Update Terraform cloudflare to v3

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
cloudflare (source)	required_provider	major	~> 2.0 -> ~> 3.0

---

Release Notes

cloudflare/terraform-provider-cloudflare

v3.24.0

Compare Source

NOTES:

• resource/cloudflare_access_bookmark: Bookmark resource is deprecated in favor of using the cloudflare_access_application resource. (#​1914)
• resource/cloudflare_email_routing_rule: Fix example resource to use correct syntax (#​1895)
• resource/cloudflare_email_routing_rule_catch_all: Fix example resource to use correct syntax (#​1895)

FEATURES:

• New Data Source: cloudflare_accounts (#​1899)
• New Data Source: cloudflare_record (#​1906)
• New Resource: cloudflare_account (#​1902)
• New Resource: cloudflare_user_agent_blocking_rule (#​1894)

ENHANCEMENTS:

• resource/cloudflare_pages_project: Adds importer for pages_project (#​1886)
• tools: add devcontainer for local development (#​1892)

BUG FIXES:

• provider: allow setting api_user_service_key without token and/or key (#​1907)
• resource/cloudflare_load_balancer_monitor: fix detection of headers values changing (#​1903)
• resource/cloudflare_pages_project: fix null source on project create (#​1898)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.49.0 to 0.50.0 (#​1910)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.21.0 to 2.22.0 (#​1900)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.22.0 to 2.23.0 (#​1913)

v3.23.0

Compare Source

FEATURES:

• New Resource: cloudflare_api_shield (#​1874)
• New Resource: cloudflare_email_routing_address (#​1856)
• New Resource: cloudflare_email_routing_catch_all (#​1856)
• New Resource: cloudflare_email_routing_rules (#​1856)
• New Resource: cloudflare_email_routing_settings (#​1856)
• New Resource: cloudflare_web3_hostname (#​1882)

ENHANCEMENTS:

• resource/cloudflare_access_service_token: updates internals to allow in place refreshing instead of full replacement based on the expires_at and min_days_for_renewal values (#​1872)
• resource/cloudflare_pages_domain: Adds support for Pages domains (#​1835)
• resource/cloudflare_pages_project: Adds support for Pages Projects (#​1835)
• resource/cloudflare_record: Add HTTPS DNS record type (#​1887)
• resource/cloudflare_worker: provide js module option to allow service bindings (#​1865)

BUG FIXES:

• resource/cloudflare_authenticated_origin_pulls: fix improper handling of enabled=false (#​1861)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.48.0 to 0.49.0 (#​1871)
• provider: bumps github.com/golangci/golangci-lint from 1.48.0 to 1.49.0 (#​1855)
• provider: bumps goreleaser/goreleaser-action from 3.0.0 to 3.1.0 (#​1868)

v3.22.0

Compare Source

NOTES:

• update local setup documentation to reflect newer required Go version (#​1847)

ENHANCEMENTS:

• resource/cloudflare_ruleset: add support for http_config_settings (#​1837)
• resources/worker_script: add support for r2_bucket_binding (#​1825)

BUG FIXES:

• resource/cloudflare_fallback_domain: fix perpetual changes due to ordering (#​1828)
• resource/cloudflare_notification_policy: add missing alert types and filters to validation and docs (#​1830)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.46.0 to 0.47.1 (#​1844)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.20.0 to 2.21.0 (#​1838)
• provider: bumps github.com/hcloudflare-go from 0.47.1 to 0.48.0 (#​1848)

v3.21.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_page_rule: Removed always_online from page rules since this action has been decommissioned from page rules (#​1817)

ENHANCEMENTS:

• resource/cloudflare_custom_ssl: handle when remote ID changes during updates (#​1824)
• resource/cloudflare_ruleset: add support and configuration for serve_errors action (#​1794)
• resource/cloudflare_ruleset: add support for sni override in route action (#​1816)

BUG FIXES:

• resource/cloudflare_account_member: actually use the account_id value (#​1823)
• resource/cloudflare_zone_settings_override: add missing allowed value of 120 for browser_cache_ttl (#​1822)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.45.0 to 0.46.0 (#​1815)
• provider: bumps github.com/golangci/golangci-lint from 1.47.2 to 1.47.3 (#​1813)
• provider: bumps github.com/golangci/golangci-lint from 1.47.3 to 1.48.0 (#​1820)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.19.0 to 2.20.0 (#​1804)

v3.20.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_healthcheck: deprecates notification_email_addresses and notification_suspended in favour of cloudflare_notification_policy (#​1789)

NOTES:

• resource/cloudflare_access_rule: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1790)
• resource/cloudflare_account_member: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1767)
• resource/cloudflare_certificate_pack: remove references to long-deprecated dedicated certs (replaced by advanced) (#​1778)
• resource/cloudflare_rulesets: Cache Rules use cache flag instead of bypass_cache (#​1785)
• resource/cloudflare_zone: this resource now supports an explicit account_id instead of the implied one from the client configuration. You should update your configuration to include account_id and remove permadiffs. (#​1767)

ENHANCEMENTS:

• resource/cloudflare_access_application: Add support for Saas applications (#​1762)
• resource/cloudflare_access_rule: add support for account_id (#​1790)
• resource/cloudflare_account_member: add support for account_id (#​1767)
• resource/cloudflare_api_token: add support for not_before and expires_on (#​1792)
• resource/cloudflare_certificate_pack: fix some of the custom hostname docs copy (#​1778)
• resource/cloudflare_certificate_pack: update the list of allowed certificate authorities (#​1778)
• resource/cloudflare_load_balancer: Add support for LB country pools (#​1797)
• resource/cloudflare_managed_headers: swap filtering to use API instead of custom logic (#​1765)
• resource/cloudflare_ruleset: add support for from_value action parameter when using redirect action (#​1781)
• resource/cloudflare_zone: add support for account_id (#​1767)

BUG FIXES:

• resource/cloudflare_waiting_room: fix default waiting room session_duration and path values (#​1766)
• resource/cloudflare_zone_lockdown: Fix crash when logging upstream error message (#​1777)

DEPENDENCIES:

• provider: bumps github.com/cloudflare/cloudflare-go from 0.44.0 to 0.45.0 (#​1793)
• provider: bumps github.com/golangci/golangci-lint from 1.46.2 to 1.47.0 (#​1786)
• provider: bumps github.com/golangci/golangci-lint from 1.47.0 to 1.47.1 (#​1788)
• provider: bumps github.com/golangci/golangci-lint from 1.47.1 to 1.47.2 (#​1795)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.4.1 to 0.5.0 (#​1773)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.5.0 to 0.6.0 (#​1780)
• provider: bumps github.com/hashicorp/terraform-plugin-log from 0.6.0 to 0.7.0 (#​1798)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.18.0 to 2.19.0 (#​1779)

v3.19.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_ipsec_tunnel: add allow_null_cipher to ipsec tunnel (#​1736)
• resource/cloudflare_record: Validate that DNS record names are non-empty (#​1740)
• resource/cloudflare_ruleset: add support for from_list action parameter when using redirect action (#​1744)
• resource/cloudflare_waiting_room: Add queueing_method field. (#​1759)
• resource/cloudflare_workers_script: add support for service_binding bindings (#​1760)
• resource/cloudflare_zone_settings_override: Add support for origin_max_http_version (#​1755)

BUG FIXES:

• resource/cloudflare_list: fix default values for redirect list updates (#​1746)
• resource/cloudflare_logpush_job: fix logpush job name validation regex (#​1743)
• resource/cloudflare_tunnel_route: Fix incorrect indexing of resource data id attributes (#​1753)

DEPENDENCIES:

• provider: bumps dependabot/fetch-metadata from 1.3.1 to 1.3.2 (#​1747)
• provider: bumps dependabot/fetch-metadata from 1.3.2 to 1.3.2 (#​1748)
• provider: bumps github.com/cloudflare/cloudflare-go from 0.43.0 to 0.44.0 (#​1757)
• provider: bumps github.com/hashicorp/terraform-plugin-docs from 0.12.0 to 0.13.0 (#​1763)
• provider: bumps github.com/hashicorp/terraform-plugin-sdk/v2 from 2.17.0 to 2.18.0 (#​1758)
• provider: bumps github.com/stretchr/testify from 1.7.5 to 1.8.0 (#​1738)

v3.18.0

Compare Source

NOTES:

• resource/cloudflare_ip_list: Deprecated cloudflare_ip_list in favor of cloudflare_list. (#​1700)

FEATURES:

• New Resource: cloudflare_managed_headers (#​1688)
• New Resource: resource/cloudflare_list: Added support for generic list types, including redirect lists. (#​1700)

ENHANCEMENTS:

• resource/cloudflare_logpush_job: adds support for kind attribute (#​1718)
• resource/cloudflare_logpush_job: validate name attribute (#​1717)
• resource/cloudflare_ruleset: add support for set cache settings (#​1701)

BUG FIXES:

• resource/cloudflare_logpush_job: Fix for optional filter attribute (#​1712)
• resource/cloudflare_logpush_job: fix unmarhalling job with empty/no filter (#​1723)
• resource/cloudflare_record: ensure trailing . in value don't cause surious diffs (#​1713)

v3.17.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_ruleset: deprecates enabled in overridden configurations immediately in favour of status (#​1689)

FEATURES:

• New Resource: cloudflare_tunnel_virtual_network (#​1672)

ENHANCEMENTS:

• resource/cloudflare_access_identity_provider: Add support for PKCE when creating IDPS. (#​1667)
• resource/cloudflare_device_posture_integration: add support for managing uptycs, intune and crowdstrike third party posture providers. (#​1628)
• resource/cloudflare_ipsec_tunnel: add support for healthcheck_enabled, health_check_target, healthcheck_type, psk (#​1685)
• resource/cloudflare_logpush_job: Add filter field support (#​1660)
• resource/cloudflare_tunnel_route: Add virtual_network_id attribute (#​1668)

BUG FIXES:

• resource/cloudflare_teams_rule: Fixes issue with rule precedence updates by using a generated version of precendence in API calls to reduce clashing versions (#​1663)

v3.16.0

Compare Source

NOTES:

• provider: swap internal logging mechanism to use tflog (#​1638)
• provider: updated internal package structure of repository (#​1636)

ENHANCEMENTS:

• resource/cloudflare_access_group: add support for external evaluation as a new access group rule (#​1623)
• resource/cloudflare_argo_tunnel: add tunnel_token support (#​1590)
• resource/cloudflare_logpush_job: add support for specifying frequency (#​1634)
• resource/cloudflare_ruleset: add support for custom fields logging (#​1630)
• resource/cloudflare_waiting_room: Add default_template_language field. (#​1651)

BUG FIXES:

• resource/cloudflare_access_application: Fix inability to update http_only_cookie_attribute to false (#​1602)
• resource/cloudflare_waiting_room_event: handle time pointer for nullable struct member (#​1648)
• resource/cloudflare_workers_kv: handle invalid id during terraform import (#​1635)

v3.15.0

Compare Source

NOTES:

• provider: internally swapped to using diag.Diagnostics for CRUD return types and using context.Context passed in from the provider itself instead of instantiating our own in each operation (#​1592)

ENHANCEMENTS:

• resource/cloudflare_device_posture_rule: Add expiration to device posture rule (#​1585)
• resource/cloudflare_logpush_job: add support for managing network_analytics_logs (#​1627)
• resource/cloudflare_logpush_job: allow r2 logpush destinations without ownership validation (#​1597)
• resource/ruleset: add support for origin and host_header attributes (#​1620)

BUG FIXES:

• resource/cloudflare_access_rule: Fix lifecycle of access_rule update (#​1601)
• resource/cloudflare_spectrum_application: prevent panic when configuration does not include edge_ips.connectivity (#​1599)
• resource/cloudflare_teams_rule: fixed detection of deleted teams rules (#​1622)

v3.14.0

Compare Source

FEATURES:

• New Resource: cloudflare_tunnel_route (#​1572)

ENHANCEMENTS:

• resource/cloudflare_certificate_pack: add support for new option (wait_for_active_status) to block creation until certificate pack is active (#​1567)
• resource/cloudflare_notification_policy: Add slo to notification policy filters (#​1573)
• resource/cloudflare_teams_list: Add support for IP type (#​1550)

BUG FIXES:

• cloudflare_tunnel_routes: Fix reads matching routers with larger CIDRs (#​1581)
• resource/cloudflare_access_group: allow github access groups to be created without a list of teams (#​1589)
• resource/cloudflare_logpush_job: make ownership challenge check for https not required (#​1588)
• resource/cloudflare_tunnel_route: Fix importing resource (#​1580)
• resource/cloudflare_zone: update plan identifier for professional rate plans (#​1583)

v3.13.0

Compare Source

NOTES:

• resource/cloudflare_byo_ip_prefix: now requires an explicit account_id parameter instead of implicitly relying on client.AccountID (#​1563)
• resource/cloudflare_ip_list: no longer sets client.AccountID internally for resources (#​1563)
• resource/cloudflare_magic_firewall_ruleset: no longer sets client.AccountID internally for resources (#​1563)
• resource/cloudflare_static_route: no longer sets client.AccountID internally for resources (#​1563)
• resource/cloudflare_worker_cron_trigger: now requires an explicit account_id parameter instead of implicitly relying on client.AccountID (#​1563)

ENHANCEMENTS:

• resource/cloudflare_custom_pages: add support for managed_challenge action (#​1478)
• resource/cloudflare_ruleset: add support for rule logging (#​1538)

v3.12.2

Compare Source

ENHANCEMENTS:

• resource/cloudflare_ruleset: Setting description to Optional to better reflect API requirements (#​1556)

v3.12.1

Compare Source

BUG FIXES:

• resource/cloudflare_zone: don't get stuck in endless loop for partner zone rate plans (#​1547)

v3.12.0

Compare Source

NOTES:

• resource/cloudflare_healthcheck: notification_suspended and notification_email_addresses attributes are being deprecated in favour of cloudflare_notification_policy resource instead. (#​1529)

FEATURES:

• New Resource: cloudflare_access_bookmark (#​1539)

ENHANCEMENTS:

• resource/cloudflare_access_application: Add service_auth_401_redirect field. (#​1540)

BUG FIXES:

• resource/cloudflare_api_token: ignore ordering changes in permission_groups (#​1545)
• resource/cloudflare_notification_policy: Fix unexpected crashes when using cloudflare_notification_policy with a filters attribute (#​1542)
• resource/cloudflare_zone_dnssec: don't try to enable DNSSEC when state is "pending" (#​1530)

v3.11.0

Compare Source

NOTES:

• resource/cloudflare_origin_ca_certificate: requested_validity no longer decrements until the expires_on value but is now the amount of days the certificate was requested for. (#​1502)

FEATURES:

• New Resource: cloudflare_teams_proxy_endpoint (#​1517)
• New Resource: cloudflare_waiting_room_event (#​1509)

ENHANCEMENTS:

• resource/cloudflare_page_rule: add support for actions.disable_zaraz (#​1523)
• resource/cloudflare_ruleset: add support for action_parameters.response to control the response when triggering a WAF rule (#​1507)
• resource/cloudflare_ruleset: add support for ratelimit.requests_to_origin (#​1507)

BUG FIXES:

• resource/cloudflare_device_posture_integration: remove superfluous id from schema (#​1504)
• resource/cloudflare_spectrum_application: Fix 'edge_ip_connectivity' state persistence (#​1515)

v3.10.1

Compare Source

BUG FIXES:

• resource/cloudflare_ruleset: don't attempt to upgrade ratelimit if it isn't set (#​1501)

v3.10.0

Compare Source

BREAKING CHANGES:

• resource/cloudflare_ruleset: rename mitigation_expression to counting_expression (#​1477)

ENHANCEMENTS:

• resource/cloudflare_access_rule: add support for managed_challenge action (#​1457)
• resource/cloudflare_custom_hostname: adds support for custom_origin_sni (#​1482)
• resource/cloudflare_device_policy_certificates: add support for device policy certificate settings (#​1467)
• resource/cloudflare_teams_rules: Add insecure_disable_dnssec_validation option to settings (#​1469)
• resource/cloudflare_zone: add support for partner rate plans (#​1464)

BUG FIXES:

• resource/cloudflare_record: no need to pass the resourceCloudflareRecordUpdate to the NonRetryable handler (#​1496)

v3.9.1

Compare Source

NOTES:

• resource/cloudflare_api_token: revert swap from TypeList to TypeSet due to broken migration (#​1455)

FEATURES:

• New Data Source: cloudflare_devices (#​1453)

v3.9.0

Compare Source

FEATURES:

• New Resource: cloudflare_gre_tunnel (#​1423)
• New Resource: cloudflare_zone_cache_variants (#​1444)

ENHANCEMENTS:

• cloudflare_ruleset: add support for "managed_challenge" action (#​1442)
• resource/certificate_pack: adds validation_errors and validation_records with same format as custom hostnames. (#​1424)
• resource/custom_hostname: also adds missing validation_errors, and certificate_authority (#​1424)
• resource/custom_hostname: validation tokens are now an array (validation_records) instead of a top level, but the only top level record that was previously here was for cname validation, txt/http/email were entirely missing. (#​1424)

BUG FIXES:

• cloudflare_argo_tunnel: conditionally fetch settings based on the provided configuration (#​1451)
• resource/cloudflare_api_token: ignore ordering of permission_group IDs (#​1425)

v3.8.0

Compare Source

FEATURES:

• New Resource: cloudflare_ipsec_tunnel (#​1404)

ENHANCEMENTS:

• datasource/cloudflare_zones: allow filtering by account_id (#​1401)
• resource/cloudflare_cloudflare_teams_rules: Add check_session and add_headers attributes to settings (#​1402)
• resource/cloudflare_cloudflare_teams_rules: Add disable_download, disable_keyboard, and disable_upload attributes to BISOAdminControls (#​1402)
• resource/cloudflare_logpush_job: add support for managing dns_logs (#​1400)
• resource/cloudflare_ruleset: add skip support for products and phases (#​1391)
• resource/cloudflare_ruleset: smoother handling of UI/API collisions during migrations (#​1393)
• resource/cloudflare_teams_accounts: Add the fips field for configuring FIPS-compliant TLS. (#​1380)

BUG FIXES:

• resource/cloudflare_fallback_domain: default entries are now restored on delete. (#​1399)
• resource/cloudflare_ruleset: conditionally set action parameter "version" (#​1388)
• resource/cloudflare_ruleset: fix handling of false values for category/rule overrides (#​1405)

v3.7.0

Compare Source

FEATURES:

• New Resource: cloudflare_device_posture_integration (#​1340)
• New Resource: cloudflare_fallback_domain (#​1356)

ENHANCEMENTS:

• resource/cloudflare_firewall_rule: add support for managed_challenge action (#​1378)
• resource/cloudflare_load_balancer_monitor: added support for smtp, icmp_ping, and udp_icmp monitors (#​1371)
• resource/cloudflare_logpush_job: add support for account-level logpush jobs (#​1311)
• resource/cloudflare_logpush_ownership_challenge: add support for account-level logpush ownership challenges (#​1311)

BUG FIXES:

• resource/cloudflare_api_token: modified_on is now read correctly (#​1368)

DEPENDENCIES:

• github.com/cloudflare/cloudflare-go v0.29.0 => v0.30.0 (#​1379)

v3.6.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_access_application: add bookmark type to apptypes (#​1343)
• resource/cloudflare_teams_rules: GATE-2273: Adds support for device posture gateway rules (#​1353)

BUG FIXES:

• resource/cloudflare_load_balancer: handle empty rules for resourceCloudflareLoadBalancerStateUpgradeV1 (#​1257)
• resource/cloudflare_split_tunnel: import will now use correct import function (#​1345)

v3.5.0

Compare Source

NOTES:

• provider: split schema definition from resource CRUD operations (#​1321)

FEATURES:

• New Data Source: cloudflare_access_identity_provider (#​1300)

ENHANCEMENTS:

• resource/cloudflare_access_application: add support for app_launcher_visible to the schema (#​1303)
• resource/cloudflare_ruleset: add support for rewriting HTTP response headers (#​1339)
• resource/cloudflare_zone: support changing type values (#​1301)

BUG FIXES:

• resource/cloudflare_access_group: fix mapping error for AzureAD (#​1341)
• resource/cloudflare_access_rule: allow "ip6" to be a padded or unpadded value and compare correctly (#​1294)
• resource/cloudflare_argo: call Read for Import operations (#​1295)
• resource/cloudflare_argo_tunnel: fix import mechanism (#​1329)
• resource/cloudflare_argo_tunnel: update CNAME to use cfargotunnel.com (#​1293)
• resource/cloudflare_origin_ca_certificate: reintroduce DiffSuppressFunc for requested_validity changes to handle all schema/SDK combinations (#​1289)
• resource/cloudflare_split_tunnel: import now works by specifying accountId/mode (#​1313)
• resource/cloudflare_teams_list: ignore items ordering (#​1338)

v3.4.0

Compare Source

ENHANCEMENTS:

• provider: add the ability to configure a different hostname and base path for the API client (#​1270)
• resource/cloudflare_access_application: add support for 'skip_interstitial' and 'logo_url' properties (#​1262)
• resource/cloudflare_custom_hostname: add settings.early_hints to ssl schema (#​1286)
• resource/cloudflare_ruleset: add support for exposed credential checks (#​1263)
• resource/cloudflare_zone_setting_override: add support for overriding early_hints (#​1285)

