scaleway · remyleone · Feb 11, 2026 · Copilot · Feb 11, 2026 · Copilot
@@ -33,6 +33,16 @@ func DefaultRegional() *schema.ResourceIdentity {
 	})
 }
 
+func FlatIdentity(key, description string) *schema.ResourceIdentity {
+	return WrapSchemaMap(map[string]*schema.Schema{
+		key: {
+			Type:              schema.TypeString,
+			Description:       description,
+			RequiredForImport: true,
+		},
+	})
+}
+
 func WrapSchemaMap(m map[string]*schema.Schema) *schema.ResourceIdentity {
 	return &schema.ResourceIdentity{
 		SchemaFunc: func() map[string]*schema.Schema {

@@ -9,6 +9,7 @@ import (
 	"github.com/scaleway/scaleway-sdk-go/scw"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/dsf"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/httperrors"
+	"github.com/scaleway/terraform-provider-scaleway/v2/internal/identity"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/services/account"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/types"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/verify"
@@ -25,6 +26,7 @@ func ResourceAPIKey() *schema.Resource {
 		},
 		SchemaVersion: 0,
 		SchemaFunc:    apiKeySchema,
+		Identity:      identity.FlatIdentity("id", "Access Key"),
 	}
 }
 
@@ -109,15 +111,18 @@ func resourceIamAPIKeyCreate(ctx context.Context, d *schema.ResourceData, m any)
 
 	_ = d.Set("secret_key", res.SecretKey)
 
-	d.SetId(res.AccessKey)
+	err = identity.SetFlatIdentity(d, "id", res.AccessKey)
+	if err != nil {
+		return diag.FromErr(err)
+	}
 
 	return resourceIamAPIKeyRead(ctx, d, m)
 }
 
 func resourceIamAPIKeyRead(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {
 	api := NewAPI(m)
 
-	res, err := api.GetAPIKey(&iam.GetAPIKeyRequest{
+	apiKey, err := api.GetAPIKey(&iam.GetAPIKeyRequest{
 		AccessKey: d.Id(),
 	}, scw.WithContext(ctx))
 	if err != nil {
@@ -130,25 +135,29 @@ func resourceIamAPIKeyRead(ctx context.Context, d *schema.ResourceData, m any) d
 		return diag.FromErr(err)
 	}
 
-	_ = d.Set("description", res.Description)
-	_ = d.Set("created_at", types.FlattenTime(res.CreatedAt))
-	_ = d.Set("updated_at", types.FlattenTime(res.UpdatedAt))
-	_ = d.Set("expires_at", types.FlattenTime(res.ExpiresAt))
-	_ = d.Set("access_key", res.AccessKey)
+	setAPIKeyState(d, apiKey)
 
-
+
+	if err := identity.SetFlatIdentity(d, "id", apiKey.AccessKey); err != nil {
+		return diag.FromErr(err)
+	}
-
+
+	if err := identity.SetFlatIdentity(d, "id", apiKey.AccessKey); err != nil {
+		return diag.FromErr(err)
+	}
-	if res.ApplicationID != nil {
-		_ = d.Set("application_id", res.ApplicationID)
-	}
+	return nil
+}
+
+func setAPIKeyState(d *schema.ResourceData, apiKey *iam.APIKey) {
+	_ = d.Set("description", apiKey.Description)
+	_ = d.Set("created_at", types.FlattenTime(apiKey.CreatedAt))
+	_ = d.Set("updated_at", types.FlattenTime(apiKey.UpdatedAt))
+	_ = d.Set("expires_at", types.FlattenTime(apiKey.ExpiresAt))
+	_ = d.Set("access_key", apiKey.AccessKey)
 
-	if res.UserID != nil {
-		_ = d.Set("user_id", res.UserID)
+	if apiKey.ApplicationID != nil {
+		_ = d.Set("application_id", apiKey.ApplicationID)
 	}
 
-	_ = d.Set("editable", res.Editable)
-	_ = d.Set("creation_ip", res.CreationIP)
-	_ = d.Set("default_project_id", res.DefaultProjectID)
+	if apiKey.UserID != nil {
+		_ = d.Set("user_id", apiKey.UserID)
+	}
 
-	return nil
+	_ = d.Set("editable", apiKey.Editable)
+	_ = d.Set("creation_ip", apiKey.CreationIP)
+	_ = d.Set("default_project_id", apiKey.DefaultProjectID)
 }
 
 func resourceIamAPIKeyUpdate(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {

@@ -8,6 +8,7 @@ import (
 	iam "github.com/scaleway/scaleway-sdk-go/api/iam/v1alpha1"
 	"github.com/scaleway/scaleway-sdk-go/scw"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/httperrors"
+	"github.com/scaleway/terraform-provider-scaleway/v2/internal/identity"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/services/account"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/types"
 )
@@ -23,6 +24,7 @@ func ResourceApplication() *schema.Resource {
 		},
 		SchemaVersion: 0,
 		SchemaFunc:    applicationSchema,
+		Identity:      identity.FlatIdentity("id", "Application UUID"),
 	}
 }
 
@@ -79,7 +81,7 @@ func resourceIamApplicationCreate(ctx context.Context, d *schema.ResourceData, m
 		return diag.FromErr(err)
 	}
 
-	d.SetId(app.ID)
+	err = identity.SetFlatIdentity(d, "id", app.ID)
-	err = identity.SetFlatIdentity(d, "id", app.ID)
+	if err := identity.SetFlatIdentity(d, "id", app.ID); err != nil {
+		return diag.FromErr(err)
+	}
-	err = identity.SetFlatIdentity(d, "id", app.ID)
+	if err := identity.SetFlatIdentity(d, "id", app.ID); err != nil {
+		return diag.FromErr(err)
+	}
 
 	return resourceIamApplicationRead(ctx, d, m)
 }
@@ -100,15 +102,19 @@ func resourceIamApplicationRead(ctx context.Context, d *schema.ResourceData, m a
 		return diag.FromErr(err)
 	}
 
+	setApplicationState(d, app)
+
+	return nil
+}
+
+func setApplicationState(d *schema.ResourceData, app *iam.Application) {
 	_ = d.Set("name", app.Name)
 	_ = d.Set("description", app.Description)
 	_ = d.Set("created_at", types.FlattenTime(app.CreatedAt))
 	_ = d.Set("updated_at", types.FlattenTime(app.UpdatedAt))
 	_ = d.Set("organization_id", app.OrganizationID)
 	_ = d.Set("editable", app.Editable)
 	_ = d.Set("tags", types.FlattenSliceString(app.Tags))
-
-	return nil
 }
 
 func resourceIamApplicationUpdate(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {

@@ -55,6 +55,11 @@ func TestAccApplication_Basic(t *testing.T) {
 					resource.TestCheckResourceAttr("scaleway_iam_application.main", "tags.#", "0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_application.main",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }

@@ -8,6 +8,7 @@ import (
 	iam "github.com/scaleway/scaleway-sdk-go/api/iam/v1alpha1"
 	"github.com/scaleway/scaleway-sdk-go/scw"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/httperrors"
+	"github.com/scaleway/terraform-provider-scaleway/v2/internal/identity"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/services/account"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/types"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/verify"
@@ -24,6 +25,7 @@ func ResourceGroup() *schema.Resource {
 		},
 		SchemaVersion: 0,
 		SchemaFunc:    groupSchema,
+		Identity:      identity.FlatIdentity("id", "Group UUID"),
 	}
 }
 
@@ -135,6 +137,12 @@ func resourceIamGroupRead(ctx context.Context, d *schema.ResourceData, m any) di
 		return diag.FromErr(err)
 	}
 
+	setGroupState(d, group)
+
+	return nil
+}
+
+func setGroupState(d *schema.ResourceData, group *iam.Group) {
 	_ = d.Set("name", group.Name)
 	_ = d.Set("description", group.Description)
 	_ = d.Set("created_at", types.FlattenTime(group.CreatedAt))
@@ -146,8 +154,6 @@ func resourceIamGroupRead(ctx context.Context, d *schema.ResourceData, m any) di
 		_ = d.Set("user_ids", group.UserIDs)
 		_ = d.Set("application_ids", group.ApplicationIDs)
 	}
-
-	return nil
 }
 
 func resourceIamGroupUpdate(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {

@@ -99,6 +99,11 @@ func TestAccGroup_Basic(t *testing.T) {
 					resource.TestCheckResourceAttr("scaleway_iam_group.main_basic", "tags.#", "0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_group.main_basic",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }
@@ -198,6 +203,11 @@ func TestAccGroup_Applications(t *testing.T) {
 					resource.TestCheckNoResourceAttr("scaleway_iam_group.main_app", "application_ids.0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_group.main_app",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }
@@ -290,6 +300,11 @@ func TestAccGroup_Users(t *testing.T) {
 					resource.TestCheckNoResourceAttr("scaleway_iam_group.main_user", "user_ids.0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_group.main_user",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }
@@ -459,6 +474,11 @@ func TestAccGroup_UsersAndApplications(t *testing.T) {
 					resource.TestCheckNoResourceAttr("scaleway_iam_group.main_mix", "user_ids.0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_group.main_mix",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }

@@ -9,6 +9,7 @@ import (
 	iam "github.com/scaleway/scaleway-sdk-go/api/iam/v1alpha1"
 	"github.com/scaleway/scaleway-sdk-go/scw"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/httperrors"
+	"github.com/scaleway/terraform-provider-scaleway/v2/internal/identity"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/services/account"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/types"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/verify"
@@ -25,6 +26,7 @@ func ResourcePolicy() *schema.Resource {
 		},
 		SchemaVersion: 0,
 		SchemaFunc:    policySchema,
+		Identity:      identity.FlatIdentity("id", "Policy UUID"),
 	}
 }
 
@@ -158,7 +160,7 @@ func resourceIamPolicyCreate(ctx context.Context, d *schema.ResourceData, m any)
 func resourceIamPolicyRead(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {
 	api := NewAPI(m)
 
