Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Avoid attaching security groups to NLB in unsupported regions and fix integration tests #6448

Open
wants to merge 6 commits into
base: release-3.11
Choose a base branch
from
Open

Avoid attaching security groups to NLB in unsupported regions and fix integration tests #6448

wants to merge 6 commits into from

Conversation

hanwen-pcluste
Copy link
Contributor

@hanwen-pcluste hanwen-pcluste commented Oct 2, 2024
edited
Loading

See commits descriptions for details

Description of changes

  • Tests in the unsupported regions passed

Tests

  • Describe the automated and/or manual tests executed to validate the patch.
  • Describe the added/modified tests.

References

  • Link to impacted open issues.
  • Link to related PRs in other packages (i.e. cookbook, node).
  • Link to documentation useful to understand the changes.

Checklist

  • Make sure you are pointing to the right branch.
  • If you're creating a patch for a branch other than develop add the branch name as prefix in the PR title (e.g. [release-3.6]).
  • Check all commits' messages are clear, describing what and why vs how.
  • Make sure to have added unit tests or integration tests to cover the new/modified code.
  • Check if documentation is impacted by this change.

Please review the guidelines for contributing and Pull Request Instructions.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@hanwen-pcluste hanwen-pcluste requested review from a team as code owners October 2, 2024 15:39
@hanwen-pcluste hanwen-pcluste added the skip-changelog-update Disables the check that enforces changelog updates in PRs label Oct 2, 2024
@hanwen-pcluste hanwen-pcluste changed the title Avoid attach security groups to NLB in unsupported regions Avoid attaching security groups to NLB in unsupported regions Oct 2, 2024
gmarciani
gmarciani requested changes Oct 2, 2024
View reviewed changes
Copy link
Contributor

@gmarciani gmarciani left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See comments in #6447 (review)

@hanwen-pcluste hanwen-pcluste changed the title Avoid attaching security groups to NLB in unsupported regions Avoid attaching security groups to NLB in unsupported regions and fix integration tests Oct 17, 2024
@hanwen-pcluste
Avoid attach security groups to NLB in unsupported regions
e50ae3d 
NLB with security groups is a new feature added in 2023. However, the feature is not supported in ADC

Signed-off-by: Hanwen <[email protected]>
@hanwen-pcluste
[integ-tests] Skip test_shared_home to in regions that do not support…
6fca771 
… FSxOntap and FSxOpenZFS

Prior to this commit, the logic was wrong and didn't skip Ontap and OpenZFS if Lustre is supported

Signed-off-by: Hanwen <[email protected]>
@hanwen-pcluste
[integ-tests] Fix AD integration tests for regions with FSx OpenZFS a…
e7cf35b 
…nd Ontap

Signed-off-by: Hanwen <[email protected]>
@hanwen-pcluste
[integ-tests] Fix AD integration test in iso regions
fad9c79 
iso regions don't support tagging certificates. Therefore, the condition in IAM policy is too restrictive in iso reginos

Signed-off-by: Hanwen <[email protected]>
gmarciani
gmarciani reviewed Oct 17, 2024
View reviewed changes
cloudformation/ad/ad-integration.yaml
@@ -708,9 +708,6 @@ Resources:
- iam:UploadServerCertificate
- iam:TagServerCertificate
Resource: !Sub arn:${AWS::Partition}:iam::${AWS::AccountId}:server-certificate/*
Condition:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why are we removing this condition?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gmarciani gmarciani gmarciani requested changes

@hgreebe hgreebe hgreebe approved these changes

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
skip-changelog-update Disables the check that enforces changelog updates in PRs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hanwen-pcluste @gmarciani @hgreebe