I have a terraform plan that I am trying to get to the bottom of what is being changed:
Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols:
~ update in-place
Terraform will perform the following actions:
# aws_iam_access_key.svc-elements-media-sky will be updated in-place
~ resource "aws_iam_access_key" "svc-elements-media" {
id = "XXXXXXXXXXXXXX"
# (5 unchanged attributes hidden)
}
# module.elements_base.aws_iam_access_key.svc_kafka will be updated in-place
~ resource "aws_iam_access_key" "svc_kafka" {
id = "XXXXXXXXXXXXXX"
# (5 unchanged attributes hidden)
}
# module.elements_base.aws_secretsmanager_secret_version.docker will be updated in-place
~ resource "aws_secretsmanager_secret_version" "dockerhub" {
id = "arn:aws:secretsmanager:xx-xxxx-x:xxxxxxxxxx:secret:elements/docker-xxxx|terraform-20230424094831263300000002"
# (5 unchanged attributes hidden)
}
Plan: 0 to add, 3 to change, 0 to destroy.
The plan output to json seems to show identical before and after blocks. I am stumped as to how to find out what Terraform thinks it needs to update in place. I am hoping it is not the sensitive secret values but even if it is I would just like to know before I apply! Any help on where to start pulling this apart?