stackit_scf_organization_manager can not create resources #1344
Description
Description
Following: https://registry.terraform.io/providers/stackitcloud/stackit/latest/docs/guides/scf%5Fcloudfoundry
When running opentofy apply for the second time, no cloudfoundry resources can be created because of an access deny error.
Steps to reproduce
- follow https://registry.terraform.io/providers/stackitcloud/stackit/latest/docs/guides/scf%5Fcloudfoundry
Actual behavior
After the initial run the stackit_scf_organization_manager has been created, and has the correct role:
cf org-users MyOrg
Getting users in org MyOrg as test@example.com...
ORG MANAGER
f952abba-3841-4e4c-b1bc-09ac8e6195dc@scf-api-org-manager.01.cf.eu01.stackit.cloud (uaa)
test@example.com (central-uaa)
BILLING MANAGER
No BILLING MANAGER found
ORG AUDITOR
No ORG AUDITOR found
But any creation of resources using the provider fails:
Error: API Error Creating Security Group
│
│ with cloudfoundry_security_group.my_security_group,
│ on network.tf line 2, in resource "cloudfoundry_security_group" "my_security_group":
│ 2: resource "cloudfoundry_security_group" "my_security_group" {
│
│ Could not create Security Group with name tf-test : executing POST request for /v3/security_groups failed: cfclient error (CF-NotAuthorized|10003): You are not authorized to perform the requested action
Expected behavior
Resources are created
Environment
- OS: ubuntu 25.10
- opentofu 1.11.5
- Version of the STACKIT Terraform provider: 0.89.0
Additional information
Could it be that in the second run, the resource has already been created, thus the .password property is not available anymore?