Add validation for security_groups attribute

### Description

It would be great if the provider would check if the provided value for `security_groups` is syntactically valid in the current context. For example, on `aws_scheduler_schedule` -> `target` -> `ecs_parameters` -> `network_configuration`, you can provide security groups. The AWS api accepts any value, but silently expects a security group ID not an ARN. You only realize this issue when you check why your scheduled task did not execute and see an error like this in CloudTrail:

> Error retrieving security group information for [arn:aws:ec2:eu-central-1:000000000000:security-group/sg-123456, arn:aws:ec2:eu-central-1:000000000000:security-group/sg-abcdef]: Invalid id: \"arn:aws:ec2:eu-central-1:000000000000:security-group/sg-123456\" (expecting \"sg-...\") (ErrorCode: InvalidGroupId.Malformed)

### Affected Resource(s) or Data Source(s)

* `aws_scheduler_schedule` (when configuring a ECS RunTask target in the `network` block within `ecs_parameters` block)
* `aws_ecs_service` (in the `network_configuration` block)

Probably everywhere where `names.AttrSecurityGroups` is used.

### Potential Terraform Configuration




### References

_No response_

### Would you like to implement the enhancement?

Yes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add validation for security_groups attribute #44981

Description

Affected Resource(s) or Data Source(s)

Potential Terraform Configuration

References

Would you like to implement the enhancement?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add validation for security_groups attribute #44981

Description

Description

Affected Resource(s) or Data Source(s)

Potential Terraform Configuration

References

Would you like to implement the enhancement?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions