-
Notifications
You must be signed in to change notification settings - Fork 9.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
aws_cognito_user_pool passes obsolete value UnusedAccountValidityDays #9143
Comments
what's the work around right now to allow |
Our solution was to just remove Cognito from terraform until this is fixed. It sucks but it was our best choice. |
This issue only happens if you try to modify something in the |
Duplicate of #8827 |
Not entirely. An end-user had manually made a change to the Cognito user pool via the AWS console (specifically: changed the email subject) and Terraform tries to correct this inconsistency. As part of that, the plan includes the
And this results in the above described error as well:
While looking at the plan, it seems to want to correct the
But that's separate to this issue. |
SMS bug resolved in #9758 |
Hi, Same issue for me. Terraform can not update cognito. Just CREATE and DESTROY working. |
Same issue here, but I was changing |
Hi @alanbaldwin 👋 Thanks for reporting this! I'm closing it in preference of the older issue #8827 which references the same problem. |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks! |
Community Note
Terraform Version
Terraform v0.12.3
Affected Resource(s)
Terraform Configuration Files
Debug Output
https://gist.github.com/alanbaldwin/eb0f1facc3290c7a83677b3de2dcffca
Expected Behavior
The cognito user pool should be updated to remove the tag added, and the allow_admin_create_user_only flag should be changed from true to false.
Actual Behavior
We get an error of
Error: Error updating Cognito User pool: InvalidParameterException: Please use TemporaryPasswordValidityDays instead of UnusedAccountValidityDays
.Steps to Reproduce
terraform apply
allow_admin_create_user_only
field, causing the user pool to update.terraform apply
Important Factoids
After talking with AWS Support, they have made the UnusedAccountValidityDays field obsolete (not deprecated). It looks like the updates are passing this field along when it tries to update the fields, but it doesn't appear to break without changing Cognito from an outside source like the console.
The text was updated successfully, but these errors were encountered: