Skip to content

Feat: AWS Resilience Hub App resource #44076

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 10 commits into
base: main
Choose a base branch
from
Open

Feat: AWS Resilience Hub App resource #44076

wants to merge 10 commits into from

Conversation

briancain
Copy link

@briancain briancain commented Aug 28, 2025
edited by ewbankkit
Loading

Hello AWS TF Provider maintainers! I have another pull request for you. This PR fills a gap in the existing Resilience Hub service for the App resource, which has not yet been covered by the official AWS provider.

Rollback Plan

If a change needs to be reverted, we will publish an updated version of the library.

Changes to Security Controls

Are there any changes to security controls (access controls, encryption, logging) in this pull request? If so, explain.

N/A

Description

This commit adds a gap in the AWS Resilience Hub service: an app resource. It includes the schema required to define and manage that app. It is a simple resource with only a few fields. This commit does add more unit and acceptance tests to verify the change.

Relations

Closes #35803.
Closes #25123.

References

Output from Acceptance Testing

$ AWS_PROFILE=default TF_ACC=1 go test ./internal/service/resiliencehub/... -v -short -parallel 1 -timeout 30m
2025/08/28 13:43:09 Creating Terraform AWS Provider (SDKv2-style)...
2025/08/28 13:43:09 Initializing Terraform AWS Provider (SDKv2-style)...
=== RUN   TestAccResilienceHubApp_tags
=== PAUSE TestAccResilienceHubApp_tags
=== RUN   TestAccResilienceHubApp_tags_null
=== PAUSE TestAccResilienceHubApp_tags_null
=== RUN   TestAccResilienceHubApp_tags_EmptyMap
=== PAUSE TestAccResilienceHubApp_tags_EmptyMap
=== RUN   TestAccResilienceHubApp_tags_AddOnUpdate
=== PAUSE TestAccResilienceHubApp_tags_AddOnUpdate
=== RUN   TestAccResilienceHubApp_tags_EmptyTag_OnCreate
=== PAUSE TestAccResilienceHubApp_tags_EmptyTag_OnCreate
=== RUN   TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Add
=== PAUSE TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Add
=== RUN   TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Replace
=== PAUSE TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Replace
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_providerOnly
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_providerOnly
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_nonOverlapping
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_nonOverlapping
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_overlapping
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_overlapping
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_updateToProviderOnly
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_updateToProviderOnly
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_updateToResourceOnly
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_updateToResourceOnly
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_emptyResourceTag
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_emptyResourceTag
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_emptyProviderOnlyTag
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_emptyProviderOnlyTag
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_nullOverlappingResourceTag
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_nullOverlappingResourceTag
=== RUN   TestAccResilienceHubApp_tags_DefaultTags_nullNonOverlappingResourceTag
=== PAUSE TestAccResilienceHubApp_tags_DefaultTags_nullNonOverlappingResourceTag
=== RUN   TestAccResilienceHubApp_tags_ComputedTag_OnCreate
=== PAUSE TestAccResilienceHubApp_tags_ComputedTag_OnCreate
=== RUN   TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Add
=== PAUSE TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Add
=== RUN   TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Replace
=== PAUSE TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Replace
=== RUN   TestAccResilienceHubApp_tags_IgnoreTags_Overlap_DefaultTag
=== PAUSE TestAccResilienceHubApp_tags_IgnoreTags_Overlap_DefaultTag
=== RUN   TestAccResilienceHubApp_tags_IgnoreTags_Overlap_ResourceTag
=== PAUSE TestAccResilienceHubApp_tags_IgnoreTags_Overlap_ResourceTag
=== RUN   TestAccResilienceHubApp_basic
=== PAUSE TestAccResilienceHubApp_basic
=== RUN   TestAccResilienceHubApp_terraformSource
=== PAUSE TestAccResilienceHubApp_terraformSource
=== RUN   TestAccResilienceHubApp_complete
=== PAUSE TestAccResilienceHubApp_complete
=== RUN   TestAccResilienceHubApp_update
=== PAUSE TestAccResilienceHubApp_update
=== RUN   TestAccResilienceHubResiliencyPolicy_tags
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_null
