Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Add variable to provide additional OIDC thumbprints #1865

Merged
merged 3 commits into from
Feb 15, 2022
Merged

feat: Add variable to provide additional OIDC thumbprints #1865

merged 3 commits into from
Feb 15, 2022

Conversation

c6-fviana
Copy link
Contributor

In the 17.x I was using a custom internal thumbprint for OIDC.
On new clusters provisioned by 18.x I had some problems to assume role by webIdentity due thumbprint check errors

I'm include a custom_oidc_thumbprints variable and concatenate it on aws_iam_openid_connect_provider.oidc_provider.thumbprint_list

Description

It allow us to include additional CA thumbprints for Identity Providers

Motivation and Context

Nowadays we have to use custom CA to allow access on remote endpoints our workloads doesn't working

Breaking Changes

There is no breaking changes

How Has This Been Tested?

I tested this feature setting a new thumbprint and as expected the new item was included on thumbprint list.
Was possible to see the chages on AWS Console in IAM > Identity Providers > $PROVIDER > Thumbprints

@c6-fviana
Resolves terraform-aws-modules#1832 add custom_oidc_thumbprints varia…
cc51300 
…ble and concatenate it on aws_iam_openid_connect_provider.oidc_provider.thumbprint_list
@bryantbiggs
Copy link
Member

please update title to feat: Add variable to provide additional OIDC thumbprints and run pre-commit hooks on PR (i.e. - pre-commit run -a) to fix documentation

@c6-fviana c6-fviana changed the title Resolves #1832 Add variable to provide additional OIDC thumbprints Feb 10, 2022
bryantbiggs
bryantbiggs approved these changes Feb 10, 2022
View reviewed changes
Copy link
Member

@bryantbiggs bryantbiggs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@antonbabenko the title will need to be tweaked slightly (prepend feat: , but otherwise its good to go 👍🏽

@c6-fviana c6-fviana changed the title Add variable to provide additional OIDC thumbprints fix Add variable to provide additional OIDC thumbprints Feb 10, 2022
@c6-fviana c6-fviana changed the title fix Add variable to provide additional OIDC thumbprints fix: Add variable to provide additional OIDC thumbprints Feb 10, 2022
@bryantbiggs
Copy link
Member

@c6-fviana this is a new piece of functionality so the title should be as I stated above feat: Add variable to provide additional OIDC thumbprints

@c6-fviana c6-fviana changed the title fix: Add variable to provide additional OIDC thumbprints feat: Add variable to provide additional OIDC thumbprints Feb 10, 2022
@c6-fviana
Copy link
Contributor Author

@c6-fviana this is a new piece of functionality so the title should be as I stated above feat: Add variable to provide additional OIDC thumbprints

OK! I updated it

@bryantbiggs
Copy link
Member

@antonbabenko this should be ready to go as well if you get some time

@antonbabenko antonbabenko merged commit 3fc9f2d into terraform-aws-modules:master Feb 15, 2022
antonbabenko pushed a commit that referenced this pull request Feb 15, 2022
@semantic-release-bot
chore(release): version 18.7.0 [skip ci]
e1a71e8 
## [18.7.0](v18.6.1...v18.7.0) (2022-02-15)

### Features

* Add variable to provide additional OIDC thumbprints ([#1865](#1865)) ([3fc9f2d](3fc9f2d))
@antonbabenko
Copy link
Member

This PR is included in version 18.7.0 🎉

baibailiha added a commit to baibailiha/terraform-aws-eks that referenced this pull request Sep 13, 2022
@baibailiha @semantic-release-bot
chore(release): version 18.7.0 [skip ci]
640b10d 
## [18.7.0](terraform-aws-modules/terraform-aws-eks@v18.6.1...v18.7.0) (2022-02-15)

### Features

* Add variable to provide additional OIDC thumbprints ([#1865](terraform-aws-modules/terraform-aws-eks#1865)) ([caf4b9b](terraform-aws-modules/terraform-aws-eks@caf4b9b))
@github-actions
Copy link

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Nov 10, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@bryantbiggs bryantbiggs bryantbiggs approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@c6-fviana @bryantbiggs @antonbabenko