From 0cc3e1170153765cabc7e09706b42aa82d69ed3f Mon Sep 17 00:00:00 2001
From: Evert Romero <evert.romero@computocontable.com>
Date: Thu, 16 Apr 2026 16:10:43 -0600
Subject: [PATCH] fix(terraform): corregir sintaxis HCL en trust policy OIDC

ForAnyValue:StringEquals debe ir entre comillas dentro de
jsonencode() para que Terraform lo interprete correctamente.
Sin las comillas, terraform init/plan falla con:
Missing attribute separator.
---
 terraform/oidc-bitbucket.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/terraform/oidc-bitbucket.tf b/terraform/oidc-bitbucket.tf
index 039b968..05e5da7 100644
--- a/terraform/oidc-bitbucket.tf
+++ b/terraform/oidc-bitbucket.tf
@@ -79,7 +79,7 @@ resource "aws_iam_role" "bitbucket_ci_cd" {
         }
         Action = "sts:AssumeRoleWithWebIdentity"
         Condition = {
-          ForAnyValue:StringEquals = {
+          "ForAnyValue:StringEquals" = {
             "${trimprefix(local.bitbucket_oidc_url, "https://")}:aud" = [
               "sts.amazonaws.com",
               "ari:cloud:bitbucket::workspace/${local.bitbucket_workspace_uuid}"