cluster-api-provider-aws Support adding a PermissionsBoundary to IAM Roles created from clusterawsadm bootstrap iam create-cloudformation-stack

Support adding a PermissionsBoundary to IAM Roles created from clusterawsadm bootstrap iam create-cloudformation-stack

Open mmb opened this issue 1 year ago • 3 comments

trafficstars

Due to security requirements I need IAM roles to have an attached PermissionsBoundary. I propose to add an optional permissionsBoundary field to the bootstrap config that accepts a single PermissionsBoundary ARN and adds it to all IAM roles created as part of the CloudFormation stack.

I have a straightforward working patch for this and can submit a PR if it would be considered.

cluster-api-provider-aws cluster-api-provider-aws copied to clipboard

Support adding a PermissionsBoundary to IAM Roles created from clusterawsadm bootstrap iam create-cloudformation-stack

cluster-api-provider-aws
cluster-api-provider-aws copied to clipboard