You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Feb 2, 2026. It is now read-only.
azuread_application - fix a bug that could prevent the ignore_changes lifecycle argument from working for the app_role, oauth2_permission_scope, identifier_uris, optional_claims, and required_resource_access properties (#1403)
azuread_application - add a workaround for an API bug when instantiating an application from template using the template_id property (#1406)
dependencies: updating to v0.68.0 of github.com/manicminer/hamilton (#1382)
data.azuread_application - support looking up applications with the identifier_uri property [GH 1303]
azuread_conditional_access_policy - improve handling of the session_controls block (#1382)
BUG FIXES:
data.azuread_service_principal - treat the display_name property case-insensitively (#1381)
azuread_conditional_access_policy - fix a bug that could cause a persistent diff when setting certain properties in the session_controls block (#1382)
azuread_user - don't overwrite the existing password in state, when a password change fails (#1308)
New Resource:azuread_application_optional_claims (#1223)
ENHANCEMENTS:
azuread_conditional_access_policy - improved plan-time validation for the session_controls block (#1229)
azuread_conditional_access_policy - support for the sign_in_frequency_authentication_type and sign_in_frequency_interval properties in the session_controls block (#1229)
azuread_conditional_access_policy - support for the included_guests_or_external_users and excluded_guests_or_external_users blocks in the users block (#1222)
BUG FIXES:
azuread_conditional_access_policy - removing the devices or session_controls blocks will no longer force a new resource to be created (#1229)
This release contains a breaking change with the azuread_group resource, in order to fix a regression. Please see #1072 for workaround information.
BUG FIXES:
azuread_group - fix a regression that caused onpremises_group_type to be set when not configured, and unsetting this property now forces replacement of the resource (#1070)
Provider: requests to Microsoft Graph no longer include the tenant ID as part of the URI path (#1039)
BUG FIXES:
azuread_group - work around an API issue that prevented group creation for some configurations where the calling principal is specified as an owner (#1037)
azuread_application_federated_identity_credential - the audiences property now only supports a single value due to a breaking API change (#1027)
azuread_group - only try to set additional fields when explicitly configured, to work around an API bug when application-only permissions are used (#1028)
azuread_service_principal - resolve an issue where newly created service principals might not be found when specifying use_existing = true (#1025)
IMPROVEMENTS:
Provider: support for the metadata_host property (#1026)
Provider: authentication now uses the github.com/hashicorp/go-azure-sdk/sdk/auth package (#1026)
Provider: cloud configuration now uses the github.com/hashicorp/go-azure-sdk/sdk/environments package (#1026)
data.azuread_application - support for the notes attribute (#1027)
data.azuread_directory_roles - support for the template_ids attribute (#1011)
azuread_application - support for the notes property (#1027)
azuread_group - support for the administrative_unit_ids property (#984)
azuread_synchronization_job - fix a bug where the incorrect API version was used, preventing this resource from working properly (#1030)
azuread_synchronization_secret - fix a bug where the incorrect API version was used, preventing this resource from working properly (#1030)
azuread_administrative_unit - revert to the Microsoft Graph beta API version to resolve an API error when using this resource (#1023)
azuread_application - revert to the Microsoft Graph beta API version to resolve an issue preventing creation of new applications (#1023)
azuread_application - revert to the Microsoft Graph beta API version to resolve an issue preventing setting the oauth2_post_response_required property (#1023)
azuread_application_pre_authorized - revert to the Microsoft Graph beta API version to resolve an issue creating this resource (#1023)
azuread_group - revert to the Microsoft Graph beta API version to resolve an issue when managing group members (#1023)
azuread_group_member - revert to the Microsoft Graph beta API version to resolve an issue when managing group members (#1023)
azuread_user - revert to the Microsoft Graph beta API version to resolve a persistent diff for the account_enabled and show_in_address_list properties (#1023)
Provider: All resources will now explicitly use the Microsoft Graph v1.0 API unless stated otherwise in the provider documentation (#990)
data.azuread_application - support the description attribute (#991)
azuread_application - support app role and scope values up to 249 characters (#1010)
BUG FIXES:
Provider: Support authentication scenarios where the oid claim is missing from the access token (#1014)
data.azuread_application_template - revert a workaround from v2.31.0 and no longer use the beta API for this data source (#987)
azuread_application - work around an API bug where mapped_claims_enabled could be set on create when holding the Application.ReadWrite.OwnedBy role (#1008)
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
If you want to rebase/retry this PR, check this box
renovateBot
changed the title
Update Terraform azuread to v2.53.0
Update Terraform azuread to v2.53.1
Jun 29, 2024
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
renovate
Bot
changed the title
This PR contains the following updates:
2.33.0→2.53.1Release Notes
hashicorp/terraform-provider-azuread (azuread)
v2.53.1Compare Source
BUG FIXES:
azuread_application- export thepasswordattribute only when it is set in configuration, to prevent marking existing resources as sensitive (#1422)v2.53.0Compare Source
ENHANCEMENTS:
azuread_application- support for thepasswordblock (#1389)BUG FIXES:
azuread_claims_mapping_policy- set the correct timeouts for this resource (#1419)azuread_service_principal_claims_mapping_policy_assignment- set the correct timeouts for this resource (#1419)azuread_synchronization_secret- set the correct timeouts for this resource (#1419)v2.52.0Compare Source
BUG FIXES:
azuread_application- fix a bug that could prevent theignore_changeslifecycle argument from working for theapp_role,oauth2_permission_scope,identifier_uris,optional_claims, andrequired_resource_accessproperties (#1403)azuread_application- add a workaround for an API bug when instantiating an application from template using thetemplate_idproperty (#1406)v2.51.0Compare Source
ENHANCEMENTS:
data.azuread_users- support for themailsproperty (#1400)BUG FIXES:
azuread_access_package_assignment_policy- fix a bug preventing removal of theassignment_review_settingsblock (#1394)v2.50.0Compare Source
ENHANCEMENTS:
v0.68.0ofgithub.com/manicminer/hamilton(#1382)data.azuread_application- support looking up applications with theidentifier_uriproperty [GH 1303]azuread_conditional_access_policy- improve handling of thesession_controlsblock (#1382)BUG FIXES:
data.azuread_service_principal- treat thedisplay_nameproperty case-insensitively (#1381)azuread_conditional_access_policy- fix a bug that could cause a persistent diff when setting certain properties in thesession_controlsblock (#1382)azuread_user- don't overwrite the existing password in state, when a password change fails (#1308)v2.49.1Compare Source
BUG FIXES:
data.azuread_group_role_management_policy- resolve a potential crash (#1375)azuread_group_role_management_policy- resolve a number of potential crashes (#1375)azuread_privileged_access_group_assignment_schedule- resolve a number of potential crashes (#1375)azuread_privileged_access_group_eligibility_schedule- resolve a number of potential crashes (#1375)v2.49.0Compare Source
FEATURES:
azuread_group_role_management_policy(#1327)azuread_group_role_management_policy(#1327)azuread_privileged_access_group_assignment_schedule(#1327)azuread_privileged_access_group_eligibility_schedule(#1327)azuread_synchronization_job_provision_on_demand(#1032)ENHANCEMENTS:
data.azuread_group- support for theinclude_transitive_membersproperty (#1300)azuread_application- relax validation for theidentifier_urisproperty to allow more values (#1351)azuread_application_identifier_uri- relax validation for theidentifier_uriproperty to allow more values (#1351)azuread_group- support theSkipExchangeInstantOnvalue for thebehaviorsproperty (#1370)azuread_user- relax validation for theemployee_typeproperty to allow more values (#1328)BUG FIXES:
azuread_application_pre_authorized- fix a destroy-time bug that could prevent deletion of the resource (#1299)v2.48.0Compare Source
ENHANCEMENTS:
v0.20240411.1104331ofgithub.com/hashicorp/go-azure-sdk/sdk(#1353)BUG FIXES:
v2.47.0Compare Source
BUG FIXES:
azuread_access_package_assignment_policy- fix a potential crash when removing thequestionblock (#1273)data.azuread_named_location- fix a potential crash if the named location is not found (#1274)v2.46.0Compare Source
ENHANCEMENTS:
data.azuread_application- update the resource ID format to match theazuread_applicationresource (#1255)azuread_named_location- add validation for theip_rangesproperty in theipblock (#1254)v2.45.0Compare Source
FEATURES:
azuread_application_optional_claims(#1223)ENHANCEMENTS:
azuread_conditional_access_policy- improved plan-time validation for thesession_controlsblock (#1229)azuread_conditional_access_policy- support for thesign_in_frequency_authentication_typeandsign_in_frequency_intervalproperties in thesession_controlsblock (#1229)azuread_conditional_access_policy- support for theincluded_guests_or_external_usersandexcluded_guests_or_external_usersblocks in theusersblock (#1222)BUG FIXES:
azuread_conditional_access_policy- removing thedevicesorsession_controlsblocks will no longer force a new resource to be created (#1229)v2.44.1Compare Source
BUG FIXES:
azuread_application_certificate- work around an unexpected diff with theapplication_object_idproperty (#1221)azuread_application_federated_identity_credential- work around an unexpected diff with theapplication_object_idproperty (#1221)azuread_application_password- work around an unexpected diff with theapplication_object_idproperty (#1221)azuread_application_pre_authorized- work around an unexpected diff with theapplication_object_idproperty (#1221)v2.44.0Compare Source
FEATURES:
azuread_application_api_access(#1214)azuread_application_app_role(#1214)azuread_application_fallback_public_client(#1214)azuread_application_from_template(#1214)azuread_application_identifier_uri(#1214)azuread_application_known_clients(#1214)azuread_application_owner(#1214)azuread_application_permission_scope(#1214)azuread_application_redirect_uris(#1214)azuread_application_registration(#1214)azuread_authentication_strength_policy(#1171)ENHANCEMENTS:
data.azuread_application- export theclient_idattribute, deprecate theapplication_idattribute (#1214)data.azuread_service_principal- support for theclient_idproperty, deprecate theapplication_idproperty (#1214)data.azuread_service_principals- support for theclient_idsproperty, deprecate theapplication_idsproperty (#1214)data.azuread_service_principals- export theclient_idattribute in theservice_principalsblock, deprecate theapplication_idattribute (#1214)azuread_application- export theclient_idattribute, deprecate theapplication_idattribute (#1214)azuread_application_federated_identity_credential- support for theapplication_idproperty, deprecate theapplication_object_idproperty (#1214)azuread_application_certificate- support for theapplication_idproperty, deprecate theapplication_object_idproperty (#1214)azuread_application_password- support for theapplication_idproperty, deprecate theapplication_object_idproperty (#1214)azuread_application_pre_authorized- support for theapplication_idproperty, deprecate theapplication_object_idproperty (#1214)azuread_service_principal- support for theclient_idproperty, deprecate theapplication_idproperty (#1214)azuread_conditional_access_policy- support for theauthentication_strength_policy_idproperty in thegrant_controlsblock [GH_1171]BUG FIXES:
azuread_group_member- resolve a bug when refreshing state if the group is missing (#1198)v2.43.0Compare Source
FEATURES:
azuread_directory_role_eligibility_schedule_request(#974)v2.42.0Compare Source
IMPROVEMENTS:
client_id_file_pathandclient_secret_file_pathprovider properties (#1189)data.azuread_group- support for looking up a group with themail_nicknameproperty (#1173)BUG FIXES:
azuread_conditional_access_policy- allow specifyingterms_of_usein place ofbuilt_in_controlsin thegrant_controlsblock (#1168)v2.41.0Compare Source
FEATURES:
azuread_directory_role_templates(#1152)azuread_named_location(#1156)IMPROVEMENTS:
azuread_access_package_assignment_policy- support theManagervalue for thereview_typeproperty in theassignment_review_settingsblock (#1159)azuread_conditional_access_policy- support for theservice_principal_risk_levelsproperty in theconditionsblock (#1145)azuread_conditional_access_policy- thegrant_controlsblock is now optional (#1155)BUG FIXES:
azuread_access_package_resource_package_association- support destruction of this resource (#1124)azuread_application- set thedisplay_nameproperty correctly on creation to improve UX in the event of failure (#1160)v2.40.0Compare Source
IMPROVEMENTS:
v0.62.0ofgithub.com/manicminer/hamiltondata.azuread_user- supporting looking up a user using theemployee_idproperty (#1040)data.azuread_users- supporting looking up users using theemployee_idsproperty (#1040)azuread_conditional_access_policy- support for theclient_applicationsblock in theconditionsblock (#1047)azuread_conditional_access_policy- support for thedisable_resilience_defaultsproperty in thesession_controlsblock (#1135)azuread_group- thebehaviorsproperty now supports theCalendarMemberReadOnlyandConnectorsDisabledvalues (#1144)v2.39.0Compare Source
IMPROVEMENTS:
v0.20230511.1094507ofgithub.com/hashicorp/go-azure-sdk(#1100)BUG FIXES:
v2.38.0Compare Source
FEATURES:
azuread_access_package_catalog_role(#1033)azuread_access_package_catalog_role_assignment(#1033)BUG FIXES:
azuread_service_principal_token_signing_certificate- fix a crash when importing legacy certificates (#1082)v2.37.2Compare Source
BUG FIXES:
azuread_group- remove conditional ForceNew for theonpremises_group_typeproperty, resolve breaking change in v2.37.1 (#1076)azuread_group- improve a workaround for reading Microsoft 365-only properties for groups in a non-M365 tenant (#1076)azuread_group- improve a workaround for detecting unwanted changes to thedescriptionproperty (#1074)v2.37.1Compare Source
NOTES:
azuread_groupresource, in order to fix a regression. Please see #1072 for workaround information.BUG FIXES:
azuread_group- fix a regression that causedonpremises_group_typeto be set when not configured, and unsetting this property now forces replacement of the resource (#1070)v2.37.0Compare Source
FEATURES:
azuread_access_package(#903)azuread_access_package_catalog(#903)azuread_access_package(#903)azuread_access_package_assignment_policy(#903)azuread_access_package_catalog(#903)azuread_access_package_resource_catalog_association(#903)azuread_access_package_resource_package_association(#903)azuread_administrative_unit_role_member(#983)azuread_user_flow_attribute(#1063)IMPROVEMENTS:
v0.60.0ofgithub.com/manicminer/hamilton(#1062)data.azuread_application- support for theservice_management_referenceattribute (#1046)data.azuread_group- support for theonpremises_group_typeandwriteback_enabledattributes (#964)data.azuread_user- support for themailproperty (#996)azuread_application- support for theservice_management_referenceproperty (#1046)azuread_group- support for theonpremises_group_typeandwriteback_enabledproperties (#964)v2.36.0Compare Source
IMPROVEMENTS:
BUG FIXES:
azuread_group- work around an API issue that prevented group creation for some configurations where the calling principal is specified as an owner (#1037)v2.35.0Compare Source
BUG FIXES:
azuread_application_federated_identity_credential- theaudiencesproperty now only supports a single value due to a breaking API change (#1027)azuread_group- only try to set additional fields when explicitly configured, to work around an API bug when application-only permissions are used (#1028)azuread_service_principal- resolve an issue where newly created service principals might not be found when specifyinguse_existing = true(#1025)IMPROVEMENTS:
metadata_hostproperty (#1026)github.com/hashicorp/go-azure-sdk/sdk/authpackage (#1026)github.com/hashicorp/go-azure-sdk/sdk/environmentspackage (#1026)data.azuread_application- support for thenotesattribute (#1027)data.azuread_directory_roles- support for thetemplate_idsattribute (#1011)azuread_application- support for thenotesproperty (#1027)azuread_group- support for theadministrative_unit_idsproperty (#984)azuread_synchronization_job- fix a bug where the incorrect API version was used, preventing this resource from working properly (#1030)azuread_synchronization_secret- fix a bug where the incorrect API version was used, preventing this resource from working properly (#1030)v2.34.1Compare Source
BUG FIXES:
azuread_administrative_unit- revert to the Microsoft Graph beta API version to resolve an API error when using this resource (#1023)azuread_application- revert to the Microsoft Graph beta API version to resolve an issue preventing creation of new applications (#1023)azuread_application- revert to the Microsoft Graph beta API version to resolve an issue preventing setting theoauth2_post_response_requiredproperty (#1023)azuread_application_pre_authorized- revert to the Microsoft Graph beta API version to resolve an issue creating this resource (#1023)azuread_group- revert to the Microsoft Graph beta API version to resolve an issue when managing group members (#1023)azuread_group_member- revert to the Microsoft Graph beta API version to resolve an issue when managing group members (#1023)azuread_user- revert to the Microsoft Graph beta API version to resolve a persistent diff for theaccount_enabledandshow_in_address_listproperties (#1023)v2.34.0Compare Source
IMPROVEMENTS:
data.azuread_application- support thedescriptionattribute (#991)azuread_application- support app role and scope values up to 249 characters (#1010)BUG FIXES:
oidclaim is missing from the access token (#1014)data.azuread_application_template- revert a workaround from v2.31.0 and no longer use the beta API for this data source (#987)azuread_application- work around an API bug wheremapped_claims_enabledcould be set on create when holding theApplication.ReadWrite.OwnedByrole (#1008)Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.