From 8744c9b3ee0a4e8a1817a97cd004b0fe2c0c111c Mon Sep 17 00:00:00 2001 From: Tom Harvey Date: Fri, 18 Mar 2022 10:18:59 +0100 Subject: [PATCH] updating to include the changes from #15800 --- CHANGELOG.md | 36 +++++++++++++++++++++++++++++++++--- 1 file changed, 33 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index b23075216f92..a2dbf00af1c5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -15,20 +15,50 @@ FEATURES: ENHANCEMENTS: +* provider: MSAL (and Microsoft Graph) is now used for authentication instead of ADAL (and Azure Active Directory Graph) [GH-12443] +* provider: added a new feature flag within the `key_vault` block for `recover_soft_deleted_certificates`, for configuring whether a soft-deleted `azurerm_key_vault_certificate` should be recovered during creation [GH-10273] +* provider: added a new feature flag within the `key_vault` block for `purge_soft_deleted_certificates_on_destroy`, for configuring whether a deleted `azurerm_key_vault_certificate` should be purged during deletion [GH-10273] +* provider: added a new feature flag within the `key_vault` block for `recover_soft_deleted_keys`, for configuring whether a soft-deleted `azurerm_key_vault_key` should be recovered during creation [GH-10273] +* provider: added a new feature flag within the `key_vault` block for `purge_soft_deleted_keys_on_destroy`, for configuring whether a deleted `azurerm_key_vault_key` should be purged during deletion [GH-10273] +* provider: added a new feature flag within the `key_vault` block for `recover_soft_deleted_secrets`, for configuring whether a soft-deleted `azurerm_key_vault_secret` should be recovered during creation [GH-10273] +* provider: added a new feature flag within the `key_vault` block for `purge_soft_deleted_secrets_on_destroy`, for configuring whether a deleted `azurerm_key_vault_secret` should be purged during deletion [GH-10273] +* provider: added a new feature flag within the `resource_group` block for `prevent_deletion_if_contains_resources`, for configuring whether Terraform should prevent the deletion of a Resource Group which still contains items [GH-13777] +* Resources supporting Availability Zones: Zones are now treated consistently across the Provider and the field within Terraform has been renamed to either `zone` (for a single Zone) or `zones` (where multiple can be defined) - the complete list of resources can be found in the 3.0 Upgrade Guide [GH-14588] +* Resources supporting Managed Identity: Identity blocks are now treated consistently across the Provider - the complete list of resources can be found in the 3.0 Upgrade Guide [GH-15187] * provider: removing the `network` and `relaxed_locking` feature flags, since this is now enabled by default [GH-15719] * `azurerm_eventgrid_system_topic_event_subscription` - support for the `delivery_property` property [GH-15559] +* `azurerm_kubernetes_cluster` - the `kube_admin_config` block is now marked as sensitive in addition to all items within it [GH-4105] * `azurerm_linux_function_app` - updating the read timeout to be 5m [GH-15867] * `azurerm_linux_function_app_slot` - updating the read timeout to be 5m [GH-15867] -* `azurerm_windows_function_app` - updating the read timeout to be 5m [GH-15867] -* `azurerm_windows_function_app_slot` - updating the read timeout to be 5m [GH-15867] * `azurerm_management_group_policy_assignment` - support for User Assigned Identities [GH-15376] +* `azurerm_mssql_server` - `minimum_tls_version` now defaults to `1.2` [GH-10276] +* `azurerm_mysql_server` - `ssl_minimal_tls_version_enforced` now defaults to `1.2` [GH-10276] * `azurerm_network_security_rule` - no longer locking on the network security group name [GH-15719] -* `azurerm_resource_policy_assignment` - support for User Assigned Identities [GH-15376] +`azurerm_postgresql_server` - `ssl_minimal_tls_version_enforced` now defaults to `1.2` [GH-10276] +* `azurerm_redis_cache` - `minimum_tls_version` now defaults to `1.2` [GH-10276] +* `azurerm_resource_group` - Terraform now checks during the deletion of a Resource Group if there's any items remaining and will raise an error if so by default (to avoid deleting items unintentionally). This behaviour can be controlled using the `prevent_deletion_if_contains_resources` feature-flag within the `resource_group` block within the `features` block. [GH-13777] * `azurerm_resource_group_policy_assignment` - support for User Assigned Identities [GH-15376] +* `azurerm_resource_policy_assignment` - support for User Assigned Identities [GH-15376] +* `azurerm_storage_account` - `min_tls_version` now defaults to `1.2` [GH-10276] * `azurerm_subscription_policy_assignment` - support for User Assigned Identities [GH-15376] +* `azurerm_windows_function_app` - updating the read timeout to be 5m [GH-15867] +* `azurerm_windows_function_app_slot` - updating the read timeout to be 5m [GH-15867] BUG FIXES: +* `azurerm_application_gateway` - the `backend_address_pool` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the field `fqdns` within the `backend_address_pool` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the field `ip_addresses` within the `backend_address_pool` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `backend_http_settings` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `frontend_port` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the field `host_names` within the `frontend_port` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `http_listener` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `private_endpoint_connection` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `private_link_configuration` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `probe` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `redirect_configuration` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `request_routing_rule` block is now a Set rather than a List [GH-6896] +* `azurerm_application_gateway` - the `ssl_certificate` block is now a Set rather than a List [GH-6896] * `azurerm_cosmosdb_mongo_collection` - the `default_ttl_seconds` can now be set to `-1` [GH-15736] ## 2.99.0 (March 11, 2022)