[Enhancement]: cannot delete aws_wafv2_acl tied to aws_cloudfront_distribution

[sinofseven]

Description

I did the following to remove aws_wafv2_acl tied to aws_cloudfront_distribution.

• Removed resource definitions for aws_wafv2_acl
• Removed aws_cloudfront_distribution web_acl_id argument

But when I tried to APPLY, I couldn't delete aws_wafv2_acl because it is tied to aws_cloudfront_distribution.

To work around this, I think it would be better to allow the aws_wafv2_acl_association to be tied to CloudFront.

Affected Resource(s) and/or Data Source(s)

• aws_wafv2_acl
• aws_cloudfront_distribution
• (aws_wafv2_acl_association)

Potential Terraform Configuration

resources "aws_wafv2_acl_association" "tied_to_cloudfront" {
  resource_arn = aws_cloudfront_distribution.front.arn
  web_acl_arn  = aws_wafv2_acl.waf.arn
}

References

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/wafv2_web_acl_association#resource_arn

Would you like to implement a fix?

No

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.