Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

aws_dms_replication_subnet_group resource created even after sanity check from API throwing an error #21790

Open
Siebjee opened this issue Nov 16, 2021 · 2 comments
Open

aws_dms_replication_subnet_group resource created even after sanity check from API throwing an error #21790

Siebjee opened this issue Nov 16, 2021 · 2 comments
Labels
bug Addresses a defect in current functionality. service/dms Issues and PRs that pertain to the dms service.

Comments

@Siebjee
Copy link

Siebjee commented Nov 16, 2021
edited

When you try to create a aws_dms_replication_subnet_group with it's replication_subnet_group_id accidentally containing underscores. The plan does not throw any error. And it will actually create your resource in AWS.
Yet the API throws an error.

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform CLI and Terraform AWS Provider Version

Affected Resource(s)

  • aws_dms_replication_subnet_group

Terraform Configuration Files

Please include all Terraform configurations required to reproduce the bug. Bug reports without a functional reproduction may be closed without investigation.

terraform {
  required_version = "1.0.9"

  required_providers {
    aws = {
      source  = "hashicorp/aws"
      version = "3.65.0"
    }
  }
}

resource "aws_dms_replication_subnet_group" "test" {
  replication_subnet_group_description = "Test replication subnet group"
  replication_subnet_group_id          = "lets_break_aws"

  subnet_ids = ["subnet-redacted-a", "subnet-redacted-b", "subnet-redacted-c"]

  tags = {
    Name = "test"
  }
}

Expected Behavior

Failing with the error and not creating the AWS resource

Actual Behavior

❯ terraform apply

Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols:
  + create

Terraform will perform the following actions:

  # aws_dms_replication_subnet_group.test will be created
  + resource "aws_dms_replication_subnet_group" "test" {
      + id                                   = (known after apply)
      + replication_subnet_group_arn         = (known after apply)
      + replication_subnet_group_description = "Test replication subnet group"
      + replication_subnet_group_id          = "lets_break_aws"
      + subnet_ids                           = [
          + "subnet-redacted-a",
          + "subnet-redacted-b",
          + "subnet-redacted-c",
        ]
      + tags                                 = {
          + "Name" = "test"
        }
      + tags_all                             = {
          + "Name" = "test"
        }
      + vpc_id                               = (known after apply)
    }

Plan: 1 to add, 0 to change, 0 to destroy.

Do you want to perform these actions?
  Terraform will perform the actions described above.
  Only 'yes' will be accepted to approve.

  Enter a value: yes

aws_dms_replication_subnet_group.test: Creating...
╷
│ Error: InvalidParameterValueException: The parameter Filter: replication-subnet-group-id is not a valid identifier. Identifiers must begin with a letter; must contain only ASCII letters, digits, and hyphens; and must not end with a hyphen or contain two consecutive hyphens.
│ 	status code: 400, request id: 12ca4d90-74b2-42cf-8704-e2b964c35609
│
│   with aws_dms_replication_subnet_group.test,
│   on test.tf line 1, in resource "aws_dms_replication_subnet_group" "test":
│    1: resource "aws_dms_replication_subnet_group" "test" {
│
╵

And yet the resource is created, therefor ended up in the state. Basically breaking your state & aws console :)

Steps to Reproduce

Apply the code above :)

  1. terraform apply

Recovery notes

To recover: terraform state rm aws_dms_replication_subnet_group.test
And delete the resource in the AWS console from the subnet group overview.

Credit goes to @devopsz21 for finding this issue.

Edit: AWS Support ticket is raised too
@github-actions github-actions bot added needs-triage Waiting for first response or review from a maintainer. service/databasemigrationservice labels Nov 16, 2021
@justinretzolk justinretzolk added bug Addresses a defect in current functionality. and removed needs-triage Waiting for first response or review from a maintainer. labels Nov 17, 2021
@Siebjee
Copy link
Author

Siebjee commented Nov 19, 2021

Update: AWS Support confirmed the issue, and they will make changes on the DMS part.

From AWS Support:

I will like to sincerely appreciate for sharing these with us and have already shared the same with our Internal DMS Team for review so that the character limitation can be enforced during the DMS subnet group creation.

@ewbankkit ewbankkit added the service/dms Issues and PRs that pertain to the dms service. label Jun 2, 2022
@ewbankkit
Copy link
Contributor

Relates #5424.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Addresses a defect in current functionality. service/dms Issues and PRs that pertain to the dms service.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@ewbankkit @Siebjee @justinretzolk @hc-github-team-terraform-aws