-
Notifications
You must be signed in to change notification settings - Fork 9.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
aws_kms_grant doesn't accept service principals in grantee_principal fiend #13994
Comments
This is pretty much bread&butter. Any news to shed on it? |
Using service principals with grants is invalid per AWS's docs. Grantee principal |
The
|
Facing same issue with trying to setup Airflow (MWAA) using Customer Managed Keys. There are some grants that need to be created with |
Community Note
Terraform Version
0.12.28
Affected Resource(s)
Terraform Configuration Files
Debug Output
https://gist.github.com/arcones/7bc62c94ac8f66a0714683f549aa9939
Expected Behavior
Service principals are accepted grantees in KMS grants, as per AWS docs. The grant should have been created.
Actual Behavior
It says:
Error: "grantee_principal" doesn't look like a valid ARN ("^arn:[\\w-]+:([a-zA-Z0-9\\-])+:([a-z]{2}-(gov-)?[a-z]+-\\d{1})?:(\\d{12})?:(.*)$"): "sns.amazonaws.com"
Steps to Reproduce
terraform apply
commandThe text was updated successfully, but these errors were encountered: