-
Notifications
You must be signed in to change notification settings - Fork 612
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
cloudflare_tunnel
resource cannot be imported without recreating the tunnel because imported tunnels don't have the tunnel secret in state
#3950
Comments
Community NoteVoting for Prioritization
Volunteering to Work on This Issue
|
Thank you for reporting this issue! For maintainers to dig into issues it is required that all issues include the entirety of This issue has been marked with |
1 similar comment
Thank you for reporting this issue! For maintainers to dig into issues it is required that all issues include the entirety of This issue has been marked with |
Marking this issue as stale due to 30 days of inactivity. This helps our maintainers find and focus on the active issues. If this issue receives no comments in the next 7 days it will automatically be closed. Maintainers can also remove the |
This makes it impossible to migrate from |
Marking this issue as stale due to 30 days of inactivity. This helps our maintainers find and focus on the active issues. If this issue receives no comments in the next 7 days it will automatically be closed. Maintainers can also remove the |
Confirmation
Terraform and Cloudflare provider version
terraform 1.5.5
provider 4.39.0
Affected resource(s)
cloudflare_tunnel
Terraform configuration files
Link to debug output
N/A
Panic output
N/A
Expected output
An imported tunnel is not recreated when the same secret is provided
Actual output
The tunnel was recreated
Steps to reproduce
Import any tunnel and provide the existing secret
Additional factoids
I believe two changes are required to fix this correctly.
resourceCloudflareTunnelRead
secret
should not haveForceNew: true
as the API supports PATCH nowAlso, #3355 is correct that
secret
should not be a required field, but is incorrect on the reasoning why -- I will add a comment to that issue about this.References
#3355 documents the tunnel token format
The text was updated successfully, but these errors were encountered: