For each fun #9

morga471 · 2024-11-01T22:57:52Z

Same idea as in terraform-modules/aws-vpc-setup#19

badra001 · 2024-11-04T12:47:42Z

main.tf

@@ -183,7 +184,7 @@ resource "aws_iam_role" "role" {
 }

 resource "aws_iam_role_policy_attachment" "role" {
-  for_each   = var.create ? toset(var.attached_policies) : toset([])
+  for_each   = var.create ? local.attached_policies_map : toset([])


The false type of this has to match the true type. Change

: toset([])

: {}

badra001 · 2024-11-04T12:52:04Z

main.tf

+  region                = data.aws_region.current.name
+  account_environment   = data.aws_arn.current.partition == "aws-us-gov" ? "gov" : "ew"
+  account_alias         = var.account_alias != "" && var.account_alias != null ? var.account_alias : "none"
+  attached_policies_map = { for idx, policy in var.attached_policies : idx => policy }


This statement will create in essence a count problem with sorting. Use it this way please:

attached_policies_map = { for p in var.attached_policies : p => p }

This is also the prior behavior. Otherwise, you'll end up with a lot of resources being deleted and recreated because you're changing the key.

badra001

see changes

morga471 added 2 commits November 1, 2024 18:50

more fun with for-each

9a6ffbf

not the lock

4a799ec

badra001 reviewed Nov 4, 2024

View reviewed changes

badra001 requested changes Nov 4, 2024

View reviewed changes

For each fun #9

For each fun #9

morga471 commented Nov 1, 2024

badra001 Nov 4, 2024

badra001 Nov 4, 2024

badra001 left a comment

For each fun #9

Are you sure you want to change the base?

For each fun #9

Conversation

morga471 commented Nov 1, 2024

badra001 Nov 4, 2024

Choose a reason for hiding this comment

badra001 Nov 4, 2024

Choose a reason for hiding this comment

badra001 left a comment

Choose a reason for hiding this comment