-
-
Notifications
You must be signed in to change notification settings - Fork 28
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: private api gateways with vpce need policy #53
base: main
Are you sure you want to change the base?
Conversation
Important Cloud Posse Engineering Team Review RequiredThis pull request modifies files that require Cloud Posse's review. Please be patient, and a core maintainer will review your changes. To expedite this process, reach out to us on Slack in the |
/terratest |
9a47044
to
62c1840
Compare
main.tf
Outdated
policy = var.rest_api_policy | ||
policy = data.aws_iam_policy_document.default[0].json |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We should preserve the current functionality, no?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
the source policy is input here:
terraform-aws-api-gateway/main.tf
Line 25 in af83cc3
source_policy_documents = var.rest_api_policy == null ? [] : [var.rest_api_policy] |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
rest_api_id = aws_api_gateway_rest_api.this[0].id | ||
|
||
policy = var.rest_api_policy | ||
policy = data.aws_iam_policy_document.this[0].json |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
...so the user can pass additional policies preserving the current functionality
what
why
permission to use that endpoint
references