Giters

terraform-google-modules / terraform-google-iam

Manages multiple IAM roles for resources on Google Cloud

Home Page:https://registry.terraform.io/modules/terraform-google-modules/iam/google

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

etags keep changing

esn89 opened this issue · comments

commented

I am using:
https://github.com/terraform-google-modules/terraform-google-iam.git//modules/projects_iam?ref=v5.1.0
Just doing a TF 14 -> TF 15 upgrade.

On TF 14, it says that everything is in sync, however, on TF15 I am getting many of these:

Terraform detected the following changes made outside of Terraform since the
Note: Objects have changed outside of Terraform

Terraform detected the following changes made outside of Terraform since the
last "terraform apply":
relevant attributes using ignore_changes, the following plan may include

 # module.gke-gcr-iam.google_project_iam_member.project_iam_additive["myproject--roles/dataflow.admin--serviceAccount:tf-gke-mycluster-lmay@mycurrentproject.iam.gserviceaccount.com"] has been changed
  ~ resource "google_project_iam_member" "project_iam_additive" {
      ~ etag    = "BwXDG76answ=" -> "BwXDRLwaWr4="
        id      = "myproject/roles/dataflow.admin/serviceaccount:tf-gke-mycluster-lmay@mycurrentproject.iam.gserviceaccount.com"
        # (3 unchanged attributes hidden)
    }
  # module.gke-gcr-iam.google_project_iam_member.project_iam_additive["gcp-container-registry--roles/storage.admin--serviceAccount:tf-gke-mycluster-lmay@mycurrentproject.iam.gserviceaccount.com"] has been changed
  ~ resource "google_project_iam_member" "project_iam_additive" {
      ~ etag    = "BwXBv8IKxeM=" -> "BwXDS3QXBcM="
        id      = "gcp-container-registry/roles/storage.admin/serviceaccount:tf-gke-mycluster-lmay@mycurrentproject.iam.gserviceaccount.com"
        # (3 unchanged attributes hidden)
    }
 .....
 Unless you have made equivalent changes to your configuration, or ignored the
relevant attributes using ignore_changes, the following plan may include
actions to undo or respond to these changes.

────────────────────────────────────────────────────────

No changes. Your infrastructure matches the configuration.

Can someone tell me why this is happening and what is going on behind the scenes with these changes? I want to know how safe it is to apply these.

commented

This looks like a provider bug of some sort, please open a bug there: https://github.com/hashicorp/terraform-provider-google/issues