Decide (and document) what it should do on delete #13
Labels
component:construct
component:provider
kind:documentation
Improvements or additions to documentation
size:small
Comments
plumdog
added
component:construct
component:provider
kind:documentation
|
I think the answer here is that, by default, it should leave the value in the secret, but that it should be controllable with a switch. |
|
Additional consideration: on update, it still calls |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently, on delete does nothing to the secret if it was passed in. That is, the custom resource makes no attempt to remove the secret values that it put into the secret from the secret.
This feels like slightly surprising behaviour, but so does removing values from the secret which may have been manually altered since creation - not usually a concern of Cloudformation things, but somewhat uniquely so in the case of SecretsManager.
The text was updated successfully, but these errors were encountered: