modernisation-platform
modernisation-platform copied to clipboard
ministryofjustice
Move things out of delegated access that don't need higher credentials
User Story
Move everything that doesn't need the root account access from delegate access to member bootstrap
User Type(s)
Value
Questions / Assumptions / Hypothesis
Definition of done
- [ ] readme has been updated
- [ ] user docs have been updated
- [ ] another team member has reviewed
- [ ] tests are green
- [ ] UR test OR added to continual research plan
Reference
How to write good user stories
This issue is stale because it has been open 90 days with no activity.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
what can be taken out - need this information to consider it 'refined'
Everything apart from this - https://github.com/ministryofjustice/modernisation-platform/blob/main/terraform/environments/bootstrap/delegate-access/iam.tf#L12 Things relating to this and also this: https://github.com/ministryofjustice/modernisation-platform/blob/main/terraform/environments/bootstrap/delegate-access/policies.tf
Everything else should be able to be moved.
Needs to be tested, most stuff can be deleted and recreated, some things might need to import..
-
Migrated following resources from delegate access to member bootstrap
- Collaborators roles
- GitHub-oidc role
- AWSRTSSupport role
- iam account alias resource
- SSM Parameters
-
Migrated All policies from delegate access to single-sign-on
#6144 #6156 #6244 #6254
