DEPENDENCIES:
FEATURES:
IMPROVEMENTS:
- All Data Sources: adding validation for the
resource_group_name
field to not be empty where it's Required (#6864) - Data Source:
azurerm_virtual_machine
- exportidentity
attribute (#6826) azurerm_api_management
- support for configuring the Developer Portal (#6724)azurerm_api_management
- support for user assigned managed identities (#6783)azurerm_api_management
- supportkey_vault_id
that do not have a version (#6723)azurerm_api_management_diagnostic
- support required propertyapi_management_logger_id
(#6682)azurerm_application_gateway
- support for WAF policies (#6105)azurerm_app_service_environment
- support specifying explicit resource group (#6821)azurerm_express_route_circuit
- de-provision and re-provision circuit when changing the bandwidth reduction (#6601)azurerm_frontdoor
- expose theheader_frontdoor_id
attribute (#6916)azurerm_log_analytics_workspace
- add support forrentention_in_days
for Free Tier (#6844)azurerm_mariadb_server
- support for thecreate_mode
property allowing the creation of replicas, point in time restores, and geo restors (#6865)azurerm_mariadb_server
- support for thepublic_network_access_enabled
property (#6865)azurerm_mariadb_server
- all properties in thestorage_profile
block have been moved to the top level (#6865)azurerm_mariadb_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
azurerm_mysql_server
- support for thecreate_mode
property allowing the creation of replicas, point in time restores, and geo restors (#6833)azurerm_mysql_server
- support for thepublic_network_access_enabled
property (#6833)azurerm_mysql_server
- all properties in thestorage_profile
block have been moved to the top level (#6833)azurerm_mysql_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
toauto_grow_enabled
(#6833)azurerm_mssql_server
- add support for theazuread_administrator
property (#6822)azurerm_postgres_server
- support for thethreat_detection_policy
property (#6721)azurerm_storage_account
- enable migration ofaccount_kind
fromStorage
toStorageV2
(#6580)azurerm_windows_virtual_machine
- theos_disk.disk_encryption_set_id
can now be updated (#6846)
BUG FIXES:
- Data Source:
azurerm_automation_account
- using the ID of the Automation Account, rather than the ID of the Automation Account's Registration Info (#6848) - Data Source:
azurerm_security_group
- fixing crash where id is nil (#6910) - Data Source:
azurerm_mysql_server
- removeadministrator_login_password
property as it is not returned from the api (#6865) azurerm_api_management
- fixing a crash whenpolicy
is nil (#6862)azurerm_api_management
- only sending thehostname_configuration
properties if they are not empty (#6850)azurerm_api_management_diagnostic
- can now be provision again by supportingapi_management_logger_id
(#6682)azurerm_api_management_named_value
- fix the non empty plan whensecret
is true (#6834)azurerm_application_insights
-retention_in_days
defaults to 90 (#6851)azurerm_data_factory_trigger_schedule
- setting thetype
required for Pipeline References (#6871)azurerm_kubernetes_cluster
- fixes theInvalidLoadbalancerProfile
error (#6534)azurerm_linux_virtual_machine_scale_set
- support for updating thedo_not_run_extensions_on_overprovisioned_machines
property (#6917)azurerm_monitor_diagnostic_setting
- fix possible crash withretention_policy
(#6911)azurerm_mariadb_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6865)azurerm_mysql_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6833)azurerm_role_assignment
- added evential consistency check to assignment creation (#6925)azurerm_windows_virtual_machine_scale_set
- support for updating thedo_not_run_extensions_on_overprovisioned_machines
property (#6917)
FEATURES:
- New Data Source:
azurerm_data_share_account
(#6575) - New Resource:
azurerm_data_share_account
(#6575) - New Resource:
azurerm_function_app_slot
(#6435) - New Resource:
azurerm_sentinel_alert_rule_scheduled
(#6650)
IMPROVEMENTS:
- Data Source:
azurerm_eventhub_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708) - Data Source:
azurerm_eventhub_namespace_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708) - Data Source:
azurerm_eventhub_namespace
- support for thedefault_primary_connection_string_alias
an_defaultsecondary_connection_string_alias
propeties (#6708) azurerm_analysis_services_server
- support updating when the Server is paused (#6786)azurerm_app_service
- support for health_check_path preview feature added (#6661)azurerm_app_service
- support forname
andpriority
onip_restrictions
(#6705)azurerm_application_gateway
- support for SSL Certificates without passwords (#6742)azurerm_eventhub_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708)azurerm_eventhub_namespace_authorization_rule
- support for theprimary_connection_string_alias
ansecondary_connection_string_alias
propeties (#6708)azurerm_eventhub_namespace
- support for thedefault_primary_connection_string_alias
an_defaultsecondary_connection_string_alias
propeties (#6708)azurerm_hdinsight_hadoop_cluster
- support for metastores on cluster creation (#6145)azurerm_key_vault_certificate
- support for recovering a soft-deleted certificate if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_key_vault_key
- support for recovering a soft-deleted key if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_key_vault_secret
- support for recovering a soft-deleted secret if thefeatures
flagrecover_soft_deleted_key_vaults
is set totrue
(#6716)azurerm_linux_virtual_machine_scale_set
- support for configuringcreate_mode
for data disks (#6744)azurerm_monitor_diagnostic_setting
-log_analytics_destination_type
supportsAzureDiagnostics
(#6769)azurerm_windows_virtual_machine_scale_set
- support for configuringcreate_mode
for data disks (#6744)
BUG FIXES:
- provider: raising an error when the environment is set to
AZURESTACKCLOUD
(#6817) azurerm_analysis_services_server
- ip restriction name field no longer case sensitive (#6774)azurerm_automation_runbook
- thepublish_content_link
property is now optional (#6813)azurerm_eventhub_namespace_authorization_rule
- lock to prevent multiple resources won't clash (#6701)azurerm_network_interface
- changes to dns servers no longer use incremental update (#6624)azurerm_policy_assignment
- allow polices with scopes withoutsubscription/<id>
(built-in policies) (#6792)azurerm_policy_definition
- changes to the dynamic fields (createdBy
,createdOn
,updatedBy
,updatedOn
) keys in themetadata
field are excluded from diff's (#6734)azurerm_redis_cache
- ensurerdb_storage_connection_string
is set whenrdb_backup_enabled
is enabled (#6819)azurerm_site_recovery_network_mapping
- handling an API Error when checking for the presence of an existing Network Mapping (#6747)
FEATURES:
- New Data Source:
azurerm_sentinel_alert_rule_ms_security_incident
(#6606) - New Data Source:
azurerm_shared_image_versions
(#6700) - New Resource:
azurerm_managed_application
(#6386) - New Resource:
azurerm_mssql_server
(#6677) - New Resource:
azurerm_sentinel_alert_rule_ms_security_incident
(#6606)
IMPROVEMENTS:
azurerm_api_management
-sku_name
supports theConsumption
value forsku
(#6602)azurerm_api_management_api
- support for openapi v3 content formats (#6618)azurerm_application_gateway
- supporthost_names
property (#6630)azurerm_express_route_circuit_peering
- support for thecustomer_asn
androuting_registry_name
propeties (#6596)azurerm_frontdoor
- Add support forbackend_pools_send_receive_timeout_seconds
(#6604)azurerm_mssql_server
-support thepublic_network_access_enabled
property (#6678)azurerm_mssql_database
- support for theextended_auditing_policy
block (#6402)azurerm_mssql_elasticpool
- supportlicense_type
(#6631)azurerm_subnet
: Support for multiple prefixes withaddress_prefixes
(#6493)data.azurerm_shared_image_version
-name
supportslatest
andrecent
(#6707)
BUG FIXES:
azurerm_key_vault
- can now be created without subscription level permissions (#6260)azurerm_linux_virtual_machine
- fix validation forname
to allow full length resource names (#6639)azurerm_linux_virtual_machine_scale_set
- fix validation forname
to allow full length resource names (#6639)azurerm_monitor_diagnostic_setting
- makeretention_policy
andretention_policy
optional (#6603)azurerm_redis_cache
- correctly build connection strings when SSL is disabled (#6635)azurerm_sql_database
- prevent extended auditing policy for secondary databases (#6402)azurerm_web_application_firewall_policy
- support for themanaged_rules
property which is required by the new API version (#6126)azurerm_windows_virtual_machine
- fix validation forname
to allow full length resource names (#6639)azurerm_windows_virtual_machine_scale_set
- fix validation forname
to allow full length resource names (#6639)azurerm_virtual_network_gateway_connection
-shared_key
is now optional whentype
isIPSec
(#6565)
FEATURES:
- New Data Source:
azurerm_private_dns_zone
(#6512) - New Resource:
azurerm_maintenance_configuration
(#6038) - New Resource:
azurerm_servicebus_namespace_network_rule_set
(#6379) - New Resource:
azurerm_spring_cloud_app
(#6384)
DEPENDENCIES:
- updating
apimanagement
to2019-12-01
(#6479) - updating the fork of
github.com/Azure/go-autorest
(#6509)
IMPROVEMENTS:
- Data Source:
app_service_environment
- export thelocation
property (#6538) - Data Source:
azurerm_notification_hub_namespace
- exporttags
(#6578) azurerm_api_management
- support for virtual network integrations (#5769)azurerm_cosmosdb_mongo_collection
- support for theindex
andsystem_index
properties (#6426)azurerm_function_app
- addedstorage_account_id
andstorage_account_access_key
(#6304)azurerm_kubernetes_cluster
- deprecatingprivate_link_enabled
in favour ofprivate_cluster_enabled
(#6431)azurerm_mysql_server
- support for thepublic_network_access_enabled
property (#6590)azurerm_notification_hub
- support fortags
(#6578)azurerm_notification_hub_namespace
- support fortags
(#6578)azurerm_postgres_server
- support for thecreate_mode
property allowing replicas, point in time restores, and geo restores to be created (#6459)azurerm_postgres_server
- support for theinfrastructure_encryption_enabled
,public_network_access_enabled
, andssl_minimal_tls_version_enforced
properties (#6459)azurerm_postgres_server
- all properties in thestorage_profile
block have been moved to the top level (#6459)azurerm_postgres_server
- the following properties were renamed and changed to a boolean type:ssl_enforcement
tossl_enforcement_enabled
,geo_redundant_backup
togeo_redundant_backup_enabled
, andauto_grow
toauto_grow_enabled
(#6459)azurerm_private_endpoint
- Add support fortags
(#6574)azurerm_shared_image
- supporthyper_v_generation
property (#6511)azurerm_linux_virtual_machine_scale_set
- support for theautomatic_instance_repair
property (#6346)azurerm_windows_virtual_machine_scale_set
- support for theautomatic_instance_repair
property (#6346)
BUG FIXES:
- Data Source:
azurerm_private_link_service
- fixing a crash when parsing the response (#6504) azurerm_application_gateway
- prevent panic by disallowing empty values forbackend_address_pool.#.fqdns
(#6549)azurerm_application_gateway
- block reordering without changes no longer causes update (#6476)azurerm_cdn_endpoint
-origin_host_header
is now required (#6550)azurerm_cdn_endpoint
- setting therequest_header_condition
block (#6541)azurerm_iothub_dps
- fix crash when path isn't cased correctly (#6570)azurerm_linux_virtual_machine_scale_set
- fixes crash withboot_diagnositics
(#6569)azurerm_policy_assignment
- allow scopes that don't start withsubscription/<id>
(#6576)azurerm_postgres_server
- thestorage_mb
property is now optional whenauto_grow
is enabled (#6459)azurerm_public_ip_prefix
- updateprefix_length
validation to accept all valid IPv4 address ranges (#6589)azurerm_route
- add validation to thename
androute_table_name
propeties (#6055)azurerm_virtual_network_gateway
- per api requirements,public_ip_address_id
is required (#6548)
FEATURES:
- New Data Source:
azurerm_policy_set_definition
(#6305)
DEPENDENCIES:
- updating
github.com/Azure/azure-sdk-for-go
tov41.2.0
(#6419)
IMPROVEMENTS:
- Data Source:
azurerm_policy_definition
- can now lookup withname
(#6275) - Data Source:
azurerm_policy_definition
- the fieldmanagement_group_id
has been deprecated and renamed tomanagement_group_name
(#6275) azurerm_application_insights
- support for thedisable_ip_masking
property (#6354)azurerm_cdn_endpoint
- support for configuringdelivery_rule
(#6163)azurerm_cdn_endpoint
- support for configuringglobal_delivery_rule
(#6163)azurerm_function_app
- support for thepre_warmed_instance_count
property (#6333)azurerm_hdinsight_hadoop_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_hbase_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_interactive_query_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_kafka_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_ml_services_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_rserver_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_spark_cluster
- support for thetls_min_version
property (#6440)azurerm_hdinsight_storm_cluster
- support thethreat_detection_policy
property (#6437)azurerm_kubernetes_cluster
- exporting thekubelet_identity
(#6393)azurerm_kubernetes_cluster
- support for updating themanaged_outbound_ip_count
,outbound_ip_prefix_ids
andoutbound_ip_address_ids
fields within theload_balancer_profile
block (#5847)azurerm_network_interface
- export theinternal_domain_name_suffix
property (#6455)azurerm_policy_definition
- themanagement_group_id
has been deprecated and renamed tomanagement_group_name
(#6275)azurerm_sql_server
- support for theconnection_policy
property (#6438)azurerm_virtual_network
- export theguid
attribute (#6445)
BUG FIXES:
- Data Source:
azurerm_data_factory
- fixing a bug where the ID wasn't set (#6492) - Data Source:
azurerm_eventhub_namespace_authorization_rule
- ensuring theid
field is set (#6496) - Data Source:
azurerm_mariadb_server
- ensuring theid
field is set (#6496) - Data Source:
azurerm_network_ddos_protection_plan
- ensuring theid
field is set (#6496) azurerm_function_app
- prevent a panic from the API returning an empty IP Security Restriction (#6442)azurerm_machine_learning_workspace
- theEnterprise
sku will now properly work (#6397)azurerm_managed_disk
- fixing a bug where the machine would be stopped regardless of whether it was currently shut down or not (#4690)
BREAKING CHANGES:
- Azure Kubernetes Service
- Due to a breaking change in the AKS API, the
azurerm_kubernetes_cluster
resource features a significant behavioural change where creating Mixed-Mode Authentication clusters (e.g. using a Service Principal with a Managed Identity) is no longer supported. - The AKS Team have confirmed that existing clusters will be updated by the Azure API to use only MSI when a change is made to the Cluster (but not the Node Pool). Whilst Terraform could perform this automatically some environments have restrictions on which tags can be added/removed - as such this operation will need to be performed out-of-band. Instead, upon detecting a Mixed-Mode Cluster which has not yet been updated - or upon detecting a former Mixed-Mode Cluster where the Terraform Configuration still contains a
service_principal
block - Terraform will output instructions on how to proceed. azurerm_kubernetes_cluster_node_pool
- clusters with auto-scale disabled must ensure thatmin_count
andmax_count
are set tonull
(or omitted) rather than0
(since 0 isn't a valid value for these fields).
- Due to a breaking change in the AKS API, the
NOTES:
- There's currently a bug in the Azure Kubernetes Service (AKS) API where the Tags on Node Pools are returned in the incorrect case - this bug is being tracked in this issue. This affects the
tags
field within thedefault_node_pool
block forazurerm_kubernetes_clusters
and thetags
field for theazurerm_kubernetes_cluster_node_pool
resource.
IMPROVEMENTS:
- dependencies: updating to use version
2020-02-01
of the Containers API (#6095) - New Resource:
azurerm_private_dns_txt_record
(#6309) azurerm_kubernetes_cluster
- making theservice_principal
block optional - so it's now possible to create MSI-only clusters (#6095)azurerm_kubernetes_cluster
- making thewindows_profile
block computed as Windows credentials are now generated by Azure if unspecified (#6095)azurerm_kubernetes_cluster
- support foroutbound_type
within thenetwork_profile
block (#6120)azurerm_linux_virtual_machine
- OS disk encryption settings can no be updated (#6230)azurerm_windows_virtual_machine
- OS disk encryption settings can no be updated (#6230)
BUG FIXES:
azurerm_kubernetes_cluster
- requiring thatmin_count
andmax_count
within thedefault_node_pool
block are set tonull
rather than0
when auto-scaling is disabled (#6095)azurerm_kubernetes_cluster
- ensuring that a value fornode_count
within thedefault_node_pool
block is always passed to the API to match a requirement in the API (#6095)azurerm_kubernetes_cluster
- ensuring thattags
are set into the state for thedefault_node_pool
(#6095)azurerm_kubernetes_cluster
- conditionally sending theaci_connector_linux
block for Azure China (#6370)azurerm_kubernetes_cluster
- conditionally sending thehttp_application_routing
block for Azure China & Azure US Government (#6370)azurerm_kubernetes_cluster_node_pool
- requiring thatmin_count
andmax_count
are set tonull
rather than0
when auto-scaling is disabled (#6095)azurerm_linux_virtual_machine
- if thepriority
property on read is empty assume it to beRegular
(#6301)azurerm_windows_virtual_machine
- if thepriority
property on read is empty assume it to beRegular
(#6301)
FEATURES:
- New Data Source:
azurerm_managed_application_definition
(#6211) - New Resource:
azurerm_hpc_cache_nfs_target
(#6191) - New Resource:
azurerm_log_analytics_datasource_windows_event
(#6321) - New Resource:
azurerm_log_analytics_datasource_windows_performance_counter
(#6274) - New Resource:
azurerm_managed_application_definition
(#6211) - New Resource:
azurerm_spring_cloud_service
(#4928)
IMPROVEMENTS:
azurerm_network_interface
- always sendenable_accelerated_networking
to the api (#6289)azurerm_management_group
- deprecated and rename thegroup_id
property toname
to better match what it represents (#6276)
BUGS:
azurerm_application_gateway
- can now setinclude_path
withtarget_url
(#6175)azurerm_policy_set_definition
- markmetadata
as computed (#6266)
FEATURES:
- New Data Source:
azurerm_mssql_database
(#6083) - New Data source:
azurerm_network_service_tags
(#6229) - New Resource:
azurerm_custom_resource_provider
(#6234) - New Resource:
azurerm_hpc_cache_blob_target
(#6035) - New Resource:
azurerm_machine_learning_workspace
(#5696) - New Resource:
azurerm_mssql_database
(#6083) - New Resource:
azurerm_mssql_virtual_machine
(#5263) - New resource:
azurerm_policy_remediation
(#5746)
IMPROVEMENTS:
- dependencies: updating
github.com/Azure/azure-sdk-for-go
tov40.3.0
(#6134) - dependencies: updating
github.com/terraform-providers/terraform-provider-azuread
tov0.8.0
(#6134) - dependencies: updating
github.com/tombuildsstuff/giovanni
tov0.10.0
(#6169) - all resources using the
location
field - adding validation to ensure this is not an empty string where this field is Required (#6242) - Data Source
azurerm_storage_container
- exposing theresource_manager_id
field (#6170) azurerm_automation_schedule
- adding validation for the timezone field (#5759)azurerm_cognitive_account
- support for theqna_runtime_endpoint
property (#5778)azurerm_hpc_cache
- exposing themount_addresses
field (#6214)azurerm_lb
- allow ipv6 addresses for theprivate_ip_address
property (#6125)azurerm_managed_disk
- thedisk_encryption_set_id
field is no longer ForceNew (#6207)azurerm_public_ip
- support for Dynamic IPv6 Addresses (#6140)azurerm_service_fabric_cluster
- support for theclient_certificate_common_name
property (#6097)azurerm_storage_container
- exposing theresource_manager_id
field (#6170)azurerm_storage_share
- exposing theresource_manager_id
field (#6170)azurerm_traffic_manager_profile
- support for thecustom_header
property (#5923)
BUG FIXES:
azurerm_analysis_server
- switching theipv4_firewall_rule
block to a Set rather than a List to handle this being unordered (#6179)azurerm_linux_virtual_machine
- making thecustom_data
field sensitive (#6225)azurerm_linux_virtual_machine_scale_set
- making thecustom_data
field sensitive (#6225)azurerm_managed_disk
- only rebooting the attached Virtual Machine when changing the Disk Size, Disk Encryption Set ID or Storage Account Type (#6162)azurerm_netapp_volume
- allow up to102400
MB for thestorage_quota_in_gb
property (#6228)azurerm_policy_definition
- fixing a bug when parsing the Management Group ID (#5981)azurerm_postgresql_server
- updating the validation for thename
field (#6064)azurerm_sql_database
- use the correct base URI for the Extended Auditing Policies Client (#6233)azurerm_storage_management_policy
- conditionally setting values within thebase_blob
block (#6250)azurerm_virtual_machine_data_disk_attachment
- detecting the disk attachment as gone when the VM is no longer available (#6237)azurerm_windows_virtual_machine
- making thecustom_data
field sensitive (#6225)azurerm_windows_virtual_machine_scale_set
- making thecustom_data
field sensitive (#6225)
FEATURES:
- New Data Source:
azurerm_app_configuration
(#6133) - New Data Source:
azurerm_powerbi_embedded
(#5152) - New Resource:
azurerm_cost_management_export_resource_group
(#6131) - New Resource:
azurerm_powerbi_embedded
(#5152) - New Resource:
azurerm_virtual_hub_connection
(#5951)
IMPROVEMENTS:
- Data Source: *
azurerm_logic_app_workflow
- expose computed field:endpoint_configuration
(#5862) azurerm_application_gateway
- support for key vault SSL certificate via thekey_value_secret_id
property (#4366)azurerm_function_app
- support for configuringdaily_memory_time_quota
(#6100)azurerm_logic_app_workflow
- expose computed field:endpoint_configuration
(#5862)azurerm_linux_virtual_machine_scale_set
- support forscale_in_policy
andterminate_notification
(#5391)azurerm_sql_database
- support for theextended_auditing_policy
property (#5049)azurerm_windows_virtual_machine_scale_set
- support forscale_in_policy
andterminate_notification
(#5391)
BUG FIXES:
- Data Source:
azurerm_iothub_dps_shared_access_policy
- building theprimary_connection_string
andsecondary_connection_string
from the Service endpoint rather than the Devices endpoint (#6108) azurerm_function_app
- AddWEBSITE_CONTENT
&WEBSITE_CONTENTAZUREFILECONNECTIONSTRING
for premium plans (#5761)azurerm_iothub_dps_shared_access_policy
- building theprimary_connection_string
andsecondary_connection_string
from the Service endpoint rather than the Devices endpoint (#6108)azurerm_linux_virtual_machine
- updating the validation forname
to allow periods (#5966)azurerm_linux_virtual_machine_scale_set
- updating the validation forname
to allow periods (#5966)azurerm_storage_management_policy
- Fixed the use of single blob rule actions (#5803)
NOTES:
The azurerm_frontdoor
resource has introduced a breaking change due to the underlying service API which enforces location
attributes must be set to 'Global' on all newly deployed Front Door services.
FEATURES:
- New Data Source:
azurerm_database_migration_project
(#5993) - New Data Source:
azurerm_database_migration_service
(#5258) - New Data Source:
azurerm_kusto_cluster
(#5942) - New Data Source:
azurerm_servicebus_topic_authorization_rule
(#6017) - New Resource:
azurerm_bot_channel_directline
(#5445) - New Resource:
azurerm_database_migration_project
(#5993) - New Resource:
azurerm_database_migration_service
(#5258) - New Resource:
azurerm_hpc_cache
(#5528) - New Resource:
azurerm_iotcentral_application
(#5446) - New Resource:
azurerm_monitor_scheduled_query_rules_alert
(#5053) - New Resource:
azurerm_monitor_scheduled_query_rules_log
(#5053) - New Resource:
azurerm_spatial_anchors_account
(#6011)
IMPROVEMENTS:
- batch: upgrading to API version
2019-08-01
(#5967) - containerservice: upgrading to API version
2019-11-01
(#5531) - netapp: upgrading to API version
2019-10-01
(#5531) - dependencies: temporarily switching to using a fork of
github.com/Azure/go-autorest
to workaround an issue in the storage authorizer (#6050) - dependencies: updating
github.com/tombuildsstuff/giovanni
tov0.9.0
(#6050) azurerm_application_gateway
- support up to125
for thecapacity
property with V2 SKU's (#5906)azurerm_automation_dsc_configuration
- support for thetags
property (#5827)azurerm_batch_pool
- support for thepublic_ips
property (#5967)azurerm_frontdoor
- exposed new attributes inbackend_pool_health_probe
blockenabled
andprobe_method
(#5924)azurerm_function_app
- Addedos_type
field to facilitate support oflinux
function apps (#5839)azurerm_kubernetes_cluster
: Support for thenode_labels
property (#5531)azurerm_kubernetes_cluster
: Support for thetags
property (#5931)azurerm_kubernetes_cluster_node_pool
: Support for thenode_labels
property (#5531)azurerm_kubernetes_cluster_node_pool
: Support for thetags
property (#5931)azurerm_kusto_cluster
- support forenable_disk_encryption
andenable_streaming_ingest
properties (#5855)azurerm_lb
- support for theprivate_ip_address_version
property (#5590)azurerm_mariadb_server
- changing thegeo_redundant_backup
property now forces a new resource (#5961)azurerm_netapp_account
- support for thetags
property (#5995)azurerm_netapp_pool
- support for thetags
property (#5995)azurerm_netapp_snapshot
- support for thetags
property (#5995)azurerm_netapp_volume
- support for thetags
property (#5995)azurerm_netapp_volume
- support for theprotocol_types
property (#5485)azurerm_netapp_volume
- deprecated thecifs_enabled
,nfsv3_enabled
, andnfsv4_enabled
properties in favour ofprotocols_enabled
(#5485)azurerm_network_watcher_flow_log
- support for the traffic analysisinterval_in_minutes
property (#5851)azurerm_private_dns_a_record
- export thefqdn
property (#5949)azurerm_private_dns_aaaa_record
- export thefqdn
property (#5949)azurerm_private_dns_cname_record
- export thefqdn
property (#5949)azurerm_private_dns_mx_record
- export thefqdn
property (#5949)azurerm_private_dns_ptr_record
- export thefqdn
property (#5949)azurerm_private_dns_srv_record
- export thefqdn
property (#5949)azurerm_private_endpoint
- exposedprivate_ip_address
as a computed attribute (#5838)azurerm_redis_cache
- support for theprimary_connection_string
andsecondary_connection_string
properties (#5958)azurerm_sql_server
- support for theextended_auditing_policy
property (#5036)azurerm_storage_account
- support up to 50 tags (#5934)azurerm_virtual_wan
- support for thetype
property (#5877)
BUG FIXES:
azurerm_app_service_plan
- no longer sends an emptyapp_service_environment_id
property on update (#5915)azurerm_automation_schedule
- fix time validation (#5876)azurerm_batch_pool
-frontend_port_range
is now set correctly. (#5941)azurerm_dns_txt_record
- support records up to1024
characters in length (#5837)azurerm_frontdoor
- fix the waybackend_pool_load_balancing
/backend_pool_health_probe
(#5924)azurerm_frontdoor
- all new front door resources to be created in theGlobal
location (#6015)azurerm_frontdoor_firewall_policy
- add validation for Frontdoor WAF Name Restrictions (#5943)azurerm_linux_virtual_machine_scale_set
- correctsource_image_id
validation (#5901)azurerm_netapp_volume
- support volmes uoto100TB
in size (#5485)azurerm_search_service
- changing the propertiesreplica_count
&partition_count
properties no longer force a new resource (#5935)azurerm_storage_account
- fixing a crash when an emptystatic_website
block was specified (#6050)azurerm_storage_account
- using SharedKey Authorization for reading/updating the Static Website when not using AzureAD authentication (#6050)
NOTES:
- Major Version: Version 2.0 of the Azure Provider is a major version - some deprecated fields/resources have been removed - please refer to the 2.0 upgrade guide for more information.
- Provider Block: The Azure Provider now requires that a
features
block is specified within the Provider block, which can be used to alter the behaviour of certain resources - more information on thefeatures
block can be found in the documentation. - Terraform 0.10/0.11: Version 2.0 of the Azure Provider no longer supports Terraform 0.10 or 0.11 - you must upgrade to Terraform 0.12 to use version 2.0 of the Azure Provider.
FEATURES:
- Custom Timeouts: - all resources within the Azure Provider now allow configuring custom timeouts - please see Terraform's Timeout documentation and the documentation in each data source resource for more information.
- Requires Import: The Azure Provider now checks for the presence of an existing resource prior to creating it - which means that if you try and create a resource which already exists (without importing it) you'll be prompted to import this into the state.
- New Data Source:
azurerm_app_service_environment
(#5508) - New Data Source:
azurerm_eventhub_authorization_rule
(#5805) - New Resource:
azurerm_app_service_environment
(#5508) - New Resource:
azurerm_express_route_gateway
(#5523) - New Resource:
azurerm_linux_virtual_machine
(#5705) - New Resource:
azurerm_linux_virtual_machine_scale_set
(#5705) - New Resource:
azurerm_network_interface_security_group_association
(#5784) - New Resource:
azurerm_storage_account_customer_managed_key
(#5668) - New Resource:
azurerm_virtual_machine_scale_set_extension
(#5705) - New Resource:
azurerm_windows_virtual_machine
(#5705) - New Resource:
azurerm_windows_virtual_machine_scale_set
(#5705)
BREAKING CHANGES:
- The Environment Variable
DISABLE_CORRELATION_REQUEST_ID
has been renamed toARM_DISABLE_CORRELATION_REQUEST_ID
to match the other Environment Variables - The field
tags
is no longercomputed
- Data Source:
azurerm_api_management
- removing the deprecatedsku
block (#5725) - Data Source:
azurerm_app_service
- removing the deprecated fieldsubnet_mask
from thesite_config
block (#5823) - Data Source:
azurerm_app_service_plan
- the deprecatedproperties
block has been removed since these properties have been moved to the top level (#5717) - Data Source:
azurerm_azuread_application
- This data source has been removed since it was deprecated (#5748) - Data Source:
azurerm_azuread_service_principal
- This data source has been removed since it was deprecated (#5748) - Data Source:
azurerm_builtin_role_definition
- the deprecated data source has been removed (#5844) - Data Source:
azurerm_dns_zone
- removing the deprecatedzone_type
field (#5794) - Data Source:
azurerm_dns_zone
- removing the deprecatedregistration_virtual_network_ids
field (#5794) - Data Source:
azurerm_dns_zone
- removing the deprecatedresolution_virtual_network_ids
field (#5794) - Data Source:
azurerm_key_vault
- removing thesku
block since this has been deprecated in favour of thesku_name
field (#5774) - Data Source:
azurerm_key_vault_key
- removing the deprecatedvault_uri
field (#5774) - Data Source:
azurerm_key_vault_secret
- removing the deprecatedvault_uri
field (#5774) - Data Source:
azurerm_kubernetes_cluster
- removing the fielddns_prefix
from theagent_pool_profile
block (#5823) - Data Source:
azurerm_network_interface
- removing the deprecated fieldinternal_fqdn
(#5823) - Data Source:
azurerm_private_link_service
- removing the deprecated fieldnetwork_interface_ids
(#5823) - Data Source:
azurerm_private_link_endpoint_connection
- the deprecated data source has been removed (#5844) - Data Source:
azurerm_recovery_services_protection_policy_vm
has been renamed toazurerm_backup_policy_vm
(#5816) - Data Source:
azurerm_role_definition
- removing the aliasVirtualMachineContributor
which has been deprecated in favour of the full nameVirtual Machine Contributor
(#5733) - Data Source:
azurerm_storage_account
- removing theaccount_encryption_source
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_storage_account
- removing theenable_blob_encryption
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_storage_account
- removing theenable_file_encryption
field since this is no longer configurable by Azure (#5668) - Data Source:
azurerm_scheduler_job_collection
- This data source has been removed since it was deprecated (#5712) - Data Source:
azurerm_subnet
- removing the deprecatedip_configuration
field (#5801) - Data Source:
azurerm_virtual_network
- removing the deprecatedaddress_spaces
field (#5823) azurerm_api_management
- removing the deprecatedsku
block (#5725)azurerm_api_management
- removing the deprecated fields in thesecurity
block (#5725)azurerm_application_gateway
- the fieldfqdns
within thebackend_address_pool
block is no longer computed (#5823)azurerm_application_gateway
- the fieldip_addresses
within thebackend_address_pool
block is no longer computed (#5823)azurerm_application_gateway
- the deprecated fieldfqdn_list
within thebackend_address_pool
block has been removed (#5823)azurerm_application_gateway
- the deprecated fieldip_address_list
within thebackend_address_pool
block has been removed (#5823)azurerm_application_gateway
- the deprecated fielddisabled_ssl_protocols
has been removed (#5823)azurerm_application_gateway
- the fielddisabled_protocols
within thessl_policy
block is no longer computed (#5823)azurerm_app_service
- removing the fieldsubnet_mask
from thesite_config
block (#5823)azurerm_app_service
- the fieldip_address
within thesite_config
block now refers to a CIDR block, rather than an IP Address to match the Azure API (#5823)azurerm_app_service
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_app_service_plan
- the deprecatedproperties
block has been removed since these properties have been moved to the top level (#5717)azurerm_app_service_slot
- removing the fieldsubnet_mask
from thesite_config
block (#5823)azurerm_app_service_slot
- the fieldip_address
within thesite_config
block now refers to a CIDR block, rather than an IP Address to match the Azure API (#5823)azurerm_app_service_slot
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_application_gateway
- updating the default value for thebody
field within thematch
block from*
to an empty string (#5752)azurerm_automation_account
- removing thesku
block which has been deprecated in favour of thesku_name
field (#5781)azurerm_automation_credential
- removing the deprecatedaccount_name
field (#5781)azurerm_automation_runbook
- removing the deprecatedaccount_name
field (#5781)azurerm_automation_schedule
- removing the deprecatedaccount_name
field (#5781)azurerm_autoscale_setting
- the deprecated resource has been removed (#5844)azurerm_availability_set
- updating the default value formanaged
fromfalse
totrue
(#5724)azurerm_azuread_application
- This resource has been removed since it was deprecated (#5748)azurerm_azuread_service_principal_password
