New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Azure/Aws resources should not hard fail on API exceptions #2613
Comments
The example @chris-rock gave - in which a run hard-failed with "The specified log group does not exist" - is not a connection error. It's an uncaught AWS API exception. |
For AWS resources, we may be able to wrap the call to |
@chris-rock , @jquick, @arlimus - Here is an example of intercepting a missing credentials exception, failing the controls individually, and issuing a log error message (the default AWS error message here is "unable to sign request without credentials set")
So, I'm issuing a long-form message via |
In progress on branch cw/catch-cloud-exceptions |
Fixed by #2636 |
A profile needs to be executable, but a control may fail. We currently throw exceptions for resources that stop full profile execution, resulting in no report. This will lead to issues if we expect json output e.g in Chef Automate. The controls needs to fail (ie, have a failure outcome but absorb any exceptions) if the resource cannot be executed, but we need to generate a report.
We should hook into the fail_resource if the resource connection is bad saying such.
The text was updated successfully, but these errors were encountered: