[Bug]: cognito pre_token_generation_config
reconciliation issue.
#38617
Labels
bug
Addresses a defect in current functionality.
service/cognitoidp
Issues and PRs that pertain to the cognitoidp service.
Terraform Core Version
1.5.7
AWS Provider Version
5.55.0, 5.60.0
Affected Resource(s)
aws_cognito_user_pool
Expected Behavior
when I remove the
pre_token_generation_config
block from inside thelambda_config
block in theaws_cognito_user_pool
resourdce I expect the Pre token generation Lambda trigger to be removed.Actual Behavior
no changes are detected in the resource during reconciliation on tf plan.
Relevant Error/Panic Output Snippet
No response
Terraform Configuration Files
relevant parts of the
aws_cognito_user_pool
blockIt doesn't look like the other parts of the user pool configuration are relevant to the issue, I believe the problem can be reproduced with any valid user pool configuration. the dynamic block is not required for reproduction, It can be achieved with just adding the block and then removing it/commenting it out.
Steps to Reproduce
valid pre_token_generation
lambdapre_sign_up
andpost_authentication
lambdas (we probably need just 1 so that thelambda_config
block contains something more than the pre token generation config.advanced_security_mode
to"ENFORCED"
pre_token_generation_config
to use the created lambda and set thelambda_version
toV2_0
pre_token_generation_config
from thelambda_config
block.No changes
Debug Output
No response
Panic Output
No response
Important Factoids
No response
References
No response
Would you like to implement a fix?
None
The text was updated successfully, but these errors were encountered: