providers/google: Fix google_project IAM bug
This changes removes read of the deprecated `policy_data` attr in the `google_project` resource. 0.8.5 introduced new behavior that incorrectly read the `policy_data` field during the read lifecycle event. This caused Terraform to assume it owned not just policy defined in the data source, but everything that was associated with the project. Migrating from 0.8.4 to 0.8.5, this would cause the config (partial) to be compared to the state (complete, as it was read from the API) and assume some policies had been explicitly deleted. Terraform would then delete them. Fixes #11556
This commit is contained in:
parent
ac805d17f5
commit
7d5c405c96
|
@ -196,20 +196,6 @@ func resourceGoogleProjectRead(d *schema.ResourceData, meta interface{}) error {
|
|||
d.Set("org_id", p.Parent.Id)
|
||||
}
|
||||
|
||||
// Read the IAM policy
|
||||
pol, err := getProjectIamPolicy(pid, config)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
polBytes, err := json.Marshal(pol)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
|
||||
d.Set("policy_etag", pol.Etag)
|
||||
d.Set("policy_data", string(polBytes))
|
||||
|
||||
return nil
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue