Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(webhook): grant KMS permission to decrypt wehn using EventBridge #4220

Merged
merged 2 commits into from
Oct 29, 2024
Merged

fix(webhook): grant KMS permission to decrypt wehn using EventBridge #4220

merged 2 commits into from
Oct 29, 2024

Conversation

npalm
Copy link
Collaborator

@npalm npalm commented Oct 29, 2024
edited
Loading

Description

This PR grants the webhook (for EventBridge) access to the provided KMS key. In case no key is provided a dummy policy will be created. This to avoid terraform conditon is throwing errors when a KMS key is created in the same Terraform deploy as runner module

Tested

  • default example with KMS no eventbridge
  • default example with KMS and eventbridge
  • default example without KMS and eventbridge
  • default example without KMS no eventbridge

fix: #4218

@npalm npalm requested a review from Brend-Smits October 29, 2024 19:02
@npalm npalm merged commit 380bcaf into main Oct 29, 2024
47 checks passed
@npalm npalm deleted the npalm/fix/kms-eventbridge-webhook branch October 29, 2024 19:30
@forest-releaser forest-releaser bot mentioned this pull request Oct 29, 2024
Merged
npalm pushed a commit that referenced this pull request Oct 30, 2024
@forest-releaser
chore(main): release 5.18.1 (#4217)
0c52580 
🤖 I have created a release *beep* *boop*
---


##
[5.18.1](philips-labs/terraform-aws-github-runner@v5.18.0...v5.18.1)
(2024-10-29)


### Bug Fixes

* **lambda:** bump the aws group in /lambdas with 7 updates
([#4211](https://github.com/philips-labs/terraform-aws-github-runner/issues/4211))
([d18dcaa](philips-labs/terraform-aws-github-runner@d18dcaa))
* **lambda:** bump the aws-powertools group in /lambdas with 4 updates
([#4212](https://github.com/philips-labs/terraform-aws-github-runner/issues/4212))
([9c9219b](philips-labs/terraform-aws-github-runner@9c9219b))
* **webhook:** grant KMS permission to decrypt wehn using EventBridge
([#4220](https://github.com/philips-labs/terraform-aws-github-runner/issues/4220))
([380bcaf](philips-labs/terraform-aws-github-runner@380bcaf))
* **webhook:** result message webhook
([#4221](https://github.com/philips-labs/terraform-aws-github-runner/issues/4221))
([8099c17](philips-labs/terraform-aws-github-runner@8099c17))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).

Co-authored-by: forest-releaser[bot] <80285352+forest-releaser[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mpas mpas mpas approved these changes

@ScottGuymer ScottGuymer Awaiting requested review from ScottGuymer

@stuartp44 stuartp44 Awaiting requested review from stuartp44

@koendelaat koendelaat Awaiting requested review from koendelaat

@Brend-Smits Brend-Smits Awaiting requested review from Brend-Smits

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

CMK encryption for webhook broken when EventBridge enabled
2 participants
@npalm @mpas