Open chen23 opened 3 years ago
Tracking with INFRAANO-42
Eric,
After discussing this with the Hashicorp team, it doesn't seem like there is a way to "cleanup" the environment after Terraform is done executing its work. They work on a "long" term plan to provide a way for organization to cleanup their environment but it doesn't seem like it will happen soon.
That is unfortunate. The other suggested alternative would be to allow an end-user to specify the token value. This could allow one to request a token and extend the expiration out of band from terraform. For most use cases this is not an issue, but if you use Consul Terraform Sync / Network Infrastructure Automations the token will stack up.
Environment
Summary
When using token authentication the bigip provider does not delete the token after completion. This can lead to a situation (after multiple terraform runs) where you will get an error of "maximum active login tokens". This is very similar to: https://github.com/F5Networks/f5-ansible/issues/269
Steps To Reproduce
Steps to reproduce the behavior:
Expected Behavior
tokens will be removed after completion of task
Actual Behavior
tokens stack up