Closed holgerjh closed 3 weeks ago
Expected outcome is not possible. The secret can only be read at create time, so when you import an existing policy token, it has no secret which is why crossplane recreates it
Hi Julien, thanks a lot for the clarification, that explains the behaviour. I think in an ideal world we'd transition into some error state that tells us that the intended operation is not possible and the provider would not delete the remote resource.
Closing this since import is not possible.
Hello,
when importing an existing object of type
AccessPolicyToken.cloud.grafana.crossplane.io/v1alpha1
using thecrossplane.io/external-name
the remote object gets deleted and the k8s resource will transition into an error state.Minimal Code Example:
Applying this (with replaced IDs etc) will result in deletion of the resource.
Provider logs (with replaced IDs etc):
Note that the queried region in line 3 is really empty.
Tested with provider version v.0.17.0.
Expected outcome: Existing resource is imported.