How to prevent destroying resources when import blocks are used?

h2oearth · March 21, 2024, 8:47pm

Hi Terraform Fam!

I am successfully using import blocks, but unfortunately, the option -generate-config-out can not be used with for_each The problem that I am facing is that if I run this plan, the existing policies are going to be destroyed because this line policy = jsonencode({}) in my code (I had to add a policy because this field is mandatory). How can I tell Terraform I want to keep the policy the same?

variable "users" {
  type = list(object({
    name     = string
    policies = list(string)
  }))
  default = [
    { name = "user1", policies = ["p1", "p2", "p99", "p200"] },
    { name = "user2", policies = ["p3", "p4"] },
    { name = "user3", policies = ["p5", "p6"] },
    { name = "user4", policies = ["p7", "p8"] },
  ]
}

import {
  for_each = toset(concat([for u in var.users : u.policies]...))
  to       = aws_iam_policy.this[each.value]
  id       = format("arn:aws:iam::054445454545:policy/%s", each.value)
}

resource "aws_iam_policy" "this" {
  for_each = toset(concat([for u in var.users : u.policies]...))
  policy   = jsonencode({})
}

system · September 17, 2024, 8:48pm

This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is the new import block compatible with loops? Terraform	1	441	December 8, 2023
Request for feedback: for_each in import blocks Terraform	1	601	October 25, 2023
Unable to retrive nested elements using for_each Terraform	7	239	March 21, 2024
Imported resource - how to keep it intact in case of terraform destroy? Terraform	2	252	June 21, 2021
How to use for_each inside a terraform json configuration file Terraform	2	449	February 3, 2021

How to prevent destroying resources when import blocks are used?

Related topics