resource/aws_ecs_service: Add public_assign_ip attribute and fix InvalidParameterException handling #3240
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…vider-aws into feature/fargate_support_v2
…orton/terraform-provider-aws into f-aws_ecs_service-assign_public_ip
… acceptance test assign_public_ip state and updates
…catching incorrect InvalidParameterException
bflad
added
bug
|
Pulled in #3242 commits: |
catsby
reviewed
Feb 5, 2018
| log.Printf("[DEBUG] Trying to update ECS service again: %#v", err) | ||
| return resource.RetryableError(err) | ||
| } | ||
| if ok && awsErr.Code() == "ServiceNotFoundException" { |
There was a problem hiding this comment.
Here we're losing the retry on ServiceNotFoundException, is that intentional?
There was a problem hiding this comment.
@catsby Interestingly enough, I had just assumed it was some sort of typo that it was included and that retrying on a missing service would be undesirable during an update, but turns out we are currently always calling resourceAwsEcsServiceUpdate at the end of resourceAwsEcsServiceCreate. So that explains why it was in there.
Looking through the parameters set during resourceAwsEcsServiceUpdate to ecs.UpdateServiceInput, I don't see anything not already handled by resourceAwsEcsServiceCreate so I think we should instead return resourceAwsEcsServiceRead at the end of resourceAwsEcsServiceCreate and keep the ecs.ErrCodeServiceNotFoundException retry logic out of resourceAwsEcsServiceUpdate.
Does that sound reasonable?
There was a problem hiding this comment.
@bflad that sounds like a good idea - as long as all ECS tests still pass 🤷♂️
| @@ -102,6 +102,7 @@ Guide](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/cluster-query | |||
|
|
|||
| * `subnets` - (Required) The subnets associated with the task or service. | |||
| * `security_groups` - (Optional) The security groups associated with the task or service. If you do not specify a security group, the default security group for the VPC is used. | |||
| * `assign_public_ip` - (Optional) Only valid for `FARGATE` launch type and valid values are `true` or `false`. Will assign a public IP address to the ENI. Default value is `false`. | |||
There was a problem hiding this comment.
Suggest reword to "Assign a public IP address to the ENI (Fargate launch type only). Valid values are true or false. Default false." or similar
radeksimko
reviewed
Feb 8, 2018
| if awsErr.Code() == "ClusterNotFoundException" { | ||
| log.Printf("[DEBUG] Trying to create ECS service again: %q", | ||
| awsErr.Message()) | ||
| if isAWSErr(err, ecs.ErrCodeInvalidParameterException, "Please verify that the ECS service role being passed has the proper permissions.") { |
There was a problem hiding this comment.
I trust you that you ran all ECS related acceptance tests a couple of times to verify that we're not missing any other message/format here. 😃
| log.Printf("[DEBUG] Trying to update ECS service again: %#v", err) | ||
| return resource.RetryableError(err) | ||
| } | ||
| if ok && awsErr.Code() == "ServiceNotFoundException" { |
There was a problem hiding this comment.
@bflad that sounds like a good idea - as long as all ECS tests still pass 🤷♂️
| @@ -9,7 +9,6 @@ import ( | |||
| "time" | |||
|
|
|||
| "github.com/aws/aws-sdk-go/aws" | |||
| "github.com/aws/aws-sdk-go/aws/awserr" | |||
| sg1Name, sg2Name, clusterName, tdName, svcName, | ||
| `"${aws_security_group.allow_all_a.id}"`, | ||
| ) | ||
| } |
There was a problem hiding this comment.
Passing parts of HCL is a little bit confusing at first I have to say... sometimes duplication is just better than abstraction, IMO.
…otFound for new resources
|
@radeksimko sorry for the delayed response, all tests are passing. I'll run them a few more times to be certain. 🎉 |
radeksimko
approved these changes
Feb 9, 2018
|
This has been released in terraform-provider-aws version 1.9.0. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. |
jocgir
added a commit
to coveooss/terraform-provider-aws
that referenced
this pull request
Feb 12, 2018
* commit '5293a0e3b1366ee16d8742b9b2354781a79bfbd9': (224 commits) v1.9.0 Update CHANGELOG for hashicorp#1101 and hashicorp#3283 docs/resource/aws_sns_platform_application: Add note about platform_credential and platform_principal hashing resource/aws_sns_platform_application: Refactor ID parsing to its own function, use testing.T in testAccAwsSnsPlatformApplicationPlatformFromEnv Add lambda example (hashicorp#3168) Update CHANGELOG for hashicorp#3157 docs/data-source/aws_region: Remove now deprecated current argument data-source/aws_region: Refactor logic into findRegionByEc2Endpoint and findRegionByName functions Update CHANGELOG for hashicorp#3301 Update CHANGELOG for hashicorp#2559 and hashicorp#3240 Update CHANGELOG.md resource/aws_kinesis_stream: Retry deletion on LimitExceededException (hashicorp#3108) Update CHANGELOG.md resource/aws_dynamodb_table_item: Cleanup + add missing bits Added dynamodb_table_item resource hashicorp#517 Update CHANGELOG.md New Resource: aws_cloud9_environment_ec2 Update CHANGELOG.md Fixed markdown typo in docs resource/aws_kinesis_firehose_delivery_stream: Prevent crashes on empty CloudWatchLoggingOptions and fix extended_s3_configuration kms_key_arn ... # Conflicts: # aws/validators.go
jocgir
added a commit
to coveooss/terraform-provider-aws
that referenced
this pull request
Feb 12, 2018
…parameters-features * commit '5293a0e3b1366ee16d8742b9b2354781a79bfbd9': (752 commits) v1.9.0 Update CHANGELOG for hashicorp#1101 and hashicorp#3283 docs/resource/aws_sns_platform_application: Add note about platform_credential and platform_principal hashing resource/aws_sns_platform_application: Refactor ID parsing to its own function, use testing.T in testAccAwsSnsPlatformApplicationPlatformFromEnv Add lambda example (hashicorp#3168) Update CHANGELOG for hashicorp#3157 docs/data-source/aws_region: Remove now deprecated current argument data-source/aws_region: Refactor logic into findRegionByEc2Endpoint and findRegionByName functions Update CHANGELOG for hashicorp#3301 Update CHANGELOG for hashicorp#2559 and hashicorp#3240 Update CHANGELOG.md resource/aws_kinesis_stream: Retry deletion on LimitExceededException (hashicorp#3108) Update CHANGELOG.md resource/aws_dynamodb_table_item: Cleanup + add missing bits Added dynamodb_table_item resource hashicorp#517 Update CHANGELOG.md New Resource: aws_cloud9_environment_ec2 Update CHANGELOG.md Fixed markdown typo in docs resource/aws_kinesis_firehose_delivery_stream: Prevent crashes on empty CloudWatchLoggingOptions and fix extended_s3_configuration kms_key_arn ... # Conflicts: # aws/resource_aws_ssm_parameter_test.go
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks! |
ghost
locked and limited conversation to collaborators
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #85
Closes #2873
Closes #3098
This PR is a continuation of #2559, including crash prevention for
nilAssignPublicIpand testing fixes for that PR. While trying to run and fix the acceptance testing, I was having major trouble with the incorrect retry logic that was noted in #85 so fixed that as well on top of the original PR.