terraform-google-alloy-db
terraform-google-alloy-db copied to clipboard
GoogleCloudPlatform
fix: set cluster output to sensitive
Mark the cluster output as sensitive, as this causes errors in e.g. terragrunt when setting the cluster_initial_user:
│ Error: Output refers to sensitive values
│
│ on outputs.tf line 63:
│ 63: output "cluster" {
│
│ To reduce the risk of accidentally exporting sensitive data that was
│ intended to be only internal, Terraform requires that any root module
│ output containing sensitive data be explicitly marked as sensitive, to
│ confirm your intent.
│
│ If you do intend to export this data, annotate the output value as
│ sensitive by adding the following argument:
│ sensitive = true
Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).
View this failed invocation of the CLA check for more information.
For the most up to date status, view the checks section at the bottom of the pull request.
![google-cla[bot] avatar](https://avatars.githubusercontent.com/in/42202?v=4 "Published by a pub.dev verified publisher"){kind=small}
We’re also blocked by this issue and hope to proceed once the fix is merged
@roman-povoroznyk can you set it to sensitive in your code where you are calling module?
@imrannayer Sorry for the delayed reply, I've been away the past two weeks
That isn't possible for us, we are using the module directly via Terragrunt. The issue arises only when setting cluster_initial_user parameter
Hi @imrannayer
Looks like this output is intended for use as a wait for cluster creation? An option might be to either use a specific field, or remove the sensitive fields, or even squash to a bool, rather than return the entire resource.google_alloydb_cluster.default. That way it would no longer be marked as sensitive.
output "cluster" {
description = "Cluster created"
value = resource.google_alloydb_cluster.default
}
