v0.9.0-alpha

0.9.0-alpha (2025-01-18)

Features

• add device management template type attribute with validation options (d07cbb9)
• add new Windows Defender Antivirus policy templates to device management configuration (45834c3)
• add settings catalog template and update related configurations (a3b9a33)
• add template for graph beta device and app management reusable policy setting documentation (01334e2)
• add validation for settings templates and extend policy configuration map with new templates (b240513)
• add Windows Firewall rules template and remove deprecated script (4b264f7)
• added additional endpoint security templates to settings catalog templates resource + numerous doc edits (#318) (d9f3ff2)
• added all remaining settings catalog templates for Intune Endpoint security (#319) (e9a9320)
• added settings catalog template to provider with examples (#314) (3f062f1)
• enhanced setting catalog construction logic (eec7669)
• extend policy configuration map with new settings_catalog_templates for endpoint security (1d76a96)

Bug Fixes

• update example file path for reusable policy setting documentation (a944199)
• update settings key in resource configuration for Endpoint Privilege Management (763c8ae)
• update Terraform version requirements in documentation and configuration (97a200c)
• updated schema in settings catalog templates to reflect all secuirty templates supported with descriptions (d9c1e7a)

v0.8.0-alpha

0.8.0-alpha (2025-01-15)

Features

• add endpoint privilege management resource and example usage (b7b4b3b)
• add Linux platform script resource and example (bcd6530)
• add plan modifiers to use state values for unknown attributes in reusable policy settings (f8f2c14)
• add reusable policy settings data source and example usage for Endpoint Privilege Management (d5a5d10)
• add reusable policy settings models and modify plan handling (5029495)
• added endpoint privilege management resource and example usage (#303) (48a2514)
• added linux platform script with examples (#302) (6324ebe)
• enhance reusable policy settings API calls with additional select parameters and improved debug logging (fc03249)
• enhance setting instance handling in reusable policy settings resource (40f98e7)
• enhance state handling for reusable policy settings and normalize JSON responses (6c90118)
• implement custom DELETE request handling and refactor URL template configuration (ec7c0a2)
• implemented data source for reuseable policies for epm (#312) (6b0bbbe)
• improve error handling and logging in StateReusablePolicySettings function (0361f31)
• refined logic for reuseable policies and updates to schema (#305) (00bd476)
• rename settingsDetails to settings for consistency across models and resources and to align with intune gui exports (937cdbd)
• update reusable policy settings documentation and add example resource for Endpoint Privilege Management (a0aa693)
• update reusable policy settings model and integrate into provider resources (f1e528d)

Bug Fixes

• add comment to clarify ConfigurationPolicyTemplates requirement in state_base_resource.go (f38ebe7)
• correct resource naming for reusable policy settings to singular form (5ccd617)
• correct resource naming for reusable policy settings to singular form (#313) (db7ab1e)
• remove unused plan modifiers for created and last modified date attributes in reusable policy settings (878f800)
• Update Graph Metadata - 2025-01-05_00-07-29 (#298) (43a831d)
• update PowerShell script links in Markdown descriptions for reusable policy settings and settings catalog (a6c0292)

v0.7.0-alpha

0.7.0-alpha (2025-01-04)

Features

• add mapping functions for various remote assignment settings to Terraform (e24fb0f)
• add resource documentation and modify plan handling for various device management scripts (644dbc9)
• add StringListToTypeList function for converting string slices (#293) (cd62438)
• add StringListToTypeList function for converting string slices to types.List (dd28488)
• add validation for mobile app assignment ordering (c0fdeb7)
• added mobile app assignment schema for all app types (ec8edc1)
• added the option to manually define winget app metadata along side auto generation + plan modifers (#281) (6049e8e)
• enhance mobile app assignment configuration with new settings and sorting logic (81dd048)
• implement mobile app assignment validation and update related constructors (5bbc084)
• implement validation for mobile app assignment settings and restart timing relationships (28aa0b3)
• implement validation for mobile app assignment settings and restart timing relationships (#292) (ed375cc)
• refactored stating and constructor func patterns to be more concise and leverage correct lib and project helpers (#277) (694ade9)
• standardized stating structure and constructor approach (1db44c8)
• standardized stating structure and constructor approach (#286) (e798fd5)

Bug Fixes

• add target type field to AssignmentTargetResourceModel for improved clarity (41cbea2)
• added function comments for mobile app assignments (#294) (d742bd4)
• bug fixes for conditional access policies and fixes for crud permissions (#267) (4d7f8d8)
• centralised settings catalog assignments (#287) (751e2f3)
• for constructAssignmentTarget within mobile app assignments (#289) (5ee4531)
• numerous fixes in docs and pipelines (#268) (b243425)
• refined gorelease pipeline validation (#269) (18ff5aa)
• remove obsolete mobile app assignment resource from provider (#297) (af9b4cf)
• removed icons plan from plans (47bc42a)
• rename struct for clarity and add configuration policy assignment constructor (32b5b65)
• reorganised repo to use graph_beta and and graph_api consistently for all package naming (#290) (54fc3aa)
• replace constructAssignment function calls with specific constructors and remove obsolete construct_assignment.go file (#288) (2475c9f)
• sorting mobile app assignment stating logic (#295) (9de00c2)
• standardised use of object throughout crud functions (#259) (bbc3dc3)
• streamline property handling in WinGetApp resource mapping (#278) (025a5b1)
• tidied up repo and add validation for mobile app assignment order (#296) (036e95a)
• update import paths for device and app management resource to use graph_beta and graph_v1.0 (#291) (62aa968)
• update import paths from 'construct' to 'constructors' for consistency (d878700)
• update import paths from 'construct' to 'constructors' for consistency (#284) (d878700)
• updated docs (#283) (e76a368)
• updated win_get examples (#282) (e54f1fc)
• various small fixes to docs and pipelines (#271) (d244e16)

v0.6.0-alpha

0.6.0-alpha (2024-12-16)

Features

• added tf-docs auto generation pipeline for merge into main (#257) (2b4e9ad)
• intune role scope tags + added release please (#246) (f09c60c)
• refactored datasource examples to support search by name or by resource id (#255) (a07bd03)

Bug Fixes

• added retry logic from sdkv2 to settings catalog resource types (#250) (deb384d)

v0.5.0-alpha

v0.5.0-alpha

What's Changed

• Feat- fix up for docs and pipelines by @ShocOne in #229
• Feat: improved stating logic for setting catalog by @ShocOne in #230
• Update Graph Metadata - 2024-12-01_00-08-14 by @github-actions in #231
• WIP: Added retry logic honoring graph throttling guardrails by @ShocOne in #232

Full Changelog: v0.4.0-alpha...v0.5.0-alpha

v0.4.0-alpha

v0.4.0-alpha

Highlights:

• Added docker for ps1 pipeline runs to speed up meta data gathering
• Refactored settings catalog to now work with assignments
• Refactored windows platform scripts now working with assignments
• Added macos platform scripts now working with assignments
• WIP settings templates and WIP linux platform scripts
• Refactored docs so that they correctly show example configs

What's Changed

• Feat refactoring resource func patterns and added template resource example by @ShocOne in #181
• Refactor: Update destination path for exported permissions file to in… by @ShocOne in #182
• Add docker based GitHub workflow for extracting Graph permissions and update docum… by @ShocOne in #183
• Feat added docker file for permissions pipeline by @ShocOne in #184
• Refactor: Remove artifact upload step from GitHub workflow for Graph … by @ShocOne in #185
• Enhance Dockerfile ENTRYPOINT to accept TenantId, ClientId, and Clien… by @ShocOne in #186
• Feat intune settings templates by @ShocOne in #187
• Update permissions workflow to use sudo for directory creation and fi… by @ShocOne in #188
• Feat intune settings templates by @ShocOne in #189
• Feat intune settings templates by @ShocOne in #192
• Fix for examples template and update to metadata pipeline pr comments by @ShocOne in #194
• Fix - for terraform docs pipeline by @ShocOne in #195
• Add workflow_dispatch trigger to documentation workflow for manual ex… by @ShocOne in #196
• Update terraform-docs version to 0.19 and remove version argument fro… by @ShocOne in #197
• Update Graph Permissions Data - 2024-11-18 14:28:00 UTC by @github-actions in #193
• Feat intune settings templates by @ShocOne in #198
• Feat added pipeline hardening step by @ShocOne in #199
• Fix for documentation pipelines by @ShocOne in #200
• Refactor workflows: consolidate Go and Terraform documentation genera… by @ShocOne in #201
• Update recursive-path in Terraform documentation workflow for broader… by @ShocOne in #202
• Feat intune settings templates by @ShocOne in #203
• Add GitHub Actions bot user details for automated Terraform docs commits by @ShocOne in #204
• Update terraform-docs workflow to disable automatic git push and hand… by @ShocOne in #205
• Refactor terraform-docs workflow to simplify working directory and re… by @ShocOne in #206
• Replace manual git commit and push with git-auto-commit-action for au… by @ShocOne in #207
• Update terraform-docs workflow to enable automatic git commit and pus… by @ShocOne in #208
• Feat intune settings templates by @ShocOne in #209
• Build(deps): Bump step-security/harden-runner from 2.10.1 to 2.10.2 by @dependabot in #210
• Build(deps): Bump super-linter/super-linter from 7.1.0 to 7.2.0 by @dependabot in #211
• Feat Added new documentation templates and added settings catalog validator for invalid secret value fields by @ShocOne in #212
• Feat documentation fix ups to include examples by @ShocOne in #213
• Update dockerfile by @ShocOne in #214
• Update dockerfile by @ShocOne in #215
• Update metadata-maintainence.yml by @ShocOne in #216
• Update metadata-maintainence.yml by @ShocOne in #217
• Update metadata-maintainence.yml by @ShocOne in #218
• Feat intune settings templates by @ShocOne in #219
• Build(deps): Bump github.com/microsoftgraph/msgraph-beta-sdk-go from 0.112.0 to 0.113.0 by @dependabot in #225
• Build(deps): Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @dependabot in #226
• Build(deps): Bump github.com/hashicorp/terraform-plugin-testing from 1.10.0 to 1.11.0 by @dependabot in #223
• Build(deps): Bump step-security/harden-runner from 2.10.1 to 2.10.2 by @dependabot in #221
• Build(deps): Bump github.com/microsoftgraph/msgraph-sdk-go from 1.51.0 to 1.52.0 by @dependabot in #224
• Build(deps): Bump github.com/microsoft/kiota-abstractions-go from 1.7.0 to 1.8.1 by @dependabot in #222
• Feat intune device management script refactor to include assignment handling by @ShocOne in #220
• Renamed device shell and device management scripts to macos platform and windows platform scripts by @ShocOne in #227
• Fix tidied up data sources and standised naming + WIP implementation of linux platform scripts by @ShocOne in #228

Full Changelog: v0.3.0-alpha...v0.4.0-alpha

v0.3.0-alpha

v0.3.0-alpha

• Various fixes for settings catalog and a large refactor now means there is support for iOS, macOS and windows
• Refactored logic for debugging json requests
• Deps bumps
• lots of small tweaks to bring more consistency to functions patterns
• added custom PUT function that's isn't built into the kiota based sdk since PUT doesnt exist within the schema, but is supported. weird.

What's Changed

• chore(deps): Bump github.com/hashicorp/terraform-plugin-framework from 1.12.0 to 1.13.0 by @dependabot in #170
• Update community.yml by @ShocOne in #171
• chore(deps): Bump github.com/hashicorp/terraform-plugin-framework-validators from 0.14.0 to 0.15.0 by @dependabot in #168
• Update Graph Permissions Data by @github-actions in #172
• chore(deps): Bump goreleaser/goreleaser-action from 6.0.0 to 6.1.0 by @dependabot in #173
• chore(deps): Bump github.com/hashicorp/terraform-plugin-docs from 0.19.4 to 0.20.0 by @dependabot in #175
• chore(deps): Bump github.com/microsoftgraph/msgraph-beta-sdk-go from 0.111.0 to 0.112.0 by @dependabot in #174
• Feat windows settings catalog v2 - WIP by @ShocOne in #176
• Feat windows settings catalog v3 by @ShocOne in #177
• Feat windows settings catalog v3 - Added more handling for macOS settings profiles by @ShocOne in #178
• Feat windows settings catalog v3 - extended support for settings catalog for iOS and macOS edge cases by @ShocOne in #179

Full Changelog: v0.2.0-alpha...v0.3.0-alpha

v0.2.0-alpha

v0.2.0-alpha

Highlights:

Added Windows Settings Catalog
Added msft store for business apps (winget based)
Added handling for assignments for windows settings catalog. this logic can be reused for other policy based resources in the future
Added logic to dynamically gather all ms graph v1.0 and beta permissions. this lays the ground work for dynamic handling of 403 errors in the future, to return valid permission requirements for the client id.

What's Changed

• Feat removed from winget_apps assignment logic to now use a dedicated tf resource for assignments. by @ShocOne in #137
• Update Graph Permissions Data by @github-actions in #138
• Feat : Added WIP win32lob apps. by @ShocOne in #143
• chore(deps): Bump actions/checkout from 4.1.7 to 4.2.1 by @dependabot in #142
• chore(deps): Bump actions/upload-artifact from 4.4.0 to 4.4.1 by @dependabot in #141
• chore(deps): Bump github.com/microsoftgraph/msgraph-sdk-go from 1.48.0 to 1.49.0 by @dependabot in #140
• chore(deps): Bump github.com/microsoftgraph/msgraph-beta-sdk-go from 0.108.0 to 0.109.0 by @dependabot in #139
• Feat: Added better error handling for stating by @ShocOne in #144
• Update Graph Permissions Data by @github-actions in #145
• chore(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.14.0 to 1.15.0 by @dependabot in #150
• chore(deps): Bump actions/upload-artifact from 4.4.1 to 4.4.3 by @dependabot in #146
• chore(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.7.0 to 1.8.0 by @dependabot in #149
• chore(deps): Bump github.com/microsoftgraph/msgraph-beta-sdk-go from 0.109.0 to 0.110.0 by @dependabot in #148
• chore(deps): Bump github.com/microsoftgraph/msgraph-sdk-go from 1.49.0 to 1.51.0 by @dependabot in #151
• Update Graph Permissions Data by @github-actions in #152
• chore(deps): Bump github.com/microsoftgraph/msgraph-beta-sdk-go from 0.110.0 to 0.111.0 by @dependabot in #155
• chore(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.15.0 to 1.16.0 by @dependabot in #153
• chore(deps): Bump github.com/hashicorp/terraform-plugin-framework-validators from 0.13.0 to 0.14.0 by @dependabot in #154
• Feat windows settings catalog by @ShocOne in #156
• Update Graph Permissions Data by @github-actions in #157
• Refactor: Remove unused fields in WindowsSettingsCatalogProfileResour… by @ShocOne in #158
• Feat windows settings catalog by @ShocOne in #159
• chore(deps): Bump actions/setup-go from 5.0.2 to 5.1.0 by @dependabot in #160
• Update ExportGraphPermissions.ps1 by @ShocOne in #163
• chore(deps): Bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #162
• chore(deps): Bump crazy-max/ghaction-import-gpg from 6.1.0 to 6.2.0 by @dependabot in #161
• Refactored auto merge pr pipeline by @ShocOne in #164
• Feat windows settings catalog v2 by @ShocOne in #166
• Update Graph Permissions Data by @github-actions in #165
• Refactor: Update windows settings catalog resource.tf and docs by @ShocOne in #167

Full Changelog: v0.1.10-alpha...v0.2.0-alpha

v0.1.10-alpha

v0.1.10-alpha

• Added winget apps, with dynamic parsing of metadata from msft store. WIP
• Added mobile app assignments. WIP
• Added permissions handling so that if a 401 occurs the provider informs the user which permissions are required for the operation.
• Added authenticated proxy support for both auth and crud operations
• Lots of documentation updates
• New utilities for image downloads with retries
• Refactored env var handling for provider build out
• Added additonal env var helpers for provider and added unit tests
• Added 'send_certificate_chain' option to certificate authentication flow
• Added 'additionally_allowed_tenants' option to supported authentication flows
• Added retry handler with jitter to the graph client if enabled in the options
• Added a compression handler to the middleware if enabled in the options (gzip)
• Added chaos handler configuration options for stress testing provider
• Added centralized handling for error messages for CRUD operations
• Resources are now truely declarative, meaning, if they are deployed by terraform and that resource is remvoed via the gui, terraform will gracefully remove the reference from state and redeploy.
• Added permission identifier pipeline for research and lookup for graph with powershell
• Changed pipelines to user dependabot friendly version numbers for updates

What's Changed

• chore(deps): Bump step-security/harden-runner from 2.9.1 to 2.10.1 by @dependabot in #117
• Feat refactor for win get apps with new logic that embeds app assignments by @ShocOne in #118
• feat: added permissions workflow and script to export Graph permissions by @ShocOne in #119
• feat: update actions/upload-artifact version to v4.4.0 by @ShocOne in #120
• bug fixes for permissions pipeline workflow by @ShocOne in #121
• Refactor: Update permissions workflow to run on Sundays by @ShocOne in #122
• Refactor: Update permissions workflow to create automated pull reques… by @ShocOne in #123
• Update Graph Permissions Data by @github-actions in #124
• Update Graph Permissions Data by @github-actions in #125
• chore(deps): Bump terraform-docs/gh-actions from 1.2.2 to 1.3.0 by @dependabot in #128
• chore(deps): Bump github.com/hashicorp/terraform-plugin-go from 0.23.0 to 0.24.0 by @dependabot in #127
• chore(deps): Bump github.com/hashicorp/terraform-plugin-framework from 1.11.0 to 1.12.0 by @dependabot in #126
• refactor CRUD function patterns by @ShocOne in #129
• Update Graph Permissions Data by @github-actions in #130
• Feat refactored winget app resource construction to programatically lift meta data from msft store by @ShocOne in #131
• Updated docs for winget and mobile app assignment by @ShocOne in #132
• Refactor: Remove unused pull request workflow for the time being by @ShocOne in #133
• Update go.mod and go.sum dependencies by @ShocOne in #134
• Feat: changed pipeline version to user symVar numbers rather than commits by @ShocOne in #135
• Update release.yml by @ShocOne in #136

New Contributors

• @github-actions made their first contribution in #124

Full Changelog: v0.1.2-alpha...v0.1.10-alpha

v0.1.2-alpha

v0.1.2-alpha

What's Changed

• chore(deps): Bump github.com/microsoft/kiota-http-go from 1.4.4 to 1.4.5 by @dependabot in #110
• chore(deps): Bump actions/setup-go from 5.0.1 to 5.0.2 by @dependabot in #112
• chore(deps): Bump terraform-docs/gh-actions from 1.2.0 to 1.2.2 by @dependabot in #111
• Feat: + microsoft365_graph_device_and_app_management_role_definition & microsoft365_graph_beta_device_and_app_management_role_definition by @ShocOne in #113
• Feat Added json style logging for resources by @ShocOne in #114
• Feat refactored debug logging for construction functions in resources to use reflect by @ShocOne in #115
• Fix - for M365AppsInstallationOptions to use the correct api endpoint and request constructors by @ShocOne in #116

Full Changelog: v0.1.1-alpha...v0.1.2-alpha