FlorinAndrei
commented
1 month ago I wonder if it's a provider issue.
https://github.com/hashicorp/terraform-provider-aws/issues/28433
But I have not modified the domain_endpoint_options var.
Closed FlorinAndrei closed 1 week ago
FlorinAndrei
commented
1 month ago I wonder if it's a provider issue.
https://github.com/hashicorp/terraform-provider-aws/issues/28433
But I have not modified the domain_endpoint_options var.
github-actions[bot]
commented
3 weeks ago This issue has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this issue will be closed in 10 days
github-actions[bot]
commented
1 week ago This issue was automatically closed because of stale in 10 days
I am using your module to create an OpenSearch cluster in AWS. I am actually invoking it from Terragrunt (as opposed to directly with OpenTofu).
Here's a gist with all the relevant code:
https://gist.github.com/FlorinAndrei/ab8a208b0444aabc188f3d47924f0935
I got this error when trying to create the cluster:
I checked the roles, and I noticed that your module had created this role in IAM:
AWSServiceRoleForAmazonOpenSearchService. However, that was not enough to quench the error - it created the role but failed to create the cluster.I saw in the complete example in this repo that you must run this command first:
However, that command creates a role called
AWSServiceRoleForAmazonElasticsearchService. But I am not creating an ElasticSearch cluster - I am creating an OpenSearch cluster.The Terraform documentation clearly states:
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/opensearch_domain
There is a contradiction somewhere. Your module creates the OpenSearch role, but fails to create the OpenSearch cluster and complains about the role. It only succeeds to create the cluster if I manually create an ElasticSearch role.
Where is the conflict / mistake / etc?