5.7.4

Enhancements

• added hub_routing_preference to azurerm_virtual_hub (#1784)

Bug Fixes

• Fix regression sqlmi (#1803)
• Fix SQL MI regressions (#1797)
• fix: source and source_content parsing (#1772)
• Added owners argument for spn (#1773)
• Local combination files updated (#1774)
• Fix minor issues, tag + azuread_group_membership (#1752)
• Fix webhook_url logic, variable should not be required (#1754)

New Contributors

• @brangaadmin made their first contribution in #1774
• @mhamza04 made their first contribution in #1773

Full Changelog: 5.7.3...5.7.4

5.7.3

Features

• Add support for azure maps account (#1727)

Enhancements

• Added support for UserAssigned msi to disk encryption set (#1697)
• Upgrade providers (#1741)
• Backend port and protcol might be different than front end port and protocol. Added port and protocol as optional properties to http_settings. (#1649)
• Updated module waf_policy with optional block excluded_rule_set (#1654)
• Added changes related to application gateway redirect (v1) (#1721)
• Improve resource_group lookup fw policy (#1729)
• Add ip_configuration block to private endpoints (#1691)
• Feature/add ddos protection plan id var non global to ddos (#1732)
• Added default_desktop_display_name support in azurerm_virtual_desktop… (#1734)

Bug Fixes

• Fixed custom script location priority (remote must be first) (#1745)
• Update configv1.tfvars for 200-mi-two-regions example (#1743)
• Revert AKS maintenance window settings (#1668)
• Fix issue with try clause in virtual_machine module (#1642)
• Revert "Feature/add ddos protection plan id var non global to ddos" (#1738)
• Updating tags to match private endpoint module (#1645)
• Add example and fix for app gateway platform ssl profile (#1725)

New Contributors

• @hadiulla made their first contribution in #1734
• @jodiecunningham made their first contribution in #1645
• @fschirinzi made their first contribution in #1691

Full Changelog: 5.7.2...5.7.3

5.7.2

Features

• Add PowerBI embedded module (#1684)

Enhancements

• Pipeline, rover, example updates (#1718)
• Adding example for #1700 and updating CI (#1716)
• Added default ssl_policy block to AGW (#1700)
• Add storage_account_file_shares (#1714)
• Add Private Link endpoints for the App Configuration module (#1708)
• Add support to reference existing resources (#1705)
• Add sftp_enabled argument for storage account (#1695)
• Adding mx and txt records examples for dns_zones (#1688)

Bug Fixes

• Fix application gateway, ssl profile nested ssl policy (#1711)
• Datasources for ASEV3 and ASP & Private Endpoints for Function App and Web App Service (#1715)
• TF credential SP must own the SP to destroy it (#1704)
• Update dependencies for role assignments (#1703)
• Fix for ci caf_launchpad (#1701)
• Fix/recovery vault private endpoint (#1690)
• Azuread application incorrect var name (#1692)

5.7.1

Enhancements

• New version to deploy Azure Devops and TF Cloud/Enterprise with caf_solution (#1678)
• Add missed parameters for the Azure Cosmos DB Account (#1671)
• Add Azure RBAC roles for Azure Service Bus Namespace (#1659)

Bug Fixes

• Fix relative path (#1686)
• Simplify the rover_agents.sh with caf_solution (#1685)
• Updated tag inheritance logic for resource groups (#1680)
• Allow set threat_intel_mode to be null (#1679)
• Allow threat_intel_mode in azurerm_firewall to be set when referencing a virtual_hub (#1673)
• Fix managed_rules exclusion (#1663)
• Add support for vnet resource id in vnet link (#1647)
• Updated standalone.md example to include terraform required providers and azurerm.vhub provider alias (#1650)
• Fix mariadb server minimal tls version enforced (#1667)

New Contributors

• @caiovbraga made their first contribution in #1667
• @chianw made their first contribution in #1650
• @gevraud made their first contribution in #1663
• @sebrichoz made their first contribution in #1673
• @mdanylyuk made their first contribution in #1659

Full Changelog: 5.7.0...5.7.1

5.7.0

New version with azuread 2.x and azurerm 3.x support!
Please read the ./UPGRADE.MD notes for instructions before upgrading from 5.6.x

What's Changed

• blinQ: Update aks.tf based on properties for azurerm 3.46.0 by @heintonny in #1539
• Feature/private dns resolver by @raketham in #1584
• Added AKS Preview registration, Workload Identity by @hieumoscow in #1578
• SQLMI module with native azurerm provider by @didayal-msft in #1590
• Add App Registration API and OAuth Permission Scopes by @froblesmartin in #1459
• Set azurerm provider to 3.53.0 and clean-up by @LaurentLesle in #1596
• Fix example azuread 106 by @LaurentLesle in #1597
• Extract DNS Zone ID from SQLMI FQDN by @didayal-msft in #1602
• SQL MI native bug bash by @LaurentLesle in #1609
• add support for single page application to app registrations by @wwtche in #1612
• Patch.sqlmi fix depends_on issue within sqlmi instance v0 by @LaurentLesle in #1625
• Azure AD Administrative units, members and groups by @LaurentLesle in #1624
• Fix combined_objects_azuread_service_principals by @LaurentLesle in #1626
• Add multi tfstates support to decompose SQL MI deployment by @LaurentLesle in #1627
• Fix id_token_issuance_enabled for azuread by @LaurentLesle in #1628
• Fix api_management_custom_domain warning, AKS - Add public_network_access_enabled, Redis Managed Identities and Postgresql-flexible Database name by @nusrath432 in #1318
• Fix.1520 - Query Parameters in apim operations not working as intended by @LaurentLesle in #1629
• Refactor log to enabled_log by @arnaudlh in #1631
• Update VPN GW to support virtual_networks + patch pdns resolvers by @LaurentLesle in #1633
• Add bootstrap_root_ca_public_pem to vpngw by @LaurentLesle in #1635
• 5.7.0 by @arnaudlh in #1656

New Contributors

• @wwtche made their first contribution in #1612

Full Changelog: 5.6.10...5.7.0

5.6.10

Features

• Add IoT capabilities (#1404)

Enhancements

• Add Cosmos DB custom SQL role functionality (#1418)
• Adding custom data example to load a file (#1623)
• Enhancement: add support for remote dynamic secret reference for cert issuer (#1572)
• Allow AD group in Remote LZ as AKS Cluster Admin (#1257)
• Added redirect configuration for app gateway (#1237)

Bug Fixes

• Fix null value for certificate requests (#1639)
• Set terraform required_version >- 1.3.0 (#1640)
• Cert fix (#1630)
• Update pipelines (#1636)
• Fix arm_template warnings on sqlmi v0 (#1632)

Full Changelog: 5.6.9...5.6.10

5.6.9

Enhancements

• Fix sqlmi workflows (#1617)
• Added support for version less certificate id (rotation) in App Gateway listener certificate. (#1611)
• Adding password to existing azuread app (#1605)
• Generic data sources (#1068)
• Adding the support of custom bgp_community on VNET (#1600)
• Added option to directly use a custom key id for disk encryption set. (#1582)
• Enhancement: Cert request add support for remote dynamic secret reference (#1573)
• Add msi ad groups and sp to deferred role assignment (#1588)
• Add patch_mode argument for windows and linux virtual machine (#1579)
• Add support to upload blob content + improvements (#1580)

Bug Fixes

• Pipelines feedbacks (#1622)
• Additional fix for external disk encryption sets #1582 (#1607)
• Update landingzone-scenarios.yaml (#1618)
• Fixed issues related to url path map and url path map rule creation errors (#1613)
• Update Sku from VPN to Vpn (#1603)
• Fixes issue #1593 (#1594)
• Update create timeout from 60m to 120m (#1595)
• Update instructions for logicapp standard (#1592)
• Tags update for MSSQQL private endpoints (#1581)
• Fix a deferred role assignment regression (#1589)
• The resource 'azurerm_template_deployment' has been superseded by the 'azurerm_resource_group_template_deployment' resource (#1608)

5.6.8

Features

• Add aadb2c_directory resource to module + example (#1556)

Enhancements

• Update Private DNS networking links to support remote/local dns_servers and vnet (#1566)
• Enhancement: Add custom data in VMSS (#1560)

Bug Fixes

• FIX: Private DNS Add try block to check the base tags exists or not (#1568)
• FIX: syntax error in custom https configuration (#1561)
• Fix: Subscription tagging (#1564)
• Fix: ASP Zone redundancy optional attribute (#1567)

New Contributors

• @MarcelHeek made their first contribution in #1564
• @raketham made their first contribution in #1568

Full Changelog: 5.6.7...5.6.8

5.7.0-preview0

This preview release allows testing upgrade from 5.5.x to latest azurerm and azuread.
Use at your own risks and benefits.

Fork it, break it, PR it.
Would love your feedbacks on:

1. Upgrade experience from 5.5.x. please review ./UPGRADE.MD and amend.
2. Feature augmentation to align with new azurerm and azuread providers.

5.6.7

Enhancements

• Add Azure AD application reference to app service authentication (#1540)
• feature: support additional private endpoints for AKS APIserver (#1551)

Bug Fixes

• Fix owners for azuread groups (#1555)

Full Changelog: 5.6.6...5.6.7