Skip to content
This repository has been archived by the owner on Jan 8, 2024. It is now read-only.

runnerinstall/aws-ecs: Add AddTags permission to ODR IAM policy. #4818

Merged
merged 1 commit into from
Jul 7, 2023
Merged

runnerinstall/aws-ecs: Add AddTags permission to ODR IAM policy. #4818

merged 1 commit into from
Jul 7, 2023

Conversation

paladin-devops
Copy link
Contributor

@paladin-devops paladin-devops commented Jun 21, 2023
edited
Loading

The AddTags permission is required when Waypoint manages the ALB resource for the AWS ECS plugin. If the user supplies their own ALB, this permission is not needed, because the plugin won't add a tag to indicate that it's managed by Waypoint.

@paladin-devops paladin-devops self-assigned this Jun 21, 2023
@github-actions github-actions bot added the core label Jun 21, 2023
@paladin-devops
runnerinstall/aws-ecs: Add AddTags permission to ODR IAM policy.
2625cd7 
The AWS ECS plugin may need to add tags to an AWS ALB, and therefore needs the AddTags permission to do so.
@paladin-devops paladin-devops marked this pull request as ready for review June 21, 2023 19:40
@paladin-devops paladin-devops requested a review from a team as a code owner June 21, 2023 19:40
catsby
catsby reviewed Jun 22, 2023
View reviewed changes
Copy link
Member

@catsby catsby left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The AWS ECS plugin may need to add tags to an AWS ALB

May?

This is proposed as a bug fix, but it's described as a optional feature. Is there a situation where without this an error will occur? If possible, we should mention that here incase people are out there looking for issues/PRs related to it. It will also help future reviewers or code spelunking to understand why this change was made

@paladin-devops
Copy link
Contributor Author

@catsby I updated the PR description to indicate the problem that this is fixing!

@paladin-devops paladin-devops merged commit 344b5a4 into main Jul 7, 2023
42 checks passed
@paladin-devops paladin-devops deleted the b-ecs-runner branch July 7, 2023 17:04
@hc-github-team-waypoint hc-github-team-waypoint mentioned this pull request Jul 7, 2023
Merged
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@catsby catsby catsby approved these changes

@izaaklauer izaaklauer izaaklauer approved these changes

Assignees

@paladin-devops paladin-devops

Labels
backport/0.11.x core plugin/ecs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@paladin-devops @catsby @izaaklauer