Creating an integration of type AmazonSecurityHub works, it gets created properly and you can reach the integration using the resource's api_key attribute. What doesn't work is supplying the extra parameters it needs or updating it in any way.
For example, change the suppress_notifications to true and you get this error from terraform apply:
Error: Error occurred with Status code: 422, Message: Request body is not processable. Please check the errors., Took: 0.002000, RequestId: 188eef21-9ac6-4d36-9954-7c6151596328, Error Detail: map[region:must not be null securityHubIamRoleArn:must not be null]
In order to support AmazonSecurityHub type integrations, the resource needs to add at least the region and securityHubIamRoleArn attributes from the API
Terraform Version
Affected Resource(s)
Terraform Configuration Files
Debug Output
https://gist.github.com/fcoelho/39aa797507f61ad08abacc2a19162599
Creating an integration of type
AmazonSecurityHub
works, it gets created properly and you can reach the integration using the resource'sapi_key
attribute. What doesn't work is supplying the extra parameters it needs or updating it in any way.For example, change the
suppress_notifications
totrue
and you get this error fromterraform apply
:In order to support AmazonSecurityHub type integrations, the resource needs to add at least the
region
andsecurityHubIamRoleArn
attributes from the API