Created
August 16, 2019 15:26
-
-
Save ryu1kn/87986c18a5908afc06d9d816d85bfba6 to your computer and use it in GitHub Desktop.
Debug log: Terraform google provider failing to apply IAM policy when user email address has uppercase characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:53 [DEBUG] Google API Request Details: | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ---[ REQUEST ]--------------------------------------- | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: POST /v1/projects/my-project:getIamPolicy?alt=json&prettyPrint=false HTTP/1.1 | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Host: cloudresourcemanager.googleapis.com | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: User-Agent: google-api-go-client/0.5 Terraform/0.12.6 (+https://www.terraform.io) terraform-provider-google/2.13.0 | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Length: 3 | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Type: application/json | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Accept-Encoding: gzip | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: {} | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:53.531+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ----------------------------------------------------- | |
2019-08-17T00:50:55.193+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:55 [DEBUG] Google API Response Details: | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ---[ RESPONSE ]-------------------------------------- | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: HTTP/2.0 200 OK | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Alt-Svc: quic=":443"; ma=2592000; v="46,43,39" | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Cache-Control: private | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Type: application/json; charset=UTF-8 | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Date: Fri, 16 Aug 2019 14:50:54 GMT | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Server: ESF | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Server-Timing: gfet4t7; dur=1328 | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: Origin | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: X-Origin | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: Referer | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Content-Type-Options: nosniff | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Frame-Options: SAMEORIGIN | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Xss-Protection: 0 | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "version": 1, | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "etag": "BwWQPPqvXVw=", | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "bindings": [ | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "role": "roles/owner", | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "members": [ | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "user:Foo.Bar.12@gmail.com" | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ] | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: }, | |
... | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ] | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: } | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ----------------------------------------------------- | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:55 [DEBUG]: Retrieved policy for project "my-project": &{AuditConfigs:[] Bindings:[0xc0007ba1e0 0xc0007ba240 0xc0007ba300 0xc0007ba3c0 0xc0007ba420 0xc0007ba480 0xc0007ba4e0] Etag:BwWQPPqvXVw= Version:1 ServerResponse:{HTTPStatusCode:200 Header:map[Alt-Svc:[quic=":443"; ma=2592000; v="46,43,39"] Cache-Control:[private] Content-Type:[application/json; charset=UTF-8] Date:[Fri, 16 Aug 2019 14:50:54 GMT] Server:[ESF] Server-Timing:[gfet4t7; dur=1328] Vary:[Origin X-Origin Referer] X-Content-Type-Options:[nosniff] X-Frame-Options:[SAMEORIGIN] X-Xss-Protection:[0]]} ForceSendFields:[] NullFields:[]} | |
2019-08-17T00:50:55.194+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:55 [DEBUG]: Setting policy for project "my-project" to &{AuditConfigs:[] Bindings:[0xc0007ba600 0xc0007ba6c0 0xc0007ba720 0xc0007ba780 0xc0007ba7e0 0xc0007ba840 0xc0007ba8a0 0xc0007ba900] Etag:BwWQPPqvXVw= Version:1 ServerResponse:{HTTPStatusCode:200 Header:map[Alt-Svc:[quic=":443"; ma=2592000; v="46,43,39"] Cache-Control:[private] Content-Type:[application/json; charset=UTF-8] Date:[Fri, 16 Aug 2019 14:50:54 GMT] Server:[ESF] Server-Timing:[gfet4t7; dur=1328] Vary:[Origin X-Origin Referer] X-Content-Type-Options:[nosniff] X-Frame-Options:[SAMEORIGIN] X-Xss-Protection:[0]]} ForceSendFields:[] NullFields:[]} | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:55 [DEBUG] Google API Request Details: | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ---[ REQUEST ]--------------------------------------- | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: POST /v1/projects/my-project:setIamPolicy?alt=json&prettyPrint=false HTTP/1.1 | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Host: cloudresourcemanager.googleapis.com | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: User-Agent: google-api-go-client/0.5 Terraform/0.12.6 (+https://www.terraform.io) terraform-provider-google/2.13.0 | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Length: 1121 | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Type: application/json | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Accept-Encoding: gzip | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "policy": { | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "bindings": [ | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "members": [ | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "serviceAccount:foobar@my-project.iam.gserviceaccount.com" | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ], | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "role": "roles/storage.admin" | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: }, | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "members": [ | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "user:foo.bar.12@gmail.com" | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ], | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "role": "roles/owner" | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: }, | |
... | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ], | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "etag": "BwWQPPqvXVw=", | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "version": 1 | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: }, | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "updateMask": "bindings,etag,auditConfigs" | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: } | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:55.195+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ----------------------------------------------------- | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:56 [DEBUG] Google API Response Details: | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ---[ RESPONSE ]-------------------------------------- | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: HTTP/2.0 400 Bad Request | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Alt-Svc: quic=":443"; ma=2592000; v="46,43,39" | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Cache-Control: private | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Content-Type: application/json; charset=UTF-8 | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Date: Fri, 16 Aug 2019 14:50:55 GMT | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Server: ESF | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Server-Timing: gfet4t7; dur=679 | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: Origin | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: X-Origin | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: Vary: Referer | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Content-Type-Options: nosniff | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Frame-Options: SAMEORIGIN | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: X-Xss-Protection: 0 | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "error": { | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "code": 400, | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "message": "Request contains an invalid argument.", | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "errors": [ | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: { | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "message": "Request contains an invalid argument.", | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "domain": "global", | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "reason": "badRequest" | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: } | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ], | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: "status": "INVALID_ARGUMENT" | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: } | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: } | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: ----------------------------------------------------- | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:56 [DEBUG] Unlocking "iam-project-my-project" | |
2019-08-17T00:50:56.115+1000 [DEBUG] plugin.terraform-provider-google_v2.13.0_x4: 2019/08/17 00:50:56 [DEBUG] Unlocked "iam-project-my-project" | |
2019/08/17 00:50:56 [DEBUG] google_project_iam_member.storage_admin_foobar: apply errored, but we're indicating that via the Error pointer rather than returning it: Batch "iam-project-my-project modifyIamPolicy" for request "Create IAM Members roles/storage.admin serviceAccount:foobar@my-project.iam.gserviceaccount.com for \"project \\\"my-project\\\"\"" returned error: Error applying IAM policy for project "my-project": Error setting IAM policy for project "my-project": googleapi: Error 400: Request contains an invalid argument., badRequest | |
2019/08/17 00:50:56 [ERROR] <root>: eval: *terraform.EvalSequence, err: Batch "iam-project-my-project modifyIamPolicy" for request "Create IAM Members roles/storage.admin serviceAccount:foobar@my-project.iam.gserviceaccount.com for \"project \\\"my-project\\\"\"" returned error: Error applying IAM policy for project "my-project": Error setting IAM policy for project "my-project": googleapi: Error 400: Request contains an invalid argument., badRequest | |
2019/08/17 00:50:56 [TRACE] [walkApply] Exiting eval tree: google_project_iam_member.storage_admin_foobar | |
2019/08/17 00:50:56 [TRACE] vertex "google_project_iam_member.storage_admin_foobar": visit complete | |
2019/08/17 00:50:56 [TRACE] dag/walk: upstream of "meta.count-boundary (EachMode fixup)" errored, so skipping | |
2019/08/17 00:50:56 [TRACE] dag/walk: upstream of "provider.google (close)" errored, so skipping | |
Error: Batch "iam-project-my-project modifyIamPolicy" for request "Create IAM Members roles/storage.admin serviceAccount:foobar@my-project.iam.gserviceaccount.com for \"project \\\"my-project\\\"\"" returned error: Error applying IAM policy for project "my-project": Error setting IAM policy for project "my-project": googleapi: Error 400: Request contains an invalid argument., badRequest | |
on main.tf line 15, in resource "google_project_iam_member" "storage_admin_foobar": | |
15: resource "google_project_iam_member" "storage_admin_foobar" { | |
2019-08-17T00:50:56.127+1000 [DEBUG] plugin: plugin process exited: path=/Users/anyone/projects/my-project/.terraform/plugins/darwin_amd64/terraform-provider-google_v2.13.0_x4 pid=17476 | |
2019-08-17T00:50:56.127+1000 [DEBUG] plugin: plugin exited |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment