Comments (4)
Not true, you can see it in code https://github.com/hashicorp/terraform-provider-aws/blob/v5.42.0/internal/service/s3/bucket.go#L727-L760
Not at any point tags specification is added to the create request, and it's not until after the fact the tags are being set https://github.com/hashicorp/terraform-provider-aws/blob/v5.42.0/internal/service/s3/bucket.go#L776-L778. Well at least for S3, not sure about every other resource but looking at https://github.com/search?q=repo%3Ahashicorp%2Fterraform-provider-aws%20TagSpecifications&type=code I'm seeing only a handful of them does. I would imagine/hope this is code generated, would be a huge hassle to fix every single resource manually. And until it is - it cripples adoption of good security hygiene since most of the people will just use IAM policy that works, and not get out of their way to file issue on GitHub (unfortunately).
from terraform-provider-aws.
Community Note
Voting for Prioritization
- Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
- Please see our prioritization guide for information on how we prioritize.
- Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.
Volunteering to Work on This Issue
- If you are interested in working on this issue, please leave a comment.
- If this would be your first contribution, please review the contribution guide.
from terraform-provider-aws.
Hey @dee-kryvenko 👋 Thank you for taking the time to raise this! If I'm not mistaken, this may be configuration dependent, related to whether you have tags that are marked as (known after apply)
. Are you able to supply a sample configuration that reproduces this behavior?
from terraform-provider-aws.
My situation: Tagging required for volumes at ec2 instance creation. Currently there is no way for aws_instance
to work, I've tried all variables: tags, tags_all, volume_tags
, none actually tag at creation--although volume_tags
implies it does.
However, I found a workaround in the AutoScaling Group Module, specifically the tag_specifications
option with the resource type set to instance
(oddly type volume
does not work!)
Since there's not much practical difference between an ASG of 1 and an EC2 I'll use the module until this bug is fixed.
from terraform-provider-aws.
Related Issues (20)
- [Bug]: aws_elasticsearch_domain dynamic "ebs_options" block not removed when appropriate HOT 1
- [Bug]: aws_iam_service_specific_credential password git credentials HOT 1
- [Bug]: aws_chatbot_slack_channel_configuration produced an unexpected new value: .configuration_name was X, but now Y HOT 1
- [Bug]: New Association for route table rtb-******* conflicts with an existing association HOT 4
- [Enhancement]: Add `vpc_attachment_options` argument to `aws_osis_pipeline` resource HOT 3
- [Enhancement]: r/aws_s3_object: Support conditional writes with `if_none_match` argument HOT 1
- [Bug]: error configuring Terraform AWS Provider: no valid credential sources for Terraform AWS Provider found HOT 4
- [Enhancement]: aws_inspector2_member_association to support multiple account_ids HOT 3
- [Bug]: aws_eks_cluster: adding `access_config` block triggers cluster recreate in absense of `bootstrap_cluster_creator_admin_permissions` HOT 10
- [Bug]: DynamoDB Global Tables v2, Unexpected Replica Deletion HOT 3
- [Enhancement]: aws_appflow_connector_profile - Support for usePrivateLinkForMetadataAndAuthorization HOT 1
- [Enhancement]: Add AuthenticationConfiguration in AWS Glue connection HOT 1
- [New Resource]: aws_dynamodb_table_backup HOT 1
- [New Resource]: aws_cloudwatch_retention_period HOT 1
- [Bug]: Provider does not handle C2S region failures for multiple resource types HOT 4
- [Bug]: Failures in C2S regions when creating Step Functions due to UnsupportedOperation calling ListStateMachineVersions HOT 3
- [Bug]: r/aws_neptune_cluster and r/aws_neptune_cluster_instance use incorrect default parameter group families HOT 3
- [Bug]: reading Lake Formation permissions: listing permissions: operation error LakeFormation: ListPermissions HOT 5
- [Bug]: `aws_autoscaling_schedule` start_time is not recalculated when modifying the resource HOT 2
- [Bug]: RDS DB upgrade from 14.9 to 16.3 and aws_db_parameter_group breaks HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from terraform-provider-aws.