azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs

[WodansSon]

(fixes #6571)

[WodansSon]

[tombuildsstuff]

partial review as discussed offline

[tombuildsstuff]

we should use the PopSegment and ValidateNoEmptySegments functions here to ensure this is the ID of a private endpoint and not something else

[WodansSon]

Mostly Fixed. I can't use ValidateNoEmptySegments because I am parsing the information for multiple resources from one resource ID(e.g. /subscriptions/XXXX/resourceGroups/jcline-privateDns-rg/providers/Microsoft.Network/privateEndpoints/contoso-cosmosdb/privateDnsZoneGroups/privatelink.postgres.database.azure.com2/privateDnsZoneConfigs/finance-contoso-com.

[tombuildsstuff]

(same here)

[tombuildsstuff]

(same here)

[WodansSon]

Fixed.

[tombuildsstuff]

(same here)

[WodansSon]

Fixed.

[tombuildsstuff]

can we pull this out into a separate ParseDNSZoneResourceID method?

[WodansSon]

Fixed.

[tombuildsstuff]

which then means we can validate this is a Private DNS Zone ID here

[WodansSon]

Fixed.

[tombuildsstuff]

what happens to traffic when this is deleted, is this dropped? if so - should we be locating the existing one and updating instead?

[WodansSon]

I only delete if the name has changed, else I will need to force new the attribute which would delete the entire private endpoint. Once the private DNS zone group is deleted the traffic is automatically re-routed to the existing private endpoint FQDN which is displayed via the custom DNS configs attribute.

[WodansSon]

=== RUN TestAccAzureRMPrivateEndpoint_basic
=== PAUSE TestAccAzureRMPrivateEndpoint_basic
=== RUN TestAccAzureRMPrivateEndpoint_updateTag
=== PAUSE TestAccAzureRMPrivateEndpoint_updateTag
=== RUN TestAccAzureRMPrivateEndpoint_requestMessage
=== PAUSE TestAccAzureRMPrivateEndpoint_requestMessage
=== RUN TestAccAzureRMPrivateEndpoint_privateDnsZoneGroup
=== PAUSE TestAccAzureRMPrivateEndpoint_privateDnsZoneGroup
=== RUN TestAccAzureRMPrivateEndpoint_privateDnsZoneRename
=== PAUSE TestAccAzureRMPrivateEndpoint_privateDnsZoneRename
=== RUN TestAccAzureRMPrivateEndpoint_privateDnsZoneUpdate
=== PAUSE TestAccAzureRMPrivateEndpoint_privateDnsZoneUpdate
=== RUN TestAccAzureRMPrivateEndpoint_privateDnsZoneRemove
=== PAUSE TestAccAzureRMPrivateEndpoint_privateDnsZoneRemove
=== CONT TestAccAzureRMPrivateEndpoint_basic
=== CONT TestAccAzureRMPrivateEndpoint_privateDnsZoneRename
=== CONT TestAccAzureRMPrivateEndpoint_privateDnsZoneRemove
=== CONT TestAccAzureRMPrivateEndpoint_privateDnsZoneUpdate
=== CONT TestAccAzureRMPrivateEndpoint_requestMessage
=== CONT TestAccAzureRMPrivateEndpoint_privateDnsZoneGroup
=== CONT TestAccAzureRMPrivateEndpoint_updateTag
--- PASS: TestAccAzureRMPrivateEndpoint_basic (179.87s)
--- PASS: TestAccAzureRMPrivateEndpoint_updateTag (237.52s)
--- PASS: TestAccAzureRMPrivateEndpoint_requestMessage (255.87s)
--- PASS: TestAccAzureRMPrivateEndpoint_privateDnsZoneGroup (313.20s)
--- PASS: TestAccAzureRMPrivateEndpoint_privateDnsZoneRename (362.99s)
--- PASS: TestAccAzureRMPrivateEndpoint_privateDnsZoneRemove (390.92s)
--- PASS: TestAccAzureRMPrivateEndpoint_privateDnsZoneUpdate (485.42s)
PASS
ok github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/services/network/tests 485.510s

[katbyte]

aside from one comment LGTM 👍

[katbyte]

We should nil check these?

[WodansSon]

[ghost]

This has been released in version 2.15.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example:

provider "azurerm" {
    version = "~> 2.15.0"
}
# ... other configuration ...

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks!