Closed
Description
Description
Small bug in module, an IAM Policy is referencing a secret id instead of the arn.
- main.tf :: line 138
- ✋ I have searched the open/closed issues and my issue is not listed.
Versions
terraform {
required_version = "=1.4.6"
required_providers {
aws = {
source = "hashicorp/aws"
version = "4.67.0"
}
null = {
source = "hashicorp/null"
version = "3.2.1"
}
tls = {
source = "hashicorp/tls"
version = "4.0.4"
}
}
}
Reproduction Code
module "rds_proxy" {
source = "terraform-aws-modules/rds-proxy/aws"
version = "~>2.1.2"
create_proxy = true
name = "${local.project_name}-rds-proxy"
iam_role_name = "${local.project_name}-rds-proxy-role"
vpc_subnet_ids = module.subnets.private_subnet_ids
vpc_security_group_ids = [module.rds_proxy_sg.security_group_id]
db_proxy_endpoints = {
read_only = {
name = "read-only-endpoint"
vpc_subnet_ids = module.subnets.private_subnet_ids
vpc_security_group_ids = [module.rds_proxy_sg.security_group_id]
target_role = "READ_ONLY"
tags = local.rds_proxy_tags
}
}
secrets = {
"rdxproxyadmin" = {
description = aws_secretsmanager_secret.rds_proxy.description
arn = aws_secretsmanager_secret.rds_proxy.arn
kms_key_id = aws_secretsmanager_secret.rds_proxy.kms_key_id
}
}
engine_family = "POSTGRESQL"
debug_logging = true
idle_client_timeout = 300
# Target Aurora cluster
target_db_cluster = true
db_cluster_identifier = module.aurora_postgresql_v2.cluster_id
tags = local.rds_proxy_tags
}
Steps to reproduce the behavior:
- Try running module with IAM role
Expected behavior
- IAM Policy to be created
Actual behavior
- Error: Malformed IAM Policy - Resource must be "*" or ARN
Metadata
Metadata
Assignees
Labels
No labels