azurerm_function_app - storage_connection_string can now rotate keys but still a require recreate when changing the account

[kraihn]

Fixes #5435

[tombuildsstuff]

hey @kraihn

Thanks for this PR :)

I've taken a look through and left a couple of comments inline about the design of this resource - ultimately I'm wondering if it'd be worth splitting the storage_connection_string field into two to be able to apply different rules to each of the segments - WDYT?

Thanks!

[tombuildsstuff]

whilst this'd work it'd cause a bunch of runtime errors should someone opt to change the account being used - as such I'm wondering if we'd be better to split this field into two:

1. "storage_account_id" for the ID of the Storage Account in question - which is ForceNew
2. the "storage account access key" which is either the primary/secondary key and allows updating

WDYT?

[kraihn]

I love that idea! It makes more sense to me. Should I make this change with 2.0 in mind and remove the old property?

[katbyte]

now that we are post 2.0 what we will have to do is deprecate the old one and make them conflict.

[tombuildsstuff]

in Golang functions are shared across the entire package - as such this method would probably be better named as:

Suggested change

	func getAccountName(storageConnectionString string) string {
	func getAccountNameFromStorageConnectionString(storageConnectionString string) string {

[katbyte]

now that we are post 2.0 what we will have to do is deprecate the old one and make them conflict.

[katbyte]

@kraihnm, going to close this in favour of #6304. thanks for opening the PR!

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks!