-
Notifications
You must be signed in to change notification settings - Fork 1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(aws): Flag to allow launching private thirdparty AMIs #1603
feat(aws): Flag to allow launching private thirdparty AMIs #1603
Conversation
d6331ce
to
04e796e
Compare
LGTM |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM after comments addressed and tests fixed
@@ -150,6 +149,7 @@ public void setDefaultResult(String defaultResult) { | |||
private String assumeRole; | |||
private String sessionName; | |||
private List<LifecycleHook> lifecycleHooks; | |||
private Boolean allowLaunchDescription; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You need to name this the same as the attribute on NetflixAmazonCredentials (it gets ObjectMapper.convertValue'd over there)
@@ -49,6 +49,7 @@ | |||
private final List<AWSRegion> regions; | |||
private final List<String> defaultSecurityGroups; | |||
private final List<LifecycleHook> lifecycleHooks; | |||
private final Boolean allowPrivateThirdPartyImages; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
can you make this little b boolean and assign a default value in the constructor? If we want to use this in non-groovy code it would be nice to not have to null check it
04e796e
to
d8b242f
Compare
d8b242f
to
8992a21
Compare
Some teams need the ability to launch private third-party AMIs. We don't want this capability allowed across the board, so I've added a flag that allows us to enable this on a per-account basis, which fits in well with the model that security has setup.
@spinnaker/netflix-reviewers PTAL