I have an SSM parameter of type StringList holding AWS account IDs, like
12345678910, 12345678911, 12345678912, ... etc
This is held as an SSM parameter because the list is updated by other processes (I won't go into that process here as it's slightly irrelevant, except to say for each terraform run the list could be slightly different each time - therefore not held statically in the tf code)
I have a data source in my root module defined as follows:
data "aws_ssm_parameter" "account_list" {
name = "account_list"
}
Then populating a local like this:
accounts = [
data.aws_ssm_parameter.account_list.value
]
This validates, but doesn't work, because the data is fetched as a single string like:
"12345678910, 12345678911, 12345678912"
So what happens is there is only one value in the list. I have tried with
split(",",data.aws_ssm_parameter.account_list.value) but this only serves to give me and error relating to string is expected
What I really want is the local value to be dynamically populated like
accounts = [
"12345678910",
"12345678911",
"12345678912"
]
I'm obviously doing something wrong, and much googling has not led me to a solution.
Is this even possible? Should I not be using SSM parameter for this?
I have an SSM parameter of type StringList holding AWS account IDs, like
12345678910, 12345678911, 12345678912, ... etc
This is held as an SSM parameter because the list is updated by other processes (I won't go into that process here as it's slightly irrelevant, except to say for each terraform run the list could be slightly different each time - therefore not held statically in the tf code)
I have a data source in my root module defined as follows:
data "aws_ssm_parameter" "account_list" {
name = "account_list"
}
Then populating a local like this:
accounts = [
data.aws_ssm_parameter.account_list.value
]
This validates, but doesn't work, because the data is fetched as a single string like:
"12345678910, 12345678911, 12345678912"
So what happens is there is only one value in the list. I have tried with
split(",",data.aws_ssm_parameter.account_list.value) but this only serves to give me and error relating to string is expected
What I really want is the local value to be dynamically populated like
accounts = [
"12345678910",
"12345678911",
"12345678912"
]
I'm obviously doing something wrong, and much googling has not led me to a solution.
Is this even possible? Should I not be using SSM parameter for this?
Share Improve this question edited Nov 18, 2024 at 13:41 Rui Jarimba 18.3k11 gold badges64 silver badges98 bronze badges asked Nov 18, 2024 at 12:40 MolenpadMolenpad 1,0544 gold badges21 silver badges42 bronze badges 3 |1 Answer
Reset to default 0As the documentation notes,
The data source is currently following the behavior of the SSM API to return a string value, regardless of parameter type. For type StringList, we can use the built-in
split()function to get values in a list. Example:split(",", data.aws_ssm_parameter.subnets.value)
So you can use something like this to retrieve a list:
locals {
accounts = split(",", data.aws_ssm_parameter.account_list.value)
}
Side note: AWS account IDs are usually considered sensitive, so beware that these values will be stored in state in unencrypted, plain-text format.
split(",", tostring(data.aws_ssm_parameter.account_list.value))? – Rui Jarimba Commented Nov 18, 2024 at 13:45stringtype as you implied with "string is expected", then you cannot use your desiredlist(string)and will have to approach this differently. Please update the question with usage information. @ChrisBecke comment also very relevant. – Matthew Schuchard Commented Nov 18, 2024 at 13:56