-	pol, err := api.GetPolicy(&iam.GetPolicyRequest{
+	policy, err := api.GetPolicy(&iam.GetPolicyRequest{
 		PolicyID: d.Id(),
 	}, scw.WithContext(ctx))
 	if err != nil {
@@ -171,38 +173,42 @@ func resourceIamPolicyRead(ctx context.Context, d *schema.ResourceData, m any) d
 		return diag.FromErr(err)
 	}
 
-	_ = d.Set("name", pol.Name)
-	_ = d.Set("description", pol.Description)
-	_ = d.Set("created_at", types.FlattenTime(pol.CreatedAt))
-	_ = d.Set("updated_at", types.FlattenTime(pol.UpdatedAt))
-	_ = d.Set("organization_id", pol.OrganizationID)
-	_ = d.Set("editable", pol.Editable)
-	_ = d.Set("tags", types.FlattenSliceString(pol.Tags))
-
-	if pol.UserID != nil {
-		_ = d.Set("user_id", types.FlattenStringPtr(pol.UserID))
+	rules, err := api.ListRules(&iam.ListRulesRequest{
+		PolicyID: policy.ID,
+	})
-	})
+	}, scw.WithContext(ctx))
-	})
+	}, scw.WithContext(ctx))
+	if err != nil {
+		return diag.FromErr(fmt.Errorf("failed to list policy's rules: %w", err))
 	}
 
-	if pol.GroupID != nil {
-		_ = d.Set("group_id", types.FlattenStringPtr(pol.GroupID))
-	}
+	setPolicyState(d, policy, rules)
 
-	if pol.ApplicationID != nil {
-		_ = d.Set("application_id", types.FlattenStringPtr(pol.ApplicationID))
+	return nil
+}
+
+func setPolicyState(d *schema.ResourceData, policy *iam.Policy, rules *iam.ListRulesResponse) {
+	_ = d.Set("name", policy.Name)
+	_ = d.Set("description", policy.Description)
+	_ = d.Set("created_at", types.FlattenTime(policy.CreatedAt))
+	_ = d.Set("updated_at", types.FlattenTime(policy.UpdatedAt))
+	_ = d.Set("organization_id", policy.OrganizationID)
+	_ = d.Set("editable", policy.Editable)
+	_ = d.Set("tags", types.FlattenSliceString(policy.Tags))
+
+	if policy.UserID != nil {
+		_ = d.Set("user_id", types.FlattenStringPtr(policy.UserID))
 	}
 
-	_ = d.Set("no_principal", types.FlattenBoolPtr(pol.NoPrincipal))
+	if policy.GroupID != nil {
+		_ = d.Set("group_id", types.FlattenStringPtr(policy.GroupID))
+	}
 
-	listRules, err := api.ListRules(&iam.ListRulesRequest{
-		PolicyID: pol.ID,
-	})
-	if err != nil {
-		return diag.FromErr(fmt.Errorf("failed to list policy's rules: %w", err))
+	if policy.ApplicationID != nil {
+		_ = d.Set("application_id", types.FlattenStringPtr(policy.ApplicationID))
 	}
 
-	_ = d.Set("rule", flattenPolicyRules(listRules.Rules))
+	_ = d.Set("no_principal", types.FlattenBoolPtr(policy.NoPrincipal))
 
-	return nil
+	_ = d.Set("rule", flattenPolicyRules(rules.Rules))
 }
 
 func resourceIamPolicyUpdate(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {

@@ -83,6 +83,11 @@ func TestAccPolicy_Basic(t *testing.T) {
 					resource.TestCheckResourceAttr("scaleway_iam_policy.main", "tags.#", "0"),
 				),
 			},
+			{
+				ResourceName:      "scaleway_iam_policy.main",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
 		},
 	})
 }

@@ -10,6 +10,7 @@ import (
 	iam "github.com/scaleway/scaleway-sdk-go/api/iam/v1alpha1"
 	"github.com/scaleway/scaleway-sdk-go/scw"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/httperrors"
+	"github.com/scaleway/terraform-provider-scaleway/v2/internal/identity"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/services/account"
 	"github.com/scaleway/terraform-provider-scaleway/v2/internal/types"
 	"golang.org/x/crypto/ssh"
@@ -26,6 +27,7 @@ func ResourceSSKKey() *schema.Resource {
 		},
 		SchemaVersion: 0,
 		SchemaFunc:    sshKeySchema,
+		Identity:      identity.FlatIdentity("id", "SSH key UUID"),
 	}
 }
 
@@ -110,7 +112,10 @@ func resourceIamSSKKeyCreate(ctx context.Context, d *schema.ResourceData, m any)
 		}
 	}
 
-	d.SetId(res.ID)
+	err = identity.SetFlatIdentity(d, "id", res.ID)
+	if err != nil {
+		return diag.FromErr(err)
+	}
 
 	return resourceIamSSHKeyRead(ctx, d, m)
 }