search

aws-ia / terraform-aws-control_tower_account_factory

AWS Control Tower Account Factory
Apache License 2.0
604 stars 386 forks source link

AFT invoke customizations with parent OU as input #443

Open pursachi opened 3 months ago

pursachi commented 3 months ago

Describe the outcome you'd like AFT should invoke customizations pipeline for all the accounts under the OU even if it is present in a child OU

Is your feature request related to a problem you are currently experiencing? If so, please describe.

Currently AFT triggers customizations only for child OUs with accounts in it, it doesn't trigger customizations for all the child accounts present in child OUs. for example if I have below OU structure

- Finance
  - Prod
     - Account1
     - Account2
  - Non-prod
    - Account3

If I pass the Finance OU to invoke customizations it doesn't trigger customization pipeline for Account1, Account2,and Account3. I have to pass Prod and Non-prod OU to the step function to trigger the customizations pipeline.

Additional context output:

{
  "include": [
    {
      "type": "ous",
      "target_value": [
        "Finance (ou-xxx)"
      ]
    }
  ],
  "targets": {
    "number_pending_accounts": 0,
    "pending_accounts": [],
    "target_accounts_info": []
  }
}
hanafya commented 3 months ago

Hey @pursachi!

Thank you for bringing this to our attention. I have created a backlog item with this feature request.