Conversation
Contributor
|
We are listing RDS DB Instances and RDS DB Clusters, so the role must include the following policy: {
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"rds:DescribeDBInstances",
"rds:DescribeDBClusters"
]
"Resource": "*"
}
]
} |
Contributor
|
When setting up the Integration we should strip out the Lines 96 to 114 in 8f80db4 |
kimlisa
force-pushed
the
lisa/hookup-rds-flow
branch
3 times, most recently
from
f4630d4 to
fb1365e
Compare
kimlisa
requested review from
marcoandredinis
and removed request for
ravicious
When storing state into location URL, it doesn't allow storing ReactElement, so I changed the icon element into string that refers to the correct icon. Also adds rds aurora tiles to Select Resources screen.
Helpful when user makes changes to the RDS instance (eg. tags) and needs to get the most up to date listing
Previously we required the agent matcher labels be an exact match of registered db labels otherwise we prevented the user from deploying an agent (which was wrong). Now the only requirement is that the matcher labels are all able to match against registered db labels.
kimlisa
force-pushed
the
lisa/hookup-rds-flow
branch
from
1c16a75 to
ccc5575
Compare
- Make label matching error less confusing by showing error upon user trying to generate command - Make label messaging clearer - Emit errors when failing to fetch rds dbs
kimlisa
force-pushed
the
lisa/hookup-rds-flow
branch
from
ccc5575 to
b1217f8
Compare
Contributor
Author
|
@ryanclark friendly ping |
Contributor
Author
|
@avatus friendly ping |
ryanclark
approved these changes
Apr 25, 2023
avatus
reviewed
Apr 25, 2023
Contributor
avatus
left a comment
avatus
left a comment
There was a problem hiding this comment.
Didn't get to test locally yet but the code looks great. Just a few nits
Comment on lines
+262
to
+265
| You can define your own labels that this database service will use | ||
| to identify your registered database. The labels you define must | ||
| match with the labels that was defined for the registered database | ||
| (from previous step): |
Contributor
There was a problem hiding this comment.
Suggested change
| You can define your own labels that this database service will use | |
| to identify your registered database. The labels you define must | |
| match with the labels that was defined for the registered database | |
| (from previous step): | |
| You can define your own labels that this database service will use | |
| to identify your registered database. The labels you define must | |
| match the labels that were defined for the registered database | |
| (from previous step): |
Comment on lines
+294
to
+295
| The matcher labels must be able to match with the labels defined for | ||
| the registered database. Use wildcards to match by any labels. |
Contributor
There was a problem hiding this comment.
Suggested change
| The matcher labels must be able to match with the labels defined for | |
| the registered database. Use wildcards to match by any labels. | |
| The matcher labels must be able to match with the labels defined for | |
| the registered database. Use wildcards to match with any labels. |
| </Link>{' '} | ||
| in order to be used with Database Access for RDS. To enable, users | ||
| must have a <Mark>rds_iam</Mark> role: | ||
| Users must have a <Mark>rds_iam</Mark> role: |
Contributor
There was a problem hiding this comment.
I know this said "a" rds_iam role previously, and "a" is correct if we removed the role name and just said "a role". But it reads weird and if this will always be rds_iam here, I think we should change to Users must have an rds_iam role". However, feel free to skip this as i can see it working both ways
| // and then coming back to resume the flow.) | ||
| export type DiscoverUrlLocState = { | ||
| // discover contains the fields necessary to be able to resume | ||
| // the flow from where user left of. |
Contributor
There was a problem hiding this comment.
Suggested change
| // the flow from where user left of. | |
| // the flow from where user left off. |
| // react routes (eg. in RDS database flow, it is required of user | ||
| // to create a AWS OIDC integration which requires changing route | ||
| // and then coming back to resume the flow.) | ||
| export type DiscoverUrlLocState = { |
Contributor
There was a problem hiding this comment.
I think we should change this to DiscoverUrlLocationState, just to be more clear. When we are working with it and setting it above, it's called locationState so makes more sense to keep it that way.
avatus
approved these changes
Apr 25, 2023
public-teleport-github-review-bot
Bot
removed the request for review
from marcoandredinis
kimlisa
added a commit
that referenced
this pull request
May 1, 2023
* Clean up aws oidc integration instructions * Change ResourceSpec icon type from ReactElement to string When storing state into location URL, it doesn't allow storing ReactElement, so I changed the icon element into string that refers to the correct icon. Also adds rds aurora tiles to Select Resources screen. * Fix the expected backend aws status value for RDS list * For RDS list, allow refreshing the table Helpful when user makes changes to the RDS instance (eg. tags) and needs to get the most up to date listing * Update rds db setup access text info * Make create database dialog more consistent btwn states * Fix label matching Previously we required the agent matcher labels be an exact match of registered db labels otherwise we prevented the user from deploying an agent (which was wrong). Now the only requirement is that the matcher labels are all able to match against registered db labels. * Implement resuming discover flow from where user left of * Enable integration access and rds flow * Strip 443 ports from cluster uri * Use the labels returned from polling db instaed * Various touch ups - Make label matching error less confusing by showing error upon user trying to generate command - Make label messaging clearer - Emit errors when failing to fetch rds dbs * Address CR and update test
kimlisa
added a commit
that referenced
this pull request
May 1, 2023
* Clean up aws oidc integration instructions * Change ResourceSpec icon type from ReactElement to string When storing state into location URL, it doesn't allow storing ReactElement, so I changed the icon element into string that refers to the correct icon. Also adds rds aurora tiles to Select Resources screen. * Fix the expected backend aws status value for RDS list * For RDS list, allow refreshing the table Helpful when user makes changes to the RDS instance (eg. tags) and needs to get the most up to date listing * Update rds db setup access text info * Make create database dialog more consistent btwn states * Fix label matching Previously we required the agent matcher labels be an exact match of registered db labels otherwise we prevented the user from deploying an agent (which was wrong). Now the only requirement is that the matcher labels are all able to match against registered db labels. * Implement resuming discover flow from where user left of * Enable integration access and rds flow * Strip 443 ports from cluster uri * Use the labels returned from polling db instaed * Various touch ups - Make label matching error less confusing by showing error upon user trying to generate command - Make label messaging clearer - Emit errors when failing to fetch rds dbs * Address CR and update test
kimlisa
added a commit
that referenced
this pull request
May 4, 2023
kimlisa
added a commit
that referenced
this pull request
May 6, 2023
Closed
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
part of #22130