Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: s3 interface endpoint #575

Closed
wants to merge 4 commits into from
Closed

feat: s3 interface endpoint #575

wants to merge 4 commits into from

Conversation

andormarkus
Copy link
Contributor

@andormarkus andormarkus commented Feb 2, 2021
edited
Loading

Description

Creates the opportunity to create interface style S3 endpoint while it maintains backward API compatibility.
Fixing the error which was introduced in #573 and #564

Motivation and Context

In the PR #573 variable "s3_endpoint_type" was introduced. This works with default ("Gateway") value. However if you try to attach "Interface" interface style endpoint to a route table it will cause error

Used configuration

  enable_s3_endpoint        = true
  enable_public_s3_endpoint = false
  s3_endpoint_type          = "Interface"

Error message

Error: An Interface VPC Endpoint must always have at least one Security Group




A gateway style endpoint attach itself to a route table
Screenshot 2021-02-02 at 22 20 44




An interface style endpoint attach itself to subnets and needs SG to make it work
Screenshot 2021-02-02 at 22 21 08

@andormarkus andormarkus changed the title feat:s3 interface endpoint feat: s3 interface endpoint Feb 2, 2021
@andormarkus andormarkus mentioned this pull request Feb 3, 2021
Merged
@bodgit
Copy link

bodgit commented Feb 16, 2021

Just looking through the existing PR's to see if anyone had added support for this. The S3 interface endpoint doesn't support private DNS though as I just found out.

@proveadrian proveadrian mentioned this pull request Feb 17, 2021
Closed
@bryantbiggs bryantbiggs mentioned this pull request Feb 22, 2021
Merged
@bodgit bodgit mentioned this pull request Feb 24, 2021
Closed
bodgit added a commit to aspectcapital/terraform-aws-vpc that referenced this pull request Feb 24, 2021
@bodgit
fix: Add explicit parameters for S3 interface endpoint
1976823 
This makes the existing S3 endpoint parameters purely for the gateway
type and adds new parameters for the S3 interface type. The existing
parameters that don't make sense for a gateway endpoint are removed as
well as the parameter for choosing the type.

The missing outputs are also added for parity with existing endpoints.

Based on the work in terraform-aws-modules#575.

Fixes terraform-aws-modules#603
@bodgit bodgit mentioned this pull request Feb 24, 2021
Closed
@github-actions
Copy link

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 31, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@andormarkus @bodgit