Update Terraform azuread to v3

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
azuread (source)	required_provider	major	2.43.0 -> 3.0.2

---

Release Notes

hashicorp/terraform-provider-azuread (azuread)

v3.0.2

Compare Source

BUG FIXES:

• azuread_group - Fix crash and memory leak (#​1518)

v3.0.1

Compare Source

BUG FIXES:

• data.azuread_group - fix ID parsing bugs and some crashes (#​1499)
• azuread_conditional_access_policy - fix a parsing bug for authentication_strength_policy_id (#​1499)
• azuread_service_principal_certificate - fix a parsing bug for service_principal_id (#​1499)
• azuread_service_principal_claims_mapping_policy_assignment - fix a parsing bug for service_principal_id (#​1499)
• azuread_service_principal_password - fix a parsing bug for service_principal_id (#​1499)
• azuread_service_principal_token_signing_certificate - fix a parsing bug for service_principal_id (#​1499)
• azuread_synchronization_job - fix a parsing bug for service_principal_id (#​1499)
• azuread_synchronization_job_provision_on_demand - fix parsing bugs for service_principal_id and synchronization_job_id (#​1499)
• azuread_synchronization_secret - fix a parsing bug for service_principal_id (#​1499)

v3.0.0

Compare Source

NOTES:

• Major Version: Version 3.0 of the AzureAD Provider is a major version. Some behaviors have changed and some deprecated fields/resources have been removed. Please refer to the 3.0 upgrade guide for more information.
• When upgrading to v3.0 of the AzureAD Provider, we recommend upgrading to the latest version of Terraform Core (which can be found here).

v2.53.1

Compare Source

BUG FIXES:

• azuread_application - export the password attribute only when it is set in configuration, to prevent marking existing resources as sensitive (#​1422)

v2.53.0

Compare Source

ENHANCEMENTS:

• azuread_application - support for the password block (#​1389)

BUG FIXES:

• azuread_claims_mapping_policy - set the correct timeouts for this resource (#​1419)
• azuread_service_principal_claims_mapping_policy_assignment - set the correct timeouts for this resource (#​1419)
• azuread_synchronization_secret - set the correct timeouts for this resource (#​1419)

v2.52.0

Compare Source

BUG FIXES:

• azuread_application - fix a bug that could prevent the ignore_changes lifecycle argument from working for the app_role, oauth2_permission_scope, identifier_uris, optional_claims, and required_resource_access properties (#​1403)
• azuread_application - add a workaround for an API bug when instantiating an application from template using the template_id property (#​1406)

v2.51.0

Compare Source

ENHANCEMENTS:

• data.azuread_users - support for the mails property (#​1400)

BUG FIXES:

• azuread_access_package_assignment_policy - fix a bug preventing removal of the assignment_review_settings block (#​1394)

v2.50.0

Compare Source

ENHANCEMENTS:

• dependencies: updating to v0.68.0 of github.com/manicminer/hamilton (#​1382)
• data.azuread_application - support looking up applications with the identifier_uri property [GH 1303]
• azuread_conditional_access_policy - improve handling of the session_controls block (#​1382)

BUG FIXES:

• data.azuread_service_principal - treat the display_name property case-insensitively (#​1381)
• azuread_conditional_access_policy - fix a bug that could cause a persistent diff when setting certain properties in the session_controls block (#​1382)
• azuread_user - don't overwrite the existing password in state, when a password change fails (#​1308)

v2.49.1

Compare Source

BUG FIXES:

• data.azuread_group_role_management_policy - resolve a potential crash (#​1375)
• azuread_group_role_management_policy - resolve a number of potential crashes (#​1375)
• azuread_privileged_access_group_assignment_schedule - resolve a number of potential crashes (#​1375)
• azuread_privileged_access_group_eligibility_schedule - resolve a number of potential crashes (#​1375)

v2.49.0

Compare Source

FEATURES:

• New Data Source: azuread_group_role_management_policy (#​1327)
• New Resource: azuread_group_role_management_policy (#​1327)
• New Resource: azuread_privileged_access_group_assignment_schedule (#​1327)
• New Resource: azuread_privileged_access_group_eligibility_schedule (#​1327)
• New Resource: azuread_synchronization_job_provision_on_demand (#​1032)

ENHANCEMENTS:

• data.azuread_group - support for the include_transitive_members property (#​1300)
• azuread_application - relax validation for the identifier_uris property to allow more values (#​1351)
• azuread_application_identifier_uri - relax validation for the identifier_uri property to allow more values (#​1351)
• azuread_group - support the SkipExchangeInstantOn value for the behaviors property (#​1370)
• azuread_user - relax validation for the employee_type property to allow more values (#​1328)

BUG FIXES:

• azuread_application_pre_authorized - fix a destroy-time bug that could prevent deletion of the resource (#​1299)

v2.48.0

Compare Source

ENHANCEMENTS:

• dependencies: updating to v0.20240411.1104331 of github.com/hashicorp/go-azure-sdk/sdk (#​1353)

BUG FIXES:

• provider: fix an issue where the provider was not correctly configured when using a custom metadata host (#​1353)

v2.47.0

Compare Source

BUG FIXES:

• azuread_access_package_assignment_policy - fix a potential crash when removing the question block (#​1273)
• data.azuread_named_location - fix a potential crash if the named location is not found (#​1274)

v2.46.0

Compare Source

ENHANCEMENTS:

• data.azuread_application - update the resource ID format to match the azuread_application resource (#​1255)
• azuread_named_location - add validation for the ip_ranges property in the ip block (#​1254)

v2.45.0

Compare Source

FEATURES:

• New Resource: azuread_application_optional_claims (#​1223)

ENHANCEMENTS:

• azuread_conditional_access_policy - improved plan-time validation for the session_controls block (#​1229)
• azuread_conditional_access_policy - support for the sign_in_frequency_authentication_type and sign_in_frequency_interval properties in the session_controls block (#​1229)
• azuread_conditional_access_policy - support for the included_guests_or_external_users and excluded_guests_or_external_users blocks in the users block (#​1222)

BUG FIXES:

• azuread_conditional_access_policy - removing the devices or session_controls blocks will no longer force a new resource to be created (#​1229)

v2.44.1

Compare Source

BUG FIXES:

• azuread_application_certificate - work around an unexpected diff with the application_object_id property (#​1221)
• azuread_application_federated_identity_credential - work around an unexpected diff with the application_object_id property (#​1221)
• azuread_application_password - work around an unexpected diff with the application_object_id property (#​1221)
• azuread_application_pre_authorized - work around an unexpected diff with the application_object_id property (#​1221)

v2.44.0

Compare Source

• Developer Note: the Typed Resource SDK, as also used in the AzureRM provider, is now the preferred way of introducing new resources (#​1188)

FEATURES:

• New Resource: azuread_application_api_access (#​1214)
• New Resource: azuread_application_app_role (#​1214)
• New Resource: azuread_application_fallback_public_client (#​1214)
• New Resource: azuread_application_from_template (#​1214)
• New Resource: azuread_application_identifier_uri (#​1214)
• New Resource: azuread_application_known_clients (#​1214)
• New Resource: azuread_application_owner (#​1214)
• New Resource: azuread_application_permission_scope (#​1214)
• New Resource: azuread_application_redirect_uris (#​1214)
• New Resource: azuread_application_registration (#​1214)
• New Resource: azuread_authentication_strength_policy (#​1171)

ENHANCEMENTS:

• data.azuread_application - export the client_id attribute, deprecate the application_id attribute (#​1214)
• data.azuread_service_principal - support for the client_id property, deprecate the application_id property (#​1214)
• data.azuread_service_principals - support for the client_ids property, deprecate the application_ids property (#​1214)
• data.azuread_service_principals - export the client_id attribute in the service_principals block, deprecate the application_id attribute (#​1214)
• azuread_application - export the client_id attribute, deprecate the application_id attribute (#​1214)
• azuread_application_federated_identity_credential - support for the application_id property, deprecate the application_object_id property (#​1214)
• azuread_application_certificate - support for the application_id property, deprecate the application_object_id property (#​1214)
• azuread_application_password - support for the application_id property, deprecate the application_object_id property (#​1214)
• azuread_application_pre_authorized - support for the application_id property, deprecate the application_object_id property (#​1214)
• azuread_service_principal - support for the client_id property, deprecate the application_id property (#​1214)
• azuread_conditional_access_policy - support for the authentication_strength_policy_id property in the grant_controls block [GH_1171]

BUG FIXES:

• azuread_group_member - resolve a bug when refreshing state if the group is missing (#​1198)

---

Configuration

📅 Schedule: Branch creation - "after 7am and before 11am every weekday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.