BUG FIXES:
- provider: improved error handling and validation when configuring provider with missing or invalid values (ip, user, port) to provide clearer error messages instead of panics.
- provider: fixed potential panic when making HTTP requests with bad client configuration by improving error handling order.
- resource/wallix-bastion_config_x509: fixed infinite non-empty plan issue by avoiding to set the full API response in state and instead comparing certificate common names to detect changes.
- resource/wallix-bastion_config_x509: fixed update of
enableattribute fromtruetofalseand ensure it's properly set in state only when configured. - resource/wallix-bastion_config_x509: added 3-second delay after modifying X509 configuration to wait for API listener restart with new certificate.
ENHANCEMENTS:
- resource/wallix-bastion_device_service: added a format control on service_name to avoid API error when creating/updating a service with invalid characters.
- ci: updated GitHub workflows with improved linting configuration and dependency updates.
- ci: enhanced golangci-lint configuration with proper import ordering and deprecation handling.
- docs: updated documentation workflow with better validation and formatting checks.
BUG FIXES:
- ci_release: fixed an issue where the release process did not correctly build artefact and used tar.gz instead of zip.
BUG FIXES:
- resource/wallix-bastion_authorization: fixed an issue where session sharing arguments were not correctly validated when omitted.
- resource/wallix-bastion_config_x509: improved error handling for invalid certificate chains.
ENHANCEMENTS:
- provider: improved logging for API request failures to aid debugging.
- docs: updated documentation for session sharing options and credenal propagation.
ENHANCEMENTS:
- resource/wallix-bastion_authorization: added support for session sharing functionality with new
authorize_session_sharing(boolean) andsession_sharing_mode(enum: "view_only", "view_control") arguments, enabling users to configure session sharing permissions for authorizations.
FEATURES:
- resource/wallix-bastion_authdomain_saml: added the possibilty to configure Other IDPs/SAML auth domain resource.
BUG FIXES:
BUG FIXES:
- resource/wallix-config_x509: Fixed previous build not including the resource
FEATURES:
- resource/wallix-bastion_config_x509: added the possibilty to configure the X509 for the GUI and for users authentication
BUG FIXES:
- resource/wallix-device_service: supported subprotocols.
FEATURES:
- datasource/wallix-bastion_authdomain_ad: added the datasource to retrieve an existing authdomain
- resource/wallix-bastion_domain_account_credential: added credential propagation to AD upon creation.
BUG FIXES:
- resource/wallix-bastion_externalauth_kerberos: deprecate
login_attributeargument (it produces Bad Request with API v3.12) - provider_test: Added the user environment variable presence test for acceptance tests.
BREAKING CHANGES:
- remove compatibility with API version 3.3 and 3.6
- remove resource
wallix-bastion_ldapdomain - remove resource
wallix-bastion_ldapmapping - default provider api_version argument is now
v3.8 - user statement is now mandatory
FEATURES:
- add compatibility with API version 3.12
ENHANCEMENTS:
- resource/wallix-bastion_application:
- add
category,application_url,browser,browser_versionarguments to be able to addjumphostapplication (not tested) pathsandtargetis now only required whencategory=standard
- add
- resource/wallix-bastion_connection_policy: add
typeargument with default value asprotocolvalue - resource/wallix-bastion_externalauth_saml: add
claim_customizationblock argument
- build(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #13
- added http basic authentication by @moulip in #15
- Corrected and added documentation example
- Updated dependancies
- Corrected documentation example
- Provider pushed to terraform registry
ENHANCEMENTS:
- release now with golang 1.21
- resource/wallix-bastion_user: update the password when has changed in config to not empty value and
force_change_pwdisn't true (instead of no-op on password when update resource)
BUG FIXES:
- reduced compute and memory usage to prepare the JSON payload when creating or updating resource
FEATURES:
- add
wallix-bastion_local_password_policydata source
FEATURES:
- add
wallix-bastion_connection_messageresource
BUG FIXES:
- reduce CRUD operations time (reuse HTTP/TCP connections instead of using a new for each request to API)
BUG FIXES:
- force a resource replacement when
private_keychange onwallix-bastion_device_localdomain_account_credentialandwallix-bastion_domain_account_credentialresources (update doesn't work with generated keys)
ENHANCEMENTS:
- resource/wallix-bastion_profile: add
dashboardsargument (not compatible with API v3.3)
BUG FIXES:
- fix not detecting that an account's credentials have been deleted while it still exists with resource ID but not linked to the account
FEATURES:
- add
wallix-bastion_configoptiondata source
ENHANCEMENTS:
- release now with golang 1.20
FEATURES:
- add
wallix-bastion_authdomain_adresource - add
wallix-bastion_authdomain_azureadresource - add
wallix-bastion_authdomain_ldapresource - add
wallix-bastion_authdomain_mappingresource - add
wallix-bastion_externalauth_samlresource
ENHANCEMENTS:
- release now with golang 1.19
- optimize resource search when checking if it already exists before create or when importing
- resource/wallix-bastion_externalauth_ldap: add
passphraseargument - allow use
v3.8toapi_versionprovider argument
BUG FIXES:
- resource/wallix-bastion_*domain & resource/wallix-bastion_*credential: fix missing requirement of
private_keywithpassphraseargument - resource/wallix-bastion_externalauth_kerberos: fix missing sensitive option on
keytab - resource/wallix-bastion_externalauth_ldap: fix missing sensitive option on
certificateandprivate_keyand can't be refresh
NOTES:
- use custom User-Agent when request API
- deps: bump terraform-plugin-sdk to v2.16.0
FEATURES:
- add
wallix-bastion_versiondata source
ENHANCEMENTS:
- allow use
v3.6toapi_versionprovider argument
BUG FIXES:
- resource/wallix-bastion_externalauth_kerberos: add
keytabargument required in latest version of WAB - resource/wallix-bastion_externalauth_radius:
secretargument can't be refresh in latest version of WAB - resource/wallix-bastion_externalauth_tacacs:
secretargument can't be refresh in latest version of WAB
NOTES:
- upgrade golang version to release, so now requires macOS 10.13 High Sierra or later; Older macOS versions are no longer supported.
BUG FIXES:
- resource/wallix-bastion_connection_policy: to avoid unnecessary update of resource,
authentication_methodsis now unordered - resource/wallix-bastion_application: avoid large update plan output with unmodified
pathblocks in block set - resource/wallix-bastion_targetgroup: avoid large update plan output with unmodified blocks in block sets
ENHANCEMENTS:
- [docs] reformat arguments/attributes, add example usage & minor fix
BUG FIXES:
- fix the potential double slash in url when calling Wallix API
- fix missing sensitive options for few arguments
- resource/wallix-bastion_application_localdomain, wallix-bastion_device_localdomain, wallix-bastion_domain: fix arguments requirement
- resource/wallix-bastion_application: fix panic with
global_domains - resource/wallix-bastion_profile: fix
default_target_groupis required intarget_groups_limitationblock - resource/wallix-bastion_domain: fix
passphrasecan't refresh - resource/wallix-bastion_device_localdomain: fix
passphrasecan't refresh
FEATURES:
- add
wallix-bastion_domaindata source
BUG FIXES:
- fix
global_domainsargument can be an attribute inwallix-bastion_device_serviceresource
BUG FIXES:
- fix
device/serviceorapplicationneeded withdomain_type="global" onsession_accountsinwallix-bastion_targetgroupresource - fix
resourcesargument can be an attribute inwallix-bastion_domain_accountresource
BUG FIXES:
- fix import user resource
FEATURES:
- add
wallix-bastion_applicationresource - add
wallix-bastion_application_localdomainresource - add
wallix-bastion_application_localdomain_accountresource - add
wallix-bastion_checkout_policyresource - add
wallix-bastion_clusterresource - add
wallix-bastion_connection_policyresource - add
wallix-bastion_externalauth_kerberosresource - add
wallix-bastion_externalauth_radiusresource - add
wallix-bastion_externalauth_tacacsresource - add
wallix-bastion_profileresource - add
wallix-bastion_timeframeresource
FEATURES:
- add
wallix-bastion_authorizationresource - add
wallix-bastion_deviceresource - add
wallix-bastion_device_localdomainresource - add
wallix-bastion_device_localdomain_accountresource - add
wallix-bastion_device_localdomain_account_credentialresource - add
wallix-bastion_device_serviceresource - add
wallix-bastion_domainresource - add
wallix-bastion_domain_accountresource - add
wallix-bastion_domain_account_credentialresource - add
wallix-bastion_ldapdomainresource - add
wallix-bastion_ldapmappingresource - add
wallix-bastion_targetgroupresource
ENHANCEMENTS:
- remove Forcenew on
authentication_nameinwallix-bastion_externalauth_ldapresource, it's not necessary
BUG FIXES:
- typo in errors displayed
- remove log to debug in http request (possible secret could appear)
timeframesandrestrictionsaren't ordered inwallix-bastion_usegroupresource- do not reactivate
force_change_pwdafter creation and the password has changed inwallix-bastion_userresource
First release