aws-ssm: update Parameter Store Tags without overwriting the values #25949
Labels
@aws-cdk/aws-ssm
Related to AWS Systems Manager
effort/medium
Medium work item – several days of effort
feature-request
A feature should be added or improved.
p2
Describe the bug
If you change tags for a Parameter Store entry via CDK, the current value gets overwritten with the original value. This causes any passwords etc. that have been entered into Parameter Store entries to be lost.
If you perform the same tag change via the AWS CLI or AWS Console, the value is left unchanged and no data is lost.
Expected Behavior
The Parameter Store value should be left unchanged when it is not being modified in the CDK stack.
Current Behavior
The Parameter Store value is changed back to whatever is specified in the CDK template. It is not possible to omit it from the CDK template as it is mandatory.
Reproduction Steps
Deploy that, and a Parameter Store value will be created called
/example
with the valueTODO
.Go into the AWS Console and change the value from
TODO
to something else, as you would normally do once you are given a password etc. for the system to use.Then change the CDK template, to modify
SampleValue
toSampleValue2
. This should update the tag, without changing the actual Parameter Store entry.Observe that after deploying the updated stack, the value has returned to
TODO
, causing the value you entered earlier to be lost.Possible Solution
Since the AWS Console can modify tags without disrupting the current value, CDK should use the same method to deploy updates to tags without changing the current value of the Parameter Store entry.
Additional Information/Context
No response
CDK CLI Version
2.83.0 (build 0fd7f2b)
Framework Version
No response
Node.js Version
Any
OS
Linux
Language
Typescript
Language Version
Any
Other information
No response
The text was updated successfully, but these errors were encountered: