-
Notifications
You must be signed in to change notification settings - Fork 9.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SG ID not imported for FSx #9795
Comments
Hi @onur-sam-gtn-ai 👋 Thank you for reporting this. Currently, the FSx API does not provide a method for reading this information, so therefore Terraform cannot know this information during resource import. We try to note this in the import section the resource documentation along with a workaround:
So for your Terraform configuration: resource "aws_fsx_lustre_file_system" "lustre" {
# ... other configuration ...
# There is no FSx API for reading security_group_ids
lifecycle {
ignore_changes = [security_group_ids]
}
} If you would like to see this support added, we would suggest opening a AWS Support Case or reaching out to your AWS account team if you have one. When the information is available from the API, this limitation can be removed from the Terraform resource. 👍 Also, if we can improve our documentation, please let us know. Thanks again. |
I'm no Terraform expert so excuse my ignorance, but isn't it possible to just query the returned ENI's and store the SG information there in the state file during the FSx import? |
@onur-sam-gtn-ai That would involve several calls to non-FSx APIs (EC2 and or VPC if I recall) that is not practical or encouraged when developing resources (@bflad can correct me if I'm wrong here). IMO, this is a bug that AWS needs to fix. This is data that should be returned when calling a |
@onur-sam-gtn-ai potentially, but there are caveats to performing that sort of logic outside the AWS service's handling/API:
We might be able to accept an implementation if it is documented by the AWS service team, has compatibility guarantees, and falls back to not causing the Terraform resource to return an error. |
No worries, I'll raise a support ticket with AWS regarding this at the first opportunity. Thanks for all the prompt responses! |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks! |
Community Note
Terraform Version
Affected Resource(s)
Expected Behavior
terraform import
for FSx Lustre should have importedsecurity_group_ids
as wellActual Behavior
FSx support was only recently merged, see PR-9761.
The text was updated successfully, but these errors were encountered: