-
Notifications
You must be signed in to change notification settings - Fork 4.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
azurerm_storage_account default allow_blob_public_access to false #7784
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@marc-sensenich, thanks for this! Pretty straight forward, this LGTM! Thanks again for the contribution! 🚀
I am getting the following error: on main.tf line 17, in resource "azurerm_storage_account" "test_sa": An argument named "allow_blob_public_access" is not expected here._ Terraform version: v0.12.28 How do I resolve this? |
@KulkarniAbhishek this feature was added in version 2.19.0 of the provider, if you are running 2.0.0 of this provider you shouldn't be affected by #7739 or have the attribute available on the resource |
Upgrading to 2.19.0 worked for me. Thank you. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
THis is a breaking change and should potentially wait until 3.0 @WodansSon ?
This reverts a breaking change from the 2.19.0 release, so having it fixed before 3.0 would be nice. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reading up on the ticket i'm going to approve this breaking change due to the security implications of defaulting public access to true.
This has been released in version 2.20.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example: provider "azurerm" {
version = "~> 2.20.0"
}
# ... other configuration ... |
Thanks for the breaking change. |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
For
azurerm_storage_account
resources, defaultallow_blob_public_access
tofalse
to align with behavior prior to 2.19Closes #7781