update

group-assignment/README.md

@@ -43,7 +43,7 @@ No modules.
 | <a name="input_description"></a> [description](#input\_description) | Permission set description | `string` | `null` | no |
 | <a name="input_identity_store_id"></a> [identity\_store\_id](#input\_identity\_store\_id) | AWS SSO/IDC Instance ID | `string` | n/a | yes |
 | <a name="input_instance_arn"></a> [instance\_arn](#input\_instance\_arn) | AWS SSO/IDC Instance ARN | `string` | n/a | yes |
-| <a name="input_name"></a> [name](#input\_name) | Permission set name | `string` | n/a | yes |
+| <a name="input_name"></a> [name](#input\_name) | Permission set name | `string` | `null` | no |
 | <a name="input_org_account_ids"></a> [org\_account\_ids](#input\_org\_account\_ids) | List of AWS Account ID to which to associate with this group | `list(string)` | `[]` | no |
 | <a name="input_org_account_names"></a> [org\_account\_names](#input\_org\_account\_names) | List of AWS Account aliases to which to associate with this group (note it use the commercial side alias for GovCloud) | `list(string)` | `[]` | no |
 | <a name="input_org_all"></a> [org\_all](#input\_org\_all) | Flag indicating to associate this group to all ACTIVE accounts in the organization | `bool` | `false` | no |

group-assignment/main.tf

@@ -9,6 +9,13 @@ resource "aws_identitystore_group" "group" {
   identity_store_id = var.identity_store_id
   display_name      = local.name
   description       = local.description
+
+  lifecycle {
+    precondition {
+      condition     = local.name != null
+      error_message = "The group name is required in either the variable name or the settings file."
+    }
+  }
 }
 
 resource "aws_identitystore_group_membership" "group" {

group-assignment/variables.tf

@@ -1,6 +1,7 @@
 variable "name" {
   description = "Permission set name"
   type        = string
+  default     = null
 }
 
 variable "description" {