terraform-aws-vpc
terraform-aws-vpc copied to clipboard

Published 20 hours ago •

terraform-aws-modules

Reame
Issues

fix: Account for cases when we are using an existing cloudwatch log group for flow logs

Open danielmklein opened this issue 1 year ago • 2 comments

Description

When generating the flow log group ARNs to include in the policy, if we are using a pre-existing log group, take that into account and use the destination ARN passed in as a variable, rather than assuming that we created a log group ourselves.

Motivation and Context

Since 5.12.0, if you are using an existing CloudWatch Log Group for your flow logs destination ARN, this module tries to update the relevant IAM policy with an invalid policy document, which fails. See PR https://github.com/terraform-aws-modules/terraform-aws-vpc/pull/1088.

This fixes https://github.com/terraform-aws-modules/terraform-aws-vpc/issues/1117

Breaking Changes

None

How Has This Been Tested?

[x] I have updated at least one of the examples/* to demonstrate and validate my change(s)
[x] I have tested and validated these changes using one or more of the provided examples/* projects I have tested this in our own workspaces using a fork of this module -- I am happy to go further with the examples here if needed/desired.
[x] I have executed pre-commit run -a on my pull request

Sep 04 '24 18:09 danielmklein

Hiya @antonbabenko, apologies for poking, but is there anything I can do to help ferry this along? Am I missing anything here?

Sep 12 '24 13:09 danielmklein

@antonbabenko / @bryantbiggs -- sorry to re-bump, but I'd love to get this upstream. Please let me know if I'm missing anything critical here!

Sep 26 '24 13:09 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Oct 27 '24 00:10 github-actions[bot]

This is still relevant ✌️

Oct 28 '24 09:10 staticaland

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Nov 28 '24 00:11 github-actions[bot]

✨ still valid! ✨

Nov 28 '24 00:11 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Dec 29 '24 00:12 github-actions[bot]

Still relevant.

Dec 29 '24 01:12 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Jan 30 '25 00:01 github-actions[bot]

Still relevant.

Jan 30 '25 13:01 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Mar 02 '25 00:03 github-actions[bot]

🤠

Mar 02 '25 00:03 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

Apr 02 '25 00:04 github-actions[bot]

🍻

Apr 10 '25 19:04 danielmklein

This PR has been automatically marked as stale because it has been open 30 days with no activity. Remove stale label or comment or this PR will be closed in 10 days

May 11 '25 00:05 github-actions[bot]

This PR was automatically closed because of stale in 10 days

May 22 '25 00:05 github-actions[bot]

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

Jun 21 '25 02:06 github-actions[bot]