aws_organizations_account returns "Error: invalid value for email" when the email address is in fact valid.

[AnchorArray]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform CLI and Terraform AWS Provider Version

Terraform v0.15.3
provider registry.terraform.io/hashicorp/aws v3.42.0

Affected Resource(s)

aws_organizations_account

Terraform Configuration Files

resource "aws_organizations_account" "identity" {
  name                       = "identity"
  parent_id                  = aws_organizations_organizational_unit.identity.id
  email                      = "${var.account_email_user}+identity-root@${var.account_email_host}"
  role_name                  = "OrganizationAccountAccessRole"
  iam_user_access_to_billing = "DENY"
}

Debug Output

https://gist.github.com/andersdberg/4d2c05b5fb260fea9d9ab7e12a4f4178

Expected Behavior

• Successful plan/apply

Actual Behavior

• Exits with an Error: invalid value for email (must be a valid email address)
• The AWS organization accounts are successfully created. I am able to login to the accounts and they are part of the organization. The email is clearly not invalid and this should not throw an error.

Steps to Reproduce

1. terraform plan

[Hotpirsch]

I also see this error in plan runs. I am not sure if I understand the reporter correctly: Did they say that the plan fails but the apply works nonetheless?