Update Terraform azuread to v2.53.1 #124
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
renovate
bot
requested review from
thomast1906,
danielwilsonkainos and
SalimKainos
![renovate-approve[bot]](https://avatars.githubusercontent.com/in/7394?s=60&v=4){kind=small}
![renovate-approve-2[bot]](https://avatars.githubusercontent.com/in/62175?s=60&v=4){kind=small}
Plan Result (sbox)
Change Result (Click me) # azurerm_key_vault_secret.appInsights-InstrumentationKey will be created
+ resource "azurerm_key_vault_secret" "appInsights-InstrumentationKey" {
+ id = (known after apply)
+ key_vault_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ name = "appInsights-InstrumentationKey"
+ resource_id = (known after apply)
+ resource_versionless_id = (known after apply)
+ value = (sensitive value)
+ version = (known after apply)
+ versionless_id = (known after apply)
}
# azurerm_resource_group.shared_resource_group will be updated in-place
~ resource "azurerm_resource_group" "shared_resource_group" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox"
name = "apple-shared-infrastructure-sbox"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (2 unchanged attributes hidden)
}
# module.application_insights.azurerm_application_insights.this will be updated in-place
~ resource "azurerm_application_insights" "this" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.Insights/components/apple-sbox"
name = "apple-sbox"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (16 unchanged attributes hidden)
}
# module.application_insights.azurerm_monitor_activity_log_alert.main[0] will be updated in-place
~ resource "azurerm_monitor_activity_log_alert" "main" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.Insights/activityLogAlerts/Application Insights daily cap reached - apple-sbox"
name = "Application Insights daily cap reached - apple-sbox"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (5 unchanged attributes hidden)
# (2 unchanged blocks hidden)
}
# module.servicebus-namespace.azurerm_servicebus_namespace.servicebus_namespace will be updated in-place
~ resource "azurerm_servicebus_namespace" "servicebus_namespace" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.ServiceBus/namespaces/apple-servicebus-sbox"
name = "apple-servicebus-sbox"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (14 unchanged attributes hidden)
# (1 unchanged block hidden)
}
# module.vault.azurerm_key_vault.kv will be updated in-place
~ resource "azurerm_key_vault" "kv" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
name = "applesi-sbox"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (13 unchanged attributes hidden)
# (1 unchanged block hidden)
}
# module.vault.azurerm_key_vault_access_policy.creator_access_policy will be created
+ resource "azurerm_key_vault_access_policy" "creator_access_policy" {
+ certificate_permissions = [
+ "Create",
+ "Delete",
+ "DeleteIssuers",
+ "Get",
+ "GetIssuers",
+ "Import",
+ "List",
+ "ListIssuers",
+ "SetIssuers",
+ "Update",
+ "ManageContacts",
+ "ManageIssuers",
]
+ id = (known after apply)
+ key_permissions = [
+ "Create",
+ "List",
+ "Get",
+ "Delete",
+ "Update",
+ "Import",
+ "Backup",
+ "Restore",
+ "Decrypt",
+ "Encrypt",
+ "UnwrapKey",
+ "WrapKey",
+ "Sign",
+ "Verify",
+ "GetRotationPolicy",
]
+ key_vault_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ object_id = "5356a0e7-324e-4efa-970b-4b4aec3f0ba3"
+ secret_permissions = [
+ "Set",
+ "List",
+ "Get",
+ "Delete",
+ "Recover",
+ "Purge",
]
+ tenant_id = "531ff96d-0ae9-462a-8d2d-bec7c0b42082"
}
# module.vault.azurerm_key_vault_access_policy.developer[0] will be created
+ resource "azurerm_key_vault_access_policy" "developer" {
+ certificate_permissions = [
+ "Get",
+ "List",
]
+ id = (known after apply)
+ key_permissions = [
+ "Get",
+ "List",
]
+ key_vault_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ object_id = "7bde62e7-b39f-487c-95c9-b4c794fdbb96"
+ secret_permissions = [
+ "Get",
+ "List",
]
+ tenant_id = "531ff96d-0ae9-462a-8d2d-bec7c0b42082"
}
# module.vault.azurerm_key_vault_access_policy.managed_identity_access_policy["60ab1441-a8a9-4990-aa30-c94e9f0b047b"] will be created
+ resource "azurerm_key_vault_access_policy" "managed_identity_access_policy" {
+ certificate_permissions = [
+ "Get",
+ "List",
]
+ id = (known after apply)
+ key_permissions = [
+ "Get",
+ "List",
]
+ key_vault_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ object_id = "60ab1441-a8a9-4990-aa30-c94e9f0b047b"
+ secret_permissions = [
+ "Get",
+ "List",
]
+ tenant_id = "531ff96d-0ae9-462a-8d2d-bec7c0b42082"
}
# module.vault.azurerm_key_vault_access_policy.product_team_access_policy will be created
+ resource "azurerm_key_vault_access_policy" "product_team_access_policy" {
+ certificate_permissions = [
+ "List",
+ "Update",
+ "Create",
+ "Import",
+ "Delete",
+ "ManageContacts",
+ "ManageIssuers",
+ "GetIssuers",
+ "ListIssuers",
+ "SetIssuers",
+ "DeleteIssuers",
+ "Recover",
]
+ id = (known after apply)
+ key_permissions = [
+ "List",
+ "Update",
+ "Create",
+ "Import",
+ "Delete",
+ "Recover",
]
+ key_vault_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ object_id = "e7ea2042-4ced-45dd-8ae3-e051c6551789"
+ secret_permissions = [
+ "List",
+ "Set",
+ "Delete",
+ "Recover",
]
+ tenant_id = "531ff96d-0ae9-462a-8d2d-bec7c0b42082"
}
# module.vault.azurerm_monitor_diagnostic_setting.kv-ds will be created
+ resource "azurerm_monitor_diagnostic_setting" "kv-ds" {
+ id = (known after apply)
+ log_analytics_destination_type = (known after apply)
+ log_analytics_workspace_id = "/subscriptions/bf308a5c-0624-4334-8ff8-8dca9fd43783/resourceGroups/oms-automation/providers/Microsoft.OperationalInsights/workspaces/hmcts-sandbox"
+ name = "applesi-sbox"
+ target_resource_id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/apple-shared-infrastructure-sbox/providers/Microsoft.KeyVault/vaults/applesi-sbox"
+ enabled_log {
+ category = "AuditEvent"
# (1 unchanged attribute hidden)
}
+ log (known after apply)
}
# module.vault.azurerm_user_assigned_identity.managed_identity[0] will be updated in-place
~ resource "azurerm_user_assigned_identity" "managed_identity" {
id = "/subscriptions/a8140a9e-f1b0-481f-a4de-09e2ee23f7ab/resourceGroups/managed-identities-sbox-rg/providers/Microsoft.ManagedIdentity/userAssignedIdentities/apple-sbox-mi"
name = "apple-sbox-mi"
~ tags = {
"application" = "core"
"autoShutdown" = "true"
"builtFrom" = "https://github.com/HMCTS/sds-toffee-shared-infrastructure.git"
"businessArea" = "Cross-Cutting"
"contactSlackChannel" = "#platops-help"
"environment" = "sandbox"
~ "expiresAfter" = "2024-09-16" -> "3000-01-01"
"managedBy" = "Platform Operations"
"startupMode" = "onDemand"
}
# (5 unchanged attributes hidden)
}
Plan: 6 to add, 6 to change, 0 to destroy. |
Plan Result (stg) |
Plan Result (prod) |
renovate
bot
force-pushed
the
renovate/azuread-2.x
branch
from
fb03afc
to
b244c18
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/azuread-2.x
branch
from
b244c18
to
22cff7a
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/azuread-2.x
branch
from
22cff7a
to
be64566
Compare
hmcts-jenkins-cnp
bot
added
stg/add-or-update
prod/add-or-update
and removed
stg/no-changes
prod/no-changes
labels
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/azuread-2.x
branch
from
be64566
to
3006c98
Compare
|
Infracost free monthly run limit exceeded. Please contact [email protected] to purchase usage pack.: 403 Forbidden Infracost free monthly run limit exceeded. Please contact [email protected] to purchase usage pack. |
renovate
bot
dismissed stale reviews from renovate-approve-2[bot] and renovate-approve[bot]
via
012151c
renovate
bot
changed the title
renovate
bot
dismissed stale reviews from renovate-approve-2[bot] and renovate-approve[bot]
via
7233596
renovate
bot
force-pushed
the
renovate/azuread-2.x
branch
from
012151c
to
7233596
Compare
hmcts-jenkins-cnp
bot
added
stg/no-changes
prod/no-changes
and removed
stg/add-or-update
prod/add-or-update
labels
hannah38
approved these changes
Sep 2, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
2.49.1->2.53.1Release Notes
hashicorp/terraform-provider-azuread (azuread)
v2.53.1Compare Source
BUG FIXES:
azuread_application- export thepasswordattribute only when it is set in configuration, to prevent marking existing resources as sensitive (#1422)v2.53.0Compare Source
ENHANCEMENTS:
azuread_application- support for thepasswordblock (#1389)BUG FIXES:
azuread_claims_mapping_policy- set the correct timeouts for this resource (#1419)azuread_service_principal_claims_mapping_policy_assignment- set the correct timeouts for this resource (#1419)azuread_synchronization_secret- set the correct timeouts for this resource (#1419)v2.52.0Compare Source
BUG FIXES:
azuread_application- fix a bug that could prevent theignore_changeslifecycle argument from working for theapp_role,oauth2_permission_scope,identifier_uris,optional_claims, andrequired_resource_accessproperties (#1403)azuread_application- add a workaround for an API bug when instantiating an application from template using thetemplate_idproperty (#1406)v2.51.0Compare Source
ENHANCEMENTS:
data.azuread_users- support for themailsproperty (#1400)BUG FIXES:
azuread_access_package_assignment_policy- fix a bug preventing removal of theassignment_review_settingsblock (#1394)v2.50.0Compare Source
ENHANCEMENTS:
v0.68.0ofgithub.com/manicminer/hamilton(#1382)data.azuread_application- support looking up applications with theidentifier_uriproperty [GH 1303]azuread_conditional_access_policy- improve handling of thesession_controlsblock (#1382)BUG FIXES:
data.azuread_service_principal- treat thedisplay_nameproperty case-insensitively (#1381)azuread_conditional_access_policy- fix a bug that could cause a persistent diff when setting certain properties in thesession_controlsblock (#1382)azuread_user- don't overwrite the existing password in state, when a password change fails (#1308)Configuration
📅 Schedule: Branch creation - "after 7am and before 11am every weekday" in timezone Europe/London, Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.