Terraform test: ability to expect overall failures of plan or apply command #35628
Labels
Comments
|
Thanks for this feature request! If you are viewing this issue and would like to indicate your interest, please use the 👍 reaction on the issue description to upvote this issue. We also welcome additional use case descriptions. Thanks again! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Terraform Version
Use Cases
I'm trying to test an AWS IAM role's trust policy. Under certain conditions (how the session is tagged), I expect to be able to assume the role when I configure the AWS provider's
assume_roleblock. Under other conditions, I expect the role assumption to fail and cause the plan to fail. I am happily usingterraform testto test the successful cases but, from what I understand, it's not useful for testing the failure cases.I think it would be generally useful to be able to assert that
terraform planorterraform applyfailed, and optionally specify some pattern we expect the error text to match.Attempted Solutions
I tried using
terraform test'sexpect_failuresoption, but it only appears to support custom conditions that we define on variables/resources/data sources. I don't see a way to do what I want using that mechanism.Proposal
No response
References
No response
The text was updated successfully, but these errors were encountered: