Welly Siauw AWS
Welly Siauw AWS
as demonstrated when you try to inspect the resource using CCAPI, the attribute `update_method` is not included in the response: ``` aws cloudcontrol get-resource --type-name AWS::SSM::Document --identifier "configSchema" | jq...
I forgot to mention and address the other part of this issue, a.k.a where you trying to update the `content` attribute, which are not `writeOnlyProperties` and also not a `createOnlyProperties`....
@ryancausey , thanks for opening this issue. According to this [documentatopn](https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_UpdatePolicy.html): > You can't change these elements of a static policy: > Changing a policy from a static policy to...
@ryancausey , agreed that this didnt follow the expected semantics. Since AWSCC provider is build based of CloudFormation schema registry, the required changes must be implemented at the CloudFormation schema...
From my own debug (redacted): ``` 2024-02-16T21:09:19.270-0800 [DEBUG] provider.terraform-provider-awscc_v0.70.0_x5: HTTP Request Sent: http.request.body="{"ClientToken":"terraform-20240217050919270200000001","Identifier":"test","PatchDocument":"[{\"op\":\"remove\",\"path\":\"/Restrictions/AllowActions/0\"}]","TypeName":"AWS::Location::APIKey"}" ... ``` AWSCC attempting a patch operation : `{\"op\":\"remove\",\"path\":\"/Restrictions/AllowActions/0\"}` I am not sure if the patch operations...
I have high confidence that `terraform delete` will also fail because it requires [force delete attribute](https://docs.aws.amazon.com/location/latest/APIReference/API_DeleteKey.html), I suspect that this attribute is not being implemented either on AWSCC nor CCAPI
Confirmed my suspicion by looking at CloudTrail (redacted) ## For delete ``` { "eventVersion": "1.09", "userIdentity": { ... "invokedBy": "cloudformation.amazonaws.com" }, "eventTime": "2024-02-17T05:30:53Z", "eventSource": "geo.amazonaws.com", "eventName": "DeleteKey", "awsRegion": "us-east-1", "sourceIPAddress":...
behavior for the update handler is related to #1149
Summary of the issue: `LaunchTemplateData` is considered as writeOnlyProperties in the schema. ``` aws cloudformation describe-type --type RESOURCE --type-name AWS::EC2::LaunchTemplate | jq -r ".Schema" | jq ".writeOnlyProperties" [ "/properties/LaunchTemplateData", "/properties/VersionDescription",...