From 5da692df67cae313711e94216949d1105da6a87f Mon Sep 17 00:00:00 2001
From: Xin Chen <xchen@appcelerator.com>
Date: Thu, 21 Apr 2022 01:44:48 +0800
Subject: [PATCH] fix: Correct DNS suffix for OIDC provider (#2026)

Co-authored-by: Xin Chen <chenxin@konvery.com>
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
---
 main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main.tf b/main.tf
index 9e7d081..61ae843 100644
--- a/main.tf
+++ b/main.tf
@@ -174,7 +174,7 @@ data "tls_certificate" "this" {
 resource "aws_iam_openid_connect_provider" "oidc_provider" {
   count = local.create && var.enable_irsa ? 1 : 0
 
-  client_id_list  = distinct(compact(concat(["sts.${data.aws_partition.current.dns_suffix}"], var.openid_connect_audiences)))
+  client_id_list  = distinct(compact(concat(["sts.${local.dns_suffix}"], var.openid_connect_audiences)))
   thumbprint_list = concat([data.tls_certificate.this[0].certificates[0].sha1_fingerprint], var.custom_oidc_thumbprints)
   url             = aws_eks_cluster.this[0].identity[0].oidc[0].issuer