[Bug]: Error in deprecated attribute (overwrite) in aws_ssm_parameter resource.

[ArthOdak]

Terraform Core Version

1.3.5

AWS Provider Version

5.2.0

Affected Resource(s)

resource "aws_ssm_parameter" "redshift_cluster_password" {
  name       = "master_password-${aws_redshift_cluster.terraform_redshift_cluster.id}"
  value      = random_string.password.result
  type       = "SecureString"
  key_id     = data.aws_kms_key.default_kms_key.arn
  overwrite  = true
  tags       = local.common_tags
  depends_on = [aws_redshift_cluster.terraform_redshift_cluster]
}

Expected Behavior

Creating a Redshift cluster with snapshot and Resource should be created successfully in system manager.

Actual Behavior

│ Error: Provider produced inconsistent final plan
│
│ When expanding the plan for module.red.aws_ssm_parameter.redshift_cluster_username to include new values learned so far during apply, provider      
│ "registry.terraform.io/hashicorp/aws" produced an invalid new value for .value: inconsistent values for sensitive attribute.
│
│ This is a bug in the provider, which should be reported in the provider's own issue tracker.

Relevant Error/Panic Output Snippet

│ Error: Provider produced inconsistent final plan
│
│ When expanding the plan for module.red.aws_ssm_parameter.redshift_cluster_username to include new values learned so far during apply, provider      
│ "registry.terraform.io/hashicorp/aws" produced an invalid new value for .value: inconsistent values for sensitive attribute.
│
│ This is a bug in the provider, which should be reported in the provider's own issue tracker.

Terraform Configuration Files

resource "aws_ssm_parameter" "redshift_cluster_password" {
  name       = "master_password-${aws_redshift_cluster.terraform_redshift_cluster.id}"
  value      = random_string.password.result
  type       = "SecureString"
  key_id     = data.aws_kms_key.default_kms_key.arn
  overwrite  = true
  tags       = local.common_tags
  depends_on = [aws_redshift_cluster.terraform_redshift_cluster]
}

Steps to Reproduce

terraform init terraform plan terraform apply

Debug Output

No response

Panic Output

No response

Important Factoids

No response

References

No response

Would you like to implement a fix?

None

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.

[justinretzolk]

Hey @ArthOdak 👋 Thank you for taking the time to raise this! I'll leave this open for someone on the team or in the community to review, but in the meantime it might be worth trying the random_password resource instead. I'm not certain that it'll behave differently, but it seems to be the more intentional resource from that provider.