community.aws icon indicating copy to clipboard operation
community.aws copied to clipboard

Published 20 hours ago verified publisher icon ansible-collections

Add support for Config recording strategies

Open rmahroua opened this issue 1 year ago • 3 comments

SUMMARY

Boto3 in 1.26.144 version add support for AWS Config recording strategies. Recording strategies allow for more granular control on how Config recorders record AWS resources. This update add support for recording strategies. Notice that is a "breaking change" because it requires users to update their boto3 package

ISSUE TYPE
  • Feature Pull Request
COMPONENT NAME

config_recorder

ADDITIONAL INFORMATION

Before

- name: Create Configuration Recorder for AWS Config
  community.aws.config_recorder:
    name: test_configuration_recorder
    state: present
    role_arn: 'arn:aws:iam::123456789012:role/AwsConfigRecorder'
    recording_group:
        all_supported: true
        include_global_types: true

After:

- name: Define a recording strategy to record global resources defined as resource types
  community.aws.config_recorder:
    name: test_configuration_recorder
    state: present
    role_arn: 'arn:aws:iam::123456789012:role/AwsConfigRecorder'
    resource_types:
      - AWS::EC2::Instance
    recording_group:
        all_supported: false
        include_global_types: false
        recording_strategy: INCLUSION_BY_RESOURCE_TYPES

rmahroua avatar Jun 28 '23 19:06 rmahroua