BUG FIXES:

• resource/cloudflare_ruleset: allow action parameter override enabled to be true/false or uninitialised (#​1275)
• resource/cloudflare_ruleset: allow setting uri and path action parmeters together in a single rule (#​1271)

v3.3.0

Compare Source

FEATURES:

• New Data Source: cloudflare_account_roles (#​1238)

ENHANCEMENTS:

• resource/cloudflare_access_application: add support for 'SameSite' and 'HttpOnly' cookie attributes (#​1241)
• resource/cloudflare_argo_tunnel: add cname as exported attribute (#​1259)
• resource/cloudflare_load_balancer_pool: add support for origin steering (#​1240)
• resource/cloudflare_ruleset: add support for 'Action' and 'Enabled' action_parameters > overrides attributes (#​1249)
• resource/cloudflare_zone_setting_override: add support for overriding binary_ast (#​1261)
• resource/cloudflare_zone_setting_override: add support for overriding filter_logs_to_cloudflare (#​1261)
• resource/cloudflare_zone_setting_override: add support for overriding log_to_cloudflare (#​1261)
• resource/cloudflare_zone_setting_override: add support for overriding orange_to_orange (#​1261)
• resource/cloudflare_zone_setting_override: add support for overriding proxy_read_timeout (#​1261)
• resource/cloudflare_zone_setting_override: add support for overriding visitor_ip (#​1261)

BUG FIXES:

• resource/cloudflare_access_policy: handle empty nil values for building policies (#​1237)
• resource/cloudflare_ruleset: don't attempt to update "custom" rulesets using the phase entrypoint (#​1245)

v3.2.0

Compare Source

NOTES:

• provider: cloudflare-go has been upgraded to v0.25.0 (#​1236)

FEATURES:

• New Data Source: cloudflare_zone (#​1213)
• New Resource: cloudflare_split_tunnel (#​1207)

ENHANCEMENTS:

• provider: add support for debugging via debuggers (like delve) (#​1217)
• resource/cloudflare_access_policy: add support for approval_required flag (#​1230)

BUG FIXES:

• resource/cloudflare_account_member: handle role changes made in the dashboard (#​1202)
• resource/cloudflare_origin_ca_certificate: ignore requested_validity changes due to the value decreasing but still store it (#​1214)
• resource/cloudflare_record: handle Updates for records with data blocks (#​1229)

v3.1.0

Compare Source

ENHANCEMENTS:

• resource/cloudflare_ruleset: add support for ddos_l7 configuration (#​1212)

v3.0.1

Compare Source

ENHANCEMENTS:

• resource/cloudflare_access_rule: add state migrator for 3.x (#​1211)
• resource/cloudflare_custom_ssl: add state migrator for 3.x (#​1211)
• resource/cloudflare_load_balancer: add state migrator for 3.x (#​1211)
• resource/cloudflare_record: add state migrator for 3.x (#​1211)

v3.0.0

Compare Source

2.x to 3.x upgrade guide

BREAKING CHANGES:

• resource/cloudflare_access_rule: configuration is now a TypeList instead of a TypeMap (#​1188)
• resource/cloudflare_custom_ssl: custom_ssl_options is now a TypeList instead of TypeMap (#​1188)
• resource/cloudflare_load_balancer: fixed_response is now a TypeList instead of a TypeMap (#​1188)
• resource/cloudflare_load_balancer: fixed_response.status_codeis now aTypeIntinstead of aTypeString` (#​1188)
• resource/cloudflare_record: data is now a TypeList instead of a TypeMap (#​1188)

NOTES:

• provider: Golang version has been upgraded to 1.17 (#​1188)
• provider: HTTP user agent is now "terraform/:version terraform-plugin-sdk/:version terraform-provider-cloudflare/:version" (#​1188)
• provider: Minimum Terraform core version is now 0.14 (#​1188)
• provider: terraform-plugin-sdk has been upgraded to 2.x (#​1188)

ENHANCEMENTS:

• resource/cloudflare_custom_hostname: settings.ciphers is now a TypeSet internally to handle suppress ordering changes. Schema representation remains the same (#​1188)
• resource/cloudflare_custom_hostname: settings is now Optional/Computed to reflect the stricter schema validation introduced in terraform-plugin-sdk v2 (#​1188)
• resource/cloudflare_custom_hostname: status is now Computed as the value isn't managed by an end user (#​1188)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by Mend Renovate. View repository job log here.