- This resource has been removed since it was deprecated (#5748)azurerm_azuread_service_principal
- This resource has been removed since it was deprecated (#5748)azurerm_client_config
- removing the deprecated fieldservice_principal_application_id
(#5823)azurerm_client_config
- removing the deprecated fieldservice_principal_object_id
(#5823)azurerm_cognitive_account
- removing the deprecatedsku_name
block (#5797)azurerm_connection_monitor
- the deprecated resource has been removed (#5844)azurerm_container_group
- removing theport
field from thecontainer
block (#5823)azurerm_container_group
- removing theprotocol
field from thecontainer
block (#5823)azurerm_container_group
- theports
field is no longer Computed (#5823)azurerm_container_group
- theprotocol
field within theports
block is no longer Computed and now defaults toTCP
(#5823)azurerm_container_group
- removing the deprecated fieldcommand
(#5823)azurerm_container_registry
- removing the deprecatedstorage_account
block (#5823)azurerm_container_service
- This resource has been removed since it was deprecated (#5709)azurerm_cosmosdb_mongo_collection
- removing the deprecatedindexes
block (#5853)azurerm_ddos_protection_plan
- the deprecated resource has been removed (#5844)azurerm_devspace_controller
- removing the deprecatedsku
block (#5795)azurerm_dns_cname_record
- removing the deprecatedrecords
field (#5794)azurerm_dns_ns_record
- removing the deprecatedrecords
field (#5794)azurerm_dns_zone
- removing the deprecatedzone_type
field (#5794)azurerm_dns_zone
- removing the deprecatedregistration_virtual_network_ids
field (#5794)azurerm_dns_zone
- removing the deprecatedresolution_virtual_network_ids
field (#5794)azurerm_eventhub
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_authorization_rule
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_consumer_group
- removing the deprecatedlocation
field (#5793)azurerm_eventhub_namespace
- removing the deprecatedkafka_enabled
field since this is now managed by Azure (#5793)azurerm_eventhub_namespace_authorization_rule
- removing the deprecatedlocation
field (#5793)azurerm_firewall
- removing the deprecated fieldinternal_public_ip_address_id
from theip_configuration
block (#5823)azurerm_firewall
- the fieldpublic_ip_address_id
within theip_configuration
block is now required (#5823)azurerm_frontdoor
- fieldcache_enabled
within theforwarding_configuration
block now defaults tofalse
rather thantrue
(#5852)azurerm_frontdoor
- the fieldcache_query_parameter_strip_directive
within theforwarding_configuration
block now defaults toStripAll
rather thanStripNone
. (#5852)azurerm_frontdoor
- the fieldforwarding_protocol
within theforwarding_configuration
block now defaults toHttpsOnly
rather thanMatchRequest
(#5852)azurerm_function_app
- removing the fieldvirtual_network_name
from thesite_config
block (#5823)azurerm_function_app
- updating the fieldip_address
within theip_restriction
block to accept a CIDR rather than an IP Address to match the updated API behaviour (#5823)azurerm_iot_dps
- This resource has been removed since it was deprecated (#5753)azurerm_iot_dps_certificate
- This resource has been removed since it was deprecated (#5753)azurerm_iothub
- The deprecatedsku.tier
property will be removed. (#5790)azurerm_iothub_dps
- The deprecatedsku.tier
property will be removed. (#5790)azurerm_key_vault
- removing thesku
block since this has been deprecated in favour of thesku_name
field (#5774)azurerm_key_vault_access_policy
- removing the deprecated fieldvault_name
which has been superseded by thekey_vault_id
field (#5774)azurerm_key_vault_access_policy
- removing the deprecated fieldresource_group_name
which has been superseded by thekey_vault_id
field (#5774)azurerm_key_vault_certificate
- removing the deprecatedvault_uri
field (#5774)azurerm_key_vault_key
- removing the deprecatedvault_uri
field (#5774)azurerm_key_vault_secret
- removing the deprecatedvault_uri
field (#5774)azurerm_kubernetes_cluster
- updating the default value forload_balancer_sku
toStandard
fromBasic
(#5747)azurerm_kubernetes_cluster
- the blockdefault_node_pool
is now required (#5823)azurerm_kubernetes_cluster
- removing the deprecatedagent_pool_profile
block (#5823)azurerm_kubernetes_cluster
- the fieldenable_pod_security_policy
is no longer computed (#5823)azurerm_lb_backend_address_pool
- removing the deprecatedlocation
field (#5823)azurerm_lb_nat_pool
- removing the deprecatedlocation
field (#5823)azurerm_lb_nat_rule
- removing the deprecatedlocation
field (#5823)azurerm_lb_probe
- removing the deprecatedlocation
field (#5823)azurerm_lb_rule
- removing the deprecatedlocation
field (#5823)azurerm_log_analytics_workspace_linked_service
- This resource has been removed since it was deprecated (#5754)azurerm_log_analytics_linked_service
- Theresource_id
field has been moved from thelinked_service_properties
block to the top-level and the deprecated fieldlinked_service_properties
will be removed. This has been replaced by theresource_id
resource (#5775)azurerm_maps_account
- thesku_name
field is now case-sensitive (#5776)azurerm_mariadb_server
- removing thesku
block since it's been deprecated in favour of thesku_name
field (#5777)azurerm_metric_alertrule
- the deprecated resource has been removed (#5844)azurerm_monitor_metric_alert
- updating the default value forauto_mitigate
fromfalse
totrue
(#5773)azurerm_monitor_metric_alertrule
- the deprecated resource has been removed (#5844)azurerm_mssql_elasticpool
- removing the deprecatedelastic_pool_properties
block (#5744)azurerm_mysql_server
- removing the deprecatedsku
block (#5743)azurerm_network_interface
- removing the deprecatedapplication_gateway_backend_address_pools_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedapplication_security_group_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedload_balancer_backend_address_pools_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedload_balancer_inbound_nat_rules_ids
field from theip_configurations
block (#5784)azurerm_network_interface
- removing the deprecatedinternal_fqdn
field (#5784)azurerm_network_interface
- removing thenetwork_security_group_id
field in favour of a new split-out resourceazurerm_network_interface_security_group_association
(#5784)azurerm_network_interface_application_security_group_association
- removing theip_configuration_name
field associations between Network Interfaces and Application Security Groups now need to be made to all IP Configurations (#5815)azurerm_network_interface
- thevirtual_machine_id
field is now computed-only since it's not setable (#5784)azurerm_notification_hub_namesapce
- removing thesku
block in favour of thesku_name
argument (#5722)azurerm_postgresql_server
- removing thesku
block which has been deprecated in favour of thesku_name
field (#5721)azurerm_private_link_endpoint
- the deprecated resource has been removed (#5844)azurerm_private_link_service
- removing the deprecated fieldnetwork_interface_ids
(#5823)azurerm_public_ip
- making theallocation_method
field required (#5823)azurerm_public_ip
- removing the deprecated fieldpublic_ip_address_allocation
(#5823)azurerm_recovery_network_mapping
- the deprecated resource has been removed (#5816)azurerm_recovery_replicated_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_fabric
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protected_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_container
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_container_mapping
- the deprecated resource has been removed (#5816)azurerm_recovery_services_protection_policy_vm
- the deprecated resource has been removed (#5816)azurerm_recovery_services_replication_policy
- the deprecated resource has been removed (#5816)azurerm_relay_namespace
- removing thesku
block in favour of thesku_name
field (#5719)azurerm_scheduler_job
- This resource has been removed since it was deprecated (#5712)azurerm_scheduler_job_collection
- This resource has been removed since it was deprecated (#5712)azurerm_storage_account
- updating the default value foraccount_kind
fromStorage
toStorageV2
(#5850)azurerm_storage_account
- removing the deprecatedaccount_type
field (#5710)azurerm_storage_account
- removing the deprecatedenable_advanced_threat_protection
field (#5710)azurerm_storage_account
- updating the default value forenable_https_traffic_only
fromfalse
totrue
(#5808)azurerm_storage_account
- removing theaccount_encryption_source
field since this is no longer configurable by Azure (#5668)azurerm_storage_account
- removing theenable_blob_encryption
field since this is no longer configurable by Azure (#5668)azurerm_storage_account
- removing theenable_file_encryption
field since this is no longer configurable by Azure (#5668)azurerm_storage_blob
- making thetype
field case-sensitive (#5710)azurerm_storage_blob
- removing the deprecatedattempts
field (#5710)azurerm_storage_blob
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_container
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_container
- removing the deprecatedproperties
block (#5710)azurerm_storage_queue
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_share
- removing the deprecatedresource_group_name
field (#5710)azurerm_storage_table
- removing the deprecatedresource_group_name
field (#5710)azurerm_subnet
- removing the deprecatedip_configuration
field (#5801)azurerm_subnet
- removing the deprecatednetwork_security_group_id
field (#5801)azurerm_subnet
- removing the deprecatedroute_table_id
field (#5801)azurerm_subnet
- making theactions
list within theservice_delegation
block within theservice_endpoints
block non-computed (#5801)azurerm_virtual_network_peering
-allow_virtual_network_access
now defaults to true, matching the API and Portal behaviours. (#5832)azurerm_virtual_wan
- removing the deprecated fieldsecurity_provider_name
(#5823)
IMPROVEMENTS:
- web: updating to API version
2019-08-01
(#5823) - Data Source:
azurerm_kubernetes_service_version
- support for filtering of preview releases (#5662) azurerm_dedicated_host
- support for settingsku_name
toDSv3-Type2
andESv3-Type2
(#5768)azurerm_key_vault
- support for configuringpurge_protection_enabled
(#5344)azurerm_key_vault
- support for configuringsoft_delete_enabled
(#5344)azurerm_sql_database
- support for configuringzone_redundant
(#5772)azurerm_storage_account
- support for configuring thestatic_website
block (#5649)azurerm_storage_account
- support for configuringcors_rules
within theblob_properties
block (#5425)azurerm_subnet
- support for delta updates (#5801)azurerm_windows_virtual_machine
- fixing a bug when provisioning from a Shared Gallery image (#5661)
BUG FIXES:
azurerm_application_insights
- theapplication_type
field is now case sensitive as documented (#5817)azurerm_api_management_api
- allows blankpath
field (#5833)azurerm_eventhub_namespace
- the fieldip_rule
within thenetwork_rulesets
block now supports a maximum of 128 items (#5831)azurerm_eventhub_namespace
- the fieldvirtual_network_rule
within thenetwork_rulesets
block now supports a maximum of 128 items (#5831)azurerm_linux_virtual_machine
- using the delete custom timeout during deletion (#5764)azurerm_netapp_account
- allowing the-
character to be used in thename
field (#5842)azurerm_network_interface
- thedns_servers
field now respects ordering (#5784)azurerm_public_ip_prefix
- fixing the validation for theprefix_length
to match the Azure API (#5693)azurerm_recovery_services_vault
- using the requested cloud rather than the default (#5825)azurerm_role_assignment
- validating that thename
is a UUID (#5624)azurerm_signalr_service
- ensuring the SignalR segment is parsed in the correct case (#5737)azurerm_storage_account
- locking on the storage account resource when updating the storage account (#5668)azurerm_subnet
- supporting updating of theenforce_private_link_endpoint_network_policies
field (#5801)azurerm_subnet
- supporting updating of theenforce_private_link_service_network_policies
field (#5801)azurerm_windows_virtual_machine
- using the delete custom timeout during deletion (#5764)
For information on v1.44.0 and prior releases, please see the v1.44.0 changelog.