Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for externalId as an optional annotation #213

Merged
merged 7 commits into from
Jul 29, 2019
Merged

Add support for externalId as an optional annotation #213

merged 7 commits into from
Jul 29, 2019

Conversation

ColinHebert
Copy link
Contributor

AWS supports a filtering system via ExternalId which allows to verify that the system attempting to assume the role is not making a mistake.
This adds the support of an externalId annotation (defaults to iam.amazonaws.com/external-id) so when the prod is created, an externalId can be provided and passed through as part of the assume-role operation.

@coveralls
Copy link

coveralls commented May 21, 2019
edited
Loading

Coverage Status

Coverage decreased (-0.5%) to 19.481% when pulling 2b58582 on ColinHebert:handle_external_id into f121ebe on jtblin:master.

Jacobious52
Jacobious52 approved these changes Jul 24, 2019
View reviewed changes
Copy link
Collaborator

@Jacobious52 Jacobious52 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks good to me. I've tested this PR with and without external-id on my lab cluster and the behaviour is as expected. This functionality would be helpful for certain use cases while remaining optional. Thoughts on merging? It would be awesome to be able to cut a release and use the upstream.

mappings/mapper_test.go Show resolved Hide resolved
@struz
Copy link
Collaborator

struz commented Jul 29, 2019

LGTM, have looked over this with @Jacobious52

@struz struz merged commit 17c0088 into jtblin:master Jul 29, 2019
@Jacobious52 Jacobious52 mentioned this pull request Aug 30, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Jacobious52 Jacobious52 Jacobious52 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@ColinHebert @coveralls @struz @Jacobious52