data.aws_arn: Fails to validate managed IAM policy ARN #11449

phyber · 2020-01-01T17:03:03Z

Community Note

Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform Version

Terraform v0.12.18
+ provider.aws v2.43.0

Affected Resource(s)

data.aws_arn

Terraform Configuration Files

data aws_arn cloudwatch_readonly_access {
  arn = "arn:aws:iam::aws:policy/CloudWatchReadOnlyAccess"
}

Debug Output

N/A

Panic Output

N/A

Expected Behavior

I should have been able to use a managed IAM policy ARN in the aws_arn data type.

Actual Behavior

The following errors occurs

Error: "arn" doesn't look like a valid ARN ("^arn:[\\w-]+:([a-zA-Z0-9\\-])+:([a-z]{2}-(gov-)?[a-z]+-\\d{1})?:(\\d{12})?:(.*)$"): "arn:aws:iam::aws:policy/CloudWatchReadOnlyAccess"

Steps to Reproduce

Create some Terraform including the above data source
terraform plan

Important Factoids

N/A

References

N/A

Other

I'll have a PR shortly to fix this issue.

The text was updated successfully, but these errors were encountered:

phyber · 2020-01-03T12:47:38Z

I have submitted a pull request to solve this issue. (Just leaving this comment since the community note says to do so, PR already linked against issue).

bflad · 2020-01-03T15:44:12Z

The fix for this (including the aws_arn data source and other places where use validateArn for attribute validation) has been merged and will release with version 2.44.0 of the Terraform AWS Provider, next Thursday. Thanks @phyber for the implementation. 👍

ghost · 2020-01-10T16:57:07Z

This has been released in version 2.44.0 of the Terraform AWS provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template for triage. Thanks!

ghost · 2020-03-27T17:55:09Z

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

github-actions bot added the needs-triage Waiting for first response or review from a maintainer. label Jan 1, 2020

phyber mentioned this issue Jan 1, 2020

aws/validators: Allow aws account ID in validateArn #11450

Merged

bflad added bug Addresses a defect in current functionality. provider Pertains to the provider itself, rather than any interaction with AWS. and removed needs-triage Waiting for first response or review from a maintainer. labels Jan 3, 2020

bflad added this to the v2.44.0 milestone Jan 3, 2020

bflad closed this as completed in #11450 Jan 3, 2020

ghost locked and limited conversation to collaborators Mar 27, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

data.aws_arn: Fails to validate managed IAM policy ARN #11449

data.aws_arn: Fails to validate managed IAM policy ARN #11449

phyber commented Jan 1, 2020

phyber commented Jan 3, 2020

bflad commented Jan 3, 2020

ghost commented Jan 10, 2020

ghost commented Mar 27, 2020

data.aws_arn: Fails to validate managed IAM policy ARN #11449

data.aws_arn: Fails to validate managed IAM policy ARN #11449

Comments

phyber commented Jan 1, 2020

Community Note

Terraform Version

Affected Resource(s)

Terraform Configuration Files

Debug Output

Panic Output

Expected Behavior

Actual Behavior

Steps to Reproduce

Important Factoids

References

Other

phyber commented Jan 3, 2020

bflad commented Jan 3, 2020

ghost commented Jan 10, 2020

ghost commented Mar 27, 2020