kgess-mirror/terraform-provider-cloudflare
1
0
Fork 0
mirror of https://github.com/cloudflare/terraform-provider-cloudflare.git synced 2026-01-11 19:56:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
terraform-provider-cloudflare/CHANGELOG.md
Mike Girouard 74002022e4 docs(changelog): update changelog
2025-12-19 20:34:03 -05:00

267 KiB
Raw Permalink Blame History

Changelog

5.15.0 (2025-12-19)

Full Changelog: v5.14.0...v5.15.0

Features

  • ai_search: add AI Search endpoints (6f02adb)
  • certificate_pack: add terraform config for CRUD support. This ensures proper Terraform resource ID handling for path parameters in API calls. (081f32a)
  • leaked_credentials_check: Add GET endpoint for leaked_credentials_check/detections (feafd9c)
  • worker_version: support startup_time_ms (286ab55)
  • zero_trust_access_group: v4 to v5 migration acceptance tests (9c877c7)
  • zero_trust_access_mtls_hostname_settings: use v2 migrator (b14aa6d)
  • zero_trust_dlp_custom_entry: support upload_status (7dc0fe3)
  • zero_trust_dlp_entry: support upload_status (7dc0fe3)
  • zero_trust_dlp_integration_entry: support upload_status (7dc0fe3)
  • zero_trust_dlp_predefined_entry: support upload_status (7dc0fe3)
  • zero_trust_gateway_policy: support forensic_copy (5741fd0)
  • zero_trust_list: support additional types (category, location, device) (5741fd0)

Bug Fixes

  • access_rules: Add validation to prevent state drift. Ideally we'd use Semantic Equality but since that isn't an option, this will remove a foot-gun. (4457791)
  • cloudflare_pages_project: addressing drift issues (6edffcf) (3db318e)
  • cloudflare_worker: can be cleanly imported (4859b52)
  • cloudflare_worker: ensure clean imports (5b525bc)
  • list_items: Add validation for IP List items to avoid inconsistent state (b6733dc)
  • zero_trust_access_application: remove all conditions from sweeper (3197f1a)
  • map missing fields during spectrum resource import (#6495) (ddb4e72)
  • update invalid codegen (d365b98) (92f5c9e)

Chores

  • certificate_pack: hosts is now a set, not a list (286ab55)
  • ci: split acceptance tests into 37 parallel groups for faster (8c6212b)
  • healthcheck: add test for expected_body default value (c5afb48) (e99b43f)
  • magic_wan_ipsec_tunnel: remove custom_remote_entities (286ab55)
  • queue_consumer: Test data fixes for queue consumer acceptance tests (1b92700)
  • update go to point to next (25d640a)
  • update regional hostnames migration test to use new migrator (d5ac65f)
  • update test to use new migrator (d5ac65f) (ec875bb)

Documentation

  • Deprecate API Shield Schema Validation resources (366e1b8)
  • generate provider docs (c23342e)

Refactors

  • healthcheck: consolidate tests and expand update coverage (b747d21) (7fa38b3)

5.14.0 (2025-12-06)

Full Changelog: v5.13.0...v5.14.0

Features

  • add v4->v5 migration tests for pages_project and adjust schema (#6506) (6de0179)
  • chore: point Terraform to Go 'next' (af9a5f8)
  • chore: update go sdk to v6.4.0 for provider release (63cb021)
  • chore(api_shield_discovery_operation): Deprecate api_shield_discovery_operation (7dc0a63)
  • feat: BOTS-7562 add bot management feedback endpoints to stainless config (prod) (f5112e1)
  • feat(r2_data_catalog): Configure SDKs/Terraform to use R2 Data Catalog routes (5beb50b)
  • feat(radar): Add origins endpoints to public api docs (ee51e5f)
  • improve and standardize sweepers (#6501) (03fb2d2)

Bug Fixes

  • account_members: making member policies a set (#6488) (f3ecaa5)
  • decoder and tests (#6516) (4c3e2db)
  • decoder, build (#6514) (1935459)
  • pages_project: non empty refresh plans (#6515) (bc526ff)
  • pages_project: use correct field name in test sweeper (6dc0e53)
  • r2 sweeper (#6512) (fec953c)
  • tests: resolve SDK v6 migration test failures (#6507) (bad9716)
  • update import signature to accept account_id/subscription_id in order to import account subscription (#6510) (c2db582)
  • utils: test assertions (4c3e2db)
  • workers_kv: ignore value import state verify (#6521) (c3e3f89)
  • workers_script: No longer treating the migrations attribute as WriteOnly (#6489) (dc60e38)
  • workers_script: resource drift when worker has unmanaged secret (#6504) (505c0fe)
  • zero_trust_device_posture_rule: preserve input.version and other fields (#6500) (4c4e54b)
  • zero_trust_device_posture_rule: preserve input.version and other fields (#6503) (d45be9a)
  • zero_trust_dlp_custom_profile: add sweepers for dlp_custom_profile (cbcb325)
  • zone_subscription|account_subscription: add partners_ent as valid enum for rate_plan.id (#6505) (2a70fb4)
  • zone: datasource model schema parity (#6487) (861c68f)

Chores

  • account_member: dont run acceptance with env variable (4c3e2db)
  • account_member: fix check for env var (#6517) (07e9aa5)
  • account_member: skip until user is dsr enabled (#6522) (dd7c2fe)
  • account_tokens: adding a simple CRUD test (#6484) (6869538)
  • api: update composite API spec (71fc050)
  • api: update composite API spec (68d017a)
  • cloudflare_api_shield_operation: Add acceptance tests (#6491) (37e1fdf)
  • docs: update documentation (#6523) (a060e61)
  • internal: codegen related update (923ea1d)
  • internal: codegen related update (a110cbe)
  • internal: codegen related update (7b36c06)
  • internal: codegen related update (c789f91)
  • internal: codegen related update (a91faa6)
  • internal: codegen related update (dfa745a)
  • internal: codegen related update (fb3ef1b)
  • internal: codegen related update (504e8b6)
  • internal: codegen related update (550d77c)
  • logpush_job: add v4 to v5 migration tests (#6483) (2e4b8a0)
  • tests: cloud connector rules parity tests and add connectivity_directory_service tests (#6513) (5341c82)
  • update changelog (#6480) (adba156)
  • update changelog (#6525) (b026b4d)
  • zero_trust_device_default_profile_local_domain_fallback: add tests (#6464) (365cb71)
  • zero_trust_device_default|custom_profile: acceptance test coverage (#6511) (8e4ec1a)
  • zero_trust_device_managed_networks: add tests (#6463) (e9b6783)
  • zero_trust_device_posture_integration: update tests for to test with Crowdstrike (#6470) (e360d6f)
  • zone: update migration tests (#6468) (8ff53df)

5.14.0 (2025-12-05)

Full Changelog: v5.13.0...v5.14.0

Features

  • add v4->v5 migration tests for pages_project and adjust schema (#6506) (6de0179)
  • chore(api_shield_discovery_operation): Deprecate api_shield_discovery_operation (7dc0a63)
  • feat(bot_management): add bot management feedback endpoints to stainless config (prod) (f5112e1)
  • feat(r2_data_catalog): Configure SDKs/Terraform to use R2 Data Catalog routes (5beb50b)
  • feat(radar): Add origins endpoints to public api docs (ee51e5f)
  • improve and standardize sweepers (#6501) (03fb2d2)

Bug Fixes

  • account_members: making member policies a set (#6488) (f3ecaa5)
  • pages_project: non empty refresh plans (#6515) (bc526ff)
  • pages_project: use correct field name in test sweeper (6dc0e53)
  • r2 sweeper (#6512) (fec953c)
  • tests: resolve SDK v6 migration test failures (#6507) (bad9716)
  • utils: test assertions (4c3e2db)
  • workers_kv: ignore value import state verify (#6521) (c3e3f89)
  • workers_script: No longer treating the migrations attribute as WriteOnly (#6489) (dc60e38)
  • workers_script: resource drift when worker has unmanaged secret (#6504) (505c0fe)
  • zero_trust_device_posture_rule: preserve input.version and other fields (#6500) (4c4e54b)
  • zero_trust_device_posture_rule: preserve input.version and other fields (#6503) (d45be9a)
  • zero_trust_dlp_custom_profile: add sweepers for dlp_custom_profile (cbcb325)
  • zone_subscription|account_subscription: add partners_ent as valid enum for rate_plan.id (#6505) (2a70fb4)
  • zone: datasource model schema parity (#6487) (861c68f)
  • update import signature to accept account_id/subscription_id in order to import account subscription (#6510) (c2db582)
  • json decoder and tests (#6516) (4c3e2db)

Chores

  • api_shield_discovery_operation: Deprecate api_shield_discovery_operation (7dc0a63)
  • account_member: dont run acceptance with env variable (4c3e2db)
  • account_member: fix check for env var (#6517) (07e9aa5)
  • account_member: skip until user is dsr enabled (#6522) (dd7c2fe)
  • account_tokens: adding a simple CRUD test (#6484) (6869538)
  • zero_trust_dlp_entry: add profiles attribute to DLP entry resources (71fc050)
  • r2_bucket_sippy: add S3-compatible provider support with bucket_url attribute (71fc050)
  • pages_project: add source config block for granular source control settings (68d017a)
  • certificate_pack: add certificates and primary_certificate attributes (68d017a)
  • zero_trust_device_posture_rule: add antivirus posture rule type (68d017a)
  • zero_trust_device_settings: add external emergency signal configuration attributes (68d017a)
  • cloudflare_api_shield_operation: add acceptance tests (#6491) (37e1fdf)
  • logpush_job: add v4 to v5 migration tests (#6483) (2e4b8a0)
  • tests: cloud connector rules parity tests and add connectivity_directory_service tests (#6513) (5341c82)
  • zero_trust_device_default_profile_local_domain_fallback: add tests (#6464) (365cb71)
  • zero_trust_device_default|custom_profile: acceptance test coverage (#6511) (8e4ec1a)
  • zero_trust_device_managed_networks: add tests (#6463) (e9b6783)
  • zero_trust_device_posture_integration: update tests for to test with Crowdstrike (#6470) (e360d6f)
  • zone: update migration tests (#6468) (8ff53df)
  • internal: update cloudflare-go SDK dependency (923ea1d)
  • internal: update cloudflare-go SDK dependency (a110cbe)
  • internal: update cloudflare-go SDK dependency (7b36c06)
  • internal: improve JSON decoder to handle multiple fields with same name (c789f91)
  • internal: update cloudflare-go SDK dependency (a91faa6)
  • internal: update cloudflare-go SDK dependency (dfa745a)
  • internal: add example files for email security resources (fb3ef1b)
  • internal: update cloudflare-go SDK dependency (504e8b6)
  • internal: update cloudflare-go SDK dependency (550d77c)

Deprecations

  • api_shield_discovery_operation

5.13.0 (2025-11-21)

Full Changelog: v5.12.0...v5.13.0

⚠ BREAKING CHANGES: cloudflare_api_token & cloudflare_account_token Schema Update

The 5.13 release includes major updates to the cloudflare_api_token resource to eliminate configuration drift caused by policy ordering differences in the Cloudflare API.

Fixes: cloudflare/terraform-provider-cloudflare#6092

Whats changed

  • policies are now a Set; order is ignored to prevent drift.
  • When defining a policy, resources must use jsonencode(); all policy resource values must now be JSON-encoded strings.
  • Removed fields: id, name, and meta have been removed from policy blocks.

Required Action (v5.13+) Customers looking to upgrade to v5.13+ must update all cloudflare_api_token & cloudflare_account_token resources to wrap policy resource values in jsonencode()

Before:

resources = {
  "com.cloudflare.api.account.${var.cf_account_id}" = "*"
}

After:

resources = jsonencode({
  "com.cloudflare.api.account.${var.cf_account_id}" = "*"
})
  • account_token: token policy order and nested resources (#6440)

Features

  • add new resources and data sources (7ce3dec)
  • api_token+account_tokens: state upgrader and schema bump (#6472) (42f7db2)
  • chore(build): point Terraform to released Go v6.3.0 (6d06b46)
  • docs: make docs explicit when a resource does not have import support (02699f6)
  • magic_transit_connector: support self-serve license key (#6398) (a6ec134)
  • worker_version: add content_base64 support (6ff643f)
  • worker_version: boolean support for run_worker_first (#6407) (116a67b)
  • workers_script_subdomains: add import support (#6375) (40f7ed8)
  • zero_trust_access_application: add proxy_endpoint for ZT Access Application (#6453) (177f20a)
  • zero_trust_dlp_predefined_profile: Switch DLP Predefined Profile endpoints, introduce enabled_entries attribute (bc69569)
  • zero_trust_tunnel_cloudflared: v4 to v5 migration tests (#6461) (ffa0fef)

Bug Fixes

  • account_token: token policy order and nested resources (#6440) (86c5972)
  • allow r2_bucket_event_notification to be applied twice without failing (#6419) (6fbd4c5)
  • cloudflare_worker+cloudflare_worker_version: import for the resources (#6357) (b98e0be)
  • dns_record: inconsistent apply error (#6452) (f289994)
  • pages_domain: resource tests (#6338) (d769e29)
  • pages_project: unintended resource state drift (#6377) (1a3955a)
  • queue_consumer: id population (#6181) (f3c6498)
  • workers_kv: multipart request (#6367) (65f8c19)
  • workers_kv: updating workers metadata attribute to be read from endpoint (#6386) (3a35757)
  • workers_script_subdomain: add note to cloudflare_workers_script_subdomain about redundancy with cloudflare_worker (#6383) (9cc9b59)
  • workers_script: allow config.run_worker_first to accept list input (fab567c)
  • zero_trust_device_custom_profile_local_domain_fallback: drift issues (#6365) (65c0c18)
  • zero_trust_device_custom_profile: resolve drift issues (#6364) (4cd2cbd)
  • zero_trust_dex_test: correct configurability for 'targeted' attribute to fix drift (cd81178)
  • zero_trust_tunnel_cloudflared_config: remove warp_routing from cloudflared_config (#6471) (dc9d557)

Chores

  • account_member: add migration test (#6425) (967a972)
  • byoip: integrate generated changes for BYOIP resources (432160e)
  • certificate_pack: docs show safe rotation instructions (#6388) (3d37264)
  • ci: clean up leftover files in resources (#6474) (e8aee72)
  • ci: drop migration tests from CI (#6476) (968565f)
  • ci: fix tests ran on release PR (#6478) (0b43c46)
  • ci: fixes for parity tests and build failures (#6475) (3561876)
  • ci: modify sweepers (#6479) (4c8915d)
  • ci: skip flaky test in CI (fb14d86)
  • cloudflare_zero_trust_dlp_custom_profile: migration test and ignore order as set (#6428) (1659ff3)
  • d1: integrate generated changes for D1 resources (cfa3472)
  • dns_record: improve dns sweepers (#6430) (5e62468)
  • docs: document configurations and examples (#6449) (59430e0)
  • docs: generate docs and examples (cdd77ec)
  • email_routing: improved email routing sweepers (#6429) (133c81e)
  • iam: integrate generated changes for IAM resources (a87806e)
  • include new sections for pr template (#6395) (81c07e1)
  • load_balancing: integrate generated changes for Load Balancing resources (4c6b34d)
  • logpull_retention: add migration test for (#6426) (529f313)
  • logpull_retention: update acceptance test (#6277) (3766b3f)
  • logpush_job: add import tests for resource (#6402) (cded8ec)
  • logpush: integrate generated changes for Logpush resources (06e8446)
  • notification_policy_webhook: add migration test for notification-policy-webhook (#6443) (742d647)
  • pages: integrate generated changes for Pages resources (64855ea)
  • queue_consumer: testdata refactor (d301974)
  • r2_bucket: v4 to v5 migration tests for cloudflare_r2_bucket (#6437) (99ed1ee)
  • sso_connector: add acceptance tests (#6427) (8b54303)
  • stainless: integrate changes from unpinned codegen version (9cb3b8e)
  • test: acceptance tests for token validation resources (#6417) (4d94bdd)
  • test: add schema and token validation acceptance tests to CI (#6421) (b805abc)
  • test: increase legacy migrator test coverage (#6401) (9a8c48a)
  • universal_ssl_setting: add acceptance tests for universal_ssl_setting (2601c45)
  • worker: integrate generated changes for Worker resources (1da2bf2)
  • workers_kv_namespace: v4 to v5 migration tests for workers_kv_namespace (#6424) (433010f)
  • workers_kv: v4 to v5 migration tests for workers_kv (#6435) (58ca912)
  • workers_script: add workers scripts sweeper (#6351) (f439a08)
  • workers_script: fix resource name in TestAccCloudflareWorkerScript_ModuleWithDurableObject (614d8d3)
  • workers_script: fix resource names in tests (788e73a)
  • workers: integrate generated changes for Workers resources (ab0a330)
  • zero_trust_access_service_token: add migration test for zero_trust_access_service_token (#6416) (c77d5d5)
  • zero_trust_gateway_policy: v4 to v5 migration for zero_trust_gateway_policy (#6413) (1c1952b)
  • zero_trust_list: v4 to v5 migration tests for zero trust list records (#6400) (6ed55d6)
  • zero_trust_tunnel_cloudflared_route: v4 to v5 migration tests for zero_trust_tunnel_cloudflared_route (#6409) (5dc2094)
  • zero_trust, cfone: integrate generated changes for ZT and CFONE resources (b7131b2)
  • zone_dnssec: v4 to v5 migration tests for zone_dnssec (#6432) (86abd1f)
  • zone_settings: acceptance test to repro issue #6363 (#6445) (707c154)
  • zones: data source tests (#6414) (4d58e56)
  • zt_access: add sweepers for policy and service token (#6465) (9f4fa94)

5.12.0 (2025-10-30)

Full Changelog: v5.11.0...v5.12.0

Features

  • chore: pin cloudflare-go for provider release (61a33f9)
  • chore: use cloudflare-go@next for the 'next' branch (8d8ff6d)
  • chore(abuse): rename path parameter (cbda07b)
  • ci: remove zero_trust_connectivity_directory_service (23bd535)
  • ci: trigger prod build (fffdf5a)
  • feat: add connectivity directory service APIs to openapi.stainless.yml (1a6b304)
  • feat: SDKs for Organizations and OrganizationsProfile (1f6eae3)
  • feat(api): add mcp portals endpoints (1e317de)
  • feat(radar): add new group by dimension endpoints; deprecate to_markdown endpoint (bcb58cb)
  • fix(content_scanning): content scanning terraform resource (03b7004)
  • fix(workers_domain): treat PUT /workers/domains as a create operation (8ff0c7d)
  • modernize zero_trust_tunnel_cloudflared_config tests and fix warp_routing (#6294) (36d38a6)
  • modernize zero_trust_tunnel_cloudflared_virtual_network tests and improve (#6293) (1b0f6d6)
  • zero_trust_access_application: Add support for MCP & MCP_PORTAL (#6326) (9524b60)

Bug Fixes

  • account_member: update policies test by selecting correct resource group (#6352) (693dc9d)
  • cloudflare_r2_bucket_sippy: attribute name in example (#6336) (208bf81)
  • cloudflare_worker_version: replace when module content_sha256 value changes (#6335) (e31395d)
  • cloudflare_workers_script: Update docs note for resource (#6304) (f7b4cef)
  • cloudflare_workflow: download dependencies for workflow resource acceptance tests (#6302) (84bade9)
  • correctly detect more ID attributes for data sources (d5f4e7d)
  • custom_pages: fix broken tests (#6372) (95f344e)
  • custom_pages: update type enumerations (#6369) (8bd0d09)
  • enable skipped gateway policy tests and simplify quarantine test (#6296) (b220f2b)
  • ensure model/schema parity across several resources (#6379) (418aedd)
  • fix zero_trust_dex_test tests (#6301) (0345a4d)
  • internal: correctly generate schema according to annotations (529f0ff)
  • migrate: add target flag to specify resources (#6324) (1b94fcd)
  • notification_policy: address drift due to unordered lists, converted to sets (#6316) (7eabe67)
  • read by id data sources should have required IDs (1ca9485)
  • restore missing testdata (#6378) (5cb8dc6)
  • workers_version: inconsistent binding order causing inconsistent result after apply (#6342) (1de79a4)
  • zero_trust_access_service_token: client secret versioning (#6328) (d6b7107)
  • zero_trust_dex_test: ensure model/schema parity (#6370) (066ae4f)
  • zero_trust_dex_test: fix duplicate key, imports (#6366) (15c05d0)
  • zero_trust_dlp_custom_profile: fix read, refresh, import (#6391) (3154453)
  • zero_trust_tunnel_cloudflared_virtual_network: fix sweeper panics (#6392) (c190bc7)

Chores

  • api_shield: Acceptance tests increase coverage (#6325) (3e957c7)
  • api: update composite API spec (6d91d6b)
  • api: update composite API spec (a1e1df9)
  • api: update composite API spec (1b9a680)
  • api: update composite API spec (c53a1f5)
  • api: update composite API spec (ae642c6)
  • api: update composite API spec (86ea5b7)
  • api: update composite API spec (5bf96b0)
  • api: update composite API spec (07f3913)
  • api: update composite API spec (f7c9b47)
  • api: update composite API spec (1519d61)
  • api: update composite API spec (a78ff01)
  • api: update composite API spec (fa156c0)
  • api: update composite API spec (6f4ab90)
  • api: update composite API spec (9455823)
  • api: update composite API spec (e482a4f)
  • api: update composite API spec (98e3585)
  • api: update composite API spec (d552b8c)
  • api: update composite API spec (46b4930)
  • api: update composite API spec (34eddaf)
  • api: update composite API spec (50139f0)
  • api: update composite API spec (b151882)
  • api: update composite API spec (5892196)
  • api: update composite API spec (2ef377f)
  • api: update composite API spec (0f029be)
  • api: update composite API spec (5483722)
  • api: update composite API spec (19ec88c)
  • api: update composite API spec (3a0fbe7)
  • api: update composite API spec (0ef1be1)
  • api: update composite API spec (605134b)
  • api: update composite API spec (d134c57)
  • api: update composite API spec (0f0b7ff)
  • api: update composite API spec (aebfa72)
  • api: update composite API spec (a37714a)
  • api: update composite API spec (e600699)
  • api: update composite API spec (938d787)
  • api: update composite API spec (8ef0127)
  • api: update composite API spec (8ab046d)
  • api: update composite API spec (37a7311)
  • api: update composite API spec (038e76d)
  • api: update composite API spec (80fc0cd)
  • api: update composite API spec (ddb3468)
  • api: update composite API spec (88b0b8e)
  • api: update composite API spec (cd64df6)
  • api: update composite API spec (41b75fb)
  • api: update composite API spec (3a7c0a5)
  • api: update composite API spec (9c45892)
  • api: update composite API spec (4e791c5)
  • api: update composite API spec (39816af)
  • api: update composite API spec (d156eef)
  • api: update composite API spec (b2bd81b)
  • api: update composite API spec (1111340)
  • api: update composite API spec (938003c)
  • api: update composite API spec (0b7e283)
  • api: update composite API spec (2e958fb)
  • api: update composite API spec (138735c)
  • api: update composite API spec (002fd57)
  • api: update composite API spec (302fa30)
  • api: update composite API spec (0294b5e)
  • api: update composite API spec (ddb7a1c)
  • api: update composite API spec (4cba4b4)
  • api: update composite API spec (c88075f)
  • api: update composite API spec (23b810f)
  • api: update composite API spec (8590d26)
  • api: update composite API spec (2fa0344)
  • api: update composite API spec (e01d191)
  • api: update composite API spec (0b9c36d)
  • api: update composite API spec (644ff5f)
  • api: update composite API spec (fd946b1)
  • api: update composite API spec (5b54f0d)
  • api: update composite API spec (0421b6a)
  • api: update composite API spec (d0f7eb4)
  • api: update composite API spec (e8a2650)
  • api: update composite API spec (d0784b3)
  • api: update composite API spec (3490350)
  • api: update composite API spec (c009139)
  • api: update composite API spec (385cc44)
  • api: update composite API spec (7dc37da)
  • api: update composite API spec (3fc4cf6)
  • api: update composite API spec (d812ed9)
  • api: update composite API spec (35aca13)
  • api: update composite API spec (f610c3e)
  • api: update composite API spec (b435318)
  • fix errors in cloudflare_pages_project acceptance tests (#6318) (cb63e28)
  • internal: codegen related update (010cc1e)
  • internal: codegen related update (fde5364)
  • internal: codegen related update (b451331)
  • internal: codegen related update (cf23a89)
  • internal: codegen related update (f577253)
  • internal: codegen related update (70652b4)
  • internal: codegen related update (0504080)
  • logpush_jobs: Add tests from basic to full fields, and changes on omitempty field (#6337) (696abcd)
  • organization_profile: add org id env variable for acceptance tests (#6382) (37468a7)
  • organizations and organization_profiles: Acceptance Tests and wait after create (#6329) (ecfd9bf)
  • organizations: wire up acceptance test in CI (#6349) (c1cbe9e)
  • pages_project: only sweep pages projects resources created during testing (#6298) (1a2daa3)
  • pages_project: update CLOUDFLARE_PAGES_OWNER and CLOUDFLARE_PAGES_REPO used for acceptance tests (#6300) (939499e)
  • queue: Acceptance tests (#6339) (d9eb75d)
  • r2_bucket_lock, r2_bucket_lifecycle: add acceptance tests (#6299) (1fdbd28)
  • update pr template (#6359) (a062c51)
  • zero_trust_connectivity_directory_service: Add wvpc / connectivity directory servic acceptance tests (#6334) (63e78d5)
  • zero_trust_dlp_custom_profile: shared_entries acceptance tests (#6317) (83cf87b)
  • zero_trust_network_hostname_route: Add acceptance tests for Hostname Routes (#6282) (0ec769b)
  • zerot trust dl resources: Add acceptance tests for DLP resources (rebased version of !5751) (#6233) (cbd0568)

Documentation

5.11.0 (2025-10-02)

Full Changelog: v5.10.1...v5.11.0

Features

  • add assets.directory attribute for handling assets uploads in cloudflare_workers_script and cloudflare_worker_version resources (#6160) (50168e5)
  • add comprehensive test coverage for cloudflare_zero_trust_list types and (#6258) (6d2746c)
  • add missing services to CI test runner (#6271) (1477df8)
  • added capability for dynamicvalidator to do arbitrary semantic equivalence check (e1faeb8)
  • Add custom origin trust store support (175f4f5)
  • Add Terraform resource for Workflows (7533c05)
  • Add leaked credential check resources (c6be1c6)
  • Update worker and access application schemas (ed096e0)
  • Adding new self-service SSO APIs (007bdbc)
  • Changing SSO update from put to patch (f67fbd5)
  • Rename duplicate parameter in the to_markdown subresource (07ccc50)
  • Add to_markdown subresource to AI resource (1a71265)

Bug Fixes

  • bugfix for setting JSON keys with special characters (9a106e3)
  • build: fix broken builds on 'next' (#6280) (2224d8a)
  • build: revert cache resources to released state (#6289) (e62250c)
  • case-insensitive location handling for R2 bucket resources (#6026) (78c33ff)
  • cloudflare_workers_custom_domain failing to update (#6082) (46203a3)
  • fix acceptance tests in CI (#6286) (c0a9e89)
  • Fix zero trust access application acceptance tests (#6243) (4a2cbdb)
  • list_item: source url validation (#6226) (70abffa)
  • migrate: concatenate static and dynamic rules blocks (#6215) (be571d8)
  • migrate: page rules status defaults (#6212) (42a83d1)
  • migrate: zt access app default type (#6218) (cea98f8)
  • r2_bucket: case-insensitive location comparison and preserve state case in R2 bucket resource (#6211) (5babbb1)
  • resolve compilation and schema parity errors across multiple services (#6241) (052cab8)
  • resolve compilation errors in zero_trust_access_application and workers_script (#6230) (2b78333)
  • resolve provider schema validation errors and R2 bucket test failures (#6222) (2df6eb1)
  • resolve zero trust test failures from computed attribute refresh drift (#6224) (5351c6a)
  • ruleset: allow rewrite rules to set an empty URL query string (#6256) (b177cc0)
  • workers script migration (#6210) (dca249e)

Chores

5.10.1 (2025-09-17)

Full Changelog: v5.10.0...v5.10.1

Features

Bug Fixes

Chores

Documentation

5.10.0 (2025-09-12)

Full Changelog: v5.9.0...v5.10.0

Features

  • add 'ruleset' support in migration tool (#6104) (82158eb)
  • add migration tool support for cloudflare_snippet (79e19d3)
  • add migration tool support for cloudflare_snippet_rules (b1d4e92)
  • cloudflare_list: add nested list items to data source (0818c2d)
  • cloudflare_list: add nested set list items (f96b922)
  • handle list items in v4 (5c315f2)
  • internal: support CustomMarshaler interface for encoding types (3ce3cbc)
  • Merge branch 'vaishak/bump-sdk-version' into 'main' (2d4ae17)
  • merge items into list (0709233)
  • migrate list with embedded items from v4 to v5 (40ff2dd)
  • migrate: add comprehensive workers cross-resource reference support (39032e3)
  • migrate: fix load_balancer migration test (#6148) (1d21133)
  • migrate: implement comprehensive workers_script v4→v5 bindings migration (59d436b)
  • migrate: implement remaining workers_script binding migration fixes (6324582)
  • migrate: support migrations for workers_route and workers_script (3308fa5)
  • migration tests (1e35d38)
  • migration tests (8ec2d24)
  • modernize healthcheck tests (74a358d)
  • modernize notification_policy_webhooks tests (bbab7d5)
  • modernize r2_bucket tests (ecf2609)
  • modernize zero_trust_dlp_custom_profile tests (cb11079)
  • modernize zero_trust_dlp_entry tests (6f0a6b1)
  • modernize zero_trust_list tests (27e8cab)
  • ruleset: validate action parameters are used with correct action (578879e)
  • workers_route, workers_script: implement migration for workers_(script|route) (ff3e68e)
  • zone: add v4 -> v5 migrations (279070c)
  • zone: implement migrations (717787a)

Bug Fixes

  • broken test data and block attribute conversion (#6138) (6a07ac2)
  • ci workflows (ee2117a)
  • comment_modified_on drift in DNS records (b5bdee4)
  • discord failure (8b8eb19)
  • dns record empty states (e8f418e)
  • don't announce to discord (9e7a495)
  • dynamic 'origins' blocks migrations (8d5de51)
  • dynamic blocks and tests (4d6855c)
  • fix snippets tests (52dfe49)
  • fix zero_trust_dlp_entry acceptance tests (5007122)
  • inconsistent apply Issue #6076 (#6139) (0e9650f)
  • migrate: add missing hyperdrive binding attribute renames (fc6b137)
  • migrate: correct module transformation and clean up dead code tests (c364035)
  • migrate: custom_pages state migrations (8b4e1cf)
  • migrate: implement dispatch_namespace attribute to binding migration (3a432dd)
  • migrate: implement module attribute to main_module/body_part migration (dd94222)
  • migrate: implement workers_secret cross-resource migration to secret_text bindings (5ff5c6c)
  • migrations for config and state (24e44b0)
  • more roboust retry logic for certificate tests (#6154) (25039bc)
  • nil dereference in cloudflare_workers_script resource (#6158) (bcfc129), closes #6147
  • prevent resource type corruption in workers_secret state migration (abc0548)
  • prevent resource type corruption in workers_secret state migration (adbbae2)
  • required field ttl (b88e5b8)
  • resolve race condition in zero_trust_access_mtls_hostname_settings migration tests (#6152) (9c6deef)
  • run spinnets in sequence (0789979)
  • skip acceptance tests in unit test scope (#6155) (e860eb5)
  • snippet and load balancer migration tests (#6149) (a347ebc)
  • state (5742920)
  • state test (16c5fc2)
  • tests (84f27a3)
  • tiered cache test (408a4b6)
  • workers_script: fix/improve bindings tests (fca02f3)
  • workers_script: get tests passing again (404a241)
  • workers_script: referenced attribute renames (#6136) (29d686c)
  • workers_script: resolve binding order infinite loop in v5 provider (a05f552)
  • zero trust access indetity provider migration (7bc2a5d)
  • zero trust access mtls certificate acceptance tests (7e91d44)
  • zero trust migrations (ddc8642)
  • zero_trust_access_mtls_certificate acceptance tests (b163147)
  • zero_trust_device_custom_profile sweeper (f0ed7ca)

Chores

Refactors

  • migrate: add resource rename support to workers_route and workers_script (35eaca1)
  • migrate: clean up duplicate bindings maps (2393057)

5.9.0 (2025-08-29)

Full Changelog: v5.8.4...v5.9.0

Features

  • add comprehensive zero_trust_access_group v4→v5 migration support (44b55c1)
  • add job IDs (8bcdbd5)
  • api: api update (b9b17cf)
  • api: api update (8ec5c0e)
  • api: api update (fb4eddb)
  • api: api update (12c4328)
  • api: api update (511614c)
  • api: api update (1d22129)
  • api: api update (7391faf)
  • api: api update (4fa333d)
  • api: api update (5f93f24)
  • api: api update (b584f87)
  • api: api update (ff12699)
  • api: api update (ad38f3f)
  • api: api update (51bbca9)
  • api: api update (d873115)
  • api: api update (a6065ba)
  • api: api update (2545b2c)
  • api: api update (abcd800)
  • api: api update (9251429)
  • api: api update (4980f38)
  • api: api update (76010ab)
  • api: api update (627dfd8)
  • api: api update (b6e00b8)
  • api: api update (8bfb0c4)
  • api: api update (d614e59)
  • api: api update (b1cb9f3)
  • api: api update (098a710)
  • api: api update (da44c34)
  • api: api update (276d413)
  • api: api update (403f6a6)
  • api: api update (51788e7)
  • api: api update (841fa60)
  • api: api update (cfcd80d)
  • api: api update (8832c77)
  • api: api update (f02e8ce)
  • api: api update (bfd878b)
  • implement automated v4→v5 migrations for zero trust access application (344d995)
  • implement automated v4→v5 migrations for zero trust access policy (204a2c0)
  • implement comprehensive v4 to v5 migration for zero_trust_access_group resources (c63bd93)
  • implement comprehensive v4→v5 migration for tiered_cache resources (1d763a9)
  • migrate argo (21bef66)
  • migrate state (47c25c2)
  • migrate state (799e3c2)
  • migrate: fix access application domain_type and destinations migration (f572e62)
  • migrate: remove skip_app_launcher_login_page when type is not app_launcher (1cfa5ec)
  • migrations for zero_trust_access_application (bb35c7c)
  • migrations for zero_trust_access_identity_provider (75e412f)
  • migrations for zero_trust_access_mtls_certificate (4d547c5)
  • migrations for zero_trust_access_mtls_hostname_settings (82ff1cb)
  • parallel test runs (48d5c35)
  • regional_hostname: support migration from v4 to v5 (ffd589d)
  • state upgrader (ed2ad91)
  • sweeper for magic_wan_static_route (51728f9)
  • zero trust access policy migrations (134df93)

Bug Fixes

  • 'created_on' API inconsistencies in LB pool (e8d34db)
  • access application model schema parity (94311b7)
  • account_member tests (832a05a)
  • api_token (3846ff9)
  • drift (6e5659d)
  • dynamic type validators should handle int and floats correctly (5ae1226)
  • enable account_member tests (d3ba4ab)
  • encoder crash for nested nils in dynamic types (91e9782)
  • enhance DNS record sweeper to prevent apex domain test conflicts (4be8681)
  • grit patterns (736b9ac)
  • grit patterns for dns records (6e0785e)
  • handle empty tags (35ab9f7)
  • implement migration for ZT IDP in the migrate tool (df2289e)
  • load_balancer_monitor: Fix detected drift on refresh (024f015)
  • load_balancer: Fix detected drift on refresh and update (3d06582)
  • migrate for managed headers (8398f4f)
  • migrate: fix incorrect setting name for 0rtt (4943ca2)
  • migrate: fix zone_settings migrations (d24ce96)
  • populate computed_optional collections from API responses (d6c64dc)
  • properly handle null nested objects in customfield marshaling (61c808d)
  • remove state upgrade (c6716e7)
  • resolve test failures in magic_wan_static_route and (11d91df)
  • resolve type mismatches in zero trust access policy and application migrations (8e3b4b6)
  • test: Add plan check validations to cloudflare_zero_trust_tunnel_cloudflared_route resource (c94fb5b)
  • test: add planmodifiers for dynamic type (eaf6f17)
  • use planmodifier for zone_settings value normalization (468f59a)
  • wire up migrates (54c3248)
  • zero trust access policy acceptance tests (4804ca3)
  • zero_trust_device_custom_profile_local_domain_fallback: fix recurring diffs and add acceptance tests for multiple domains (c8e790a)
  • zero_trust_device_custom_profile: fix recurring diffs and add acceptance tests (2b358e6)
  • zone_setting: remove grit patterns for cloudflare_zone_settings_override (3b6edda)

Chores

  • add load balancer acceptance tests to CI (b9df93d)
  • add sweeper for magic_wan_gre_tunnel (e31976a)
  • add tests for zero_trust_device_custom_profile (cc567a8)
  • add zero trust device tests to CI (bcff1a8)
  • api: upload stainless config from cloudflare-config (9a32393)
  • api: upload stainless config from cloudflare-config (00d150d)
  • api: upload stainless config from cloudflare-config (ca57125)
  • api: upload stainless config from cloudflare-config (416b5c1)
  • ci: skip ZT mTLS tests (289ce58)
  • ci: temporarily disable migration tests (e1c5b3d)
  • ci: temporarily disable migration tests (8ab562f)
  • clean up (0415065)
  • comment modified on test (d403d5f)
  • disable failing queue and r2bucket sweepers (e1394a8)
  • docs: generate provider docs (d86327b)
  • fix ci script (5991be1)
  • fix magic_wan_ipsec_tunnel acceptance tests (5f5b50a)
  • fix sweepers for many resources (c2f66f6)
  • fix TestAccCloudflareAccessOrganization (8b0e176)
  • fix TestAccCloudflareAccessPolicy_ApprovalGroup (52ef60b)
  • fix workers_script tests (1116eac)
  • fix zero_trust_access_identity_provider tests (2575473)
  • fix zero_trust_access_mtls_certificate acct tests (a00f421)
  • fix zero_trust_access_mtls_hostname_settings tests (166517f)
  • fix zero_trust_tunnel_cloudflared_route (0e961f7)
  • fix zero_trust_tunnel_cloudflared_route tests (3c51256)
  • improve integrity test error messages (2d410d2)
  • increase ci test timeout (5da9eab)
  • increase number of ci jobs (50ee749)
  • internal: add test rule to lint for dynamic attributes that do not have planmodifier (a725465)
  • internal: codegen related update (42115d7)
  • internal: codegen related update (8feeada)
  • internal: codegen related update (17863a2)
  • internal: codegen related update (0bd098f)
  • internal: codegen related update (4e59511)
  • internal: codegen related update (55d5985)
  • internal: codegen related update (5505692)
  • internal: codegen related update (7765dbf)
  • internal: codegen related update (1748ea8)
  • internal: codegen related update (e0eff5c)
  • internal: codegen related update (cde67a4)
  • internal: codegen related update (5d2fe3d)
  • internal: codegen related update (a9610ce)
  • internal: codegen related update (90aa9c5)
  • internal: codegen related update (2b37de1)
  • internal: codegen related update (b27f531)
  • internal: codegen related update (2275aa2)
  • internal: codegen related update (4cbcff5)
  • internal: codegen related update (2136d08)
  • load_balancer_pool: fix test data and skip broken test (3be61aa)
  • merge acct GH steps into a single step (d27710c)
  • more tests and drift (f1cc4ac)
  • parallel ci test runs (260a5b9)
  • remove state upgraders (ca04b97)
  • remove version from schema (73f2e17)
  • run sweeper before any test run (5bac861)
  • separate acceptance and migration tests (e466442)
  • skip failing ruleset test (7746f2b)
  • skip failing sweepers (46810fe)
  • update all cf-go v5 -> v6 imports (2cd840f)
  • we can have only 3 parallel jobs (588c710)
  • wire up migrate commands (b574a2a)
  • zero_trust_access_mtls_certificate tests (07e374e)

5.8.4 (2025-08-15)

Full Changelog: v5.8.3...v5.8.4

Bug Fixes

  • cloudflare_ruleset: update for consistency with OpenAPI schema (837da07)

Chores

  • don't announce to discord (1816fff)
  • generate docs for 5.8.4 release (ae12b37)
  • only include ones that have tests (ebc40cf)
  • run one by one (1185be7)

5.8.3 (2025-08-15)

Full Changelog: v5.8.2...v5.8.3

Features

Bug Fixes

  • cloudflare_ruleset: handle omitted rules in API responses (7f15668)
  • dont run in parallel (9c952a9)
  • imports (4369f06)
  • list item test execution and add managed_transforms (c3c3bb4)
  • list_item: Use proper pagination from client (8f692ad)
  • regex to not account order (1e2d64d)
  • remove workers_for_platforms_dispatch_namespace default value for 'trusted_workers' (dded442)
  • test assertion regex (9a0b7ab)
  • test data (1cc94d4)
  • update schema (6c97aad)
  • workers_script: ignore unmanaged secret_text bindings (a3b6816), closes #5892
  • workers_script: Obtain migrations directly from config instead of plan (2602dba), closes #5898
  • workers_script: Revert treating cloudflare_workers_script.bindings as a Set (757b98f)
  • zero_trust_access_application tests (d7eccc3)
  • zt orgs (fc9f9a2)
  • zt orgs another way (93f95cd)

Chores

  • add bot management test (6114b7d)
  • api: upload stainless config from cloudflare-config (68454d3)
  • api: upload stainless config from cloudflare-config (33e7b03)
  • api: upload stainless config from cloudflare-config (bf113c7)
  • api: upload stainless config from cloudflare-config (7b2fe37)
  • api: upload stainless config from cloudflare-config (9c03a0e)
  • api: upload stainless config from cloudflare-config (9babc23)
  • api: upload stainless config from cloudflare-config (872f8ba)
  • api: upload stainless config from cloudflare-config (b21ea4a)
  • api: upload stainless config from cloudflare-config (5790fb1)
  • api: upload stainless config from cloudflare-config (2016bf8)
  • api: upload stainless config from cloudflare-config (ef987a8)
  • api: upload stainless config from cloudflare-config (26c37c4)
  • enable token-based auth for acceptance tests (20ea7d8)
  • extra checks (3e5591e)
  • fix deterministic zone names in cloudflare_zone acceptance tests (1de0cc3)
  • fix TestAccCloudflareAccessIdentityProvider_OAuth_Import (82c589a)
  • fix ZT mtls certificate acceptance tests (cda1128)
  • internal: upgrade cloudflare/circl (2df21d4)
  • modernize zero_trust_access_mtls_hostname_settings tests (0a0556b)
  • new line (1c0eb79)
  • no-op plan (db1b335)
  • remove line (1adfcc1)
  • Revert "enable token-based auth for acceptance tests" (d13f98a)
  • skip api_token test until we configure CI to support token-based auth (4a84a94)
  • skip flaky zero_trust_access_application test (8107984)
  • skip test failing due to inconsistent apply with sensitive value (9336894)
  • skip unicode 'zone' tests and extend sleeps for mtls certs (9871bfa)
  • sort imports (dc52145)
  • tidy up (49b1243)
  • uncomment check (b24e573)
  • update @stainless-api/prism-cli to v5.15.0 (7534488)
  • update ci list (13e5c5e)
  • update managed_transform tests (ad82abe)
  • workers_script: use resourcevalidator.ExactlyOneOf() to ensure content or content_file is provided (e9d000c)

Documentation

  • add a warning to workers_script (5aa1016)

5.8.2 (2025-08-01)

Full Changelog: v5.8.1...v5.8.2

Features

Chores

  • update model for zt gateway settings (a084e1b)

5.8.1 (2025-08-01)

Full Changelog: v5.8.0...v5.8.1

Bug Fixes

Chores

  • docs: generate provider documentation (21a9cd4)
  • skip flaky tests (890d693)
  • snippet rules not ready (e2312e2)
  • update zone name for tests and not in parallel (d3b0d00)

5.8.0 (2025-08-01)

Full Changelog: v5.7.1...v5.8.0

Features

Bug Fixes

  • add version back to extended email settings for gateway (81df358)
  • initial snippets acceptance tests (e2d6a0e)
  • list item model (b64e4fc)
  • make gateway settings host selector + inspection optional (a5cbc80)
  • workers_script: add missing workflow value to bindings.type validator (cb5d655)
  • workers_script: fix nested computed attributes under bindings causing unwarranted plan diffs (ab9dd38)
  • workers_script: handle text value for secret_text bindings during refresh plan (3ff7ac3)
  • workers_script: handle empty placement object during refresh plan (ee64d6b)
  • workers_script: mark migrations as WriteOnly (409e81b)
  • zero_trust_gateway_settings: remove leftover import (1c3c135)

Chores

  • api: update composite API spec (c1d05a1)
  • api: upload OpenAPI schema from api-schemas (cb6f526)
  • api: upload stainless config from cloudflare-config (033cf6d)
  • api: upload stainless config from cloudflare-config (d30fb7f)
  • api: upload stainless config from cloudflare-config (59efb43)
  • api: upload stainless config from cloudflare-config (0ac93c5)
  • api: upload stainless config from cloudflare-config (91aa4e4)
  • fix code formatting (ff642bc)
  • housekeeping (a42c70a)
  • missing import (629f60d)
  • remove redundant newline (2a4b8f7)
  • tests: Add acceptance tests for WARP Connector resource (62f19ce)
  • workers_script: add import verification step to test cases (f89916c)
  • workers_script: update tests to replace legacy check functions with state checks (6181db3)

5.7.1 (2025-07-15)

Full Changelog: v5.7.0...v5.7.1

Bug Fixes

  • api: Fix update/read path parameter for zone subscription (c763edf)

Chores

5.7.0 (2025-07-14)

Full Changelog: v5.6.0...v5.7.0

Features

  • api: Add 'zero_trust_tunnel_warp_connector' Terraform resource (204d752)
  • api: Add DELETE and POST routes for Magic Connector (b3c8c0a)
  • api: api update (85a1a2f)
  • api: api update (c20c04c)
  • api: api update (f936dc9)
  • api: api update (a5634a8)
  • api: api update (d7e118c)
  • api: api update (7a1200e)
  • api: api update (97ea6d6)
  • api: api update (75e1515)
  • api: api update (223c0ff)
  • api: api update (7e9304b)
  • api: api update (b98281d)
  • api: api update (d94fb1f)
  • api: api update (7861f45)
  • api: api update (534cc05)
  • api: api update (39676a0)
  • api: api update (c449ded)
  • api: api update (de3965a)
  • api: api update (ab0e41a)
  • api: api update (c8168f2)
  • api: api update (371b58e)
  • new option to send computed values back to server (2b9c5d5)
  • workers_script: support content_file and content_sha256 attribute pair as alternative to content (6c850b0)
  • zero_trust_dlp: Added individual resources and new routes (2b7185f)

Bug Fixes

  • assertion (58392a5)
  • ci jobs (8fd4d84)
  • ci run setup (b38f788)
  • ci: release-doctor — report correct token name (87e54a5)
  • logpull_retention: Fix Terraform ID property (de3811f)
  • null nested attribute decoding (5ba7d5b)
  • terraform: strip leading/trailing underscores from attribute names (e00ca4b)
  • zone_subscription: Fix incorrect path identifier on Update and Read (e00223d)

Chores

  • api: Specify default value for Zone Lockdown 'paused' property (808598c)
  • api: Specify default value for Zone Lockdown 'paused' property (072f9f7)
  • ci: only run for pushes and fork pull requests (df566b9)
  • config: bump cloudflare-go (8671c9a)
  • internal: codegen related update (70ba827)
  • internal: codegen related update (f29c24a)
  • run steps on failure (c7360a5)
  • skip flaky list item tests due to rate limit (85f5b78)
  • skip flaky list item tests due to rate limit (c980fdc)
  • test: Fix acceptance test runner (c964479)
  • test: Fix model parity tests (52446ec)
  • test: Skip GRE tunnel tests (7278846)
  • test: Skip magic tests when we don't have the right environment (c8c505b)
  • test: Skip some Access IDP tests (9e13c6f)
  • test: Skip some rulesets tests (263f43c)
  • test: Skip TestAccCloudflareAPIShieldBasic (b5a6ba3)
  • test: Skip TestAccCloudflareAPITokenData (11f728d)
  • test: Skip TestAccCloudflareTeamsList_LottaListItems (7e6c4da)
  • test: Skip zone lockdown tests (bfe7436)
  • test: Skip zone subscription tests (a533043)
  • update docs (884dcd8)
  • update docs (cd30cb5)
  • zone_subscription: Fix ID property configuration (b762cf2)

5.6.0 (2025-06-17)

Full Changelog: v5.5.0...v5.6.0

Features

Bug Fixes

  • add missing properties (a21b2bc)
  • api: Update zone subscription paths (e021998)
  • page rule panic #5577 (a3c643d)
  • schema: better support top-level arrays in paginated responses (e6331d5)
  • static_route: API can accept single routes now (ac52503)
  • WDAPI: Fix 'id_property' for zero_trust_device_default_profile_local_domain_fallback (c409fd4)

Chores

  • api: TTL is required on DNS records (6f3f1cb)
  • api: Update Go SDK version for Terraform provider (27e835d)
  • api: Update Go SDK version for Terraform provider (082cf15)
  • bump deps to avoid GetResourceIdentitySchemas errors for Terraform CLI v1.12+ (7bceb8f)
  • ci: enable for pull requests (779c686)
  • internal: codegen related update (24c025e)
  • internal: codegen related update (50b8e95)

5.5.0 (2025-05-19)

Full Changelog: v5.4.0...v5.5.0

Features

Bug Fixes

  • api: fix path placeholders (0964b9a)
  • cloud_connector_rules: define upsert operations (db4e2aa)
  • cloud_connector_rules: fix nested schema bodies (#5559) (64edb91)
  • cloud_connector_rules: remove outdated warning (#5560) (d7d6ad0)
  • cloud_connector_rules: reuse zone_id for anchor aliasing (bb5cbf3)
  • cloud_connector: alias read methods (2df31d9)
  • cloudforce_one: fix ID typings (#5556) (8f30924)
  • cloudforce_one: fix ID typings (#5558) (6259852)
  • docs: ensure schema docstrings always match the correct schema (120b0c0)
  • internal: more consistent handling of terraform attribute names (69f06bf)
  • only unmarshal attributes that exist on the read response schema during refresh (6521853)
  • page rule issues (#5601) (6316235)
  • r2_bucket_event_notification: add missing queue ID for params (#5594) (eae6622)
  • r2_bucket_event_notification: revert incorrect schema update (#5593) (e86f933)
  • r2_bucket: fix handling of r2_bucket params (#5562) (aa7ba48)
  • r2_bucket: support editing attributes in place (d0f7581)
  • release: update README and version correctly in release PRs (5b2c9d1)
  • schema: support ID parameters on post bodies in addition to path params (11b8aa9)
  • workers_script: Fix refresh behavior and state thrashing (#5544) (5c9e166)
  • zone_setting: update model tags to match schema (#5597) (624db57)

Chores

  • build: update go.mod indirect dependencies (b808655)
  • dep: bump cloudflare-go to v4.4.0 (4c54318)
  • grit: make state replacements more flexible (94617a7)
  • internal: codegen related update (c805fc4)

Documentation

5.4.0 (2025-05-05)

Full Changelog: v5.3.0...v5.4.0

Features

Bug Fixes

  • api: Fix workers_route identifier attributes (cf994ae)
  • build: do not fail if go mod tidy fails during bootstrapping (99c36f3)
  • cloud_connector: dedupe nested fields (63e0303)
  • fix caching issue between Unmarshal and UnmarshalComputed (f253a26)
  • resources: do not refresh resources that have unsupported response types (febe04e)
  • schema: fix configurability calculation for nested properties without computed values (428f76b)
  • workers_kv: fix cloudflare_workers_kv state refresh (2e61b3e)
  • workers: rectify bad merge (6937388)

Chores

  • ci: only use depot for staging repos (ce5dd65)
  • ci: run on more branches (b90e5eb)
  • ci: run on more branches and use depot runners (0a38714)
  • workers_kv: test resource properly supports drift detection (d3777ed)
  • workers_kv: update acceptance test to use v2 cloudflare-go client (d717117)

5.3.0 (2025-04-09)

Full Changelog: v5.2.0...v5.3.0

Features

Bug Fixes

  • access_policy: remove invalid defaults (#5416) (daaceff)
  • account_token: handle unordered policies (#5433) (3f36851)
  • add deserialization annotations to synthetic ID properties (#5376) (754df3f)
  • api_token: handle value across updates (#5414) (1db1294)
  • api: better support for environment variables as provider properties (#5377) (a6e7785)
  • api: skip generation of update endpoint when only a create endpoint exists (#5397) (9b588cb)
  • dns_record: don't include defaults for data (#5461) (8a5e8ce)
  • hostnames: define correct path parameter for updates (#5428) (c54a6a0)
  • logpush: remove empty default value (#5401) (0659e1f)
  • origin_ca_certificate: persist values across reads (#5415) (1e6d072)
  • r2_custom_domain: add jurisdiction into the schema (#5404) (7d2b266)
  • ruleset: handle stricter marshaling (#5391) (b9f0292)
  • workers_cron_trigger: remove duplicate struct (#5435) (7a54b42)
  • workers_for_platforms_script_secret: correctly update resource name (#5459) (e52e4db)
  • workers_script: cleanup placement duplication (#5437) (3ac96b6)
  • zero_trust_tunnel_cloudflared_virtual_networ: persist is_default write only value (#5434) (368ab5d)
  • zero_trust_tunnel_cloudflared: persist write only values (#5432) (7d62813)

Chores

Documentation

5.2.0 (2025-03-20)

Full Changelog: v5.1.0...v5.2.0

Features

Bug Fixes

  • accoun_token: mark meta as read only (84e8c23)
  • account_token: fix missing model change (fff0f2c)
  • account_token: handle value write only field (4cbb4b5)
  • account: remove recreation on tenant unit (76fbb98)
  • api: avoid spurious replacement plans for computed ID properties (#5244) (37baea6)
  • api: remove min and max validations in mismatched union variants (#5263) (b5f51a0)
  • authenticated_origin_pulls_certificate: handle private_key write only field (78b9ff1)
  • authenticated_origin_pulls_certificate: populate certificate_id from the id (2b53245)
  • dns_record: relax constraint for overlapping unions (ac79ff8)
  • find-by style data source attributes should share models with plural data sources (#5251) (d488159)
  • r2_custom_domain: remove duplicated domain value (e062813)
  • r2_custom_domain: update path placeholders to de-duplicate internal values (#5281) (5ef949d)
  • rulesets: remove unused fields (dcab45f)
  • waiting_rooms: comment out broken struct for now (3f89aef)
  • workers_script: re-resolve the correct schemas (05b25ba)

Chores

Documentation

5.1.0 (2025-02-13)

Full Changelog: v5.0.0...v5.1.0

Features

  • api: disable zero_trust_tunnel_cloudflared_token (#5128) (df2c3bc)
  • api: enable zero_trust_tunnel_cloudflared_token (#5127) (1bd200e)
  • grit: add more support for dns_record attributes (3dbe899)
  • various codegen changes (d91aee1)

Bug Fixes

  • grit: handle inner objects within the object for records (e7b7bb1)
  • grit: handle inner objects within the object for records (c9a5257)
  • grit: handle inner objects within the object for records (ae22af5)
  • grit: make pattern names consistent (0b2ba12)
  • update migration guide to use source, not stdlib (9d208d6)
  • use correct name for Grit patterns (2f8d522)

Documentation

  • clean out previously set schema_versions (fba939d)
  • handle cloudflare_record data migration (9eb450b)
  • regenerate (bbf53bf)
  • update deprecation dates (7a8b7d2)
  • update page_rules migration guidance (45e30b1)