From a8ce060732ed3064696f2d6c5459ffa176fd02f7 Mon Sep 17 00:00:00 2001
From: Alex Schofield <git@ajschof.me>
Date: Mon, 19 Aug 2024 23:02:56 +0100
Subject: fix(tf): lambda permissions should be created before destroyed

---
 terraform/events.tf | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

(limited to 'terraform')

diff --git a/terraform/events.tf b/terraform/events.tf
index 0113f5f..9885a86 100644
--- a/terraform/events.tf
+++ b/terraform/events.tf
@@ -33,7 +33,8 @@ resource "aws_lambda_permission" "allow_eventbridge" {
   source_arn    = aws_cloudwatch_event_rule.lambda_trigger.arn
 
   lifecycle {
-    replace_triggered_by = [random_string.suffix]
+    create_before_destroy = true
+    replace_triggered_by  = [random_string.suffix]
   }
 }
 
@@ -49,7 +50,8 @@ resource "aws_lambda_permission" "allow_s3_ingestion" {
   source_arn    = aws_s3_bucket.extract_bucket.arn
 
   lifecycle {
-    replace_triggered_by = [random_string.suffix]
+    create_before_destroy = true
+    replace_triggered_by  = [random_string.suffix]
   }
 }
 
@@ -77,7 +79,8 @@ resource "aws_lambda_permission" "allow_s3_transform_bucket" {
   source_arn    = aws_s3_bucket.transform_bucket.arn
 
   lifecycle {
-    replace_triggered_by = [random_string.suffix]
+    create_before_destroy = true
+    replace_triggered_by  = [random_string.suffix]
   }
 }
 
-- 
cgit v1.2.3