Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Terraform support for Add Permission API when creating a Cognito Userpool #21046

Closed
EltonPaka opened this issue Apr 18, 2019 · 2 comments
Closed

Terraform support for Add Permission API when creating a Cognito Userpool #21046

EltonPaka opened this issue Apr 18, 2019 · 2 comments
Labels
enhancement provider/aws

Comments

@EltonPaka
Copy link

EltonPaka commented Apr 18, 2019
edited

Current Terraform Version

0.11.11

Use-cases

When creating a Cognito userpool with terraform and adding the Lambda triggers, the operation completes successfully however when checking the Cognito console, the triggers seem to not be associated with the userpool. Upon investigation, realized that Cognito needs permission to invoke function and just adding it in the lambda config in the terraform script is not enough. According to Cognito's documentation You'll need to make an additional call to add permission for Cognito to invoke your Lambda function. Looking at the terraform logs, this call is not performed at all although the response suggests that the call was successful.

Attempted Solutions

The explored solution at this time is to manually associate the triggers on the conginto console or making the add permissions calls separately after the userpool has been created.

Proposal

When making the creating the userpool through terraform, it should have logic to add those permissions within this operation instead of making the separate call or manually associating the triggers.

References

https://www.terraform.io/docs/providers/aws/r/cognito_user_pool.html
https://www.terraform.io/docs/providers/aws/r/lambda_permission.html
https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html#CognitoUserPools-CreateUserPool-request-LambdaConfig
@ghost ghost closed this as completed Apr 18, 2019
@ghost ghost mentioned this issue Apr 18, 2019
Open
@ghost
Copy link

ghost commented Apr 18, 2019

This issue has been automatically migrated to hashicorp/terraform-provider-aws#8373 because it looks like an issue with that provider. If you believe this is not an issue with the provider, please reply to hashicorp/terraform-provider-aws#8373.

@ghost
Copy link

ghost commented Jul 26, 2019

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@ghost ghost locked and limited conversation to collaborators Jul 26, 2019
This issue was closed.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
enhancement provider/aws
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mildwonkey @EltonPaka