projects / arvados.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 356232a) | patch
21751: Adds CMK access policies to compute and dispatcher roles.
authorLucas Di Pentima <lucas.dipentima@curii.com>
Mon, 16 Sep 2024 19:46:40 +0000 (16:46 -0300)
committerLucas Di Pentima <lucas.dipentima@curii.com>
Mon, 16 Sep 2024 19:46:40 +0000 (16:46 -0300)
commitc6428ce2756c4bea50034d2cd889ba146b57e2d9
tree41c641150e69c36bceb79b6e8c36b4139261d291tree | snapshot
parent356232a9c29b8f787a1ccc3aee903406fe83a986commit | diff
21751: Adds CMK access policies to compute and dispatcher roles.

When using customer-managed keys, access should be granted explicitly: the
dispatcher needs it to create instances with their EBS volume encrypted
and the compute nodes themselves need it too so that they can start the
ebs-autoscale feature.

Arvados-DCO-1.1-Signed-off-by: Lucas Di Pentima <lucas.dipentima@curii.com>
tools/salt-install/terraform/aws/services/main.tf diff | blob | history
tools/salt-install/terraform/aws/services/terraform.tfvars diff | blob | history
tools/salt-install/terraform/aws/services/variables.tf diff | blob | history