You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Terraform v1.6.2
on linux_amd64
+ provider registry.terraform.io/opentelekomcloud/opentelekomcloud v1.36.8
Affected Resource(s)
opentelekomcloud_identity_user_v3
Terraform Configuration Files
data"opentelekomcloud_identity_user_v3""user" {
name ="my-user-name"
}
Debug Output/Panic Output
Trying to access the data.opentelekomcloud_identity_user_v3.user.mfa_device will always be an empty string, even if the user has their MFA device set up.
Steps to Reproduce
Set up a virtual MFA for the user via their Console login
Terraform plan and try to access the mfa_device attribute
Expected Behavior
The data attribute should be set to a valid serial number like
iam:(domain-id):mfa/(iam-user-id)
Actual Behavior
The data resource will always return an empty string ''.
Important Factoids
According to the providers code, this will happen when the API returns a 404:
[IAM]: user data source MFA fix
Summary of the Pull Request
Fix MFA API endpoint.
PR Checklist
Refers to: #2506
Tests added/passed.
Documentation updated.
Schema updated.
Release notes added.
Acceptance Steps Performed
Reviewed-by: Anton Sidelnikov
Terraform provider version
Affected Resource(s)
Terraform Configuration Files
Debug Output/Panic Output
Trying to access the
data.opentelekomcloud_identity_user_v3.user.mfa_device
will always be an empty string, even if the user has their MFA device set up.Steps to Reproduce
mfa_device
attributeExpected Behavior
The data attribute should be set to a valid serial number like
iam:(domain-id):mfa/(iam-user-id)
Actual Behavior
''
.Important Factoids
According to the providers code, this will happen when the API returns a 404:
terraform-provider-opentelekomcloud/opentelekomcloud/services/iam/data_source_opentelekomcloud_identity_user_v3.go
Lines 89 to 111 in 433d703
So, I checked the underlying API, where at least to docs claim that the call goes to
/v3.0/OS-MFA/users/{user_id}/virtual-mfa-device
:https://github.com/opentelekomcloud/gophertelekomcloud/blob/devel/openstack/identity/v3.0/security/GetUserMfaDevice.go#L9
But if I trace the
terraform plan
run withOS_DEBUG
turned on, I can see that the provider is trying to reach thev3
endpoint (user id redacted):Is this something that can be configured per resource or something that needs to be fixed by the Terraform provider itself?
Let me know if I can supply more logs or debug output.
The text was updated successfully, but these errors were encountered: