You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
For top-level security reasons - each Workspace e.g. Production, Staging, Development etc in a separate organization with a suffix with an appropriate environment e.g. myOrganization-Production, myOrganization-Staging etc.
Proposal
Would be nice to have the possibility configuring the prefix/suffix of the organization by workspace. For security reasons (state file storing a piece of sensitive information) we want to split different environments by high level (e.g. like it advises by Amazon - each environment in separate AWS account). Now we can't grant permission for some group of people only for e.g. a Staging environment without allowing permission to see a Production environment.
$ terraform init
Initializing modules...
Initializing the backend...
Backend configuration changed!
Terraform has detected that the configuration specified for the backend
has changed. Terraform will now check for existing state in the backends.
Error: Function calls not allowed
on main.tf line 4, in terraform:
4: organization = format("myOrganization-%s", terraform.workspace)
Functions may not be called here.
The text was updated successfully, but these errors were encountered:
Current Terraform Version
Use-cases
For top-level security reasons - each Workspace e.g.
Production
,Staging
,Development
etc in a separate organization with a suffix with an appropriate environment e.g.myOrganization-Production
,myOrganization-Staging
etc.Proposal
Would be nice to have the possibility configuring the prefix/suffix of the organization by workspace. For security reasons (state file storing a piece of sensitive information) we want to split different environments by high level (e.g. like it advises by Amazon - each environment in separate AWS account). Now we can't grant permission for some group of people only for e.g. a
Staging
environment without allowing permission to see aProduction
environment.For now this not allowed:
fails with an errors:
The text was updated successfully, but these errors were encountered: