Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add ExternalID support to AWS Auth STS configuration #26628

Merged
merged 9 commits into from
May 7, 2024

Conversation

kpcraig
Copy link
Contributor

@kpcraig kpcraig commented Apr 24, 2024

This PR adds support for ExternalIDs to be included in assume-role requests.

@kpcraig kpcraig requested a review from a team as a code owner April 24, 2024 17:02
@github-actions github-actions bot added the hashicorp-contributed-pr If the PR is HashiCorp (i.e. not-community) contributed label Apr 24, 2024
@kpcraig kpcraig requested a review from a team as a code owner April 24, 2024 17:04
Copy link

github-actions bot commented Apr 24, 2024

CI Results:
All Go tests succeeded! ✅

Copy link

github-actions bot commented Apr 24, 2024

Build Results:
All builds succeeded! ✅

@kpcraig
Copy link
Contributor Author

kpcraig commented Apr 24, 2024

There probably should be a milestone, but the internal JIRA issue doesn't have one (yet?)

@kpcraig kpcraig requested a review from a team as a code owner April 30, 2024 15:47
website/content/api-docs/auth/aws.mdx Outdated Show resolved Hide resolved
stsReq.Data = data
// create another entry to test the list operation
stsReq.Data = data2
// create another entry with alternate data to test ExternalID and LIST
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If possible, could we add a block for checking "external_id": "fake_id" existence in a read response before line 1455?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

added a response check for data2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you!

Copy link
Contributor

@schavis schavis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

docs update lgtm

@schavis
Copy link
Contributor

schavis commented May 2, 2024

@kpcraig I'm assuming the update is meant for 1.17, but if it's not, don't forget to add the relevant backport labels for 1.16, 1.15, and/or 1.14 so the update publishes to the correct docset :)

Copy link
Contributor

@thyton thyton left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 20, 2024
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628
helenfufu added a commit to hashicorp/terraform-provider-vault that referenced this pull request Nov 22, 2024
* add external_id to aws_auth_backend_sts_role resource

* update docs for aws_auth_backend_sts_role resource

* update acceptance tests

* only support external_id on vault versions >= 1.17
external_id support for aws auth sts configuration added in 1.17.0: hashicorp/vault#26628

* separate import test for external_id case

* update changelog

* fix changelog: move change under unreleased

* add import test steps and remove separate import tests, add separate withExternalID test

* handle error on d.Set

* rename testAccAWSAuthBackendSTSRoleConfig_basic to more general testAccAWSAuthBackendSTSRoleConfig

* note 1.17 version requirement in doc

Co-authored-by: vinay-gopalan <[email protected]>

---------

Co-authored-by: vinay-gopalan <[email protected]>
@fairclothjm fairclothjm modified the milestones: 1.17.0, 1.17.1 Dec 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
hashicorp-contributed-pr If the PR is HashiCorp (i.e. not-community) contributed pr/no-milestone
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants