk Encryption Set ID or Storage Account Type (#6162)azurerm_netapp_volume
- allow up to102400
MB for thestorage_quota_in_gb
property (#6228)azurerm_policy_definition
- fixing a bug when parsing the Management Group ID (#5981)azurerm_postgresql_server
- updating the validation for thename
field (#6064)azurerm_sql_database
- use the correct base URI for the Extended Auditing Policies Client (#6233)azurerm_storage_management_policy
- conditionally setting values within thebase_blob
block (#6250)azurerm_virtual_machine_data_disk_attachment
- detecting the disk attachment as gone when the VM is no longer available (#6237)azurerm_windows_virtual_machine
- making thecustom_data
field sensitive (#6225)azurerm_windows_virtual_machine_scale_set
- making thecustom_data
field sensitive (#6225)
FEATURES:
- New Data Source:
azurerm_app_configuration
(#6133) - New Data Source:
azurerm_powerbi_embedded
(#5152) - New Resource:
azurerm_cost_management_export_resource_group
(#6131) - New Resource:
azurerm_powerbi_embedded
(#5152) - New Resource:
azurerm_virtual_hub_connection
(#5951)
IMPROVEMENTS:
- Data Source: *
azurerm_logic_app_workflow
- expose computed field:endpoint_configuration
(#5862) azurerm_application_gateway
- support for key vault SSL certificate via thekey_value_secret_id
property (#4366)azurerm_function_app
- support for configuringdaily_memory_time_quota
(#6100)azurerm_logic_app_workflow
- expose computed field:endpoint_configuration
(#5862)azurerm_linux_virtual_machine_scale_set
- support forscale_in_policy
andterminate_notification
(#5391)azurerm_sql_database
- support for theextended_auditing_policy
property (#5049)azurerm_windows_virtual_machine_scale_set
- support forscale_in_policy
andterminate_notification
(#5391)
BUG FIXES:
- Data Source:
azurerm_iothub_dps_shared_access_policy
- building theprimary_connection_string
andsecondary_connection_string
from the Service endpoint rather than the Devices endpoint (#6108) azurerm_function_app
- AddWEBSITE_CONTENT
&WEBSITE_CONTENTAZUREFILECONNECTIONSTRING
for premium plans (#5761)azurerm_iothub_dps_shared_access_policy
- building theprimary_connection_string
andsecondary_connection_string
from the Service endpoint rather than the Devices endpoint (#6108)azurerm_linux_virtual_machine
- updating the validation forname
to allow periods (#5966)azurerm_linux_virtual_machine_scale_set
- updating the validation forname
to allow periods (#5966)azurerm_storage_management_policy
- Fixed the use of single blob rule actions (#5803)
NOTES:
The azurerm_frontdoor
resource has introduced a breaking change due to the underlying service API which enforces location
attributes must be set to 'Global' on all newly deployed Front Door services.
FEATURES:
- New Data Source:
azurerm_database_migration_project
(#5993) - New Data Source:
azurerm_database_migration_service
(#5258) - New Data Source:
azurerm_kusto_cluster
(#5942) - New Data Source:
azurerm_servicebus_topic_authorization_rule
(#6017) - New Resource:
azurerm_bot_channel_directline
(#5445) - New Resource:
azurerm_database_migration_project
(#5993) - New Resource:
azurerm_database_migration_service
(#5258) - New Resource:
azurerm_hpc_cache
(#5528) - New Resource:
azurerm_iotcentral_application
(#5446) - New Resource:
azurerm_monitor_scheduled_query_rules_alert
(#5053) - New Resource:
azurerm_monitor_scheduled_query_rules_log
(#5053) - New Resource:
azurerm_spatial_anchors_account
(#6011)
IMPROVEMENTS:
- batch: upgrading to API version
2019-08-01
(#5967) - containerservice: upgrading to API version
2019-11-01
(#5531) - netapp: upgrading to API version
2019-10-01
(#5531) - dependencies: temporarily switching to using a fork of
github.com/Azure/go-autorest
to workaround an issue in the storage authorizer (#6050) - dependencies: updating
github.com/tombuildsstuff/giovanni
tov0.9.0
(#6050) azurerm_application_gateway
- support up to125
for thecapacity
property with V2 SKU's (#5906)azurerm_automation_dsc_configuration
- support for thetags
property (#5827)azurerm_batch_pool
- support for thepublic_ips
property (#5967)azurerm_frontdoor
- exposed new attributes inbackend_pool_health_probe
blockenabled
andprobe_method
(#5924)azurerm_function_app
- Addedos_type
field to facilitate support oflinux
function apps (#5839)azurerm_kubernetes_cluster
: Support for thenode_labels
property (#5531)azurerm_kubernetes_cluster
: Support for thetags
property (#5931)azurerm_kubernetes_cluster_node_pool
: Support for thenode_labels
property (#5531)azurerm_kubernetes_cluster_node_pool
: Support for thetags
property (#5931)azurerm_kusto_cluster
- support forenable_disk_encryption
andenable_streaming_ingest
properties (#5855)azurerm_lb
- support for theprivate_ip_address_version
property (#5590)azurerm_mariadb_server
- changing thegeo_redundant_backup
property now forces a new resource (#5961)azurerm_netapp_account
- support for thetags
property (#5995)azurerm_netapp_pool
- support for thetags
property (#5995)azurerm_netapp_snapshot
- support for thetags
property (#5995)azurerm_netapp_volume
- support for thetags
property (#5995)azurerm_netapp_volume
- support for theprotocol_types
property (#5485)azurerm_netapp_volume
- deprecated thecifs_enabled
,nfsv3_enabled
, andnfsv4_enabled
properties in favour ofprotocols_enabled
(#5485)azurerm_network_watcher_flow_log
- support for the traffic analysisinterval_in_minutes
property (#5851)azurerm_private_dns_a_record
- export thefqdn
property (#5949)azurerm_private_dns_aaaa_record
- export thefqdn
property (#5949)azurerm_private_dns_cname_record
- export thefqdn
property (#5949)azurerm_private_dns_mx_record
- export thefqdn
property (#5949)azurerm_private_dns_ptr_record
- export thefqdn
property (#5949)azurerm_private_dns_srv_record
- export thefqdn
property (#5949)azurerm_private_endpoint
- exposedprivate_ip_address
as a computed attribute (#5838)azurerm_redis_cache
- support for theprimary_connection_string
andsecondary_connection_string
properties (#5958)azurerm_sql_server
- support for theextended_auditing_policy
property (#5036)azurerm_storage_account
- support up to 50 tags (#5934)azurerm_virtual_wan
- support for thetype
property (#5877)
BUG FIXES:
azurerm_app_service_plan
- no longer sends an emptyapp_service_environment_id
property on update (#5915)azurerm_automation_schedule
- fix time validation (#5876)azurerm_batch_pool
-frontend_port_range
is now set correctly. (#5941)azurerm_dns_txt_record
- support records up to1024
characters in length (#5837)azurerm_frontdoor
- fix the waybackend_pool_load_balancing
/backend_pool_health_probe
(#5924)azurerm_frontdoor
- all new front door resources to be created in theGlobal
location (#6015)azurerm_frontdoor_firewall_policy
- add validation for Frontdoor WAF Name Restrictions (#5943)azurerm_linux_virtual_machine_scale_set
- correctsource_image_id
validation (#5901)azurerm_netapp_volume
- support volmes uoto100TB
in size (#5485)azurerm_search_service
- changing the propertiesreplica_count
&partition_count
properties no longer force a new resource (#5935)azurerm_storage_account
- fixing a crash when an emptystatic_website
block was specified (#6050)azurerm_storage_account
- using SharedKey Authorization for reading/updating the Static Website when not using AzureAD authentication (#6050)
NOTES:
- Major Version: Version 2.0 of the Azure Provider is a major version - some deprecated fields/resources have been removed - please refer to the 2.0 upgrade guide for more information.
- Provider Block: The Azure Provider now requires that a
features
block is specified within the Provider block, which can be used to alter the behaviour of certain resources - more information on thefeatures
block can be found in the documentation. - Terraform 0.10/0.11: Version 2.0 of the Azure Provider no longer supports Terraform 0.10 or 0.11 - you must upgrade to Terraform 0.12 to use version 2.0 of the Azure Provider.
FEATURES:
- Custom Timeouts: - all resources within the Azure Provider now allow configuring custom timeouts - please see Terraform's Timeout documentation and the documentation in each data source resource for more information.
- Requires Import: The Azure Provider now checks for the presence of an existing resource prior to creating it - which means that if you try and create a resource which already exists (without importing it) you'll be prompted to import this into the state.
- New Data Source:
azurerm_app_service_environment
(#5508) - New Data Source:
azurerm_eventhub_authorization_rule
(#5805) - New Resource:
azurerm_app_service_environment
(#5508) - New Resource:
azurerm_express_route_gateway
(#5523) - New Resource:
azurerm_linux_virtual_machine
(#5705) - New Resource:
azurerm_linux_virtual_machine_scale_set
(#5705) - New Resource:
azurerm_network_interface_security_group_association
(#5784) - New Resource:
azurerm_storage_account_customer_managed_key
(#5668) - New Resource:
azurerm_virtual_machine_scale_set_extension
(#5705) - New Resource:
azurerm_windows_virtual_machine
(#5705) - New Resource:
azurerm_windows_virtual_machine_scale_set
(#5705)
BREAKING CHANGES:
- The Environment Variable
DISABLE_CORRELATION_REQUEST_ID
has been renamed toARM_DISABLE_CORRELATION_REQUEST_ID
to match the other Environment Variables - The field
tags
is no longercomputed
- Data Source:
azurerm_api_management
- removing the deprecatedsku
block (#5725) - Data Source:
azurerm_app_service
- removing the deprecated fieldsubnet_mask
from thesite_config
block (#5823) - Data Source:
azurerm_app_service_plan
- the deprecatedproperties
block has been removed since these properties have been moved to the top level (#5717) - Data Source:
azurerm_azuread_application
- This data source has been removed since it was deprecated (#5748) - Data Source:
azurerm_azuread_service_principal
- This data source has been removed since it was deprecated (#5748) - Data Source:
azurerm_builtin_role_definition
- the deprecated data source has been removed (#5844) - Data Source:
azurerm_dns_zone
- removing the deprecatedzone_type
field (#5794) - Data Source:
azurerm_dns_zone
- removing the deprecatedregistration_virtual_network_ids
field (#5794) - Data Source:
azurerm_dns_zone
- removing the deprecatedresolution_virtual_network_ids
field (#5794) - Data Source:
azurerm_key_vault
- removing thesku
block since this has been deprecated in favour of thesku_name
field (#5774) - Data Source:
azurerm_key_vault_key
- removing the deprecatedvault_uri
field (#5774) - Data Source:
azurerm_key_vault_secret
- removing the deprecatedvault_uri
field (#5774) - Data Source:
azurerm_kubernetes_cluster
- removing the fielddns_prefix
from theagent_pool_profile
block (#5823) - Data Source:
azurerm_network_interface
- removing the deprecated fieldinternal_fqdn
(#5823) - Data Source:
azurerm_private_link_service
- removing the deprecated fieldnetwork_interface_ids
(#5823) - Data Source:
azurerm_private_link_endpoint_connection
- the deprecated data source has been removed (#5844) - Data Source:
azurerm_recovery_services_protection_policy_vm
has been renamed toazurerm_backup_policy_vm
(#5816) - Data Source:
azurerm_role_definition
- removing the aliasVirtualMachineContributor
which has been deprecated in favour of the full nameVirtual Machine Contributor
(#5733) - Data Source:
azurerm_storage_account
- removing theaccount_encryption_source
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_storage_account
- removing theenable_blob_encryption
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_storage_account
- removing theenable_file_encryption
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_scheduler_job_collection
- This data source has been removed since it was deprecated (#5712) - Data Source:
azurerm_subnet
- removing the deprecatedip_configuration
field (#5801) - Data Source:
azurerm_virtual_network
- removing the deprecatedaddress_spaces
field (#5823) azurerm_api_management
- removing the deprecatedsku
block (#5725)azurerm_api_management
- removing the deprecated fields in thesecurity
block (#5725)azurerm_application_gateway
- the fieldfqdns
within thebackend_address_pool
block is no longer computed (#5823)azurerm_application_gateway
- the fieldip_addresses
within thebackend_address_pool
block is no longer computed (#5823)azurerm_application_gateway
- the deprecated fieldfqdn_list
within thebackend_address_pool
block has been removed (#5823)azurerm_application_gateway
- the deprecated fieldip_address_list
within thebackend_address_pool
block has been removed (#5823)azurerm_application_gateway
- the deprecated fielddisabled_ssl_protocols
has been removed (#5823)azurerm_application_gateway
- the fielddisabled_protocols
within thessl_policy
block is no longer computed (#5823)azurerm_app_service
- removing the fieldsubnet_mask
from thesite_config
block (#5823)azurerm_app_service
- the fieldip_address
within thesite_config
block now refers to a CIDR block, rather than an IP Address to match the Azure API (#5823)azurerm_app_service
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_app_service_plan
- the deprecatedproperties
block has been removed since these properties have been moved to the top level (#5717)azurerm_app_service_slot
- removing the fieldsubnet_mask
from thesite_config
block (#5823)azurerm_app_service_slot
- the fieldip_address
within thesite_config
block now refers to a CIDR block, rather than an IP Address to match the Azure API (#5823)azurerm_app_service_slot
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_application_gateway
- updating the default value for thebody
field within thematch
block from*
to an empty string (#5752)azurerm_automation_account
- removing thesku
block which has been deprecated in favour of thesku_name
field (#5781)azurerm_automation_credential
- removing the deprecatedaccount_name
field (#5781)azurerm_automation_runbook
- removing the deprecatedaccount_name
field (#5781)azurerm_automation_schedule
- removing the deprecatedaccount_name
field (#5781)azurerm_autoscale_setting
- the deprecated resource has been removed (#5844)azurerm_availability_set
- updating the default value formanaged
fromfalse
totrue
(#5724)azurerm_azuread_application
- This resource has been removed since it was deprecated (#5748)azurerm_azuread_service_principal_password
- This resource has been removed since it was deprecated (#5748)azurerm_azuread_service_principal
- This resource has been removed since it was deprecated (#5748)azurerm_client_config
- removing the deprecated fieldservice_principal_application_id
(#5823)azurerm_client_config
- removing the deprecated fieldservice_principal_object_id
(#5823)azurerm_cognitive_account
- removing the deprecatedsku_name
block (#5797)azurerm_connection_monitor
- the deprecated resource has been removed (#5844)azurerm_container_group
- removing theport
field from thecontainer
block (#5823)azurerm_container_group
- removing theprotocol
field from thecontainer
block (#5823)azurerm_container_group
- theports
field is no longer Computed (#5823)azurerm_container_group
- theprotocol
field within theports
block is no longer Computed and now defaults toTCP
(#5823)azurerm_container_group
- removing the deprecated fieldcommand
(#5823)azurerm_container_registry
- removing the deprecatedstorage_account
block (#5823)azurerm_container_service
- This resource has been removed since it was deprecated (#5709)azurerm_cosmosdb_mongo_collection
- removing the deprecatedindexes
block (#5853)azurerm_ddos_protection_plan
- the deprecated resource has been removed (#5844)azurerm_devspace_controller
- removing the deprecatedsku
block (#5795)azurerm_dns_cname_record
- removing the deprecatedrecords
field (#5794)azurerm_dns_ns_record
- removing the deprecatedrecords
field (#5794)azurerm_dns_zone
- removing the deprecatedzone_type
field (#5794)azurerm_dns_zone
- removing the deprecatedregistration_virtual_network_ids
field (#5794)azurerm_dns_zone
- removing the deprecatedresolution_virtual_network_ids
field (#5794)azurerm_eventhub
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_authorization_rule
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_consumer_group
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_namespace
- removing the deprecatedkafka_enabled
field since this is now managed by Azure (#5793)azurerm_eventhub_namespace_authorization_rule
- removing the deprecatedlocation
field (#5793)azurerm_firewall
- removing the deprecated fieldinternal_public_ip_address_id
from theip_configuration
block (#5823)azurerm_firewall
- the fieldpublic_ip_address_id
within theip_configuration
block is now required (#5823)azurerm_frontdoor
- fieldcache_enabled
within theforwarding_configuration
block now defaults tofalse
rather thantrue
(#5852)azurerm_frontdoor
- the fieldcache_query_parameter_strip_directive
within theforwarding_configuration
block now defaults toStripAll
rather thanStripNone
. (#5852)azurerm_frontdoor
- the fieldforwarding_protocol
within theforwarding_configuration
block now defaults toHttpsOnly
rather thanMatchRequest
(#5852)azurerm_function_app
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_function_app
- updating the fieldip_address
within theip_restriction
block to accept a CIDR rather than an IP Address to match the updated API behaviour (#5823)azurerm_iot_dps
- This resource has been removed since it was deprecated (#5753)azurerm_iot_dps_certificate
- This resource has been removed since it was deprecated (#5753)azurerm_iothub
- The deprecatedsku.tier
property will be removed. (#5790)azurerm_iothub_dps
- The deprecatedsku.tier
property will be removed. (#5790)azurerm_key_vault
- removing thesku
block since this has been deprecated in favour of thesku_name
field (#5774)azurerm_key_vault_access_policy
- removing the deprecated fieldvault_name
which has been superseded by thekey_vault_id
field (#5774)azurerm_key_vault_access_policy
- removing the deprecated fieldresource_group_name
which has been superseded by thekey_vault_id
field (#5774)azurerm_key_vault_certificate
- removing the deprecatedvault_uri
field (#5774)azurerm_key_vault_key
- removing the deprecatedvault_uri
field (#5774)azurerm_key_vault_secret
- removing the deprecatedvault_uri
field (#5774)azurerm_kubernetes_cluster
- updating the default value forload_balancer_sku
toStandard
fromBasic
(#5747)azurerm_kubernetes_cluster
- the blockdefault_node_pool
is now required (#5823)azurerm_kubernetes_cluster
- removing the deprecatedagent_pool_profile
block (#5823)azurerm_kubernetes_cluster
- the fieldenable_pod_security_policy
is no longer computed (#5823)azurerm_lb_backend_address_pool
- removing the deprecatedlocation
field (#5823)azurerm_lb_nat_pool
- removing the deprecatedlocation
field (#5823)azurerm_lb_nat_rule
- removing the deprecatedlocation
field (#5823)azurerm_lb_probe
- removing the deprecatedlocation
field (#5823)azurerm_lb_rule
- removing the deprecatedlocation
field (#5823)azurerm_log_analytics_workspace_linked_service
- This resource has been removed since it was deprecated (#5754)azurerm_log_analytics_linked_service
- Theresource_id
field has been moved from thelinked_service_properties
block to the top-level and the deprecated fieldlinked_service_properties
will be removed. This has been replaced by theresource_id
resource (#5775)azurerm_maps_account
- thesku_name
field is now case-sensitive (#5776)azurerm_mariadb_server
- removing thesku
block since it's been deprecated in favour of thesku_name
field (#5777)azurerm_metric_alertrule
- the deprecated resource has been removed (#5844)azurerm_monitor_metric_alert
- updating the default value forauto_mitigate
fromfalse
totrue
(#5773)azurerm_monitor_metric_alertrule
- the deprecated resource has been removed (#5844)azurerm_mssql_elasticpool
- removing the deprecatedelastic_pool_properties
block (#5744)azurerm_mysql_server
- removing the deprecatedsku
block (#5743)azurerm_network_interface
- removing the deprecatedapplication_gateway_backend_address_pools_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedapplication_security_group_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedload_balancer_backend_address_pools_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedload_balancer_inbound_nat_rules_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedinternal_fqdn
field (#5784)azurerm_network_interface
- removing thenetwork_security_group_id
field in favour of a new split-out resourceazurerm_network_interface_security_group_association
(#5784)azurerm_network_interface_application_security_group_association
- removing theip_configuration_name
field associations between Network Interfaces and Application Security Groups now need to be made to all IP Configurations (#5815)azurerm_network_interface
- thevirtual_machine_id
field is now computed-only since it's not setable (#5784)azurerm_notification_hub_namesapce
- removing thesku
block in favour of thesku_name
argument (#5722)azurerm_postgresql_server
- removing thesku
block which has been deprecated in favour of thesku_name
field (#5721)azurerm_private_link_endpoint
- the deprecated resource has been removed (#5844)azurerm_private_link_service
- removing the deprecated fieldnetwork_interface_ids
(#5823)azurerm_public_ip
- making theallocation_method
field required (#5823)azurerm_public_ip
- removing the deprecated fieldpublic_ip_address_allocation
(#5823)azurerm_recovery_network_mapping
- the deprecated resource has been removed (#5816)azurerm_recovery_replicated_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_fabric
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protected_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_container
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_container_mapping
