Terraform tells there are change with unmodified role inline policy imported from a file

[Porkepix]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform Version

Terraform version: v0.11.14 Provider version: 2.57

Affected Resource(s)

• aws_iam_role

Terraform Configuration Files

resource "aws_iam_role" "my_role_name" {
  name               = "my_role_name"
  assume_role_policy = "${file("assume-role-policy.json")}"
}

Expected Behavior

Without change on the json policy file, no change should happen.

Actual Behavior

Terraform actually tells on every run that there are changes on the roles and rewrite the inline policy… identically as what was already there.

Steps to Reproduce

1. Create a role similarly to the code above, with a valid .json policy such as the one below.
2. Run terraform apply twice

Policy:

{
  "Statement": [
    {
      "Action": "sts:AssumeRole",
      "Effect": "Allow",
      "Principal": {
      "AWS": "account_id"
      }
    }
  ]
}

[justinretzolk]

Hey @Porkepix 👋 Thank you for taking the time to file this. Given that there's been a number of Terraform and AWS Provider releases since you initially filed it, can you confirm whether you're still experiencing this behavior?

[avanzelli]

Sorry for resurrecting this thread, but I'm currently having this problem.

My Version is:

terraform version Terraform v1.5.5 on darwin_amd64

[justinretzolk]

Hey @avanzelli 👋 Can you run terraform -v after initializing the directory so that we can see what version of the AWS provider you're running as well?