[Enhancement]: Secret rotation for manage_master_user_password in RDS with automaticallyafterdays option

[ds50421]

Description

Hi,

in the resource [resource "aws_db_instance"(https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/db_instance), setting the manage_master_user_password argument allows RDS to manage the master user password in Secrets Manager. the rotation is set to 7 days by default with value AutomaticallyAfterDays.But terraform does not provide option to change the days .

Request you create a parameter to add AutomatciallyAfterDays for secret manager rotation .

How we achieved this via CLI:aws secretsmanager rotate-secret --secret-id RDSXXXXXXXX --rotation-rules AutomaticallyAfterDays=30

Affected Resource(s) and/or Data Source(s)

resource "aws_db_instance"

Potential Terraform Configuration

No response

References

No response

Would you like to implement a fix?

None

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.

[rae89]

The ability to disable rotation would also be nice.

[stewartcampbell]

There is an example here which configures the rotation: https://github.com/hashicorp/terraform-provider-aws/issues/32405

I am looking to disable it as well, though, which I don't think that helps with.