-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
allow multiple resources to be specified on a policy #1244
Comments
@kapilt - what's the implications for the output directory with this change? |
good question, one thought was switching resources.json to $resource-type.json and ditto for logs. effectively we'll have the expanded policies sharing the same output directory, but with the same policy name, but different files per resource type. report gets a little wierd across multiple resources, and would likely need a resource specifier to disambiguate if given a multi resource policy from config. another thought that might be easier and less backward compatibility issues would be suffixing/prefixing the policy name with resource type when expanding. |
@kapilt has this feature been added? We are pretty much trying to solve a similar issue: |
If this has been implemented please let me know. Right now I'm replicated the same tagging policy for each resource type. It would be great if I could use a list of resources and events. thanks |
The easiest way to avoid the duplication in absence of this is to, use yaml anchor and reference syntax to minimize the duplication. https://confluence.atlassian.com/bitbucket/yaml-anchors-960154027.html |
I tried using the anchor and reference syntax but I'm having an issue with override values.
When I validate, I get back the following error:
It doesn't seem to matter how I space the alias. It always errors out. If I run the exact same yaml with a simple |
@mykmug thats not correct anchor / ref syntax, if you yaml load that file in python and print it you'll see that its putting a dictionary for actions not an array
|
@kapilt Thanks the suggestion to check the output via Python. I loaded up my repl and played around a bit and ended up with the following. It allows me to override as needed while centralizing the fiddly bits in one location.
|
Any planned progress on |
Are there still plans to implement this feature? |
I also would like to know if there are any plans implementing this |
This would be a great feature to have! |
Do we have any update on this, is this expected to be available? |
implement and use expand_resources for execution ala expand_regions with --region all. literal in policy should be either string or array. ala
The text was updated successfully, but these errors were encountered: