Skip to content

Commit

Permalink
Sync Terraform & Helm changes
Browse files Browse the repository at this point in the history
GitOrigin-RevId: 0ee63a1936abd488fd236589033cfec1ce396214
  • Loading branch information
sionescu authored and aptos-bot committed Jul 19, 2024
1 parent 4d7d8d3 commit 96587f0
Show file tree
Hide file tree
Showing 29 changed files with 276 additions and 234 deletions.
2 changes: 1 addition & 1 deletion terraform/aptos-node/aws/versions.tf
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
terraform {
required_version = "~> 1.5.6"
required_version = "~> 1.9.1"
required_providers {
aws = {
source = "hashicorp/aws"
Expand Down
2 changes: 1 addition & 1 deletion terraform/aptos-node/azure/versions.tf
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
provider "azuread" {}

terraform {
required_version = "~> 1.5.6"
required_version = "~> 1.9.1"
required_providers {
azuread = {
source = "hashicorp/azuread"
Expand Down
2 changes: 1 addition & 1 deletion terraform/aptos-node/gcp/versions.tf
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
terraform {
required_version = "~> 1.5.6"
required_version = "~> 1.9.1"
required_providers {
google = {
source = "hashicorp/google"
Expand Down
8 changes: 1 addition & 7 deletions terraform/fullnode/aws/auth.tf
Original file line number Diff line number Diff line change
Expand Up @@ -153,14 +153,8 @@ data "aws_iam_policy_document" "alb-ingress" {
}
}

resource "aws_iam_openid_connect_provider" "cluster" {
client_id_list = ["sts.amazonaws.com"]
thumbprint_list = ["9e99a48a9960b14926bb7f3b02e22da2b0ab7280"] # Thumbprint of Root CA for EKS OIDC, Valid until 2037
url = data.aws_eks_cluster.aptos.identity[0].oidc[0].issuer
}

locals {
oidc_provider = replace(aws_iam_openid_connect_provider.cluster.url, "https://", "")
oidc_provider = module.eks.oidc_provider
}

data "aws_iam_policy_document" "k8s-aws-integrations-assume-role" {
Expand Down
9 changes: 8 additions & 1 deletion terraform/fullnode/aws/backup.tf
Original file line number Diff line number Diff line change
Expand Up @@ -49,9 +49,16 @@ data "aws_iam_policy_document" "backup-assume-role" {
data "aws_iam_policy_document" "backup" {
statement {
actions = [
"s3:GetObject",
"s3:ListBucket",
"s3:PutObject",
"s3:GetObject",
"s3:GetObjectTagging",
"s3:DeleteObject",
"s3:DeleteObjectVersion",
"s3:GetObjectVersion",
"s3:GetObjectVersionTagging",
"s3:GetObjectACL",
"s3:PutObjectACL"
]
resources = [
"arn:aws:s3:::${aws_s3_bucket.backup.id}",
Expand Down
2 changes: 1 addition & 1 deletion terraform/fullnode/aws/versions.tf
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
terraform {
required_version = "~> 1.5.6"
required_version = "~> 1.9.1"
required_providers {
aws = {
source = "hashicorp/aws"
Expand Down
2 changes: 1 addition & 1 deletion terraform/fullnode/gcp/versions.tf
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
terraform {
required_version = "~> 1.5.6"
required_version = "~> 1.9.1"
required_providers {
google = {
source = "hashicorp/google"
Expand Down
Loading

0 comments on commit 96587f0

Please sign in to comment.