New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Way to manage edge hostnames when using Secure by default #268
Comments
Hello @TBeijen, thanks for reporting the issue. Our proposed solution to allow managing implicitly created edgehsotname resources is to remove the This change should allow importing existing edge_hostnames of type edgekey.net (enhanced TLS) without providing a certificate and managing the value of Let me know what do you think about this. |
(Lost sight of this, sry for the late reply) Ok, so if I summarise this correctly, from a Terraform user perspective this would boil down to:
Thinking it through:
So, without knowing much of the Akamai provider's internals or your roadmap, I'd say the above approach would for sure help. And doing so would I think not block future improvements that in time might allow single plan/apply workflows for secure by default edge hostnames. |
Thanks for the reply. For now we'll stick with the proposed solution, in the future we might also consider improving the workflow for secure by default edge hostnames. |
Hi @TBeijen, that change that should have addressed this issue was released within 2.2.0 Akamai Terraform Provider release. Closing the ticket. Feel free to reopen in caese of any follow up. |
The problem
When using Secure by default, an edge hostname is created implicitly by the property API (PAPI) upon activation of the property. As a result the edge hostname configuration cannot be managed by Terraform.
Attempting to create an edge hostname using the terraform resource fails, since the certificate attribute is required when
edge_hostname
is of type edgekey.net (enhanced TLS).This prevents the edge hostname attribute
ip_behaviour
to be modified (as well as the DNS ttl, but seems unsupported currently in edge_hostname anyway).Some possible solutions I can think of:
akamai_edge_hostname
resource. Possible way could be optionally specify the property that spawns the edge hostname. The provider would import the edge hostname once it's present and then use Edge Hostnames API to apply changes. (A practice somewhat similar to how aws_default_security_group adopts the security group created via an AWS VPC).ip_behaviour
via the property hostnames argument.Ultimately this challenge originates from the implicit way such edge hostnames are created via the Akamai API. But that's not something easily changed obviously.
Terraform Version
Terraform: 0.13.7
Akamai provider: 1.8.0
Affected Resource(s)
Terraform Configuration Files
Implicit edge hostname as taken from the Terraform docs
Debug Output
N/A
Expected Behavior
Be able to manage the resulting edge_hostname resource, or be able to modify the resulting edge_hostname properties via the property.
Actual Behavior
N/A
a
Steps to Reproduce
N/A
The text was updated successfully, but these errors were encountered: