chore(deps): update terraform providers and tflint plugins

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
azuread (source)	required_provider	minor	~> 2.46.0 -> ~> 2.47.0
azurerm (source)	required_provider	minor	~> 3.84.0 -> ~> 3.85.0
tfe (source)	required_provider	minor	~> 0.50.0 -> ~> 0.51.0

---

Release Notes

hashicorp/terraform-provider-azuread (azuread)

v2.47.0

Compare Source

BUG FIXES:

• azuread_access_package_assignment_policy - fix a potential crash when removing the question block (#​1273)
• data.azuread_named_location - fix a potential crash if the named location is not found (#​1274)

hashicorp/terraform-provider-azurerm (azurerm)

v3.85.0

Compare Source

FEATURES:

• New Data Source: azurerm_locations (#​23324)
• New Resource: azurerm_iotcentral_organization (#​23132)

ENHANCEMENTS:

• provider: support for authenticating using Azure Kubernetes Service Workload Identity (#​23965)
• dependencies: updating to v0.65.0 of github.com/hashicorp/go-azure-helpers (#​24222)
• dependencies: updating to v0.20231214.1220802 of github.com/hashicorp/go-azure-sdk (#​24246)
• dependencies: updating to version v0.20231214.1160726 of github.com/hashicorp/go-azure-sdk (#​24241)
• dependencies: update security/automation to use hashicorp/go-azure-sdk (#​24156)
• dataprotection: updating to API Version 2023-05-01 (#​24143)
• kusto: removing the remnants of the old Resource ID Parsers now this uses hashicorp/go-azure-sdk (#​24238)
• Data Source: azurerm_cognitive_account - export the identity block (#​24214)
• Data Source: azurerm_monitor_workspace - add support for the default_data_collection_endpoint_id and default_data_collection_rule_id properties (#​24153)
• Data Source: azurerm_shared_image_gallery - add support for the image_names property (#​24176)
• azurerm_dns_txt_record - allow up to 4096 characters for the property record.value (#​24169)
• azurerm_container_app - support for the workload_profile_name property (#​24219)
• azurerm_container_app - suppot for the init_container block (#​23955)
• azurerm_hpc_cache_blob_nfs_target - support for the verification_timer_in_seconds and write_back_timer_in_seconds properties (#​24207)
• azurerm_hpc_cache_nfs_target - support for the verification_timer_in_seconds and write_back_timer_in_seconds properties (#​24208)
• azurerm_linux_web_app - make client_secret_setting_name optional and conflict with client_secret_certificate_thumbprint (#​21834)
• azurerm_linux_web_app_slot - make client_secret_setting_name optional and conflict with client_secret_certificate_thumbprint (#​21834)
• azurerm_linux_web_app - fix a bug in app_settings where settings could be lost (#​24221)
• azurerm_linux_web_app_slot - fix a bug in app_settings where settings could be lost (#​24221)
• azurerm_log_analytics_workspace - add support for the immediate_data_purge_on_30_days_enabled property (#​24015)
• azurerm_mssql_server - support for other identity types for the key vault key (#​24236)
• azurerm_machine_learning_datastore_blobstorage - resource now skips validation when being created (#​24078)
• azurerm_machine_learning_datastore_datalake_gen2 - resource now skips validation when being created (#​24078)
• azurerm_machine_learning_datastore_fileshare - resource now skips validation when being created (#​24078)
• azurerm_monitor_workspace - support for the default_data_collection_endpoint_id and default_data_collection_rule_id properties (#​24153)
• azurerm_redis_cache - support for the storage_account_subscription_id property (#​24101)
• azurerm_storage_blob - support for the source_content type Page (#​24177)
• azurerm_web_application_firewall_policy - support new values to the rule_group_name property (#​24194)
• azurerm_windows_web_app - make the client_secret_setting_name property optional and conflicts with the client_secret_certificate_thumbprint property (#​21834)
• azurerm_windows_web_app_slot - make the client_secret_setting_name property optional and conflicts with the client_secret_certificate_thumbprint property (#​21834)
• azurerm_windows_web_app - fix a bug in app_settings where settings could be lost (#​24221)
• azurerm_windows_web_app_slot - fix a bug in app_settings where settings could be lost (#​24221)
• azurerm_cognitive_account - add ContentSafety to the kind property validation (#​24205)

BUG FIXES:

• provider: fix an authentication issue with Azure Storage when running in Azure China cloud (#​24246)
• Data Source: azurerm_role_definition - fix bug where role_definition_id and scope were being incorrectly set (#​24211)
• azurerm_batch_account - fix bug where UserAssigned, SystemAssigned could be passed to the resource even though it isn't supported (#​24204)
• azurerm_batch_pool - fix bug where settings_json and protected_settings were not being unmarshaled (#​24075)
• azurerm_bot_service_azure_bot - fix bug where public_network_access_enabled was being set as the value for LuisKey (#​24164)
• azurerm_cognitive_account_customer_managed_key - identity_client_id is no longer passed to the api when it is empty (#​24231)
• azurerm_linux_web_app_slot - error when service_plan_id is identical to the parent service_plan_id (#​23403)
• azurerm_management_group_template_deployment - fixing a bug where template_spec_version_id couldn't be updated (#​24072)
• azurerm_pim_active_role_assignment - fix an importing issue by filtering available role assignments based on the provided scope (#​24077)
• azurerm_pim_eligible_role_assignment - fix an importing issue by filtering available role assignments based on the provided scope (#​24077)
• azurerm_resource_group_template_deployment - fixing a bug where template_spec_version_id couldn't be updated (#​24072)
• azurerm_security_center_setting - fix the casing for the setting_name Sentinel (#​24210)
• azurerm_storage_account - Fix crash when checking for routingInputs.PublishInternetEndpoints and routingInputs.PublishMicrosoftEndpoints (#​24228)
• azurerm_storage_share_file - prevent panic when the file specified by source is empty (#​24179)
• azurerm_subscription_template_deployment - fixing a bug where template_spec_version_id couldn't be updated (#​24072)
• azurerm_tenant_template_deployment - fixing a bug where template_spec_version_id couldn't be updated (#​24072)
• azurerm_virtual_machine - prevent a panic by nil checking the first element of additional_capabilities (#​24159)
• azurerm_windows_web_app_slot - error when service_plan_id is identical to the parent service_plan_id (#​23403)

hashicorp/terraform-provider-tfe (tfe)

v0.51.0

Compare Source

DEPRECATIONS and BREAKING CHANGES:

• r/tfe_workspace: execution_mode and agent_pool_id attributes have been deprecated in favor of a new resource, tfe_workspace_settings. Note that these fields no longer compute defaults which is consistent with using a new resource to manage these same settings. In practice, this means that if you unset execution_mode or agent_pool_id without also creating a tfe_workspace_settings, the setting will no longer revert to the default "remote" mode. To migrate, relocate the execution_mode and agent_pool_id arguments to tfe_workspace_settings.

BUG FIXES:

• r/tfe_policy: Fix the provider ignoring updates to the query field, by @​skeggse 1108
• Fix the undetected change when modifying the organization default in the provider configuration by @​brandonc 1152
• New resource r/tfe_workspace_settings: Can be used to break any circular dependency between tfe_workspace and tfe_agent_pool_allowed_workspaces by managing the agent_pool_id for a Workspace by @​brandonc 1159

FEATURES:

• d/tfe_registry_module: Add vcs_repo.tags and vcs_repo.branch attributes to allow configuration of publishing_mechanism. Add test_config to support running tests on branch-based registry modules, by @​hashimoon 1096
• New Resource: r/tfe_organization_default_settings is a new resource to set the default_execution_mode and default_agent_pool_id for an organization, by @​SwiftEngineer 1137'
• New Resource: r/tfe_workspace_settings Uses the tfe_organization_default_settings default_execution_mode and default_agent_pool_id as the default execution_mode by @​brandonc and @​laurenolivia 1159
• New Resource: r/tfe_registry_gpg_key is a new resource for managing private registry GPG keys, by @​tmatilai 1160
• New Data Source: d/tfe_registry_gpg_key is a new data source to retrieve a private registry GPG key, by @​tmatilai 1160
• New Data Source: d/tfe_registry_gpg_keys is a new data source to retrieve all private registry GPG keys of an organization, by @​tmatilai 1160

ENHANCEMENTS:

• d/tfe_organization: Make name argument optional if configured for the provider, by @​tmatilai 1133

v0.50.0

FEATURES:

• r/tfe_workspace: Add auto_apply_run_trigger attribute, by @​nfagerlund 1123
• d/tfe_workspace: Add auto_apply_run_trigger attribute, by @​nfagerlund 1123
• r/tfe_variable_set: Add priority attribute, by @​Netra2104 1075
• d/tfe_variable_set: Add priority attribute, by @​Netra2104 1075

BUG FIXES:

• r/tfe_policy_set: Fix detecting spurious changes on every run when providing file contents with tfe_slug. This may require an updated version of tfc-agent for the full fix to take effect. Fixed by upgrading go-slug to v0.13.1 1123
• r/tfe_variable: Fix nil pointer dereference segfault on client error during Update operations, by @​nfagerlund 1131
• provider: Fix an issue where the request body is not preserved during certain retry scenarios, by @​sebasslash 1135
• provider: Fix a build failure for 32 bit linux architectures by @​brandonc 1139

v0.49.2 (October 4, 2023)

BUG FIXES:

• d/tfe_outputs: Fix incompatibility with the newly-released Terraform 1.6, which would result in a "Data Source Not Implemented" error.

v0.49.1 (October 2, 2023)

BUG FIXES:

• Reverts previous bug fix for provider making two service discovery requests per provider config. This was an internal refactor that broke provider token configuration, by @​brandonc 1085

v0.49.0 (October 2, 2023)

BUG FIXES:

• r/tfe_team_project_access: Fixes a panic that occurs when the client is configured against an older TFE release, by @​sebasslash 1011
• The provider no longer makes two service discovery requests per provider config, by @​brandonc 1034
• d/tfe_policy_set: Add excluded_workspace_ids attribute, by @​Netra2104 1035
• r/tfe_workspace_policy_set and r/tfe_workspace_policy_set_exclusion: Removed workspace-related include parameters since included workspace data is not required to manage these resources, by @​jbonhag 1080

FEATURES:

• d/tfe_organization_membership: Add organization_membership_id attribute, by @​laurenolivia 997
• d/tfe_variable_set: Add project_ids attribute, by @​Netra2104 994
• New Data Source: d/tfe_teams is a new data source to return names and IDs of Teams in an Organization, by @​isaacmcollins 992
• New Resource: r/tfe_workspace_policy_set_exclusion is a new resource allowing the exclusion of one or more existing workspaces from an existing policy set, by @​Netra2104 1033

v0.48.0 (August 7, 2023)

BUG FIXES:

• r/tfe_workspace: Fix panic when updating trigger_patterns attribute, by @​liamstevens 969
• r/tfe_admin_organization_settings: Allow reprovisioning when the parent organization has been deleted, by @​ctrombley 982

FEATURES:

• New Resource: r/tfe_saml_settings manages SAML Settings, by @​karvounis-form3 970
• d/tfe_saml_settings: Add PrivateKey (sensitive), SignatureSigningMethod, and SignatureDigestMethod attributes, by @​karvounis-form3 970
• New Resource: r/tfe_project_policy_set is a new resource to attach/detach an existing project to an existing policy set, by @​Netra2104 972
• d/tfe_policy_set: Add project_ids attribute, by @​Netra2104 974
• r/tfe_team_project_access: Add a custom option to the access attribute as well as project_access and workspace_access attributes with
  various customizable permissions options to apply to a project and all of the workspaces therein, by @​rberecka 983
• d/team_project_access: Add a custom option to the access attribute as well as project_access and workspace_access attributes, by @​rberecka 983

NOTES:

• The provider is now using go-tfe v1.32.0

v0.47.0 (July 18, 2023)

FEATURES:

• New Data Source: d/tfe_saml_settings is a new data source to retrieve SAML settings from the Terraform Enterprise Admin API, by @​karvounis-form3 952

BUG FIXES:

• d/tfe_project: Ignore case when matching project name from Projects List API, by @​jbonhag 958

v0.46.0 (July 3, 2023)

FEATURES:

• New Resource: r/tfe_agent_pool_allowed_workspaces restricts the use of an agent pool to particular workspaces, by @​hs26gill 870
• r/tfe_organization_token: Add optional expired_at field to organization tokens, by @​juliannatetreault (#​844)
• r/tfe_team_token: Add optional expired_at field to team tokens, by @​juliannatetreault (#​844)
• r/tfe_agent_pool: Add attribute organization_scoped to set the scope of an agent pool, by @​hs26gill 870
• d/tfe_agent_pool: Add attribute organization_scoped and allowed_workspace_ids to retrieve agent pool scope and associated allowed workspace ids, by @​hs26gill 870

BUG FIXES:

• r/tfe_workspace_run: Ensure wait_for_run correctly results in a fire-and-forget run when set to false, by @​lucymhdavies (#​910)
• r/tfe_workspace_run: Fix rare random run failures; adjust lists of expected run statuses to ensure that a plan is completely processed before attempting to apply it, by @​uk1288 (#​921)
• r/tfe_notification_configuration: Add support for missing "Check failed" Health Event notifications, by @​lucymhdavies (#​927)
• r/tfe_registry_module: Fix a bug that prevented users from being able to create a registry module using a github app, by @​dsa0x (#​935)

v0.45.0 (May 25, 2023)

FEATURES:

• r/tfe_team: Add attribute manage_membership to organization_access on tfe_team by @​JarrettSpiker (#​801)
• New Resource: r/tfe_workspace_run manages create and destroy lifecycles in a workspace, by @​uk1288 (#​786)
• r/tfe_variable: Add a readable_value attribute, which will provide an un-redacted representation of the variable's value in plan outputs if the variable is not sensitive, and which may be referenced by downstream resources by @​JarrettSpiker (#​801)

ENHANCEMENTS:

• r/tfe_workspace: Retry workspace safe delete if resources are still being processed to determine safety. (#​881)

BUG FIXES:

• r/tfe_variable: Don't silently erase or override the value of a sensitive variable on changes to other attributes when ignore_changes = [value] is set, by @​nfagerlund (#​873, fixing issue #​839)

v0.44.1 (April 21, 2023)

BUG FIXES:

• Fixed a documentation bug in the new r/tfe_no_code_module resource, incorrectly labelling the attribute registry_module as module

v0.44.0 (April 19, 2023)

FEATURES:

• New Data Source: d/tfe_project is a new data source to retrieve project id and associated workspace ids, by @​hs26gill (#​829)

• New Resource: r/tfe_project_variable_set is a new resource to apply variable sets to projects, by @​jbonhag and @​rberecka (#​837)

• New Resource: r/tfe_no_code_module is a new resource to manage no-code settings for registry modules, by @​dsa0x (#​836)

  NOTE: This resource is currently in beta and isn't generally available to all users. It is subject to change or removal.

BUG FIXES:

• r/tfe_workspace: Only set oauth_token_id and github_app_installation_id if configured, by @​moensch (#​835)

DEPRECATIONS:

• The no_code attribute in r/tfe_registry_module is deprecated in favor of the new resource tfe_no_code_module, which provides a more flexible interface for managing no-code settings for registry modules. The no_code attribute will be removed in the next major release of the provider. By @​dsa0x (#​836)

v0.43.0 (March 23, 2023)

FEATURES:

• New Data Source: d/tfe_organization_tags is a new data source to allow reading all workspace tags within an organization, by @​rhughes1 (#​773)
• New Data Source: d/tfe_github_app_installation is a new data source to read a github app installation by name or github app in installation id, by @​roleesinhaHC (#​808)
• r/tfe_workspace: Add attribute github_app_installation_id to the vcs_repo, by @​roleesinhaHC (#​808)
• r/tfe_registry_module: Add attribute github_app_installation_id to the vcs_repo, by @​roleesinhaHC (#​808)
• r/tfe_policy_set: Add attribute github_app_installation_id to the vcs_repo, by @​roleesinhaHC (#​808)
• r/tfe_workspace, d/tfe_workspace: Add source_name and source_url to workspaces, by @​lucymhdavies (#​527)
• r/tfe_team: Add read_projects and read_workspaces to the organization_access block, by @​SwiftEngineer (#​796)
• r/tfe_team_project_access and d/tfe_team_project_access: Added support for "maintain" and "write" project permissions, by @​joekarl and @​jbonhag (#​826)
• r/tfe_workspace and d/tfe_workspace: Add attribute html_url, by @​brandonc (#​784)
• r/tfe_organization_membership: Organization Memberships can now be imported using <ORGANIZATION NAME>/<USER EMAIL>, by @​JarrettSpiker (#​715)

ENHANCEMENTS:

• Clarify usage of organization fields in documentation describing VCS repository config blocks, by @​brandonc (#​792)
• r/tfe_workspace: Clarify error message shown when attempting to safe-delete a workspace on a version of TFE which does not support safe delete, by @​JarrettSpiker (#​803)

v0.42.0 (January 31, 2023)

FEATURES:

• New Provider Config: organization (or the TFE_ORGANIZATION environment variable) defines a default organization for all resources, making all resource-specific organization arguments optional, by @​brandonc (#​762)
• New Resource: r/tfe_team_project_access manages team project permissions, by @​mwudka (#​768)
• New Data Source: d/tfe_team_project_access reads existing team project permissions, by @​mwudka (#​768)
• r/tfe_team: Add attribute manage_projects to tfe_team, by @​mwudka (#​768)
• r/tfe_team: Teams can now be imported using <ORGANIZATION NAME>/<TEAM NAME>, by @​JarrettSpiker (#​745)
• r/tfe_team_organization_member: Team Organization Memberships can now be imported using <ORGANIZATION NAME>/<USER EMAIL>/<TEAM NAME>, by @​JarrettSpiker (#​745)

ENHANCEMENTS:

• Update API doc links from terraform.io to developer.hashicorp domain by @​uk1288 #​764
• Update website docs to depict the use of set with tfe_team_organization_members and tfe_team_members by @​uk1288 #​767
• d/tfe_workspace: Add execution_mode field to workspace datasource @​Uk1288 (#​772)

BUG FIXES:

• r/tfe_workspace: Return all workspace safe deletion errors by @​skeggse (#​758)

v0.41.0 (January 4, 2023)

BUG FIXES:

• d/tfe_workspace_ids: When no wildcards were used in the names argument a substring match was being performed anyway @​brandonc (#​752)

FEATURES:

• r/tfe_workspace: Add attribute resource_count to tfe_workspace by @​rhughes1 (#​682)
• d/tfe_outputs: Add nonsensitive_values attribute to expose current non-sensitive outputs of a given workspace @​Uk1288 (#​711)
• r/tfe_workspace: Adds validation to tag_names argument to ensure tags are lowercase and don't contain invalid characters @​brandonc (#​743)

v0.40.0 (December 6, 2022)

DEPRECATIONS:

• r/tfe_sentinel_policy is deprecated in favor of the new resource tfe_policy, which supports both Sentinel and OPA policies
• r/tfe_organization_module_sharing is deprecated in favor of the new resource tfe_admin_organization_settings, which supports the global module sharing option

FEATURES:

• New Resource: tfe_admin_organization_settings (#​709) adds the ability for Terraform Enterprise admins to configure settings for an organization, including module consumers and global module sharing config.
• New Resource: tfe_policy is a new resource that supports both Sentinel as well as OPA policies. tfe_sentinel_policy now includes a deprecation warning. (#​690)
• New Resource: tfe_project allows managing projects, which is an upcoming feature of Terraform Cloud and may not yet be generally available. (#​704)
• d/tfe_workspace_ids: Add support for filtering workspace names with partial matching using * (#​698)
• r/tfe_workspace: Add preemptive check for resources under management when force_delete attribute is false (#​699)
• r/tfe_policy_set: Add OPA support for policy sets. (#​691)
• d/tfe_policy_set: Add optional kind and overridable fields for OPA policy sets (#​691)
• r/tfe_policy: enforce_mode is no longer a required property (#​705)
• d/tfe_organization: Add computed default_project_id field to support projects (#​704)
• r/tfe_workspace: Add optional project_id argument to support projects (#​704)
• d/tfe_workspace: Add optional project_id argument to support projects (#​704)

v0.39.0 (November 18, 2022)

FEATURES:

• r/tfe_workspace_run_task: Removed beta notices on the stage attribute for workspace run tasks. (#​669)
• r/registry_module: Adds no_code field. (#​673)
• r/tfe_organization: Add allow_force_delete_workspaces attribute to set whether admins are permitted to delete workspaces with resource under management. (#​661)
• r/tfe_workspace: Add force_delete attribute to set whether workspaces will be force deleted when removed through the provider. Otherwise, they will be safe deleted. (#​675)
• r/tfe_notification_configuration: Add assessment triggers to notifications (#​676)

v0.38.0 (October 24, 2022)

FEATURES:

• d/tfe_oauth_client: Adds name, service_provider, service_provider_display_name, organization, callback_url, and created_at fields, and enables searching for an OAuth client with organization, name, and service_provider. (#​599)
• d/tfe_organization_members: Add datasource for organization_members that returns a list of active members and members with pending invite in an organization. (#​635)
• d/tfe_organization_membership: Add new argument username to enable fetching an organization membership by username. (#​660)
• r/tfe_organization_membership: Add new computed attribute username. (#​660)
• r/tfe_team_organization_members: Add resource for managing team members via organization membership IDs (#​617)

BUG FIXES:

• r/tfe_workspace: When assessments_enabled was the only change in to the resource the workspace was not being updated (#​641)

NOTES:

• The provider is now using go 1.18. (#​643, #​646)

v0.37.0 (September 28, 2022)

FEATURES:

• r/tfe_workspace: Changes in agent_pool_id and execution_mode attributes are now detected and applied. (#​607)
• r/tfe_workspace_run_task, d/tfe_workspace_run_task: Add stage attribute to workspace run tasks. (#​555)
• r/tfe_workspace_policy_set: Add ability to attach an existing workspace to an existing policy set. (#​591)
• Add attributes for health assessments (drift detection) - available only in Terraform Cloud (550):
  • r/tfe_workspace: Add attribute assessments_enabled
  • d/tfe_workspace: Add attribute assessments_enabled
  • r/tfe_organization: Added attribute assessments_enforced
  • d/tfe_organization: Added attribute assessments_enforced

BUG FIXES:

• Bump terraform-plugin-go to v0.6.0, due to a crash when tfe_outputs had null values. (#​611)
• r/tfe_workspace: Fix documentation of file_triggers_enabled default. (#​627)
• r/tfe_variable_set: Fix panic when applying variable set to workspaces fails (#​628)

v0.36.0 (August 16th, 2022)

FEATURES:

• r/tfe_organization_run_task, d/tfe_organization_run_task: Add description attribute to organization run tasks. (#​585)
• d/tfe_policy_set: Add datasource for policy_set (#​592)
• r/tfe_workspace: Adds tags_regex attribute to vcs_repo for workspaces, enabling a workspace to trigger runs for matching Git tags. (#​549)
• r/agent_pool: Agent Pools can now be imported using <ORGANIZATION NAME>/<AGENT POOL NAME> (#​561)

BUG FIXES:

• d/tfe_outputs: Fix a bug causing sensitive values to be missing from tfe_outputs (#​565)

0.35.0 (July 27th, 2022)

BREAKING CHANGES:

• r/tfe_organization: admin_settings attribute was removed after being released prematurely in 0.34.0, breaking existing configurations due to requiring a token with admin privileges (#​573)

BUG FIXES:

• r/tfe_registry_module: Added Computed modifier to attributes in order to prevent unnecessary resource replacement (#​572)

0.34.0 (July 26th, 2022)

BUG FIXES:

• Removed nonworking example from tfe_variable_set docs (#​562)
• Removed ForceNew modifier from name attribute in r/tfe_team (#​566)
• r/tfe_workspace: Fix trigger-prefixes could not be updated because of the conflict with trigger-patterns in some cases - as described in this GitHub Issue (#​564)

FEATURES:

• d/agent_pool: Improve efficiency of reading agent pool data when the target organization has more than 20 agent pools (#​508)
• Added warning logs for 404 error responses (#​538)
• r/tfe_registry_module: Add ability to create both public and private registry_modules without VCS. (#​546)

DEPRECATION NOTICE:

• The registry_modules import format <ORGANIZATION>/<REGISTRY MODULE NAME>/<REGISTRY MODULE PROVIDER>/<REGISTRY MODULE ID> has been deprecated in favour of <ORGANIZATION>/<REGISTRY_NAME>/<NAMESPACE>/<REGISTRY MODULE NAME>/<REGISTRY MODULE PROVIDER>/<REGISTRY MODULE ID> to support public and private registry_modules.

0.33.0 (July 8th, 2022)

FEATURES:

• New Resource: tfe_workspace_variable_set (#​537) adds the ability to assign a variable set to a workspace in a single, flexible resource.
• r/tfe_workspace, d/tfe_workspace: trigger-patterns (#​502) attribute is introduced to support specifying a set of glob patterns for automatic VCS run triggering.
• r/organization: Add workspace_limit setting, available only in Terraform Enterprise (#​521)

DEPRECATION NOTICE: The workspace_ids argument on tfe_variable_set has been labelled as deprecated and should not be used in conjunction with tfe_workspace_variable_set.

0.32.1 (June 21st, 2022)

BUG FIXES:

• Fixed a bug in the latest release where a team data source could be populated with the wrong team. (#​530)

0.32.0 (June 20th, 2022)

0.32.0 is an impactful release that includes several bug fixes, support for run tasks and several breaking changes that you should review carefully.

BREAKING CHANGES:

• Removed Authentication Method: Host-specific TF_TOKEN_... environment variable (added in 0.31.0) can no longer be used for token authentication. This method of authentication is incompatible with the Terraform Cloud remote execution model. Please use the TFE_TOKEN environment variable.
• r/tfe_workspace: Default value of the file_triggers_enabled field is changed to false. This will align the
  file_triggers_enabled field default value with the default value for the same field in the
  TFC API.
  If the value of the file_triggers_enabled field was not explicitly set and either of the fields working_directory
  (not an empty string) or trigger_prefixes was used - to keep the behavior unchanged, the file_trigger_enabled
  field should now explicitly be set to true. (#​510)
• r/tfe_team_access: The permissions attribute requires run_tasks in the block. (#​487)

BUG FIXES:

• Prevent overwriting vcs_repo attributes in r/tfe_workspace when update API call fails (#​498)
• Fix panic crash on trigger_prefixes update in r/tfe_workspace when given empty strings (#​518)

FEATURES:

• r/team, d/team: Add manage_run_tasks to the tfe_team organization_access attributes (#​486)
• New Resource: tfe_organization_run_task (#​488)
• New Resource: tfe_workspace_run_task (#​488)
• New Data Source: d/tfe_organization_run_task (#​488)
• New Data Source: d/tfe_workspace_run_task (#​488)
• r/tfe_notification_configuration: Add Microsoft Teams notification type (#​484)
• d/workspace_ids: Add exclude_tags to tfe_workspace_ids attributes (#​523)

0.31.0 (April 21, 2022)

BUG FIXES:

• Sensitive values within certain Authorization headers are now redacted from TRACE and DEBUG logs (#​479)
• r/tfe_variable_set: Clarified and fixed variable_set documentation and examples (#​473) and (#​472)

FEATURES:

• r/team, d/team: Add sso_team_id to the tfe_team attributes (#​457)
• New Authentication Method: Host-specific TF_TOKEN_... variable can be used for token authentication. See provider documentation for details. (#​477)

0.30.2 (April 01, 2022)

BUG FIXES:

• r/tfe_variable_set: Fixed import documentation and examples (#​466)
• r/tfe_variable: Fixed import documentation and examples (#​466)

0.30.1 (April 01, 2022)

BUG FIXES:

• d/tfe_variable_set: Renamed variable_sets data source to variable_set in documentation (#​458)
• r/tfe_variable_set: Fixed examples in documentation for specifying workspace_ids (#​461)
• r/tfe_variable_set: Fixed examples in documentation for variable_set_id (#​462)

0.30.0 (March 29, 2022)

FEATURES:

• New Resource: tfe_variable (#​452)
• New Resource: tfe_variable_set (#​452)
• New Data Sources: d/tfe_variable_set, d/tfe_variables (#​452)

0.29.0 (March 24, 2022)

BUG FIXES:

• r/ssh_key: Removed ability to update ssh value, which never worked (#​432)

ENHANCEMENTS:

• r/team: Add manage_providers and manage_modules attributes to resource schema (#​431)
• Update go-tfe dependency to version 1.0.0 (#​450)

0.28.1 (February 04, 2022)

BUG FIXES:

• d/terraform_version: Backwards compatibility fix for importing Terraform versions from TFE installations that don't support filtering
  Terraform versions (#​427)

0.28.0 (February 02, 2022)

FEATURES:

• New Resource: tfe_terraform_version (#​400)
• New Resource: tfe_organization_module_sharing (#​425)

ENHANCEMENTS:

• r/workspace: Add support for importing workspaces using / pair (#​401)
• r/team: Show entitlement error when creating teams (#​418)
• Bump go-tfe dependency to 0.24.0

BUG FIXES:

• d/workspace_ids: Fix plugin crash when providing empty strings to names argument (#​421)
• r/workspace: Fix trigger_prefixes and remote_state_consumer_ids were appearing as workspace drift after being defaulted by the API to empty lists (#​423)

0.27.1 (January 25, 2022)

BUG FIXES:

• d/workspace: Fixed an issue with remote state consumers were being populated with all workspaces when
  global_remote_state is true. When global_remote_state is true, it's safe to assume that all workspace
  state can be read (#​414)

0.27.0 (December 15, 2021)

FEATURES:

• New Data Source: d/tfe_variables (#​369)

ENHANCEMENTS:

• r/organization: Added
  send_passing_statuses_for_untriggered_speculative_plans, which can be useful if large numbers of
  untriggered workspaces are exhausting request limits for connected version control service
  providers like GitHub. (#​386)
• r/oauth_client: Added key, secret, and rsa_public_key arguments, used for configuring
  BitBucket Server and Azure DevOps Server. (#​395)
• Improved discovery and loading of credentials from Terraform configuration files; the provider
  will attempt to use Terraform CLI's authentication with Terraform Cloud/Enterprise for its own
  authentication, when present. (#​360)

BUG FIXES:

• r/workspace: Fixed an issue with remote state consumer relationships on workspaces where the provider would not
  follow pagination and only the first 20 results would be read correctly. (#​367)
• r/tfe_variable: Fixed an issue where updating sensitive attributes would just surface the
  underlying correct error (they must be recreated) instead of allowing Terraform to intelligently
  replace the resource as part of its execution plan. (#​394)

0.26.1 (September 04, 2021)

BUG FIXES:

• Fixed a regression introduced in 0.26.0 where explicitly specifying a hostname became erroneously required, when it should
  default to app.terraform.io (Terraform Cloud) (#​354)
• d/workspace_ids: Fixed issue with names and tag_names not validating correctly (#​358)

0.26.0 (September 02, 2021)

FEATURES:

• New Data Sources: d/tfe_organizations, d/tfe_organization #​320.
• Add support for enabling structured run outputs in a tfe_workspace #​330.
• New Data Source: Introduces tfe_slug used to represent configuration files.
  on local file system #​333.
• Add functionality in tfe_policy_set to allow uploading of local policies #​333.
• New Data Source: Introduces tfe_outputs to retrieve state outputs for a Workspace.
• r/workspace: Added tag_names argument to set tags for a Workspace.
• d/workspace: Added tag_names to the data returned for a Workspace.
• d/workspace_ids: Added tag_names as a search option to find Workspaces by tag name.

ENHANCEMENTS:

• Use Golang 1.17 #​341.

0.25.3 (May 18, 2021)

BUG FIXES:

• d/ip_ranges: Fixes an issue in the upstream client where accessing this datasource would
  erroneously change the state of the client and cause subsequent requests in plans to fail with
  incorrect URLs. #​316

0.25.2 (May 06, 2021)

BUG FIXES:
d/tfe_workspace: Fix remote state consumer regression for Terraform Enterprise (#​311)

NOTES:

• This release includes an additional fix for the regression introduced in v0.25.0
  to address errors for anyone using the tfe_workspace data source with a Terraform
  Enterprise version earlier than v20210401-1.

0.25.1 (April 30, 2021)

BUG FIXES:

• r/workspace: Fix remote state consumer regression for Terraform Enterprise (#​303)
• r/organization: Ignore diffs in name case sensitivity (#​300)

NOTES:

• This release includes a fix for a major regression from a backwards incompatible change
  erroneously introduced in v0.25.0, where any Terraform Enterprise version < v20210401-1 would
  experience failures using the tfe_workspace resource.

0.25.0 (April 29, 2021)

BREAKING CHANGES:

• d/tfe_workspace: Removed deprecated external_id attribute. Use id instead (#​295)
• d/tfe_workspace_ids: Removed deprecated external_ids attribute. Use ids instead (#​295)
• r/tfe_workspace: Removed deprecated external_id attribute. Use id instead (#​295)

ENHANCEMENTS:

• Use Go 1.16 to provide support for Apple Silicon (darwin/arm64) (#​288)
• Add Manage Policy Overrides permission for teams (#​285)
• r/tfe_workspace: Add remote state consumer functionality (#​292)
• r/tfe_workspace: Added description parameter to TFE workspace (#​271)
• d/tfe_workspace: Added new workspace fields from the API (#​287)
• d/tfe_workspace: Added branch attribute to vcs_repo block (#​290)
• Improved error message for missing token (#​273)

NOTES:

• You will need to migrate to the new attributes in your configuration to update to the latest
  version of this provider. The tfe_workspace resource will continue to migrate old workspace
  resources in state (schema version 0, using external_id) to new ones (schema version 1, u

---

Configuration

📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions]

Terraform validation

Terraform format 🖌success

Terraform Validation 🤖success

TFLint 👓success

[github-actions]

Production environment

Terraform Plan 📖success

Show Plan

terraform
Running plan in Terraform Cloud. Output will stream here. Pressing Ctrl-C
will stop streaming the logs, but will not stop the plan running remotely.

Preparing the remote plan...

The remote workspace is configured to work with configuration at
/infra/production relative to the target repository.

Terraform will upload the contents of the following directory,
excluding files or directories as defined by a .terraformignore file
at /home/runner/work/NoPlan/NoPlan/.terraformignore (if it is present),
in order to capture the filesystem context the remote workspace expects:
    /home/runner/work/NoPlan/NoPlan

To view this run in a browser, visit:
https://app.terraform.io/app/ThorstenSauter/NoPlan-production/runs/run-ko9iaCqymnbJ8V42

Waiting for the plan to start...

Terraform v1.6.5
on linux_amd64
Initializing plugins and modules...
data.tfe_outputs.global: Refreshing...
data.tfe_outputs.global: Refresh complete after 0s [id=ThorstenSauter-NoPlan-global]
data.azurerm_client_config.current: Refreshing...
module.resource_group.azurerm_resource_group.rg: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001]
data.azurerm_client_config.current: Refresh complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD0zYTk1YzRhOC02NmM1LTRmMGUtYjQ1MC1lOWVmM2E1NGU3MWI7b2JqZWN0SWQ9N2ZiNDg1YjYtMTY2NC00ZTg3LWI1NGQtOThkNTA4OTJmMjVjO3N1YnNjcmlwdGlvbklkPTE2ZTAxYTAwLWY4MjUtNGM5Ni04YWUyLWU2OGNiNTJjZjY1Mzt0ZW5hbnRJZD1mZmFiMzhkZi1jZGRmLTQzM2YtODU5YS02Y2ZhMTYxYTVjZWI=]
module.containerapp_environment.azurerm_log_analytics_workspace.workspace: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.OperationalInsights/workspaces/log-noplan-prod-001]
module.database.azurerm_mssql_server.database_server: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-prod-001]
module.identity.azurerm_user_assigned_identity.uami: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.ManagedIdentity/userAssignedIdentities/id-noplan-prod-001]
module.containerapp_environment.azurerm_container_app_environment.container_environment: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.App/managedEnvironments/acae-noplan-prod-001]
module.monitoring.azurerm_application_insights.appinsights: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.Insights/components/appi-noplan-prod-001]
module.database.azurerm_mssql_firewall_rule.firewall_rule_allow_azure_services: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-prod-001/firewallRules/FirewallRule1]
module.database.azurerm_mssql_database.database: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-prod-001/databases/NoPlan]
module.monitoring.azurerm_role_assignment.monitoring_metrics_publisher_role: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.Insights/components/appi-noplan-prod-001/providers/Microsoft.Authorization/roleAssignments/192c8518-7ace-ae40-825f-f09662328483]
module.container_app.azurerm_container_app.container_app: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.App/containerApps/aca-noplan-api-prod-001]
module.container_app.azurerm_container_app.container_app: Drift detected (update)
module.containerapp_environment.azurerm_log_analytics_workspace.workspace: Drift detected (update)
module.database.azurerm_mssql_database.database: Drift detected (update)

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # module.container_app.azurerm_container_app.container_app will be updated in-place
  ~ resource "azurerm_container_app" "container_app" {
        id                            = "/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-prod-westeurope-001/providers/Microsoft.App/containerApps/aca-noplan-api-prod-001"
        name                          = "aca-noplan-api-prod-001"
        tags                          = {
            "environment" = "Production"
            "managed-by"  = "Terraform"
            "project"     = "NoPlan"
        }
        # (8 unchanged attributes hidden)

      ~ template {
            # (2 unchanged attributes hidden)

          ~ container {
              ~ image             = "acrnoplanglobalwesteurope001.azurecr.io/noplan-api:2.22.1" -> "acrnoplanglobalwesteurope001.azurecr.io/noplan-api:155e5482474a4d8fed50c72be7d12eec26a75cd3"
                name              = "noplan-api"
                # (5 unchanged attributes hidden)

                # (11 unchanged blocks hidden)
            }
        }

        # (3 unchanged blocks hidden)
    }

Plan: 0 to add, 1 to change, 0 to destroy.

------------------------------------------------------------------------

Cost Estimation:

Resources: 0 of 9 estimated
           $0.0/mo +$0.0

─────────────────────────────────────────────────────────────────────────────

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

[github-actions]

Global environment

Terraform Plan 📖success

Show Plan

terraform
Running plan in Terraform Cloud. Output will stream here. Pressing Ctrl-C
will stop streaming the logs, but will not stop the plan running remotely.

Preparing the remote plan...

The remote workspace is configured to work with configuration at
/infra/global relative to the target repository.

Terraform will upload the contents of the following directory,
excluding files or directories as defined by a .terraformignore file
at /home/runner/work/NoPlan/NoPlan/.terraformignore (if it is present),
in order to capture the filesystem context the remote workspace expects:
    /home/runner/work/NoPlan/NoPlan

To view this run in a browser, visit:
https://app.terraform.io/app/ThorstenSauter/NoPlan-global/runs/run-EhPPZduCwSPBUdWj

Waiting for the plan to start...

Terraform v1.6.5
on linux_amd64
Initializing plugins and modules...
data.tfe_outputs.staging: Refreshing...
data.tfe_outputs.production: Refreshing...
data.tfe_outputs.staging: Refresh complete after 1s [id=ThorstenSauter-NoPlan-staging]
data.tfe_outputs.production: Refresh complete after 1s [id=ThorstenSauter-NoPlan-production]
data.azuread_application_published_app_ids.well_known: Refreshing...
data.azuread_client_config.current: Refreshing...
data.azuread_domains.default_domain: Refreshing...
data.azuread_client_config.current: Refresh complete after 0s [id=ffab38df-cddf-433f-859a-6cfa161a5ceb-3a95c4a8-66c5-4f0e-b450-e9ef3a54e71b-7fb485b6-1664-4e87-b54d-98d50892f25c]
data.azuread_application_published_app_ids.well_known: Refresh complete after 0s [id=appIds]
azuread_service_principal.msgraph: Refreshing state... [id=cb86be44-f8dd-45b1-a3cd-70f5a88e8b96]
data.azuread_domains.default_domain: Refresh complete after 0s [id=domains#ffab38df-cddf-433f-859a-6cfa161a5ceb#pJDXTkkTMZbQy6pZZLtcWes0KQc=]
azuread_application.api: Refreshing state... [id=/applications/861509d7-ecf0-4dcf-a7bf-5cfc9732fbc7]
azuread_service_principal.api: Refreshing state... [id=aff582c0-5f84-4c09-9c4f-fbed72dadc59]
azuread_application.integration_testing: Refreshing state... [id=/applications/7dcfd984-3310-4587-bcd4-e39918c9fe85]
azuread_service_principal.integration_testing: Refreshing state... [id=d0d2dfcf-cc3e-477a-bf80-0c416fe8a42a]
data.azurerm_client_config.current: Refreshing...
module.resource_group.azurerm_resource_group.rg: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-global-westeurope-001]
data.azurerm_client_config.current: Refresh complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD0zYTk1YzRhOC02NmM1LTRmMGUtYjQ1MC1lOWVmM2E1NGU3MWI7b2JqZWN0SWQ9N2ZiNDg1YjYtMTY2NC00ZTg3LWI1NGQtOThkNTA4OTJmMjVjO3N1YnNjcmlwdGlvbklkPTE2ZTAxYTAwLWY4MjUtNGM5Ni04YWUyLWU2OGNiNTJjZjY1Mzt0ZW5hbnRJZD1mZmFiMzhkZi1jZGRmLTQzM2YtODU5YS02Y2ZhMTYxYTVjZWI=]
module.container_registry.azurerm_container_registry.acr: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-global-westeurope-001/providers/Microsoft.ContainerRegistry/registries/acrnoplanglobalwesteurope001]
module.container_registry.azurerm_role_assignment.acr_push_role["7fb485b6-1664-4e87-b54d-98d50892f25c"]: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-global-westeurope-001/providers/Microsoft.ContainerRegistry/registries/acrnoplanglobalwesteurope001/providers/Microsoft.Authorization/roleAssignments/0052aa30-2dc3-0c8c-2970-864bec956f21]
module.container_registry.azurerm_role_assignment.acr_pull_role["3ff26ad6-f746-4026-b798-87193992f13e"]: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-global-westeurope-001/providers/Microsoft.ContainerRegistry/registries/acrnoplanglobalwesteurope001/providers/Microsoft.Authorization/roleAssignments/c9673b98-42c6-d822-938b-c955948370d9]
module.container_registry.azurerm_role_assignment.acr_pull_role["6666fd6b-1458-46ff-8a2b-7e57f2b2cf7f"]: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-global-westeurope-001/providers/Microsoft.ContainerRegistry/registries/acrnoplanglobalwesteurope001/providers/Microsoft.Authorization/roleAssignments/23697a1b-5129-4566-58e7-b6bdb2470eec]
azuread_service_principal.msgraph: Drift detected (update)

No changes. Your infrastructure matches the configuration.

Terraform has compared your real infrastructure against your configuration
and found no differences, so no changes are needed.

------------------------------------------------------------------------

Cost Estimation:

Resources: 0 of 9 estimated
           $0.0/mo +$0.0

─────────────────────────────────────────────────────────────────────────────

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

[github-actions]

Staging environment

Terraform Plan 📖success

Show Plan

terraform
Running plan in Terraform Cloud. Output will stream here. Pressing Ctrl-C
will stop streaming the logs, but will not stop the plan running remotely.

Preparing the remote plan...

The remote workspace is configured to work with configuration at
/infra/staging relative to the target repository.

Terraform will upload the contents of the following directory,
excluding files or directories as defined by a .terraformignore file
at /home/runner/work/NoPlan/NoPlan/.terraformignore (if it is present),
in order to capture the filesystem context the remote workspace expects:
    /home/runner/work/NoPlan/NoPlan

To view this run in a browser, visit:
https://app.terraform.io/app/ThorstenSauter/NoPlan-staging/runs/run-6uzNtX4kmTH5TqCf

Waiting for the plan to start...

Terraform v1.6.5
on linux_amd64
Initializing plugins and modules...
data.tfe_outputs.global: Refreshing...
data.tfe_outputs.global: Refresh complete after 0s [id=ThorstenSauter-NoPlan-global]
data.azurerm_client_config.current: Refreshing...
module.resource_group.azurerm_resource_group.rg: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001]
data.azurerm_client_config.current: Refresh complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD0zYTk1YzRhOC02NmM1LTRmMGUtYjQ1MC1lOWVmM2E1NGU3MWI7b2JqZWN0SWQ9N2ZiNDg1YjYtMTY2NC00ZTg3LWI1NGQtOThkNTA4OTJmMjVjO3N1YnNjcmlwdGlvbklkPTE2ZTAxYTAwLWY4MjUtNGM5Ni04YWUyLWU2OGNiNTJjZjY1Mzt0ZW5hbnRJZD1mZmFiMzhkZi1jZGRmLTQzM2YtODU5YS02Y2ZhMTYxYTVjZWI=]
module.database.azurerm_mssql_server.database_server: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-stage-001]
module.identity.azurerm_user_assigned_identity.uami: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.ManagedIdentity/userAssignedIdentities/id-noplan-stage-001]
module.containerapp_environment.azurerm_log_analytics_workspace.workspace: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.OperationalInsights/workspaces/log-noplan-stage-001]
module.database.azurerm_mssql_firewall_rule.firewall_rule_allow_azure_services: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-stage-001/firewallRules/FirewallRule1]
module.database.azurerm_mssql_database.database: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.Sql/servers/sqlsrv-noplan-stage-001/databases/NoPlan]
module.containerapp_environment.azurerm_container_app_environment.container_environment: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.App/managedEnvironments/acae-noplan-stage-001]
module.monitoring.azurerm_application_insights.appinsights: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.Insights/components/appi-noplan-stage-001]
module.monitoring.azurerm_role_assignment.monitoring_metrics_publisher_role: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.Insights/components/appi-noplan-stage-001/providers/Microsoft.Authorization/roleAssignments/797a0398-efad-5a37-2a89-6ece07c8b721]
module.container_app.azurerm_container_app.container_app: Refreshing state... [id=/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.App/containerApps/aca-noplan-api-stage-001]
module.container_app.azurerm_container_app.container_app: Drift detected (update)
module.containerapp_environment.azurerm_log_analytics_workspace.workspace: Drift detected (update)

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # module.container_app.azurerm_container_app.container_app will be updated in-place
  ~ resource "azurerm_container_app" "container_app" {
        id                            = "/subscriptions/16e01a00-f825-4c96-8ae2-e68cb52cf653/resourceGroups/rg-noplan-stage-westeurope-001/providers/Microsoft.App/containerApps/aca-noplan-api-stage-001"
        name                          = "aca-noplan-api-stage-001"
        tags                          = {
            "environment" = "Staging"
            "managed-by"  = "Terraform"
            "project"     = "NoPlan"
        }
        # (8 unchanged attributes hidden)

      ~ template {
            # (2 unchanged attributes hidden)

          ~ container {
              ~ image             = "acrnoplanglobalwesteurope001.azurecr.io/noplan-api:a4cf0a9cfa0b64a19ce74caa5f6e3fbcbe033967" -> "acrnoplanglobalwesteurope001.azurecr.io/noplan-api:155e5482474a4d8fed50c72be7d12eec26a75cd3"
                name              = "noplan-api"
                # (5 unchanged attributes hidden)

                # (11 unchanged blocks hidden)
            }
        }

        # (3 unchanged blocks hidden)
    }

Plan: 0 to add, 1 to change, 0 to destroy.

------------------------------------------------------------------------

Cost Estimation:

Resources: 0 of 9 estimated
           $0.0/mo +$0.0

─────────────────────────────────────────────────────────────────────────────

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (a4cf0a9) 84.00% compared to head (fd6ee72) 84.00%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #589   +/-   ##
=======================================
  Coverage   84.00%   84.00%           
=======================================
  Files          40       40           
  Lines         500      500           
  Branches       17       17           
=======================================
  Hits          420      420           
  Misses         76       76           
  Partials        4        4           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.