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_null
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_EmptyMap
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_EmptyMap
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_AddOnUpdate
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_AddOnUpdate
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnCreate
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnCreate
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Add
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Add
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Replace
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Replace
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_providerOnly
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_providerOnly
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nonOverlapping
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nonOverlapping
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_overlapping
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_overlapping
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToProviderOnly
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToProviderOnly
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToResourceOnly
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToResourceOnly
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyResourceTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyResourceTag
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyProviderOnlyTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyProviderOnlyTag
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullOverlappingResourceTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullOverlappingResourceTag
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullNonOverlappingResourceTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullNonOverlappingResourceTag
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnCreate
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnCreate
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Add
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Add
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Replace
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Replace
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_DefaultTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_DefaultTag
=== RUN   TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_ResourceTag
=== PAUSE TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_ResourceTag
=== RUN   TestAccResilienceHubResiliencyPolicy_basic
=== PAUSE TestAccResilienceHubResiliencyPolicy_basic
=== RUN   TestAccResilienceHubResiliencyPolicy_dataLocationConstraint
=== PAUSE TestAccResilienceHubResiliencyPolicy_dataLocationConstraint
=== RUN   TestAccResilienceHubResiliencyPolicy_description
=== PAUSE TestAccResilienceHubResiliencyPolicy_description
=== RUN   TestAccResilienceHubResiliencyPolicy_name
=== PAUSE TestAccResilienceHubResiliencyPolicy_name
=== RUN   TestAccResilienceHubResiliencyPolicy_policy
=== PAUSE TestAccResilienceHubResiliencyPolicy_policy
=== RUN   TestAccResilienceHubResiliencyPolicy_policyWithRegion
=== PAUSE TestAccResilienceHubResiliencyPolicy_policyWithRegion
=== RUN   TestAccResilienceHubResiliencyPolicy_tier
=== PAUSE TestAccResilienceHubResiliencyPolicy_tier
=== RUN   TestAccResilienceHubResiliencyPolicy_disappears
=== PAUSE TestAccResilienceHubResiliencyPolicy_disappears
=== RUN   TestAccResilienceHubResiliencyPolicy_upgradeV6_0_0
=== PAUSE TestAccResilienceHubResiliencyPolicy_upgradeV6_0_0
=== RUN   TestEndpointConfiguration
=== RUN   TestEndpointConfiguration/package_name_endpoint_config_overrides_aws_service_envvar
=== RUN   TestEndpointConfiguration/package_name_endpoint_config_overrides_base_envvar
=== RUN   TestEndpointConfiguration/service_aws_envvar_overrides_service_config_file
=== RUN   TestEndpointConfiguration/use_fips_config_with_package_name_endpoint_config
=== RUN   TestEndpointConfiguration/package_name_endpoint_config_overrides_base_config_file
=== RUN   TestEndpointConfiguration/service_config_file
=== RUN   TestEndpointConfiguration/no_config
=== RUN   TestEndpointConfiguration/package_name_endpoint_config_overrides_service_config_file
=== RUN   TestEndpointConfiguration/service_aws_envvar_overrides_base_envvar
=== RUN   TestEndpointConfiguration/base_endpoint_envvar
=== RUN   TestEndpointConfiguration/base_endpoint_envvar_overrides_service_config_file
=== RUN   TestEndpointConfiguration/package_name_endpoint_config
=== RUN   TestEndpointConfiguration/service_aws_envvar
=== RUN   TestEndpointConfiguration/service_aws_envvar_overrides_base_config_file
=== RUN   TestEndpointConfiguration/base_endpoint_envvar_overrides_base_config_file
=== RUN   TestEndpointConfiguration/service_config_file_overrides_base_config_file
=== RUN   TestEndpointConfiguration/base_endpoint_config_file
=== RUN   TestEndpointConfiguration/use_fips_config
--- PASS: TestEndpointConfiguration (0.35s)
    --- PASS: TestEndpointConfiguration/package_name_endpoint_config_overrides_aws_service_envvar (0.03s)
    --- PASS: TestEndpointConfiguration/package_name_endpoint_config_overrides_base_envvar (0.03s)
    --- PASS: TestEndpointConfiguration/service_aws_envvar_overrides_service_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/use_fips_config_with_package_name_endpoint_config (0.03s)
    --- PASS: TestEndpointConfiguration/package_name_endpoint_config_overrides_base_config_file (0.03s)
    --- PASS: TestEndpointConfiguration/service_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/no_config (0.01s)
    --- PASS: TestEndpointConfiguration/package_name_endpoint_config_overrides_service_config_file (0.03s)
    --- PASS: TestEndpointConfiguration/service_aws_envvar_overrides_base_envvar (0.01s)
    --- PASS: TestEndpointConfiguration/base_endpoint_envvar (0.01s)
    --- PASS: TestEndpointConfiguration/base_endpoint_envvar_overrides_service_config_file (0.02s)
    --- PASS: TestEndpointConfiguration/package_name_endpoint_config (0.02s)
    --- PASS: TestEndpointConfiguration/service_aws_envvar (0.01s)
    --- PASS: TestEndpointConfiguration/service_aws_envvar_overrides_base_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/base_endpoint_envvar_overrides_base_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/service_config_file_overrides_base_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/base_endpoint_config_file (0.01s)
    --- PASS: TestEndpointConfiguration/use_fips_config (0.01s)
=== CONT  TestAccResilienceHubResiliencyPolicy_disappears
--- PASS: TestAccResilienceHubResiliencyPolicy_disappears (14.66s)
=== CONT  TestAccResilienceHubApp_tags
--- PASS: TestAccResilienceHubApp_tags (62.36s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tier
--- PASS: TestAccResilienceHubResiliencyPolicy_tier (30.54s)
=== CONT  TestAccResilienceHubResiliencyPolicy_policyWithRegion
--- PASS: TestAccResilienceHubResiliencyPolicy_policyWithRegion (44.19s)
=== CONT  TestAccResilienceHubResiliencyPolicy_policy
--- PASS: TestAccResilienceHubResiliencyPolicy_policy (45.10s)
=== CONT  TestAccResilienceHubResiliencyPolicy_name
--- PASS: TestAccResilienceHubResiliencyPolicy_name (30.92s)
=== CONT  TestAccResilienceHubResiliencyPolicy_description
--- PASS: TestAccResilienceHubResiliencyPolicy_description (31.14s)
=== CONT  TestAccResilienceHubResiliencyPolicy_dataLocationConstraint
--- PASS: TestAccResilienceHubResiliencyPolicy_dataLocationConstraint (30.56s)
=== CONT  TestAccResilienceHubResiliencyPolicy_basic
--- PASS: TestAccResilienceHubResiliencyPolicy_basic (16.03s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_ResourceTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_ResourceTag (39.56s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_DefaultTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_IgnoreTags_Overlap_DefaultTag (35.17s)
=== CONT  TestAccResilienceHubApp_basic
--- PASS: TestAccResilienceHubApp_basic (17.17s)
=== CONT  TestAccResilienceHubApp_tags_IgnoreTags_Overlap_ResourceTag
--- PASS: TestAccResilienceHubApp_tags_IgnoreTags_Overlap_ResourceTag (41.66s)
=== CONT  TestAccResilienceHubApp_tags_IgnoreTags_Overlap_DefaultTag
--- PASS: TestAccResilienceHubApp_tags_IgnoreTags_Overlap_DefaultTag (39.16s)
=== CONT  TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Replace
--- PASS: TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Replace (34.31s)
=== CONT  TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Add
--- PASS: TestAccResilienceHubApp_tags_ComputedTag_OnUpdate_Add (33.93s)
=== CONT  TestAccResilienceHubApp_tags_ComputedTag_OnCreate
--- PASS: TestAccResilienceHubApp_tags_ComputedTag_OnCreate (21.34s)
=== CONT  TestAccResilienceHubApp_terraformSource
--- PASS: TestAccResilienceHubApp_terraformSource (18.93s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_nullNonOverlappingResourceTag
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_nullNonOverlappingResourceTag (19.93s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_nullOverlappingResourceTag
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_nullOverlappingResourceTag (19.65s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Replace
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Replace (31.06s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_emptyProviderOnlyTag
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_emptyProviderOnlyTag (18.86s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Add
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnUpdate_Add (30.61s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_emptyResourceTag
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_emptyResourceTag (19.69s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnCreate
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_ComputedTag_OnCreate (20.07s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_updateToResourceOnly
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_updateToResourceOnly (29.72s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullNonOverlappingResourceTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullNonOverlappingResourceTag (17.34s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_updateToProviderOnly
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_updateToProviderOnly (29.97s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullOverlappingResourceTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nullOverlappingResourceTag (17.89s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_overlapping
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_overlapping (49.13s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyProviderOnlyTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyProviderOnlyTag (17.25s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_nonOverlapping
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_nonOverlapping (49.49s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyResourceTag
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_emptyResourceTag (17.23s)
=== CONT  TestAccResilienceHubApp_tags_DefaultTags_providerOnly
--- PASS: TestAccResilienceHubApp_tags_DefaultTags_providerOnly (62.66s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToResourceOnly
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToResourceOnly (26.64s)
=== CONT  TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Replace
--- PASS: TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Replace (42.48s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToProviderOnly
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_updateToProviderOnly (27.74s)
=== CONT  TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Add
--- PASS: TestAccResilienceHubApp_tags_EmptyTag_OnUpdate_Add (44.42s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_overlapping
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_overlapping (44.11s)
=== CONT  TestAccResilienceHubApp_tags_EmptyTag_OnCreate
--- PASS: TestAccResilienceHubApp_tags_EmptyTag_OnCreate (33.80s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nonOverlapping
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_nonOverlapping (44.48s)
=== CONT  TestAccResilienceHubApp_tags_AddOnUpdate
--- PASS: TestAccResilienceHubApp_tags_AddOnUpdate (29.99s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_providerOnly
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_DefaultTags_providerOnly (58.65s)
=== CONT  TestAccResilienceHubApp_tags_EmptyMap
--- PASS: TestAccResilienceHubApp_tags_EmptyMap (19.56s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Replace
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Replace (27.93s)
=== CONT  TestAccResilienceHubApp_tags_null
--- PASS: TestAccResilienceHubApp_tags_null (18.64s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Add
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnUpdate_Add (40.99s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnCreate
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_EmptyTag_OnCreate (30.39s)
=== CONT  TestAccResilienceHubResiliencyPolicy_upgradeV6_0_0
--- PASS: TestAccResilienceHubResiliencyPolicy_upgradeV6_0_0 (35.95s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_AddOnUpdate
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_AddOnUpdate (32.41s)
=== CONT  TestAccResilienceHubApp_complete
--- PASS: TestAccResilienceHubApp_complete (14.61s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags
--- PASS: TestAccResilienceHubResiliencyPolicy_tags (58.88s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_EmptyMap
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_EmptyMap (16.96s)
=== CONT  TestAccResilienceHubApp_update
--- PASS: TestAccResilienceHubApp_update (36.28s)
=== CONT  TestAccResilienceHubResiliencyPolicy_tags_null
--- PASS: TestAccResilienceHubResiliencyPolicy_tags_null (16.89s)
PASS
ok      github.com/hashicorp/terraform-provider-aws/internal/service/resiliencehub      1744.381s

@briancain briancain requested a review from a team as a code owner August 28, 2025 21:14
@github-actions GitHub Actions
Copy link
Contributor

Community Guidelines

This comment is added to every new Pull Request to provide quick reference to how the Terraform AWS Provider is maintained. Please review the information below, and thank you for contributing to the community that keeps the provider thriving! 🚀

Voting for Prioritization

  • Please vote on this Pull Request by adding a 👍 reaction to the original post to help the community and maintainers prioritize it.
  • Please see our prioritization guide for additional information on how the maintainers handle prioritization.
  • Please do not leave +1 or other comments that do not add relevant new information or questions; they generate extra noise for others following the Pull Request and do not help prioritize the request.

Pull Request Authors

  • Review the contribution guide relating to the type of change you are making to ensure all of the necessary steps have been taken.
  • Whether or not the branch has been rebased will not impact prioritization, but doing so is always a welcome surprise.

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Aug 28, 2025
edited
Loading

✅ Thank you for correcting the previously detected issues! The maintainers appreciate your efforts to make the review process as smooth as possible.

@github-actions github-actions bot added needs-triage Waiting for first response or review from a maintainer. documentation Introduces or discusses updates to documentation. tests PRs: expanded test coverage. Issues: expanded coverage, enhancements to test infrastructure. generators Relates to code generators. service/resiliencehub Issues and PRs that pertain to the resiliencehub service. size/XL Managed by automation to categorize the size of a PR. partner Contribution from a partner. labels Aug 28, 2025
@ewbankkit ewbankkit added the new-resource Introduces a new resource. label Aug 29, 2025
@briancain briancain force-pushed the feat/resiliencehub-app branch from 5d10a44 to 8edc9ba Compare September 2, 2025 21:39
@justinretzolk justinretzolk removed the needs-triage Waiting for first response or review from a maintainer. label Sep 2, 2025
@briancain briancain force-pushed the feat/resiliencehub-app branch 4 times, most recently from 44669c6 to 9d560bf Compare September 9, 2025 20:48
jar-b
jar-b reviewed Sep 10, 2025
View reviewed changes
Copy link
Member

@jar-b jar-b left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left a few specific comments, but broadly the current implementation seems like it should be split into multiple resources. It might be worth completing a service design that describes potential resources, which APIs they map to, and the expected interaction between them.

internal/service/resiliencehub/app.go
_, err = conn.PutDraftAppVersionTemplate(ctx, templateInput)
if err != nil {
resp.Diagnostics.AddError(
create.ProblemStandardMessage(names.ResilienceHub, create.ErrActionCreating, ResNameApp, name, err),
err.Error(),
)
return
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should this be a separate resource, distinct from the parent app?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that could make sense. I intended the TF resource to be similar to CloudFormation, which has a singular App and combines these. But I could see it also making sense to split them out. You had mentioned that this feature might need a service design document? If so, I can wait to split them out until that happens. Thank you!

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added some more clarity as a comment for why I've combined these as a single resource, hope that makes more sense.

internal/service/resiliencehub/app.go
_, err := conn.ImportResourcesToDraftAppVersion(ctx, importInput)
if err != nil {
resp.Diagnostics.AddError(
create.ProblemStandardMessage(names.ResilienceHub, create.ErrActionCreating, ResNameApp, name, err),
err.Error(),
)
return
}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The resource import workflow could also potentially be it's own resource.

@briancain briancain force-pushed the feat/resiliencehub-app branch from 9d560bf to 08da7d2 Compare September 10, 2025 17:34
@briancain briancain requested a review from jar-b September 10, 2025 17:47
@briancain
Copy link
Author

AWS ResilienceHub App Resource - Terraform Schema Proposal

Overview

This proposal introduces the aws_resiliencehub_app resource for Terraform, providing a structured interface that matches the CloudFormation experience by combining both app template definition and resource mappings into a single, cohesive resource.

Key Design Decision: Matching CloudFormation's Combined Approach

CloudFormation's AWS::ResilienceHub::App resource includes both:

  • AppTemplateBody: A JSON string defining the application structure
  • ResourceMappings: An array defining how logical resources map to physical resources

This Terraform implementation replicates this exact functionality but provides it in a more structured, type-safe way:

  • app_template block: Structured equivalent of CloudFormation's AppTemplateBody JSON string
  • resource_mapping block: Structured equivalent of CloudFormation's ResourceMappings array

This approach maintains full feature parity with CloudFormation while providing better Terraform ergonomics. Rather than defining a single string of loose json, this proposal allows users to craft the template as HCL.

Schema Structure

Basic Resource Configuration

resource "aws_resiliencehub_app" "example" {
  name                    = "my-resilience-app"
  description             = "Example resilience hub application"
  app_assessment_schedule = "Daily"
  resiliency_policy_arn   = aws_resiliencehub_resiliency_policy.example.arn
  
  tags = {
    Environment = "production"
    Team        = "platform"
  }
}

App Template Block (Replaces CloudFormation's AppTemplateBody JSON)

The app_template block provides a structured way to define what CloudFormation requires as a JSON string:

app_template {
  version = "2.0"
  
  # Define application resources
  resource {
    name = "lambda-function"
    type = "AWS::Lambda::Function"
    
    logical_resource_id {
      identifier         = "MyLambdaFunction"
      logical_stack_name = "my-stack"
    }
  }
  
  # Define application components
  app_component {
    name           = "compute-tier"
    type           = "AWS::ResilienceHub::ComputeAppComponent"
    resource_names = ["lambda-function"]
  }
}

Resource Mapping Block (Replaces CloudFormation's ResourceMappings Array)

The resource_mapping block provides the same functionality as CloudFormation's ResourceMappings but in a structured format:

resource_mapping {
  mapping_type  = "Terraform"
  resource_name = "lambda-function"
  terraform_source_name = "my-terraform-source"
  
  physical_resource_id {
    type       = "Native"
    identifier = "s3://my-terraform-bucket/terraform.tfstate"
  }
}

CloudFormation vs Terraform Comparison

CloudFormation (JSON string approach):

Type: AWS::ResilienceHub::App
Properties:
  Name: my-app
  AppTemplateBody: '{"resources":[{"logicalResourceId":{"identifier":"MyLambda"},"type":"AWS::Lambda::Function","name":"lambda-function"}],"appComponents":[{"name":"compute-tier","type":"AWS::ResilienceHub::ComputeAppComponent","resourceNames":["lambda-function"]}],"version":"2.0"}'
  ResourceMappings:
    - ResourceName: lambda-function
      MappingType: Terraform
      PhysicalResourceId:
        Type: Native
        Identifier: s3://my-bucket/terraform.tfstate

Terraform (structured approach):

resource "aws_resiliencehub_app" "my_app" {
  name = "my-app"
  
  app_template {
    version = "2.0"
    
    resource {
      name = "lambda-function"
      type = "AWS::Lambda::Function"
      
      logical_resource_id {
        identifier = "MyLambda"
      }
    }
    
    app_component {
      name           = "compute-tier"
      type           = "AWS::ResilienceHub::ComputeAppComponent"
      resource_names = ["lambda-function"]
    }
  }
  
  resource_mapping {
    mapping_type  = "Terraform"
    resource_name = "lambda-function"
    
    physical_resource_id {
      type       = "Native"
      identifier = "s3://my-bucket/terraform.tfstate"
    }
  }
}

Result: Same functionality, better developer experience.

Complete Example: Terraform Source Integration

resource "aws_resiliencehub_app" "terraform_app" {
  name                    = "terraform-managed-app"
  description             = "App with S3 Terraform state source"
  app_assessment_schedule = "Daily"
  
  app_template {
    version = "2.0"
    
    resource {
      name = "lambda-function"
      type = "AWS::Lambda::Function"
      
      logical_resource_id {
        identifier            = "MyLambda"
        terraform_source_name = "my-terraform-source"
      }
    }
    
    app_component {
      name           = "compute-tier"
      type           = "AWS::ResilienceHub::ComputeAppComponent"
      resource_names = ["lambda-function"]
    }
  }
  
  resource_mapping {
    mapping_type          = "Terraform"
    resource_name         = "lambda-function"
    terraform_source_name = "my-terraform-source"
    
    physical_resource_id {
      type       = "Native"
      identifier = "s3://my-terraform-bucket/terraform.tfstate"
    }
  }
}

Schema Attributes

Top-level Attributes

Attribute Type Required Description
name string Yes Application name (2-60 chars, alphanumeric, underscore, hyphen)
description string No Application description (max 500 chars)
app_assessment_schedule string No Assessment schedule: "Daily" or "Disabled"
resiliency_policy_arn string No ARN of the resiliency policy
tags map(string) No Resource tags

App Template Block

Attribute Type Required Description
version string Yes Template version (e.g., "2.0")
additional_info map(string) No Additional template metadata

Resource Sub-block

Attribute Type Required Description
name string Yes Logical resource name
type string Yes AWS resource type
additional_info map(string) No Additional resource metadata

Logical Resource ID Sub-block

Attribute Type Required Description
identifier string Yes Resource identifier
logical_stack_name string No CloudFormation stack name
resource_group_name string No Resource group name
terraform_source_name string No Terraform source identifier
eks_source_name string No EKS source identifier

App Component Sub-block

Attribute Type Required Description
name string Yes Component name
type string Yes Component type (e.g., "AWS::ResilienceHub::ComputeAppComponent")
resource_names list(string) No List of resource names in this component
additional_info map(string) No Additional component metadata

Resource Mapping Block

Attribute Type Required Description
mapping_type string Yes Mapping type: "Terraform", "Resource", "AppRegistry", "CfnStack", "EKS"
resource_name string Yes Name of the logical resource
terraform_source_name string No Terraform source name (for Terraform mappings)

Physical Resource ID Sub-block

Attribute Type Required Description
type string Yes Identifier type: "Arn", "Native"
identifier string Yes Physical resource identifier or S3 URL
aws_account_id string No AWS account ID
aws_region string No AWS region

Implementation Benefits

  1. CloudFormation Feature Parity: Exact same functionality as CloudFormation's AWS::ResilienceHub::App
  2. Better Developer Experience: Structured blocks instead of JSON strings
  3. Type Safety: Built-in validation and IDE support
  4. Terraform Integration: Native support for Terraform state file sources
  5. Maintainability: Easier to read, write, and maintain than JSON strings

Test Coverage Examples

Basic App Creation

resource "aws_resiliencehub_app" "test" {
  name                    = "tf-test-app"
  app_assessment_schedule = "Disabled"

  app_template {
    version = "2.0"

    app_component {
      name           = "appcommon"
      type           = "AWS::ResilienceHub::AppCommonAppComponent"
      resource_names = []
    }
  }
}

Terraform Source Integration

resource "aws_resiliencehub_app" "test" {
  name                    = "terraform-source-app"
  description             = "Test app with S3 Terraform source"
  app_assessment_schedule = "Disabled"

  app_template {
    version = "2.0"

    resource {
      name = "lambda-function"
      type = "AWS::Lambda::Function"

      logical_resource_id {
        identifier            = "MyLambda"
        terraform_source_name = "my-terraform-source"
      }
    }

    app_component {
      name           = "compute-tier"
      type           = "AWS::ResilienceHub::ComputeAppComponent"
      resource_names = ["lambda-function"]
    }
  }

  resource_mapping {
    mapping_type          = "Terraform"
    resource_name         = "lambda-function"
    terraform_source_name = "my-terraform-source"

    physical_resource_id {
      type       = "Native"
      identifier = "s3://my-terraform-bucket/terraform.tfstate"
    }
  }
}

Complete Multi-Component App

resource "aws_resiliencehub_app" "test" {
  name                    = "complete-app"
  description             = "Complete test app"
  app_assessment_schedule = "Daily"

  app_template {
    version = "2.0"

    resource {
      name = "lambda-function"
      type = "AWS::Lambda::Function"

      logical_resource_id {
        identifier         = "MyLambda"
        logical_stack_name = "my-stack"
      }
    }
    
    resource {
      name = "database"
      type = "AWS::RDS::DBInstance"

      logical_resource_id {
        identifier         = "MyDatabase"
        logical_stack_name = "my-stack"
      }
    }

    app_component {
      name           = "compute-tier"
      type           = "AWS::ResilienceHub::ComputeAppComponent"
      resource_names = ["lambda-function"]
    }

    app_component {
      name           = "database-tier"
      type           = "AWS::ResilienceHub::DatabaseAppComponent"
      resource_names = ["database"]
    }
  }

  tags = {
    Environment = "test"
    Purpose     = "testing"
  }
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jar-b jar-b Awaiting requested review from jar-b

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
documentation Introduces or discusses updates to documentation. generators Relates to code generators. new-resource Introduces a new resource. partner Contribution from a partner. service/resiliencehub Issues and PRs that pertain to the resiliencehub service. size/XL Managed by automation to categorize the size of a PR. tests PRs: expanded test coverage. Issues: expanded coverage, enhancements to test infrastructure.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[New Service]: Resilience Hub
4 participants
@briancain @jar-b @ewbankkit @justinretzolk