Skip to content

500 error from cloudflare's API when modifying a cloudflare_zero_trust_device_default_profile to swap exclude to include #6608

New issue
New issue
Open
Open
500 error from cloudflare's API when modifying a cloudflare_zero_trust_device_default_profile to swap exclude to include#6608
Labels
kind/bugCategorizes issue or PR as related to a bug.
@paulcdejean

Description

@paulcdejean
paulcdejean
opened on Jan 2, 2026

Confirmation

  • This is a bug with an existing resource and is not a feature request or enhancement. Feature requests should be submitted with Cloudflare Support or your account team.
  • I have searched the issue tracker and my issue isn't already found.
  • I have replicated my issue using the latest version of the provider and it is still present.

Terraform and Cloudflare provider version

OpenTofu v1.11.2
on darwin_arm64

  • provider registry.opentofu.org/cloudflare/cloudflare v5.15.0
  • provider registry.opentofu.org/hashicorp/aws v6.27.0

Affected resource(s)

cloudflare_zero_trust_device_default_profile

Terraform configuration files

resource "cloudflare_zero_trust_device_default_profile" "route_ipspace_through_warp" {
  account_id = "287cae24e46a0aeed1dbc2942fc58dd7"
  service_mode_v2 = {
    mode = "warp"
  }
  tunnel_protocol = "wireguard"
  include = [
    {
      address     = "10.0.0.0/8"
      description = "Datacenter ip range"
    },
    {
      address     = aws_vpc_ipam_pool_cidr.public.cidr,
      description = "Lightning reserved ipv6 space"
    }
  ]
}

Link to debug output

https://gist.github.com/paulcdejean/4d9735cb05322f21e8b94a93a7a973a0

Panic output

No response

Expected output

Successful apply, or apply fails with a proper error message

Actual output

│ Error: failed to make http request │
│ with cloudflare_zero_trust_device_default_profile.route_ipspace_through_warp,
│ on cloudflared_device_profile.tf line 1, in resource "cloudflare_zero_trust_device_default_profile" "route_ipspace_through_warp":
│ 1: resource "cloudflare_zero_trust_device_default_profile" "route_ipspace_through_warp" {

│ PATCH "https://api.cloudflare.com/client/v4/accounts/287cae24e46a0aeed1dbc2942fc58dd7/devices/policy": 500 Internal Server Error {"result":null,"success":false,"errors":[{"code":2042,"message":"internal
│ server error"}],"messages":[]}

Steps to reproduce

Try and change the default exclude, to an include.

Additional factoids

No response

References

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/bugCategorizes issue or PR as related to a bug.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions