-
Notifications
You must be signed in to change notification settings - Fork 151
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Auto-generate IAM policies #2393
Conversation
Does the PR have any schema changes?Looking good! No breaking changes found. |
Manually merge generated definitions with existing code.
2193e83
to
3a06a20
Compare
Does the PR have any schema changes?Looking good! No breaking changes found. |
Ok, we've got a silly problem. Python adds {Name: "AWSCloudTrail_FullAccess", Value: "arn:aws:iam::aws:policy/AWSCloudTrail_FullAccess"},
{Name: "AWSCloudTrailFullAccess", Value: "arn:aws:iam::aws:policy/AWSCloudTrailFullAccess"}, In python these are generated as AWS_CLOUD_TRAIL_FULL_ACCESS = "arn:aws:iam::aws:policy/AWSCloudTrail_FullAccess"
AWS_CLOUD_TRAIL_FULL_ACCESS = "arn:aws:iam::aws:policy/AWSCloudTrailFullAccess" |
- Add notes for manual changes. - Remove prefix for clashing names as has been done elsewhere in the past.
Logged an issue around the python conflicts (pulumi/pulumi#12314) and am just using the approach used elsewhere in the enum - to drop the leading "AWS" or "Amazon" on the new names. |
3a06a20
to
f99b8db
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The next step would be to hook this up with CI so we're alerted to new policies.
Does the PR have any schema changes?Looking good! No breaking changes found. |
Does the PR have any schema changes?Looking good! No breaking changes found. |
1 similar comment
Does the PR have any schema changes?Looking good! No breaking changes found. |
Manually merge generated definitions with existing code.
Fixes #2269
Superceeds #2384