Open mission-badams opened 2 years ago
Thanks for reporting this @mission-badams. Looks like tags show up differently for those pool resources and the tag:
shorthand doesn't catch it. We would need a change to make that syntax work, but you can also address this at the policy level in the meantime by changing filters from this style:
- tag:environment: "smoke"
to this for identity pools:
- IdentityPoolTags.environment: "smoke"
or this for user pools:
- UserPoolTags.environment: "smoke"
Describe the bug
I'm trying to cleanup Cognito User Pools and Cognito Identity Pools that do not have the required tags. When I filter for those required tags the User Pools and Identity Pools are still getting deleted even when those required tags are present. It's deleting all User Pools and Identity Pools regardless of tags.
What did you expect to happen?
I expect only Cognito User Pools and Cognito Identity Pools to get deleted only when they are untagged or missing required tags.
Cloud Provider
Amazon Web Services (AWS)
Cloud Custodian version and dependency information
Policy
Relevant log/traceback output
No response
Extra information or context
No response