AWS API Gateway VPC Link timeout before AVAILABILITY is completed. #10405
Comments
ghost
added
the
service/apigateway
github-actions
bot
added
the
needs-triage
|
My guess will be to provide a resource "aws_api_gateway_vpc_link" "main" {
name = "${var.application}"
description = "Provides access to ${var.application}"
target_arns = ["${aws_lb.svc_nlb.arn}"]
timeouts {
create = "20m"
delete = "20m"
}
}Currently, this block is not available. Error: Unsupported block type
on path_to_tf_ptoject/nlb.tf line 67, in resource "aws_api_gateway_vpc_link" "main":
67: timeouts {
Blocks of type "timeouts" are not expected here. |
|
What is the status of this? It seems like it's not moved since 2019? |
|
Got the same problem, how can we do a timeout here? |
|
@philippevidal80 Hi how were you able to cope with this? Since Terraform still doesn't have a timeout attribute for |
|
I'm also hitting this issue with Terraform 0.12.16 and can't find a way around it. At this point I'm going to have to call a bash script and set it up with the AWS CLI. |
|
Hi, same with Terraform 012.24 - aws provider 2.60.0 |
|
Hi, got this same issue, and I add sleep command as null resource: Sleep works properly but after 8 min error still occur. |
|
I know there is a PR out there to allow the timeouts section to be added, but that to be seems to be best left for circumstances when the time is outside normal expectations generally due to something that can't be predicted. For example, a DynamoDB table that might take a long time to update (say adding seondary indices) because its got a lot of rows. I think the better solution would just be to update the default timeout if it's expected under normal circumstances to take longer than 8 min. |
|
Hi folks 👋 The maintainers typically agree with @richardgavel on this topic, where customizable timeouts should only provided in situations where there is a scalable factor involved. Updating the existing deletion timeout to be 20 or 30 minutes (having confirmation from the API Gateway service team on the longest expected time for the operation) feels like a more appropriate solution in this case. |
bflad
added
bug
|
@bflad To clarify, the timeout in question is not a deletion timeout. It's the wait for the status to go from pending to available: https://github.com/terraform-providers/terraform-provider-aws/blob/master/aws/resource_aws_api_gateway_vpc_link.go#L71 |
|
The fix for this, to increase the timeouts, has been merged and will release with version 3.3.0 of the Terraform AWS Provider, shortly. 👍 |
|
This has been released in version 3.3.0 of the Terraform AWS provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template for triage. Thanks! |
|
I've just upgraded to AWS provider 3.4.0 and still experiencing this issue: Although I'm not very familiar with Go code, If I look at the related PR merged to solve this issue, I only see an update of the https://github.com/terraform-providers/terraform-provider-aws/pull/10407/files but not for any other actions. Have these been forgotten? |
|
Hi @gijzelaerr , Your issue is not linked to the "too short" timeout problem, it's just the normal behavior when your VPC link creation failed. I suggest to check the related error message in Cloudtrail for more details on your creation issue ;-) |
|
Thank you for your answer. It might not be related but just to clarify; the load balancer (also created by TF) is not ready yet, I can see it is still provisioning in the AWS console. If I wait a couple of minutes and run the same TF script again, the run completes successfully. So it is the VPC link being created too quickly while the load balancer is not ready yet. |
|
Humm... probably just a "missing dependency" issue. Try to manually add dependency if it's not working for you. |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks! |
ghost
locked and limited conversation to collaborators
Community Note
Terraform Version
Affected Resource(s)
Terraform Configuration Files
Debug Output
https://gist.github.com/philippevidal80/435a44e73134ae4a3db7a36e3da9cce9
Panic Output
N.A
Expected Behavior
Actual Behavior
The
aws_api_gateway_vpc_linkresource should wait long enough for AVAILABILITY to complete.In fact, it can last more than 8 minutes - which seems to be a hardcoded value (https://github.com/terraform-providers/terraform-provider-aws/blob/master/aws/resource_aws_api_gateway_vpc_link.go#L66) - for AWS VPC Link to be up and running.
In the case where 8 minutes are not enough, Terraform state won't be aware of this resource although it is creating and surely already created.
Then, next
planandapplyphases will have following errors:Because, the resource is already created (from the first apply phase).
And we can see at this point in AWS Web Console the right AWS VPC Link and the one that failed (because NLB already used by the first one).
Steps to Reproduce
Simply create a
aws_api_gateway_vpc_linkin the same Terraform project of a NLB load balancer.Sometimes it will take more than 8 minutes - which seems to be a hardcoded value (https://github.com/terraform-providers/terraform-provider-aws/blob/master/aws/resource_aws_api_gateway_vpc_link.go#L66) - and Terraform returns error mentionned in Debug Output.
Important Factoids
N.A
References
#10407
The text was updated successfully, but these errors were encountered: