Fix for Error: Invalid for_each argument
#13
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…nment name. However the permission_set_arn can not be determined until after the apply of the permission sets. Using a.permission_set_arn in account_assignments before the permission sets have been applied will result in the following error. ``` Error: Invalid for_each argument on .terraform/modules/sso_account_assignments/modules/account-assignments/main.tf line 30, in resource "aws_ssoadmin_account_assignment" "this": 30: for_each = local.assignment_map The "for_each" value depends on resource attributes that cannot be determined until apply, so Terraform cannot predict how many instances will be created. To work around this, use the -target argument to first apply only the resources that the for_each depends on. ``` Attempting to provide a unique (enough) value that is already predetermined before apply by adding a.permission_set_name instead of arn. Yes, its less unique but there should be only one assignment using the same account, principal, principal type, and permission set name. Yes, you are carrying 2 values over from the permission set (name and arn) instead of just one (arn). But it gets around the uniqueness problem. I couldnt think of any other good choice at the moment. Maybe someone else will come up with a better value. Maybe use a random_string.name.result?
jgrumboe
reviewed
May 18, 2021
|
I have been successful with a workaround that does not involve another arbitrary key, i have opened a PR, can you guys check it out before we make the compromise? #14 |
|
I'm happy with this solution. Although it's a new arbitrary key, you can see it as a description or comment of the assignment and it helps to have stable resource names which avoid unnecessary recreation of resources when the list is altered. |
|
/terraform-fmt |
Co-authored-by: Johannes Grumböck <johannes.grumboeck@redbull.com>
|
/test all |
nitrocode
changed the title
Error: Invalid for_each argument
nitrocode
added
terraform/0.13
|
/test all |
|
I think |
Nuru
previously requested changes
Jun 10, 2021
mergify
bot
dismissed
Nuru’s stale review
This Pull Request has been updated, so we're dismissing all reviews.
Nuru
approved these changes
Jun 11, 2021
|
🎉 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
what
why
references