It is not possible to automatically add cluster ARN to cluster policy resources if additional resources are present

[cowmas-main]

Currently, when defining the cluster policy, the module supports specifying either the MSK cluster ARN or a user-defined list of resources (e.g., topics and groups.

Since the cluster ARN is only available after provisioning, adding it to the policy requires running an additional Terraform apply step. This extra step could be avoided.

The line from the code that contains the logic:

resources = try(statement.value.resources, [aws_msk_cluster.this[0].arn])

Describe the solution you'd like
The module should support including the MSK cluster ARN alongside a user-defined list of resources in the cluster policy during a single deployment, eliminating the need for a second Terraform apply.

[github-actions]

This issue has been automatically marked as stale because it has been open 30 days
with no activity. Remove stale label or comment or this issue will be closed in 10 days