Open saliceti opened 1 month ago
Now you need to explicitly pass public_network_access_enabled = false
to you azurerm_postgresql_flexible_server
if you are assigning a VNet configuration to your DB instance.
public_network_access_enabled
defaults to true
Thanks @faizan1990 I understand that. But this is a breaking change for my 25 services using the same configuration. And this is not listed as a breaking change so I don't think this was intended.
Another complexity for me is they all rely on the same terraform module. So if I add public_network_access_enabled = false
to the module, it will break all the services which have not yet updated to 3.105.0.
Thanks for raising this issue. Unfortunately, it's expected behavior since it's by TF design. public_network_access_enabled
has to be explicitly set to false
in the tf config when delegated_subnet_id
and private_dns_zone_id
are set. See more details from https://github.com/hashicorp/terraform-provider-azurerm/pull/25812#discussion_r1593692637.
Actually, breaking change
has been declared in the PR description.
Hi @neil-yechenwei
Thanks for raising this issue. Unfortunately, it's expected behavior since it's by TF design.
public_network_access_enabled
has to be explicitly set tofalse
in the tf config whendelegated_subnet_id
andprivate_dns_zone_id
are set. See more details from #25812 (comment).
Could we automatically default to false
when delegated_subnet_id
and private_dns_zone_id
are set? This would avoid the breaking change.
Actually,
breaking change
has been declared in the PR description.
Shouldn't it be added to the release changelog then?
@neil-yechenwei @tombuildsstuff we can't upgrade to 3.105.0 as it will be a pain to update all our apps. I need to stop devs deploying on 25 repos, update the central module, then upgrade each repo.
Is there a chance the change will be reconsidered? Or should I take the pain.
this really sucks. but it it what it is. thank you guys for clarification.
Is there an existing issue for this?
Community Note
Terraform Version
1.5.4
AzureRM Provider Version
v3.105.0
Affected Resource(s)/Data Source(s)
azurerm_postgresql_flexible_server
Terraform Configuration Files
Debug Output/Panic Output
Expected Behaviour
As mentioned in https://github.com/hashicorp/terraform-provider-azurerm/pull/25812
Actual Behaviour
plan
shows the value ofpublic_network_access_enabled
will be changed to the new default Thenapply
failsSteps to Reproduce
Run terraform apply with v3.104.2 successfully Upgrade to v3.105.0 Run terraform plan: it shows a difference Run terraform plan: it fails
Important Factoids
No response
References
https://github.com/hashicorp/terraform-provider-azurerm/pull/25812