Provide initial functionality #6
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dav3r
added
documentation
jsf9k
reviewed
Jul 22, 2022
mcdonnnj
reviewed
Jul 26, 2022
dav3r
commented
Jul 26, 2022
mcdonnnj
approved these changes
Jul 29, 2022
There was a problem hiding this comment.
Thanks for your continued work on this. I have for your consideration some suggestions around the validation you added for the lambda_schedule_interval variable, correctly defining the rate provided to the schedule_expression argument, and then some miscellaneous capitalization/language suggestions.
dav3r
added
the
blocked
|
I just added the |
mcdonnnj
reviewed
Aug 3, 2022
9 tasks
mcdonnnj
reviewed
Sep 19, 2022
There was a problem hiding this comment.
Quick reminder to enable these ignore directives:
publish-egress-ip-terraform/.github/dependabot.yml
Lines 24 to 36 in d1c0a29
dav3r
added
the
hacktoberfest-accepted
6 tasks
The ZIP file is created with http://github.com/cisagov/publish-egress-ip-lambda Also: * Define the CloudWatch log group used by the Lambda * Schedule the Lambda function to run every X minutes using a CloudWatch event (configured via var.lambda_schedule_interval)
These are no longer needed now that we have moved to version 4.x of the Terraform AWS provider.
6 tasks
Using the current default runtime (nodejs14.x) of this module results in this error: "The runtime parameter of nodejs14.x is no longer supported for creating or updating AWS Lambda functions. We recommend you use the new runtime (nodejs20.x) while creating or updating functions." Using the AWS-recommended runtime of nodejs20.x results in this error: "expected runtime to be one of [nodejs nodejs4.3 nodejs6.10 nodejs8.10 nodejs10.x nodejs12.x nodejs14.x nodejs16.x java8 java8.al2 java11 python2.7 python3.6 python3.7 python3.8 python3.9 dotnetcore1.0 dotnetcore2.0 dotnetcore2.1 dotnetcore3.1 dotnet6 nodejs4.3-edge go1.x ruby2.5 ruby2.7 provided provided.al2 nodejs18.x python3.10 java17], got nodejs20.x" As best I can tell, this is because the Terraform AWS provider that we are currently pinned to (~> 4.9) does not support nodejs20.x. Given all of the info above, I chose to set the runtime to nodejs18.x and everything is working.
…ss bucket Things have changed a bit with how AWS does public bucket access since this code was initially created, so we must change with the times.
10 minutes was not long enough to iterate through all of our AWS accounts.
jsf9k
approved these changes
May 20, 2024
dav3r
commented
May 20, 2024
Co-authored-by: Shane Frasier <jeremy.frasier@gwe.cisa.dhs.gov>
mcdonnnj
requested changes
May 24, 2024
…Front to read the bucket contents This is a more secure bucket configuration, since there is no direct public access to the bucket. Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
6 tasks
mcdonnnj
approved these changes
May 30, 2024
Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
This is a recently agreed upon change to how our team should format Terraform. Co-authored-by: Nick <50747025+mcdonnnj@users.noreply.github.com>
dav3r
removed
the
blocked
dav3r
added a commit
that referenced
this pull request
Jun 3, 2024
Note that some of these changes were overlooked at the end of PR #6.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
🗣 Description
This PR implements the initial functionality for this repository, namely Terraform to do the following:
cisagov/publish-egress-ip-lambda, and it's execution role/policy💭 Motivation and context
We need a mechanism to publish egress IP info from a subset of our AWS accounts and this Terraform will allow us to deploy the infrastructure to do that.
This is part of the work for:
This PR is related to the following:
This PR resolves #5 (via f22ab6d).
🧪 Testing
I successfully applied all of this Terraform and confirmed that the Lambda was deployed, scheduled, and worked as expected. I also confirmed that I could cleanly destroy all of this Terraform.
✅ Pre-approval checklist
in code comments.
to reflect the changes in this PR.
✅ Pre-merge checklist
✅ Post-merge checklist