v2.13.1

Improvements

• resource/cloudflare_filter: Pass missing credential error through to end user (#860)

v2.13.0

Improvements

• datasource/cloudflare_ip_ranges: Add the ability to query china_ipv4_cidr_blocks and china_ipv6_cidr_blocks (#833)
• resource/cloudflare_filter: Improve validation of expressions using the schema (#848)

Fixes

• resource/cloudflare_page_rule: Set default for cache_key_fields.host.resolved to prevent panics (#832)
• resource/cloudflare_authenticated_origin_pulls: Fix off-by-one error check in Import (#832)
• resource/cloudflare_authenticated_origin_pulls_certificate: Fix off-by-one error check in Import (#832)

v2.12.0

Improvements

• resource/cloudflare_certificate_pack: Swap internal representation of hosts to remove inconsistent ordering issues (#800)
• resource/cloudflare_logpush_job: Handle deletion outside of Terraform (#798)
• resource/cloudflare_access_group: Add support for geo conditionals (#803)
• resource/cloudflare_access_application: Add support for enable_binding_cookie (#802)
• resource/cloudflare_waf_rule: Improve documentation for mode (#824)
• datasource/cloudflare_waf_rule: Improve documentation for mode (#824)
• resource/cloudflare_access_application: Add support for zone-level routes to Access resources (#819)
• resource/cloudflare_access_group: Add support for zone-level routes to Access resources (#819)
• resource/cloudflare_access_identity_provider: Add support for zone-level routes to Access resources (#819)
• resource/cloudflare_access_policy: Add support for zone-level routes to Access resources (#819)

Fixes

• resource/cloudflare_custom_hostname_fallback_origin: Don't retry the "active" status of custom hostnames fallbacks (#818)
• resource/cloudflare_zone: Remove DiffSuppressFunc causing jump_start issues (#830)

v2.11.0

• New Resource: cloudflare_certificate_pack (#778)

Improvements

• resource/cloudflare_access_group: Add support for auth_method (#762)
• resource/cloudflare_access_group: De-duplicate blocks in groups by accepting lists instead (#739)
• resource/cloudflare_worker_script: Adds support for webassembly_binding (#780)
• resource/cloudflare_healthcheck: Retry hostname resolution errors when encountering "no such host" responses (#789)
• resource/cloudflare_access_application: Better validation for allowed methods and origin combinations to prevent getting state into an unrecoverable state (#793)

Fixes

• resource/cloudflare_healthcheck: Handle resource deletion outside of Terraform (#787)
• resource/cloudflare_custom_hostname: Ensure Import sets hostname to prevent recreation (#788)
• resource/cloudflare_ip_list: Handle resource deletion outside of Terraform (#794)
• resource/cloudflare_ip_list: Remove item.id from schema (#796)

v2.10.1

Fixes

• resource/cloudflare_access_application: Handle the zone_id => account_id move internally (#724)

v2.10.0

• New Resource: cloudflare_custom_hostname_origin_fallback (#757)
• New Resource: cloudflare_authenticated_origin_pulls (#749)
• New Resource: cloudflare_authenticated_origin_pulls_certificate (#749)
• New Resource: cloudflare_ip_list (#766)

Improvements

• resource/cloudflare_spectrum_application: Add support for port ranges (#745)
• resource/cloudflare_custom_hostname: Force creation of a new resource if the zone_id value changes (#761)
• resource/cloudflare_record: Retry record creation/update if the response includes an "already exists" exception for handling race conditions (#773)

Fixes

• resource/cloudflare_firewall_rule: Compare descriptions after converting unicode + HTML entities to prevent unnecessary diffs (#758)
• resource/cloudflare_filter: Compare descriptions after converting unicode + HTML entities to prevent unnecessary diffs (#758)

v2.9.0

Improvements

• resource/access_application: Add support for allowed_idps and restricting which Identity Providers are associated with an Application (#734)
• resource/access_application: Add support for auto_redirect_to_identity (#730)
• resource/access_application: Add CORS support (#725)
• resource/cloudflare_custom_ssl: Allow geo_restrictions to be nil and not included in the request payload (#714)
• datasource/cloudflare_zones: Filtering is now performed on the server side and the name parameter is no longer a regex. Instead, name is a string to match on and match is a regex. See the website documentation for more examples and updated references (#708)