Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix: Enable per project assumerole support in drift detection #1315

Merged
merged 5 commits into from
Apr 15, 2024
Merged

Fix: Enable per project assumerole support in drift detection #1315

merged 5 commits into from
Apr 15, 2024

Conversation

JoshuaJackson-jobvite
Copy link
Contributor

@JoshuaJackson-jobvite JoshuaJackson-jobvite commented Mar 29, 2024
edited

Why do we need this change?

Drift detection currently does not take the properties from the digger.yml and do authentication changes to ensure that it can review the live resources for a given account. This attempts to fix that behavior to allow drift detection to work

What effects does this change have?

  • Add StateEnvProvider and CommandEnvProvider which are used in PopulateAwsCredentialsEnvVarsForJob to gather and do the appropriate adjustments.

should fix #1133

@JoshuaJackson-jobvite
Copy link
Contributor Author

Apologies for the multiple commits related to others I'd not planned on multiple fixes being needed and my develop still has changes that I don't want to close/reopen the pr related to. So will try and keep this clean

@motatoes
Copy link
Contributor

Hey @JoshuaJackson-jobvite thanks for submitting this ! I had a quick look and I think that should resolve the issue. I haven't tested it myself but I think that's what is missing to get drift assumerole working. I'm merging and releasing

Once again the e2e test fail for external contributors due to missing secret so ignoring for now

@motatoes motatoes merged commit 6bbd1e0 into diggerhq:develop Apr 15, 2024
3 of 4 checks passed
ben-of-codecraft pushed a commit to ben-of-codecraft/digger that referenced this pull request May 21, 2024
@JoshuaJackson-jobvite
Fix: Enable per project assumerole support in drift detection (digger…
e057cfb 
…hq#1315)

* add caching behaviors as an option to the action

* fix: mixed if on the cache-save

* initial attempt at fixing the assume

* restore to upstream since develop has changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@motatoes motatoes motatoes approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Drift-detection mode isn't paying attention to the aws_role_to_assume config
2 participants
@JoshuaJackson-jobvite @motatoes