Skip to content

[v17] Only apply dynamic AWS settings to dynamic AWS dbs#51039

Merged
GavinFrazar merged 1 commit intobranch/v17from
gavinfrazar/v17-fix-db-assume-role-arn
Jan 14, 2025
Merged

[v17] Only apply dynamic AWS settings to dynamic AWS dbs#51039
GavinFrazar merged 1 commit intobranch/v17from
gavinfrazar/v17-fix-db-assume-role-arn

Conversation

@GavinFrazar
Copy link
Copy Markdown
Contributor

@GavinFrazar GavinFrazar commented Jan 14, 2025
edited by camscale
Loading

Changelog: Fixed a Database Service bug where db_service.resources.aws.assume_role_arn settings could affect non-AWS dynamic databases or incorrectly override db_service.aws.assume_role_arn settings.

Backports #50970 to branch/v17.

@GavinFrazar GavinFrazar added aws Used for AWS Related Issues. database-access Database access related issues and PRs backport labels Jan 14, 2025
@github-actions github-actions Bot requested review from greedy52 and r0mant January 14, 2025 19:55
@GavinFrazar
Only apply dynamic AWS settings to dynamic AWS dbs
3a76da2 
Dynamic database resource matchers can include AWS settings to assume an
AWS IAM role when they match a database.
The settings should only be applied to dynamic AWS databases.

The db service will no longer apply these settings to non-AWS databases.

It will also no longer apply these settings to databases discovered by
the legacy cloud watchers in db_service.aws - the cloud watchers have an
assume_role_arn setting that should not be overridden by dynamic
database matcher settings.

* fix reconcilitation race
@GavinFrazar GavinFrazar force-pushed the gavinfrazar/v17-fix-db-assume-role-arn branch from 230107d to 3a76da2 Compare January 14, 2025 20:07
@GavinFrazar GavinFrazar enabled auto-merge January 14, 2025 20:24
@GavinFrazar GavinFrazar added this pull request to the merge queue Jan 14, 2025
Merged via the queue into branch/v17 with commit 295ccf3 Jan 14, 2025
@GavinFrazar GavinFrazar deleted the gavinfrazar/v17-fix-db-assume-role-arn branch January 14, 2025 20:46
@camscale camscale mentioned this pull request Jan 17, 2025
Merged
@BrewTestBot BrewTestBot mentioned this pull request Jan 22, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@r0mant r0mant r0mant approved these changes

@greedy52 greedy52 greedy52 approved these changes

Assignees

No one assigned

Labels

aws Used for AWS Related Issues. backport database-access Database access related issues and PRs size/sm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@GavinFrazar @r0mant @greedy52