[Enhancement]: Allow aws_identitystore_user to also update attributes

[tommyallieri]

Description

The aws_identitystore_user resource seems to only rely on the CreateUser api endpoint which only supports so many attributes.

Attributes such as "Division" or "Department" are not available though. For this, use of the UpdateUser api endpoint is necessary.

Update resource functionality to set more user attributes than currently exposed with the existing resource.

Affected Resource(s) and/or Data Source(s)

• resource aws_identitystore_user

Potential Terraform Configuration

resource "aws_identitystore_user" "example" {
  identity_store_id = tolist(data.aws_ssoadmin_instances.example.identity_store_ids)[0]

  display_name = "John Doe"
  user_name    = "johndoe"
  division     = "Technology"
  department   = "Engineering"

  name {
    given_name  = "John"
    family_name = "Doe"
  }

  emails {
    value = "john@example.com"
  }
}

References

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/identitystore_user https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateUser.html https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_UpdateUser.html

Would you like to implement a fix?

No

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.