Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(Application Autoscaling): Access the ARN or "unique identifier" of a ScalableTarget #28423

Open
2 tasks
Liversticks opened this issue Dec 19, 2023 · 1 comment
Open
2 tasks

(Application Autoscaling): Access the ARN or "unique identifier" of a ScalableTarget #28423

Liversticks opened this issue Dec 19, 2023 · 1 comment
Labels
@aws-cdk/aws-autoscaling Related to Amazon EC2 Auto Scaling effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2

Comments

@Liversticks
Copy link
Contributor

Describe the feature

Currently, for the Application Autoscaling ScalableTarget, there is the scalableTargetId field. This represents the ResourceId in a request made to the RegisterScalableTarget API.

If possible, we would like to access the ARN or the unique id of the scalable target itself, as described in the "Resources" subsection of the "Identity-based policies" section here

Use Case

We want to create identity-based policies for IAM roles to better control access to auto-scaling. We would like to create these roles using CDK because we have a multi-region architecture and need to set up these roles in multiple accounts per region. In order to create the roles, we need to access the Application Autoscaling unique identifier or ARN (like arn:aws:application-autoscaling:us-east-1:123456789012:scalable-target/1234abcd56ab78cd901ef1234567890ab123). We want to avoid using wildcards in the resource field because each account manages multiple auto scaling targets.

Proposed Solution

No response

Other Information

We could implement this by using a custom Lambda-based CloudFormation resource that calls the Application Autoscaling API directly. However, if possible, we would like to avoid using custom resources as the code that implements the custom functionality is separated from the code that defines the rest of our stacks.

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

CDK version used

2.115.0

Environment details (OS name and version, etc.)

macOS 13.6.2
@Liversticks Liversticks added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Dec 19, 2023
@github-actions github-actions bot added the @aws-cdk/aws-autoscaling Related to Amazon EC2 Auto Scaling label Dec 19, 2023
@pahud
Copy link
Contributor

pahud commented Dec 19, 2023

Understand but if you look at the CFN spec, it does not return the ARN of the resource
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-applicationautoscaling-scalabletarget.html#aws-resource-applicationautoscaling-scalabletarget-return-values

CDK could build and return the ARN in the constructor for known resources such as ecs services based on known props. This might be a very handy in your use cases but I guess you still can build the ARN based on all the information you have. Making this a p2 and we welcome more ideas here.

@pahud pahud added p2 effort/medium Medium work item – several days of effort and removed needs-triage This issue or PR still needs to be triaged. labels Dec 19, 2023
@github-actions github-actions bot mentioned this issue Jan 1, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
@aws-cdk/aws-autoscaling Related to Amazon EC2 Auto Scaling effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pahud @Liversticks