modernisation-platform icon indicating copy to clipboard operation
modernisation-platform copied to clipboard

Published 20 hours ago verified publisher icon ministryofjustice

Allow github-actions role to assume required roles

Open davidkelliott opened this issue 2 years ago • 2 comments

User Story

The github-actions role created in #2036 needs to be able to assume the following roles:

same member account - :role/MemberInfrastrucutureAccess role - https://github.com/ministryofjustice/modernisation-platform/blob/main/terraform/environments/bootstrap/delegate-access/iam.tf#L33

core-vpc roles eg - :role/member-delegation-hmpps-test - https://github.com/ministryofjustice/modernisation-platform/blob/main/terraform/environments/core-vpc/vpc.tf#L256

core-network-services roles - :role/modify-dns-records https://github.com/ministryofjustice/modernisation-platform/blob/main/terraform/environments/core-network-services/iam.tf#L6

Value

Allows the role to be assumed by the github-actions role

Questions / Assumptions / Hypothesis

Definition of done

  • [ ] roles have been amended
  • [ ] another team member has reviewed
  • [ ] tests are green
  • [ ] UR test OR added to continual research plan

Reference

How to write good user stories

davidkelliott avatar Jul 20 '22 11:07 davidkelliott

https://github.com/ministryofjustice/modernisation-platform/issues/1975

davidkelliott avatar Jul 21 '22 10:07 davidkelliott

Requires completion of #2035 to unblock this story

dms1981 avatar Jul 28 '22 09:07 dms1981