Terraform-provider-aws: ECS Service can't update desired replicas when Blue Green deployment is enabled
Community Note
- Please vote on this issue by adding a 馃憤 reaction to the original issue to help the community and maintainers prioritize this request
- Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
- If you are interested in working on this issue or have submitted a pull request, please leave a comment
Terraform Version
Terraform v0.12.26
- provider.aws v2.65.0
- provider.template v2.1.2
Affected Resource(s)
- resource aws_ecs_service
Terraform Configuration Files
- ECS with bluegreen deployment example in Terraform docs.
- or you can use this module which provisions ECS Service, CodeDeploy project and ALB (due to aws api eventual consistency you may have to retry on failure)
Debug Output
Expected Behavior
Should be able to update ECS Service desired_replicas even when deployment_controller.type is set to CODE_DEPLOY
Actual Behavior
- API call fails with the following message:
Error: Error updating ECS Service (arn:aws:ecs:us-east-1:708286315144:service/test/policies-service-v2): InvalidParameterException: Unable to update network parameters on services with a CODE_DEPLOY deployment controller. Use AWS CodeDeploy to trigger a new deployment.
Steps to Reproduce
- Create new ECS Service with
deployment_controller.type = CODE_DEPLOY - Change Service
desired_countand attempt to apply changes again
Important Factoids
- Despite having no changes being made to
network_configurationproperty, TF included it in the payload toupdate-servicerequest
2020/06/08 04:05:32 [DEBUG] module.ecs.module.policies_service-v2.aws_ecs_service.service: applying the planned Update change
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: 2020/06/08 04:05:32 [DEBUG] Updating ECS Service (arn:aws:ecs:us-east-1:708286315144:service/test/policies-service-v2): {
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: Cluster: "arn:aws:ecs:us-east-1:708286315144:cluster/test",
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: DesiredCount: 0,
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: ForceNewDeployment: false,
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: NetworkConfiguration: {
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: AwsvpcConfiguration: {
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: AssignPublicIp: "DISABLED",
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: SecurityGroups: ["sg-02848434002f782f9"],
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: Subnets: ["subnet-014f47760b389f8db","subnet-03cdd43d8265511be","subnet-0f67bb732709250c6"]
2020-06-08T04:05:32.935Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: }
2020-06-08T04:05:32.936Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: },
2020-06-08T04:05:32.936Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: Service: "arn:aws:ecs:us-east-1:708286315144:service/test/policies-service-v2"
2020-06-08T04:05:32.936Z [DEBUG] plugin.terraform-provider-aws_v2.65.0_x4: }
- TF Plan doesn't detect any change to
network_configuration - This problem isn't only triggered by changes to
desired_countand can by reproduced by making changes totask_placement_constaintstoo
References
For services using the blue/green (CODE_DEPLOY ) deployment controller, only the desired count, deployment configuration, task placement constraints and strategies, and health check grace period can be updated using this API. If the network configuration, platform version, or task definition need to be updated, a new AWS CodeDeploy deployment should be created. For more information, see CreateDeployment in the AWS CodeDeploy API Reference .
MehdiZonjy
All 4 comments
I encountered the same problem. Including network_configuration as ignore_changes doesn't work - network_configuration change doesn't appear in the diff view, but it is included in the API call request when apply.
Looking into the debug log, I found the order of the subnets in the update request is different from the value of the current state.
networkConfiguration of current state (ecs/DescribeServices)
{"awsvpcConfiguration":{"assignPublicIp":"ENABLED","securityGroups":["sg-09b7377097c0c97fd"],"subnets":["subnet-012c6b3edd7abd4d9","subnet-0f5c632fc7e9db0ab","subnet-041643c250580e1dc"]}}
networkConfiguration of update request (ecs/UpdateService)
{"awsvpcConfiguration":{"assignPublicIp":"ENABLED","securityGroups":["sg-09b7377097c0c97fd"],"subnets":["subnet-041643c250580e1dc","subnet-012c6b3edd7abd4d9","subnet-0f5c632fc7e9db0ab"]}}
The attribute type of subnets is TypeSet, so the two values should be the same.
However, it seems d.hasChange("network_configuration") returns true somehow since the request includes the networkConfiguration attribute.
I'm not familiar with the codebase so I might look at unrelated place though.
jooohn
on 30 Jun 2020
I'm having the same issue, trying to add tags to a service.
In the plan only appears the tags being changed.
During the apply I get this error: "InvalidParameterException: Unable to update network parameters on services with a CODE_DEPLOY deployment controller. Use AWS CodeDeploy to trigger a new deployment."
Including network_configuration as ignore_changes is not helping.
marcovergueira
on 23 Jul 2020
Having the same issues while trying to update the desired count of tasks, any updates on this?
wmaroy
on 6 Nov 2020
Having the same issue when trying to update the platform version.
karan9nov
on 25 Nov 2020
Related issues
joelittlejohn
路
3Comments
dvishniakov
路
3Comments
hashibot
路
3Comments
hashibot
路
3Comments
modax
路
3Comments
Most helpful comment
Having the same issues while trying to update the desired count of tasks, any updates on this?