Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add AWS Auth WIF fields #2243

Merged
merged 21 commits into from
May 30, 2024
Merged

Add AWS Auth WIF fields #2243

merged 21 commits into from
May 30, 2024

Conversation

Zlaticanin
Copy link
Contributor

No description provided.

@Zlaticanin Zlaticanin marked this pull request as ready for review May 17, 2024 21:27
@Zlaticanin Zlaticanin requested a review from vinay-gopalan May 17, 2024 21:30
@Zlaticanin Zlaticanin requested a review from a team May 22, 2024 21:58
@Zlaticanin
Copy link
Contributor Author

Zlaticanin commented May 29, 2024
edited
Loading

Not sure what happened with the CI tests🫤

@fairclothjm
Copy link
Contributor

fairclothjm commented May 29, 2024
edited
Loading

@Zlaticanin TFVP doesn't run the CI build for pushes that don't update any source code files. So changelog-only pushes won't trigger it.

Your latest build was https://github.com/hashicorp/terraform-provider-vault/actions/runs/9291889661/job/25571472671 for commit 83ada4d so I think you are good. 👍

fairclothjm
fairclothjm reviewed May 29, 2024
View reviewed changes
vault/resource_aws_auth_backend_client.go
Read: provider.ReadWrapper(awsAuthBackendRead),
Update: awsAuthBackendWrite,
Delete: awsAuthBackendDelete,
Exists: awsAuthBackendExists,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We need to be careful here since we are changing how TFVP does existence checks. We want to make sure awsAuthBackendRead matches the existence logic from awsAuthBackendExists. If we do decide to change something, we should probably make a Change entry in the changelog.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1 on being mindful when removing Exists methods. There shouldn't be a change in behavior in this case, since the Read method matches the existence logic from Exists. We should be okay to not call things out in the CL explicitly.

It is also beneficial to update all of these methods to Context functions instead, especially the Read method. According to the docs, Exists has been deprecated in favor of ReadContext.

Looks like we already made the upgrades, so we should be good 👍🏼

vinay-gopalan
vinay-gopalan approved these changes May 29, 2024
View reviewed changes
Copy link
Contributor

@vinay-gopalan vinay-gopalan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Had a couple of comments, but none of them are blocking.

FYI, for full WIF functionality in Auth engines, we also need to add the identity_token_key field to the Vault Auth Backend resource. I am taking care of that in the GCP Auth PR though, so I'm good with moving ahead with this PR's updates

CHANGELOG.md Outdated Show resolved Hide resolved
vault/resource_aws_auth_backend_client.go
Read: provider.ReadWrapper(awsAuthBackendRead),
Update: awsAuthBackendWrite,
Delete: awsAuthBackendDelete,
Exists: awsAuthBackendExists,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

+1 on being mindful when removing Exists methods. There shouldn't be a change in behavior in this case, since the Read method matches the existence logic from Exists. We should be okay to not call things out in the CL explicitly.

It is also beneficial to update all of these methods to Context functions instead, especially the Read method. According to the docs, Exists has been deprecated in favor of ReadContext.

Looks like we already made the upgrades, so we should be good 👍🏼

vault/resource_aws_auth_backend_client.go Outdated Show resolved Hide resolved
vault/resource_aws_auth_backend_client.go Outdated Show resolved Hide resolved
website/docs/r/aws_auth_backend_client.html.md Show resolved Hide resolved
vault/resource_aws_auth_backend_client_test.go Show resolved Hide resolved
@Zlaticanin Zlaticanin merged commit 64fe00a into main May 30, 2024
1 check passed
@Zlaticanin Zlaticanin deleted the VAULT-25132/add-aws-auth-wif-fields branch May 30, 2024 17:57
@vinay-gopalan vinay-gopalan added this to the 4.3.0 milestone May 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fairclothjm fairclothjm fairclothjm left review comments

@vinay-gopalan vinay-gopalan vinay-gopalan approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
4.3.0
Development

Successfully merging this pull request may close these issues.
3 participants
@Zlaticanin @fairclothjm @vinay-gopalan