postgresql_server: public_network_access_enabled fixed on createR…

…eplica (#11465)

Co-authored-by: kt <[email protected]>

azurerm/internal/services/postgres/postgresql_server_resource.go

@@ -609,6 +609,25 @@ func resourcePostgreSQLServerCreate(d *schema.ResourceData, meta interface{}) er
 		}
 	}
 
+	// Issue tracking the REST API update failure: https://github.com/Azure/azure-rest-api-specs/issues/14117
+	if mode == postgresql.CreateModeReplica {
+		log.Printf("[INFO] changing `public_network_access_enabled` for AzureRM PostgreSQL Server %q (Resource Group %q)", name, resourceGroup)
+		properties := postgresql.ServerUpdateParameters{
+			ServerUpdateParametersProperties: &postgresql.ServerUpdateParametersProperties{
+				PublicNetworkAccess: publicAccess,
+			},
+		}
+
+		future, err := client.Update(ctx, resourceGroup, name, properties)
+		if err != nil {
+			return fmt.Errorf("updating PostgreSQL Server %q (Resource Group %q): %+v", name, resourceGroup, err)
+		}
+
+		if err = future.WaitForCompletionRef(ctx, client.Client); err != nil {
+			return fmt.Errorf("waiting for update of PostgreSQL Server %q (Resource Group %q): %+v", name, resourceGroup, err)
+		}
+	}
+
 	return resourcePostgreSQLServerRead(d, meta)
 }
 

azurerm/internal/services/postgres/postgresql_server_resource_test.go

@@ -768,7 +768,8 @@ resource "azurerm_postgresql_server" "replica" {
   create_mode               = "Replica"
   creation_source_server_id = azurerm_postgresql_server.test.id
 
-  ssl_enforcement_enabled = true
+  public_network_access_enabled = false
+  ssl_enforcement_enabled       = true
 }
 `, r.template(data, sku, "11"), data.RandomInteger, data.Locations.Secondary, sku)
 }