Using tfe_organization, "Variables not allowed"

jmiller · September 29, 2021, 8:20pm

I have a remote backend configured like this:

terraform {
  backend "remote" {
    organization = tfe_organization.my_tf_cloud_org

    workspaces {
      name = "my-workspace-name"
    }
  }

  required_version = "~> 1.0.2"
}

resource "tfe_organization" "my_tf_cloud_org" {
  name  = "my-tf-cloud-org"
  email = "foo@example.com"
  collaborator_auth_policy = "two_factor_mandatory"
}

This works fine in TF Cloud when triggered by a Github pull request.

However, when I try to ‘init’ using the terraform CLI on my local computer (for testing purposes so I don’t have to rely on a pull request trigger) I get this error (with “tfe_organization” underlined):

╷
│ Error: Variables not allowed
│ 
│   on main.tf line 3, in terraform:
│    3:     organization = tfe_organization.my_tf_cloud_org
│ 
│ Variables may not be used here.
╵

Why does this config work when triggered in TF Cloud but not via CLI?

apparentlymart · September 30, 2021, 5:05pm

Hi @jmiller,

In Terraform Cloud’s remote execution environment, to support folks who are using the non-CLI workflows (and thus might not have a backend "remote" block at all) Terraform Cloud automatically generates a new backend configuration which hard-codes the organization name of whatever workspace it’s running in.

That’s therefore masking the error, because Terraform is ignoring the original invalid expression in your main.tf file.

Topic		Replies	Views
Using variables with remote backend HCP Terraform	2	1054	May 20, 2021
Terraform `cloud` backend ignores env vars HCP Terraform	4	1161	March 8, 2023
GitHub Actions doesn't send env vars correctly HCP Terraform hcp-terraform	2	381	February 14, 2024
Using a variable for Github release version TFE HCP Terraform terraform-enterprise	1	309	August 19, 2022
Can TFE create variables from variables.tf definitions? HCP Terraform	1	673	February 26, 2022

Using tfe_organization, "Variables not allowed"

Related Topics