Add ability to force delete pingone_population
resources if it contains users
#234
Labels
service/base
PingOne Platform
service/sso
PingOne SSO
size/medium
Medium size change (e.g. enhancing the logic of an existing resource or datasource)
type/enhancement/ux
Enhancements specifically for user experience of the provider
Milestone
Community Note
Description
When running a
destroy
on an environment with user data in it, or removing a population that contains users (in both cases the users must be created naturally and not through thepingone_user
resource), the current behaviour is that removal of the population will be blocked by the PingOne platform until all users are removed first.While this is good protection for environments of the "production" type, it adds additional manual overhead when spinning up development/testing environments that are of type "sandbox".
The enhancement is to, under specific conditions, be able to override the platform's restriction and automatically empty the populations of users allowing the destroy to take place successfully.
Proposed conditions are (both numbered conditions must be met):
SANDBOX
. Usage on aPRODUCTION
environment with theforce_delete_production_type
provider parameter set tofalse
requires the HCL writer to first downgrade the environment toSANDBOX
and then re-attempt.PRODUCTION
and theforce_delete_production_type
provider parameter is set totrue
.prevent_destroy_with_data
is added to thepingone_population
resource (and thepingone_environment
resource for the default population) and the HCL writer explicitly sets this value tofalse
. The default value would betrue
.New or Affected Resource(s)
Potential Terraform Configuration
SANDBOX
type:PRODUCTION
type:References
The text was updated successfully, but these errors were encountered: