[Bug]: Wrong ARN for AWS Amplify Webhooks #39407
Labels
bug
Addresses a defect in current functionality.
service/amplify
Issues and PRs that pertain to the amplify service.
Terraform Core Version
1.9.0
AWS Provider Version
5.67.0
Affected Resource(s)
aws_amplify_webhook
Expected Behavior
The output of
aws_amplify_webhook.example_webhook.arn
should bearn:aws:amplify:<region>:<account-id>:webhooks/<webhook-id>
.Actual Behavior
The actual output of
aws_amplify_webhook.example_webhook.arn
isarn:aws:amplify:<region>:<account-id>:apps/<app-id>/webhooks/<webhook-id>
Relevant Error/Panic Output Snippet
No response
Terraform Configuration Files
terraform {
required_providers {
aws = {
source = "hashicorp/aws"
version = "
> 5.0"> 1.9.0"}
}
required_version = "
}
Steps to Reproduce
terraform apply
terraform state show aws_amplify_webhook.master
Debug Output
No response
Panic Output
No response
Important Factoids
I need to add an amplify:GetWebhook IAM permission for this specific webhook, but I was getting the error:
and I noticed the discrepancy in that Terraform outputs the ARN as
arn:aws:amplify:<region>:<account-id>:apps/<app-id>/webhooks/<webhook-id>
when AWS expectsarn:aws:amplify:<region>:<account-id>:webhooks/<webhook-id>
(without theapps/<app-id>
part).When I fixed this manually in the IAM console, I no longer saw the 403 error.
References
No response
Would you like to implement a fix?
None
The text was updated successfully, but these errors were encountered: