aws-control-tower-customizations icon indicating copy to clipboard operation
aws-control-tower-customizations copied to clipboard

Published 20 hours ago verified publisher icon aws-solutions

Allow addition of user/role to be added to the S3 bucket KMS key

Open e88z4 opened this issue 3 years ago • 1 comments
trafficstars

Is your feature request related to a problem? Please describe. We are using a custom pipeline outside AWS to push our manifest file into the S3 bucket. We manually added the role to the KMS key resource based policy in order to upload to the S3 bucket for control tower. We also constantly upgrade our CFCT customization to the latest version. Each time there is an upgrade, we have to manually add the role to the KMS key resource base policy.

Describe the feature you'd like Please add a parameter in your cloudformation template to allow custom role/user to be added to the KMS key.

e88z4 avatar Oct 26 '22 13:10 e88z4

Thanks @e88z4 for bringing this up, I'll make a backlog item with the team to discuss this feature request.

balltrev avatar Oct 31 '22 18:10 balltrev