Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

aws_route53_record allow_overwrite deprecation will break ability to update SOA #7846

Closed
osterman opened this issue Mar 7, 2019 · 5 comments · Fixed by #8274
Closed

aws_route53_record allow_overwrite deprecation will break ability to update SOA #7846

osterman opened this issue Mar 7, 2019 · 5 comments · Fixed by #8274
Labels
service/route53 Issues and PRs that pertain to the route53 service.
Milestone
v2.6.0

Comments

@osterman
Copy link

osterman commented Mar 7, 2019
edited
Loading

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Terraform Version

0.11.12

Affected Resource(s)

2.0.0+

  • aws_route53_record

Terraform Configuration Files

Our best practice is to set a low SOA on service discovery zones. The default SOA of 900 seconds leads to a default negative cache TTL which messes with service discovery when services query for the DNS record before the records have been updated/created. Basically, when this happens DNS lookups will fail for 15 minutes =); we change it to 30 seconds, so negative DNS queries are refreshed more quickly.

Since AWS creates this SOA record automatically, the only way to accomplish this in a single terraform apply is to support the allow_overwrite flag. Using terraform import in this scenario is a poor UX and something which we cannot mitigate; it's a consequence of how AWS creates the zone.

resource "aws_route53_record" "soa" {
  allow_overwrite = true
  zone_id         = "XXXXX"
  name            = "myzone
  type            = "SOA"
  ttl             = "30"

  records = [
   ...
  ]
}

Expected Behavior

I understand why this behavior is getting deprecated and it makes sense for non-automatically generated DNS record sets. The SOA record, however, is an exception. It's created automatically by AWS.

Not sure the best course of action. Terraform should maybe import the SOA automatically since it gets generated by AWS, not by terraform. There should be a way to set the SOA without getting the deprecation warning because this is not a user problem. There's no way we can mitigate this without the allow_overwrite flag.

Actual Behavior

Warning: module.dns.aws_route53_record.soa: "allow_overwrite": [DEPRECATED] The next major version of the Terraform AWS Provider will require importing existing records

Steps to Reproduce

  1. Create a new aws_route53_zone
  2. Attempt to update the SOA via the aws_route53_record within the same terraform apply
  3. terraform apply

References
This was referenced Mar 7, 2019
Merged
Merged
@marsadle marsadle mentioned this issue Mar 12, 2019
Closed
@osterman osterman mentioned this issue Apr 9, 2019
Closed
@osterman
Copy link
Author

osterman commented Apr 9, 2019

This broke in #7734

@osterman osterman mentioned this issue Apr 9, 2019
Merged
@bflad bflad added the service/route53 Issues and PRs that pertain to the route53 service. label Apr 9, 2019
This was referenced Apr 9, 2019
Closed
Open
bflad added a commit that referenced this issue Apr 10, 2019
@bflad
resource/aws_route53_record: Remove deprecation from `allow_overwrite…
d624a91 
…` argument

Reference: #7846

Route53 Record `UPSERT` on creation does have some minor valid use cases. We will keep this argument for now while discouraging its usage in the documentation.

Output from acceptance testing:

```
--- PASS: TestAccAWSRoute53Record_allowOverwrite (149.81s)
```
@bflad bflad mentioned this issue Apr 10, 2019
Merged
@bflad
Copy link
Contributor

bflad commented Apr 10, 2019

Pull request submitted to remove the deprecation: #8274

We will still discourage its usage as it can lead to conflicting management of infrastructure, but that choice will be up to the operator.

@bflad bflad added this to the v2.6.0 milestone Apr 10, 2019
@bflad
Copy link
Contributor

bflad commented Apr 10, 2019

The deprecation has been removed, which will release with version 2.6.0 of the Terraform AWS Provider later today. 👍

@osterman
Copy link
Author

Thanks @bflad ! Very much appreciated.

@hectcastro hectcastro mentioned this issue Apr 26, 2019
Merged
@XaF XaF mentioned this issue Oct 11, 2019
Closed
@mburtless mburtless mentioned this issue Nov 26, 2019
Closed
@ghost
Copy link

ghost commented Mar 30, 2020

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

@ghost ghost locked and limited conversation to collaborators Mar 30, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
service/route53 Issues and PRs that pertain to the route53 service.
Projects
None yet
Milestone
v2.6.0
2 participants
@osterman @bflad