Reputation: 1380
Make Terraform ignore the order of list items returned from the service
I'm creating an AWS IAM policy that grants access to a resource to a number of remote accounts. I've got these accounts in a list - all good. However when TF checks the current state on the subsequent plan it comes back in a different order and TF thinks that it must be corrected. How can I ignore the list order?
This is my resource:
resource "aws_ecr_repository_policy" "repo" {
policy = jsonencode({
Statement = [
{
Principal = {
AWS = [
"arn:aws:iam::123456789012:root",
"arn:aws:iam::567890123456:root",
"arn:aws:iam::987654321098:root",
]
...
Now on subsequent terraform plan runs I get some variations of this:
~ {
~ Principal = {
~ AWS = [
+ "arn:aws:iam::987654321098:root", <<< swapped order
"arn:aws:iam::123456789012:root",
"arn:aws:iam::567890123456:root",
- "arn:aws:iam::987654321098:root", <<< and here
]
}
AWS is unpredictable with the order it returns, it changes each time. Can I somehow ignore the order? Ideally without ignoring the whole policy block with lifecycle / ignore_changes.
Upvotes: 5
Views: 8239
Answers (1)
Reputation: 163
This was an issue of terraform-provider-aws (fixed with provider version v4.23.0), see https://github.com/hashicorp/terraform-provider-aws/issues/22274
Upvotes: 4
Related Questions
- In terraform, how do you sort a list of objects and grab the last value?
- Terraform read single-item list
- Why is Terraform ordering my input variable alphabetically?
- Terraform with aws to select ami based on tag with sort
- How to allow an ordered list in a custom terraform provider resource?
- Terraform - API returns data in a different order, so terraform sees a meaningless change?
- Preserve list ordering when creating maps in Terraform 0.12?
- Terraform: rearranging my lists in output file
- Terraform lists in version 0.12+
- How to prioritize terraform execution priority