terraform-aws-iam icon indicating copy to clipboard operation
terraform-aws-iam copied to clipboard

Published 20 hours ago β€’ verified publisher icon terraform-aws-modules

feat: Adding sse-kms support for Mountpoint S3 CSI driver EKS IRSA

Open philslab-ninja opened this issue 8 months ago β€’ 1 comments

Description

To use aws:kms encryption with the Mountpoint S3 CSI driver the IAM policy needs to include kms:Decrypt and kms:GenerateDataKey permissions for the KMS key used for the bucket(s)

Motivation and Context

Without the change usage of Buckets with aws:kms encryption is not possible for Mountpoint S3 CSI driver

Breaking Changes

none

How Has This Been Tested?

  • [x] I have tested and validated the changes using my fork on existing infrastructure
  • [x] I have executed pre-commit run -a on my pull request

philslab-ninja avatar Jun 20 '24 13:06 philslab-ninja