如何在“Terraform”中引用aws\u cognito\u用户\u池id?
我为cognito客户端提供了以下terraform配置:如何在“Terraform”中引用aws\u cognito\u用户\u池id?,terraform,Terraform,我为cognito客户端提供了以下terraform配置: data "aws_cognito_user_pools" "re_user_pool" { name = "${var.cognito_user_pool_name}" } resource "aws_cognito_user_pool_client" "app_client" { name = "re-app-client" user_pool_id = data.aws_cognito_user_pools.re_
data "aws_cognito_user_pools" "re_user_pool" {
name = "${var.cognito_user_pool_name}"
}
resource "aws_cognito_user_pool_client" "app_client" {
name = "re-app-client"
user_pool_id = data.aws_cognito_user_pools.re_user_pool.id
depends_on = [data.aws_cognito_user_pools.re_user_pool]
explicit_auth_flows = ["USER_PASSWORD_AUTH"]
prevent_user_existence_errors = "ENABLED"
allowed_oauth_flows_user_pool_client = true
allowed_oauth_flows = ["code"]
allowed_oauth_scopes = ["phone", "openid", "email", "profile", "aws.cognito.signin.user.admin"]
supported_identity_providers = ["COGNITO", "Google"]
callback_urls = ["https://scnothzsf0.execute-api.ap-southeast-2.amazonaws.com/staging/signup"]
}
我引用了AWS上已经存在的cognito用户池。当它在aws\u cognito\u user\u pool\u client
中使用用户池id时,在user\u pool\u id=data.aws\u cognito\u user\u pool.id
行上发生错误。
我将得到错误
Error: Error creating Cognito User Pool Client: InvalidParameterException: 1 validation error detected: Value 're-user' at 'userPoolId' failed to satisfy constraint: Member must satisfy regular expression pattern: [\w-]+_[0-9a-zA-Z]+
on infra/cognito.tf line 5, in resource "aws_cognito_user_pool_client" "app_client":
5: resource "aws_cognito_user_pool_client" "app_client" {`
ID的格式似乎不正确。我已阅读此文档https://www.terraform.io/docs/providers/aws/d/cognito_user_pools.html
并且它有一个reference属性ids-cognito用户池id的列表。
。我想知道为什么它会给出一个用户池id的列表。我如何引用这个id
我还尝试将其引用为user\u pool\u id=data.aws\u cognito\u user\u pool.re\u user\u pool.ids[0]
,但出现错误:
Error: Invalid index
on infra/cognito.tf line 8, in resource "aws_cognito_user_pool_client" "app_client":
8: user_pool_id = data.aws_cognito_user_pools.re_user_pool.ids[0]
This value does not have any indices.
上面提到的re\u user\u pool
定义如下:
resource "aws_cognito_user_pool" "re_user_pool" {
name = "re-user"
}
我在处理同一个问题时遇到了你的问题。我知道这个问题已经问了好几个月了,但我还是要为其他任何像我一样最终来到这里的人补充一个答案 首先,解决方案是通过
tolist
功能将ids
值从set
转换为list
,然后像访问任何地形列表一样访问它
注意事项:在我的例子中,我已确保给定名称只有一个用户池,但如果不遵循此约定,则可以获得多个用户池。这一解决办法不会完全解决这种情况,但也许它仍将指向正确的方向
示例代码:
data "aws_cognito_user_pools" "test" {
name = "a_name"
}
output "test" {
value = "${tolist(data.aws_cognito_user_pools.test.ids)[0]"
}
第二,我是如何做到的:
我添加了一个输出
块,这样我就可以看到我正在使用的东西,并且我注释掉了terraform文件中有问题的行,这样我就可以成功地执行terraform apply
。接下来,我运行了terraform apply
,然后是terraform输出--json
(注意:apply
必须成功才能使output
具有最新的值)
临时输出块示例:
output "test" {
value = "${data.aws_cognito_user_pools.test}" // output top-level object for debugging
}
相关地形应用
输出:
test = {
"arns" = [
"<redacted>",
]
"id" = "a_name"
"ids" = [
"us-east-1_<redacted>",
]
"name" = "a_name"
}
"test": {
"sensitive": false,
"type": [
"object",
{
"arns": [
"set",
"string"
],
"id": "string",
"ids": [
"set",
"string"
],
"name": "string"
}
],
"value": {
"arns": [
"<redacted>"
],
"id": "a_name",
"ids": [
"us-east-1_<redacted>"
],
"name": "a_name"
}
如您所见,ids
部分是类型为string
的set
。我决定尝试将ids
转换为一个列表,看看是否可以访问0
索引,结果成功了。我觉得这可能是一个terraform错误,但我还没有提出问题。关于第一个错误:你能发布aws\u cognito\u user\u pool.re\u user\u pool
数据源值吗?关于第二个:最好在访问某些索引之前检查列表的长度user\u pool\u id=length(data.aws\u cognito\u user\u pool.re\u user\u pool.id)>0?data.aws\u cognito\u user\u pool.re\u user\u pool.ids[0]:
我添加了长度代码,得到了相同的错误。这意味着长度大于0,但无法通过索引访问。如果您遇到相同的错误(如问题中所述),我会说您的aws\u cognito\u user\u pool.re\u user\u pool
数据源为空。