data.google_spanner_database_iam_policy and data.google_bigquery_table_iam_policy should fail when there is no such database/table

[oprudkyi]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request.
• Please do not leave +1 or me too comments, they generate extra noise for issue followers and do not help prioritize the request.
• If you are interested in working on this issue or have submitted a pull request, please leave a comment.
• If an issue is assigned to the modular-magician user, it is either in the process of being autogenerated, or is planned to be autogenerated soon. If an issue is assigned to a user, that user is claiming responsibility for the issue. If an issue is assigned to hashibot, a community member has claimed the issue already.

Terraform Version

Terraform v1.6.4 on linux_amd64

• provider registry.terraform.io/hashicorp/google v5.7.0
• provider registry.terraform.io/hashicorp/google-beta v5.7.0

Affected Resource(s)

• google_spanner_database_iam_policy
• google_bigquery_table_iam_policy

Terraform Configuration Files

data "google_spanner_database_iam_policy" "spanner_database_data" {
  project  = "exist project"
  instance = "exist instance"
  database = "not-exists-db"
}

Debug Output

Panic Output

Expected Behavior

error - database not found

Actual Behavior

everything fine like db is exists

Steps to Reproduce

1. terraform plan

Important Factoids

since this is xy problem in reality I want to add permissions to different entities via google_spanner_database_iam_member current behavior - plan is successful but apply fails since resource not found I want to check if the resource exists on plan stage alternative solution can be dummy data.google_spanner_database just to validate existence

References

• 0000

[oprudkyi]

found workaround via postcondition , seems it distinguishes db without permissions and non exists db

data "google_spanner_database_iam_policy" "spanner_database_data" {
  database = var.database
  project  = var.project
  instance = var.instance

  lifecycle {
    postcondition {
      condition     = self.etag != null
      error_message = "Spanner database not found. Database : projects/${var.project}/instances/${var.instance}/databases/${var.database}, member : ${var.member}"
    }
  }
}

[github-actions[bot]]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.