Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create S3 bucket for Rustup build artifacts #428

Merged
merged 4 commits into from
Jul 1, 2024
Merged

Create S3 bucket for Rustup build artifacts #428

merged 4 commits into from
Jul 1, 2024

Conversation

jdno
Copy link
Member

@jdno jdno commented Jun 18, 2024

A new S3 bucket is being created as part of the effort to rebuild the Rustup release process. The bucket will store the build artifacts for Rustup, which the GitHub Actions in rust-lang/rustup will produce.

Since the bucket is tied to a GitHub repository, only a single bucket in the production environment is being created.

@jdno
Create S3 bucket for Rustup build artifacts
6e8dab2 
A new S3 bucket is being created as part of the effort to rebuild the
Rustup release process. The bucket will store the build artifacts for
Rustup, which the GitHub Actions in rust-lang/rustup will produce.

Since the bucket is tied to a GitHub repository, only a single bucket in
the production environment is being created.
@jdno
Copy link
Member Author

jdno commented Jun 18, 2024

I've created this as a draft PR, since applying it will overwrite the secrets in rust-lang/rustup.

@jdno
Temporarily grant legacy permissions
5ea2535 
The current CI uploads Rustup build to the dev-static bucket. To not
break the existing workflow while implementing the new release process,
the current permissions are temporarily granted to the new user for
Rustup's CI. They should be removed once the new release process has
been implemented.
@jdno jdno marked this pull request as ready for review June 20, 2024 08:05
@jdno jdno mentioned this pull request Jun 21, 2024
Draft
@jdno jdno requested a review from Mark-Simulacrum June 21, 2024 10:38
Mark-Simulacrum
Mark-Simulacrum approved these changes Jun 21, 2024
View reviewed changes
terragrunt/modules/rustup/s3.tf Outdated
}

module "aws_iam_user" {
source = "../gha-iam-user"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should really be using OIDC for anything new, not IAM users.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we have a working configuration somewhere that we can either copy or extract into a module?

@jdno
Deploy new S3 bucket
68b75d9 
The new infrastructure for Rustup's build artifacts has been created.
The Terragrunt configuration is not deployed from a locked Git commit,
since only a single environment exists.
@jdno jdno mentioned this pull request Jun 27, 2024
Draft
@jdno jdno merged commit ae202dc into rust-lang:master Jul 1, 2024
3 checks passed
@jdno jdno deleted the rustup-builds branch July 1, 2024 10:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mark-Simulacrum Mark-Simulacrum Mark-Simulacrum approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jdno @Mark-Simulacrum