chore(deps): update terraform cloudflare to v3.35.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
cloudflare (source)	required_provider	minor	3.9.1 -> 3.35.0

---

Release Notes

cloudflare/terraform-provider-cloudflare (cloudflare)

v3.35.0

Compare Source

FEATURES:

• New Data Source: cloudflare_rulesets (#​2220)

ENHANCEMENTS:

• resource/cloudflare_argo_tunnel: mark tunnel_token as sensitive (#​2231)
• resource/cloudflare_device_settings_policy: Add new flag MS IP Exclusion for device policies (#​2236)
• resource/cloudflare_dlp_profile: Add new allowed_match_count field to profiles (#​2210)

BUG FIXES:

• resource/cloudflare_logpush_job: fixing typo in comment (#​2238)
• resource/cloudflare_record: always send tags object which allows removal of unwanted tags (#​2205)
• resource/cloudflare_tunnel_config: use correct notation for nested lists (#​2235)

INTERNAL:

• internal: bump Go version to 1.20 (#​2243)

DEPENDENCIES:

• provider: bump golang.org/x/net to v0.7.0 (#​2245)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.60.0 to 0.61.0 (#​2240)
• provider: bumps github.com/hashicorp/terraform-plugin-framework-validators from 0.9.0 to 0.10.0 (#​2227)
• provider: bumps github.com/hashicorp/terraform-plugin-mux from 0.8.0 to 0.9.0 (#​2228)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.24.1 to 2.25.0 (#​2239)
• provider: bumps golang.org/x/net from 0.6.0 to 0.7.0 (#​2241)

v3.34.0

Compare Source

BREAKING CHANGES:

• datasource/cloudflare_waf_groups: removed with no current replacement (#​2138)
• datasource/cloudflare_waf_packages: removed with no current replacement (#​2138)
• datasource/cloudflare_waf_rules: removed with no current replacement (#​2138)
• provider: account_id is no longer available as a global configuration option. Instead, use the resource specific attributes. (#​2139)
• resource/cloudflare_access_bookmark: resource has been removed in favour of configuration on cloudflare_access_application (#​2136)
• resource/cloudflare_access_rule: require explicit zone_id or account_id and remove implicit fallback to user level rules (#​2157)
• resource/cloudflare_account_member: account_id is now required (#​2153)
• resource/cloudflare_account_member: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_argo_tunnel: resource has been renamed to cloudflare_tunnel (#​2135)
• resource/cloudflare_ip_list: removed in favour of cloudflare_list (#​2137)
• resource/cloudflare_load_balancer: Migrate session_affinity_attributes from TypeMap to TypeSet (#​1959)
• resource/cloudflare_load_balancer: session_affinity_attributes.drain_duration is now TypeInt instead of TypeString (#​1959)
• resource/cloudflare_load_balancer_monitor: account_id is now required (#​2153)
• resource/cloudflare_load_balancer_monitor: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_load_balancer_pool: account_id is now required (#​2153)
• resource/cloudflare_load_balancer_pool: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_notification_policy: alert types block_notification_review_accepted and workers_uptime have been removed. (#​2215)
• resource/cloudflare_notification_policy: alert types g6_health_alert has been renamed to load_balancing_health_alert (#​2215)
• resource/cloudflare_notification_policy: alert types g6_pool_toggle_alert has been renamed to load_balancing_pool_enablement_alert (#​2215)
• resource/cloudflare_notification_policy: alert types scriptmonitor_alert_new_max_length_script_url has been renamed to scriptmonitor_alert_new_max_length_resource_url (#​2215)
• resource/cloudflare_notification_policy: alert types scriptmonitor_alert_new_scripts has been renamed to scriptmonitor_alert_new_resources (#​2215)
• resource/cloudflare_waf_group: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_override: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_package: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_rule: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_workers_kv: account_id is now required (#​2153)
• resource/cloudflare_workers_kv: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_workers_kv_namespace: account_id is now required (#​2153)
• resource/cloudflare_workers_kv_namespace: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_workers_script: account_id is now required (#​2153)
• resource/cloudflare_workers_script: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_zone: account_id is now required (#​2153)
• resource/cloudflare_zone: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)

FEATURES:

• New Resource: cloudflare_mtls_certificate (#​2182)
• New Resource: cloudflare_queue (#​2134)

ENHANCEMENTS:

• resource/cloudflare_notification_policy: alert types block_notification_block_removed, fbm_dosd_attack, scriptmonitor_alert_new_max_length_resource_url, scriptmonitor_alert_new_resources, tunnel_health_event, tunnel_update_event have been added. (#​2215)
• resource/cloudflare_ruleset: Preserve IDs of unmodified rules when updating rulesets (#​2172)
• resource/cloudflare_ruleset: add support for score_per_period and score_response_header_name (#​2177)
• resource/cloudflare_worker_script: add support for queue_binding (#​2134)

BUG FIXES:

• resource/cloudflare_account_member: allow status to be computed when not provided (#​2217)
• resource/cloudflare_page_rule: fix failing page rules acceptance tests (#​2213)
• resource/cloudflare_page_rule: make cache_key_fields optional to align with API constraints (#​2192)
• resource/cloudflare_page_rule: remove empty cookie and header fields when applying this resource (#​2208)
• resource/cloudflare_pages_project: changing name will now force recreation of the project (#​2216)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.59.0 to 0.60.0 (#​2204)
• provider: bumps goreleaser/goreleaser-action from 4.1.0 to 4.2.0 (#​2201)

v3.33.1

Compare Source

BUG FIXES:

• provider: remove conflicting ExactlyOneOf schema validation from framework schema (#​2185)

v3.33.0

Compare Source

BREAKING CHANGES:

• datasource/cloudflare_waf_groups: removed with no current replacement (#​2138)
• datasource/cloudflare_waf_packages: removed with no current replacement (#​2138)
• datasource/cloudflare_waf_rules: removed with no current replacement (#​2138)
• provider: account_id is no longer available as a global configuration option. Instead, use the resource specific attributes. (#​2139)
• resource/cloudflare_access_bookmark: resource has been removed in favour of configuration on cloudflare_access_application (#​2136)
• resource/cloudflare_access_rule: require explicit zone_id or account_id and remove implicit fallback to user level rules (#​2157)
• resource/cloudflare_account_member: account_id is now required (#​2153)
• resource/cloudflare_account_member: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_argo_tunnel: resource has been renamed to cloudflare_tunnel (#​2135)
• resource/cloudflare_ip_list: removed in favour of cloudflare_list (#​2137)
• resource/cloudflare_load_balancer_monitor: account_id is now required (#​2153)
• resource/cloudflare_load_balancer_monitor: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_load_balancer_pool: account_id is now required (#​2153)
• resource/cloudflare_load_balancer_pool: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_waf_group: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_override: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_package: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_waf_rule: removed in favour of cloudflare_ruleset (#​2138)
• resource/cloudflare_workers_kv: account_id is now required (#​2153)
• resource/cloudflare_workers_kv: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_workers_kv_namespace: account_id is now required (#​2153)
• resource/cloudflare_workers_kv_namespace: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_workers_script: account_id is now required (#​2153)
• resource/cloudflare_workers_script: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)
• resource/cloudflare_zone: account_id is now required (#​2153)
• resource/cloudflare_zone: no longer sets client.AccountID internally and relies on the resource provided value (#​2154)

ENHANCEMENTS:

• provider: mux terraform-plugin-sdk/v2 and terraform-plugin-framework (#​2170)
• resource/cloudflare_access_group: supports ip_list property. (#​2073)
• resource/cloudflare_access_organization: add support for user_seat_expiration_inactive_time (#​2115)
• resource/cloudflare_ruleset: do not let edge_ttl: default be zero (#​2143)
• resource/cloudflare_teams_accounts: adds support for mailto_address and mailto_subject blockpage settings (#​2146)
• resource/cloudflare_teams_rules: adds egress rule settings. (#​2159)

BUG FIXES:

• resource/cloudflare_record: fix issue with DNS comments and tags not being set for new records (#​2148)

DEPENDENCIES:

• provider: bumps dependabot/fetch-metadata from 1.3.5 to 1.3.6 (#​2183)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.58.1 to 0.59.0 (#​2166)

v3.32.0

Compare Source

FEATURES:

• New Resource: cloudflare_device_managed_networks (#​2126)

ENHANCEMENTS:

• provider: X-Auth-Email, X-Auth-Key, X-Auth-User-Service-Key and Authorization values are now automatically redacted from debug logs (#​2123)
• provider: use inbuilt cloudflare-go logger for HTTP interactions (#​2123)
• resource/cloudflare_device_posture_rule: add ability to create crowdstrike s2s posture rule creation (#​2128)
• resource/cloudflare_origin_ca: support all authentication schemes (#​2124)
• resource/cloudflare_pages_project: adds support for always_use_latest_compatibility_date, fail_open, service_binding and usage_model (#​2083)
• resource/cloudflare_record: add support for tags and comments. (#​2105)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.57.1 to 0.58.1 (#​2122)

v3.31.0

Compare Source

NOTES:

• resource/cloudflare_worker_script: supports explicit account_id instead of inheriting global values (#​2102)

FEATURES:

• New Resource: cloudflare_tiered_cache (#​2101)

ENHANCEMENTS:

• resource/cloudflare_access_application: makes allowed_idps type to set (#​2094)
• resource/cloudflare_custom_hostname: add support for defining custom metadata (#​2107)

BUG FIXES:

• resource/cloudflare_api_shield: allow for empty auth_id_characteristics (#​2091)
• resource/cloudflare_ruleset: allow edge_ttl -> default to be optional (#​2097)

DEPENDENCIES:

• provider: bumps actions/stale from 6 to 7 (#​2098)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.56.0 to 0.57.0 (#​2102)

v3.30.0

Compare Source

FEATURES:

• New Data Source: cloudflare_load_balancer_pools (#​1228)
• New Resource: cloudflare_url_normalization_settings (#​1878)

ENHANCEMENTS:

• resource/cloudflare_workers_script: add support for analytics_engine_binding bindings (#​2051)

BUG FIXES:

• resource/access_application: fix issue where session_duration always showed a diff for bookmark apps (#​2076)
• resource/cloudflare_ruleset: fix issue where SSL setting is based of security level (#​2088)
• resource/cloudflare_split_tunnel: handle nested attribute changes and ignore ordering (#​2066)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.55.0 to 0.56.0 (#​2075)
• provider: bumps goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (#​2087)

v3.29.0

Compare Source

NOTES:

• datasource/api_token_permission_groups: permissions attribute has been deprecated in favour of individual resource level attributes. (#​1960)

FEATURES:

• New Resource: cloudflare_device_settings_policy (#​1926)
• New Resource: cloudflare_tunnel_config (#​2041)

ENHANCEMENTS:

• resource/cloudflare_fallback_domain: Add creating fallback domains for device policies (#​1926)
• resource/cloudflare_logpush_job: add support for workers_trace_events (#​2025)
• resource/cloudflare_origin_ca_certificate: add logic to renew certificate and add a new flag to set if we should renew earlier (#​2048)
• resource/cloudflare_origin_ca_certificate: trigger a replacement when csr is changed (#​2055)
• resource/cloudflare_origin_ca_certificate: trigger a replacement when validity is changed (#​2046)
• resource/cloudflare_pages_domain: add note about needing to make a separate cloudflare_record. (#​2060)
• resource/cloudflare_pages_project: add note about linking git accounts to Cloudflare account. (#​2060)
• resource/cloudflare_ruleset: add support for importing existing resources (#​2054)
• resource/cloudflare_split_tunnel: Add configuring split tunnel for device policies (#​1926)
• resource/cloudflare_workers_kv: add support for explicitly setting account_id on the resource (#​2049)
• resource/cloudflare_workers_kv_namespace: add support for explicitly setting account_id on the resource (#​2049)
• resource/cloudflare_workers_kv_namespace: swap internals to use new method signatures from cloudflare-go release (#​2049)

BUG FIXES:

• datasource/api_token_permission_groups: add user, account and zone attributes to contain only those specific resource level permissions. (#​1960)
• resource/access_policy: Fix issue where only last SAML rule group was applied in
  Access policy (#​2033)
• resource/cloudflare_account: Fix uninitialized cloudflare.Account.Settings (#​2034)
• resource/cloudflare_custom_hostname: remove ForceNew on wait_for_ssl_pending_validation (#​2027)
• resource/cloudflare_list: Do not reapply changes if only list order changed. (#​2063)
• resource/cloudflare_record: Fix null MX record creation (#​2038)
• resource/cloudflare_spectrum_application: ignore ordering of edge_ips (#​2032)
• resource/cloudflare_workers_kv: key changes force creation of a new resource (#​2044)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.54.0 to 0.55.0 (#​2049)

v3.28.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_zone: add new plans for zone subscriptions (#​2023)

BUG FIXES:

• resource/access_application: Fix issue where empty CORS headers state causes panics (#​2010)

DEPENDENCIES:

• provider: bumps dependabot/fetch-metadata from 1.3.4 to 1.3.5 (#​2008)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.53.0 to 0.54.0 (#​2016)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.24.0 to 2.24.1 (#​2024)

v3.27.0

Compare Source

FEATURES:

• New Resource: cloudflare_access_organization (#​1961)
• New Resource: cloudflare_dlp_profile (#​1984)
• New Resource: cloudflare_total_tls (#​1979)
• New Resource: cloudflare_waiting_room_rules (#​1957)

ENHANCEMENTS:

• resource/cloudflare_access_application: add support for app_launcher, biso, dash_sso and warp to the schema (#​1988)
• resource/cloudflare_load_balancer_monitor: support defining explicit account_id for resources (#​1986)
• resource/cloudflare_load_balancer_pool: support defining explicit account_id for resources (#​1986)
• resource/cloudflare_logpush_job: add support for "access_requests" dataset parameter (#​2001)
• resource/cloudflare_teams_list: handle pagination for larger Team List accounts (#​1706)
• test: use T.Setenv to set env vars in provider tests (#​1985)

BUG FIXES:

• resource/cloudflare_access_group: fix issue where policy groups were always showing a diff during plans (#​1983)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.52.0 to 0.53.0 (#​1995)
• provider: bumps github.com/stretchr/testify from 1.8.0 to 1.8.1 (#​1993)

v3.26.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_custom_hostname: Add wait_for_ssl_pending_validation attribute (#​1953)
• resource/cloudflare_device_posture_rule: Add chromeos and unique_client_id values (#​1950)
• resource/cloudflare_load_balancer: Migrate to autogen docs, improve docs (#​1954)
• resource/cloudflare_pages_domain: add Pages project domain importer. (#​1973)
• resource/cloudflare_ruleset: add support for overriding sensitivity levels for ruleset rules (#​1965)

BUG FIXES:

• resource/cloudflare_byo_ip_prefix: set correct prefix ID for the byoip prefix during import. (#​1951)
• resource/cloudflare_custom_ssl: check GeoRestrictions is not nil before attempting to compare it (#​1964)
• resource/cloudflare_pages_project: add defaults to Pages project deployment config (#​1973)
• resource/cloudflare_zone_settings_override: Fetch/modify origin_max_http_version as a single setting. (#​1805)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.51.0 to 0.52.0 (#​1962)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.23.0 to 2.24.0 (#​1969)
• provider: bumps goreleaser/goreleaser-action from 3.1.0 to 3.2.0 (#​1977)

v3.25.0

Compare Source

NOTES:

• resource/device_posture_rule: update device posture rule to reflect new linux posture fields (#​1842)

ENHANCEMENTS:

• resource/cloudflare_account_member: permit setting status in terraform schema if desired (#​1920)
• resource/cloudflare_email_routing_catch_all: switch to a dedicated scheme to allow type = "drop" (#​1947)
• resource/cloudflare_load_balancer: Add support for adaptive_routing, location_strategy, random_steering, and zero_downtime_failover (#​1941)
• resource/cloudflare_load_balancer: update internal method signatures to match upstream library (#​1932)
• resource/cloudflare_load_balancer_monitor: update internal method signatures to match upstream library (#​1932)
• resource/cloudflare_load_balancer_pool: update internal method signatures to match upstream library (#​1932)

BUG FIXES:

• provider: allow individual setting of x-auth-service-key (#​1923)
• provider: fix versioning injection during release builds (#​1935)
• resource/cloudflare_byo_ip_prefix: fix Import to set account_id (#​1930)
• resource/cloudflare_record: update Read method to pull from remote API instead of local configuration which is empty during Import (#​1942)
• resource/cloudflare_zone_settings_override: Fix array manipulation bug related to single zone settings (#​1925)

DEPENDENCIES:

• provider: bumps actions/stale from 5 to 6 (#​1922)
• provider: bumps dependabot/fetch-metadata from 1.3.3 to 1.3.4 (#​1945)

v3.24.0

Compare Source

NOTES:

• resource/cloudflare_access_bookmark: Bookmark resource is deprecated in favor of using the cloudflare_access_application resource. (#​1914)
• resource/cloudflare_email_routing_rule: Fix example resource to use correct syntax (#​1895)
• resource/cloudflare_email_routing_rule_catch_all: Fix example resource to use correct syntax (#​1895)

FEATURES:

• New Data Source: cloudflare_accounts (#​1899)
• New Data Source: cloudflare_record (#​1906)
• New Resource: cloudflare_account (#​1902)
• New Resource: cloudflare_user_agent_blocking_rule (#​1894)

ENHANCEMENTS:

• resource/cloudflare_pages_project: Adds importer for pages_project (#​1886)
• tools: add devcontainer for local development (#​1892)

BUG FIXES:

• provider: allow setting api_user_service_key without token and/or key (#​1907)
• resource/cloudflare_load_balancer_monitor: fix detection of headers values changing (#​1903)
• resource/cloudflare_pages_project: fix null source on project create (#​1898)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.49.0 to 0.50.0 (#​1910)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.21.0 to 2.22.0 (#​1900)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.22.0 to 2.23.0 (#​1913)

v3.23.0

Compare Source

FEATURES:

• New Resource: cloudflare_api_shield (#​1874)
• New Resource: cloudflare_email_routing_address (#​1856)
• New Resource: cloudflare_email_routing_catch_all (#​1856)
• New Resource: cloudflare_email_routing_rules (#​1856)
• New Resource: cloudflare_email_routing_settings (#​1856)
• New Resource: cloudflare_web3_hostname (#​1882)

ENHANCEMENTS:

• resource/cloudflare_access_service_token: updates internals to allow in place refreshing instead of full replacement based on the expires_at and min_days_for_renewal values (#​1872)
• resource/cloudflare_pages_domain: Adds support for Pages domains (#​1835)
• resource/cloudflare_pages_project: Adds support for Pages Projects (#​1835)
• resource/cloudflare_record: Add HTTPS DNS record type (#​1887)
• resource/cloudflare_worker: provide js module option to allow service bindings (#​1865)

BUG FIXES:

• resource/cloudflare_authenticated_origin_pulls: fix improper handling of enabled=false (#​1861)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.48.0 to 0.49.0 (#​1871)
• provider: bumps github.com/golangci/golangci-lint from 1.48.0 to 1.49.0 (#​1855)
• provider: bumps goreleaser/goreleaser-action from 3.0.0 to 3.1.0 (#​1868)

v3.22.0

Compare Source

NOTES:

• update local setup documentation to reflect newer required Go version (#​1847)

ENHANCEMENTS:

• resource/cloudflare_ruleset: add support for http_config_settings (#​1837)
• resources/worker_script: add support for r2_bucket_binding (#​1825)

BUG FIXES:

• resource/cloudflare_fallback_domain: fix perpetual changes due to ordering (#​1828)
• resource/cloudflare_notification_policy: add missing alert types and filters to validation and docs (#​1830)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.46.0 to 0.47.1 (#​1844)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.20.0 to 2.21.0 (#​1838)
• provider: bumps github.com/hcloudflare-go from 0.47.1 to 0.48.0 (#​1848)

v3.21.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_page_rule: Removed always_online from page rules since this action has been decommissioned from page rules (#​1817)

ENHANCEMENTS:

• resource/cloudflare_custom_ssl: handle when remote ID changes during updates (#​1824)
• resource/cloudflare_ruleset: add support and configuration for serve_errors action (#​1794)
• resource/cloudflare_ruleset: add support for sni override in route action (#​1816)

BUG FIXES:

• resource/cloudflare_account_member: actually use the account_id value (#​1823)
• resource/cloudflare_zone_settings_override: add missing allowed value of 120 for browser_cache_ttl (#​1822)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.45.0 to 0.46.0 (#​1815)
• provider: bumps github.com/golangci/golangci-lint from 1.47.2 to 1.47.3 (#​1813)
• provider: bumps github.com/golangci/golangci-lint from 1.47.3 to 1.48.0 (#​1820)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.19.0 to 2.20.0 (#​1804)

v3.20.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_healthcheck: deprecates notification_email_addresses and notification_suspended in favour of cloudflare_notification_policy (#​1789)

NOTES:

• resource/cloudflare_access_rule: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1790)
• resource/cloudflare_account_member: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1767)
• resource/cloudflare_certificate_pack: remove references to long-deprecated dedicated certs (replaced by advanced) (#​1778)
• resource/cloudflare_rulesets: Cache Rules use cache flag instead of bypass_cache (#​1785)
• resource/cloudflare_zone: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1767)

ENHANCEMENTS:

• resource/cloudflare_access_application: Add support for Saas applications (#​1762)
• resource/cloudflare_access_rule: add support for account_id (#​1790)
• resource/cloudflare_account_member: add support for account_id (#​1767)
• resource/cloudflare_api_token: add support for not_before and expires_on (#​1792)
• resource/cloudflare_certificate_pack: fix some of the custom hostname docs copy (#​1778)
• resource/cloudflare_certificate_pack: update the list of allowed certificate authorities (#​1778)
• resource/cloudflare_load_balancer: Add support for LB country pools (#​1797)
• resource/cloudflare_managed_headers: swap filtering to use API instead of custom logic (#​1765)
• resource/cloudflare_ruleset: add support for from_value action parameter when using redirect action (#​1781)
• resource/cloudflare_zone: add support for account_id (#​1767)

BUG FIXES:

• resource/cloudflare_waiting_room: fix default waiting room session_duration and path values (#​1766)
• resource/cloudflare_zone_lockdown: Fix crash when logging upstream error message (#​1777)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.44.0 to 0.45.0 (#​1793)
• provider: bumps github.com/golangci/golangci-lint from 1.46.2 to 1.47.0 (#​1786)
• provider: bumps github.com/golangci/golangci-lint from 1.47.0 to 1.47.1 (#​1788)
• provider: bumps github.com/golangci/golangci-lint from 1.47.1 to 1.47.2 (#​1795)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.4.1 to 0.5.0 (#​1773)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.5.0 to 0.6.0 (#​1780)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.6.0 to 0.7.0 (#​1798)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.18.0 to 2.19.0 (#​1779)

v3.19.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_ipsec_tunnel: add allow_null_cipher to ipsec tunnel (#​1736)
• resource/cloudflare_record: Validate that DNS record names are non-empty (#​1740)
• resource/cloudflare_ruleset: add support for from_list action parameter when using redirect action (#​1744)
• resource/cloudflare_waiting_room: Add queueing_method field. (#​1759)
• resource/cloudflare_workers_script: add support for service_binding bindings (#​1760)
• resource/cloudflare_zone_settings_override: Add support for origin_max_http_version (#​1755)

BUG FIXES:

• resource/cloudflare_list: fix default values for redirect list updates (#​1746)
• resource/cloudflare_logpush_job: fix logpush job name validation regex (#​1743)
• resource/cloudflare_tunnel_route: Fix incorrect indexing of resource data id attributes (#​1753)

DEPENDENCIES:

• provider: bumps dependabot/fetch-metadata from 1.3.1 to 1.3.2 (#​1747)
• provider: bumps dependabot/fetch-metadata from 1.3.2 to 1.3.2 (#​1748)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.43.0 to 0.44.0 (#​1757)
• provider: bumps github.com/hashicorp/terraform-plugin-docs from 0.12.0 to 0.13.0 (#​1763)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.17.0 to 2.18.0 (#​1758)
• provider: bumps github.com/stretchr/testify from 1.7.5 to 1.8.0 (#​1738)

v3.18.0

Compare Source

NOTES:

• resource/cloudflare_ip_list: Deprecated cloudflare_ip_list in favor of cloudflare_list. (#​1700)

FEATURES:

• New Resource: cloudflare_managed_headers (#​1688)
• New Resource: resource/cloudflare_list: Added support for generic list types, including redirect lists. (#​1700)

ENHANCEMENTS:

• resource/cloudflare_logpush_job: adds support for kind attribute (#​1718)
• resource/cloudflare_logpush_job: validate name attribute (#​1717)
• resource/cloudflare_ruleset: add support for set cache settings (#​1701)

BUG FIXES:

• resource/cloudflare_logpush_job: Fix for optional filter attribute (#​1712)
• resource/cloudflare_logpush_job: fix unmarhalling job with empty/no filter (#​1723)
• resource/cloudflare_record: ensure trailing . in value don't cause surious diffs (#​1713)

v3.17.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_ruleset: deprecates enabled in overridden configurations immediately in favour of status (#​1689)

FEATURES:

• New Resource: cloudflare_tunnel_virtual_network (#​1672)

ENHANCEMENTS:

• resource/cloudflare_access_identity_provider: Add support for PKCE when creating IDPS. (#​1667)
• resource/cloudflare_device_posture_integration: add support for managing uptycs, intune and crowdstrike third party posture providers. (#​1628)
• resource/cloudflare_ipsec_tunnel: add support for healthcheck_enabled, health_check_target, healthcheck_type, psk (#​1685)
• resource/cloudflare_logpush_job: Add filter field support (#​1660)
• resource/cloudflare_tunnel_route: Add virtual_network_id attribute (#​1668)

BUG FIXES:

• resource/cloudflare_teams_rule: Fixes issue with rule precedence updates by using a generated version of precendence in API calls to reduce clash

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.