Pahud Hsieh

icon indicating a website link pahud.dev icon indicating an email [email protected]

icon company @aws icon location NY icon location Repositories under my account are personal projects and not supported by AWS.

Results 356 comments of Pahud Hsieh

Custom Domain - The role with name AWSAmplifyDomainRole-Z073737928BZTN2WA6J6L cannot be found.

## Issue Summary Users encounter "The role with name AWSAmplifyDomainRole-[ID] cannot be found" error when managing custom domains in AWS Amplify Hosting. The error prevents domain configuration edits and SSL...

Custom query

## Current vs Expected Behavior **Current Documentation State:** ```graphql type Mutation { myCustomMutation(args: String): String # your custom mutations here } type Query { myCustomQuery(args: String): String # your custom...

aws-eks: Support AL2_ARM_64_GPU NodeGroupAmiType

According to the [doc](https://docs.aws.amazon.com/eks/latest/userguide/choosing-instance-type.html) >All Amazon EKS AMIs don't currently support the g5g and mac families. I guess it's not supported yet. But I am interested to know your use...

aws-eks: support setting KubernetesGroups in AccessEntry

Thank you @Xfel . Are you proposing to support custom group names used in `RoleBindings` and `ClusterRoleBindingsthat` and map the custom groups to IAM roles without using pre-defined access entries?...

aws-eks: support setting KubernetesGroups in AccessEntry

>Add a "kubernetesGroups" parameter to the AccessEntry construct. Also, the "accessPolicies" parameter should be optional to allow specifying an AccessEntry that only uses the group mapping. Yes, we havn't implemented...

aws-eks: support setting KubernetesGroups in AccessEntry

@Xfel Thank you for your case sharing. Can you share some sample manifests for the custom group so I can test it when I work on a pull request?

aws-eks: support setting KubernetesGroups in AccessEntry

OK I guess we can test it this way 1. This creates a ClusterRoleBinding that binds the "edit" ClusterRole to the "my-group" group: ```sh kubectl create clusterrolebinding my-group --clusterrole=edit --group=my-group...

chore(elbv2): add post-quantum cryptography SSL policies

>Can you also update RECOMMENDED_TLS to ELBSecurityPolicy-TLS13-1-2-PQ-2025-09? It is purely additive, and I'd love to see the default recommended policy be post-quantum secure as well! Sure I will look into...

chore(elbv2): add post-quantum cryptography SSL policies

> Can you also update `RECOMMENDED_TLS` to `ELBSecurityPolicy-TLS13-1-2-PQ-2025-09`? It is purely additive, and I'd love to see the default recommended policy be post-quantum secure as well! >AWS recommends implementing the...

chore(elbv2): add post-quantum cryptography SSL policies

> I think the new Post Quantum `SslPolicy.RECOMMENDED_TLS` policy should be `ELBSecurityPolicy-TLS13-1-2-PQ-2025-09` not `ELBSecurityPolicy-TLS13-1-2-Res-PQ-2025-09`. The `-Res` in the name stands for "Restricted", and removes AES-CBC algorithms from the ELB Security...