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_policy_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_replication_policy
- the deprecated resource has been removed (#5816)azurerm_relay_namespace
- removing thesku
block in favour of thesku_name
field (#5719)azurerm_scheduler_job
- This resource has been removed since it was deprecated (#5712)azurerm_scheduler_job_collection
- This resource has been removed since it was deprecated (#5712)azurerm_storage_account
- updating the default value foraccount_kind
fromStorage
toStorageV2
(#5850)azurerm_storage_account
- removing the deprecatedaccount_type
field (#5710)azurerm_storage_account
- removing the deprecatedenable_advanced_threat_protection
field (#5710)azurerm_storage_account
- updating the default value forenable_https_traffic_only
fromfalse
totrue
(#5808)azurerm_storage_account
- removing theaccount_encryption_source
field since this is no longer configurable by Azure (#5668)azurerm_storage_account
- removing theenable_blob_encryption
field since this is no longer configurable by Azure (#5668)azurerm_storage_account
- removing theenable_file_encryption
field since this is no longer configurable by Azure (#5668)azurerm_storage_blob
- making thetype
field case-sensitive (#5710)azurerm_storage_blob
- removing the deprecatedattempts
field (#5710)azurerm_storage_blob
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_container
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_container
- removing the deprecatedproperties
block (#5710)azurerm_storage_queue
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_share
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_table
- removing the deprecatedresource_group_name
field (#5710)azurerm_subnet
- removing the deprecatedip_configuration
field (#5801)azurerm_subnet
- removing the deprecatednetwork_security_group_id
field (#5801)azurerm_subnet
- removing the deprecatedroute_table_id
field (#5801)azurerm_subnet
- making theactions
list within theservice_delegation
block within theservice_endpoints
block non-computed (#5801)azurerm_virtual_network_peering
-allow_virtual_network_access
now defaults to true, matching the API and Portal behaviours. (#5832)azurerm_virtual_wan
- removing the deprecated fieldsecurity_provider_name
(#5823)
IMPROVEMENTS:
- web: updating to API version
2019-08-01
(#5823) - Data Source:
azurerm_kubernetes_service_version
- support for filtering of preview releases (#5662) azurerm_dedicated_host
- support for settingsku_name
toDSv3-Type2
andESv3-Type2
(#5768)azurerm_key_vault
- support for configuringpurge_protection_enabled
(#5344)azurerm_key_vault
- support for configuringsoft_delete_enabled
(#5344)azurerm_sql_database
- support for configuringzone_redundant
(#5772)azurerm_storage_account
- support for configuring thestatic_website
block (#5649)azurerm_storage_account
- support for configuringcors_rules
within theblob_properties
block (#5425)azurerm_subnet
- support for delta updates (#5801)azurerm_windows_virtual_machine
- fixing a bug when provisioning from a Shared Gallery image (#5661)
BUG FIXES:
azurerm_application_insights
- theapplication_type
field is now case sensitive as documented (#5817)azurerm_api_management_api
- allows blankpath
field (#5833)azurerm_eventhub_namespace
- the fieldip_rule
within thenetwork_rulesets
block now supports a maximum of 128 items (#5831)azurerm_eventhub_namespace
- the fieldvirtual_network_rule
within thenetwork_rulesets
block now supports a maximum of 128 items (#5831)azurerm_linux_virtual_machine
- using the delete custom timeout during deletion (#5764)azurerm_netapp_account
- allowing the-
character to be used in thename
field (#5842)azurerm_network_interface
- thedns_servers
field now respects ordering (#5784)azurerm_public_ip_prefix
- fixing the validation for theprefix_length
to match the Azure API (#5693)azurerm_recovery_services_vault
- using the requested cloud rather than the default (#5825)azurerm_role_assignment
- validating that thename
is a UUID (#5624)azurerm_signalr_service
- ensuring the SignalR segment is parsed in the correct case (#5737)azurerm_storage_account
- locking on the storage account resource when updating the storage account (#5668)azurerm_subnet
- supporting updating of theenforce_private_link_endpoint_network_policies
field (#5801)azurerm_subnet
- supporting updating of theenforce_private_link_service_network_policies
field (#5801)azurerm_windows_virtual_machine
- using the delete custom timeout during deletion (#5764)
For information on v1.44.0 and prior releases, please see the v1.44.0 changelog.