upgrade network to 2020-05-01 for vhub(conn) & vwan

[magodo]

Upgrade network to 2020-05-01 for virtual hub(conn) & virtual wan resources.

Changes include:

• Use the dedicated client for azurerm_virtualhub_connection, as the original field in azurerm_virtualhub used to create/delete vhub conn is removed from API.
• Deprecate hub_to_vitual_network_traffic_allowed and vitual_network_to_hub_gateways_traffic_allowed from azurerm_virtualhub_connection, as they are deprecated by API.
• Deprecate allow_vnet_to_vnet_traffic from azurerm_virtual_wan as this is not deprecated by API.

(follow-up PR for #7585 )
(fixes #7896 )

[tombuildsstuff]

left a few comments inline but this otherwise LGTM 👍

[tombuildsstuff]

arguably since this is non-functional we could remove this:

Suggested change

* `vitual_network_to_hub_gateways_traffic_allowed` - (Optional / **Deprecated** ) Is Remote Virtual Network traffic allowed to transit the Hub's Virtual Network Gateway's? Changing this forces a new resource to be created.

[magodo]

How about just keep this (as user is still allowed to assign it) but change the document so something like:

Due to a breaking behavioural change in the Azure API this property is no longer functional and will be removed in version 3.0 of the provider

[tombuildsstuff]

arguably since this is non-functional we could remove this:

Suggested change

* `hub_to_vitual_network_traffic_allowed` - (Optional / **Deprecated** ) Is the Virtual Hub traffic allowed to transit via the Remote Virtual Network? Changing this forces a new resource to be created.

[tombuildsstuff]

arguably since this is non-functional we could remove this:

Suggested change

* `allow_vnet_to_vnet_traffic` - (Optional / **Deprecated** ) Boolean flag to specify whether VNet to VNet traffic is allowed. Defaults to `false`.

[magodo]

@tombuildsstuff Thank you for the review comments! I have updated accordingly. Please take a look!
I have no idea why the CI failed, as I only made some minor changes. I also tried the make depscheck locally with no problem...

[WodansSon]

@magodo, thanks so much for this PR, LGTM! 🚀

[magodo]

@WodansSon I have submit another update to ensure the routing state reaches "Provisioned" so as to avoid race condition between vhub internal routing update and hub vnet connection caused routing update.

I have tested it in West Europe:

💤 make testacc TEST=./azurerm/internal/services/network/tests TESTARGS='-run TestAccAzureRMVirtualHubConnection_update'

==> Checking that code complies with gofmt requirements...
==> Checking that Custom Timeouts are used...
==> Checking that acceptance test packages are used...
TF_ACC=1 go test ./azurerm/internal/services/network/tests -v -run TestAccAzureRMVirtualHubConnection_update -timeout 180m -ldflags="-X=github.com/terraform-providers/terraform-provider-azurerm/version.ProviderVersion=acc"
=== RUN   TestAccAzureRMVirtualHubConnection_update
=== PAUSE TestAccAzureRMVirtualHubConnection_update
=== CONT  TestAccAzureRMVirtualHubConnection_update
--- PASS: TestAccAzureRMVirtualHubConnection_update (3117.31s)
PASS
ok      github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/services/network/tests       3117.349s

[WodansSon]

@magodo, thank you for pushing these changes, this LGTM 🚀

[tombuildsstuff]

hey @magodo

Thanks for pushing those changes - I've taken a look through and left some comments inline; if we can fix those up then this should otherwise be good to merge (we'll need to add an "upgrade note" to the changelog, but we'll do that at merge time)

Thanks!

[magodo]

@tombuildsstuff I have resolved the remaining comments, please take another look! Thanks!

[magodo]

@tombuildsstuff I have resolved the remaining comments, especially this one. Would you please take another look?

[WodansSon]

@magodo, thanks for pushing these changes and fixing the conflict! 🚀

[WodansSon]

[Dilergore]

Hi,

This is very urgent. Using the old API version will clear the routes on the vWAN causing major issues. We had a production incident caused by this.

Also mentioned as recommended in the vWAN FAQ:
https://docs.microsoft.com/en-us/azure/virtual-wan/virtual-wan-faq#what-is-the-recommended-api-version-to-be-used-by-scripts-automating-various-virtual-wan-functionalities

[tombuildsstuff]

LGTM 👍

[ghost]

This has been released in version 2.29.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example:

provider "azurerm" {
    version = "~> 2.29.0"
}
# ... other configuration ...

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks!