qontract-reconcile 0.10.2.dev58__py3-none-any.whl → 0.10.2.dev60__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- {qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/METADATA +1 -1
- {qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/RECORD +5 -5
- reconcile/utils/terrascript_aws_client.py +29 -0
- {qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/WHEEL +0 -0
- {qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/entry_points.txt +0 -0
{qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/METADATA
RENAMED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.4
|
|
2
2
|
Name: qontract-reconcile
|
|
3
|
-
Version: 0.10.2.
|
|
3
|
+
Version: 0.10.2.dev60
|
|
4
4
|
Summary: Collection of tools to reconcile services with their desired state as defined in the app-interface DB.
|
|
5
5
|
Project-URL: homepage, https://github.com/app-sre/qontract-reconcile
|
|
6
6
|
Project-URL: repository, https://github.com/app-sre/qontract-reconcile
|
{qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/RECORD
RENAMED
|
@@ -637,7 +637,7 @@ reconcile/utils/state.py,sha256=az4tBmZ0EdbFcAGiBVUxs3cr2-BVWsuDQiNTvjjQq8s,1637
|
|
|
637
637
|
reconcile/utils/structs.py,sha256=LcbLEg8WxfRqM6nW7NhcWN0YeqF7SQzxOgntmLs1SgY,352
|
|
638
638
|
reconcile/utils/template.py,sha256=wTvRU4AnAV_o042tD4Mwls2dwWMuk7MKnde3MaCjaYg,331
|
|
639
639
|
reconcile/utils/terraform_client.py,sha256=H8frsS370y8xfivKLNBD1dwlBLHvfuR6JSN_syBL5Qc,36033
|
|
640
|
-
reconcile/utils/terrascript_aws_client.py,sha256=
|
|
640
|
+
reconcile/utils/terrascript_aws_client.py,sha256=exae3Cg8EgjY27RFit5czwbx0jafMqksZzaelTWbKKU,284877
|
|
641
641
|
reconcile/utils/three_way_diff_strategy.py,sha256=oQcHXd9LVhirJfoaOBoHUYuZVGfyL2voKr6KVI34zZE,4833
|
|
642
642
|
reconcile/utils/throughput.py,sha256=iP4UWAe2LVhDo69mPPmgo9nQ7RxHD6_GS8MZe-aSiuM,344
|
|
643
643
|
reconcile/utils/vault.py,sha256=aSA8l9cJlPUHpChFGl27nSY-Mpq9FMjBo7Dcgb1BVfM,15036
|
|
@@ -777,7 +777,7 @@ tools/saas_promotion_state/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJ
|
|
|
777
777
|
tools/saas_promotion_state/saas_promotion_state.py,sha256=UfwwRLS5Ya4_Nh1w5n1dvoYtchQvYE9yj1VANt2IKqI,3925
|
|
778
778
|
tools/sre_checkpoints/__init__.py,sha256=CDaDaywJnmRCLyl_NCcvxi-Zc0hTi_3OdwKiFOyS39I,145
|
|
779
779
|
tools/sre_checkpoints/util.py,sha256=zEDbGr18ZeHNQwW8pUsr2JRjuXIPz--WAGJxZo9sv_Y,894
|
|
780
|
-
qontract_reconcile-0.10.2.
|
|
781
|
-
qontract_reconcile-0.10.2.
|
|
782
|
-
qontract_reconcile-0.10.2.
|
|
783
|
-
qontract_reconcile-0.10.2.
|
|
780
|
+
qontract_reconcile-0.10.2.dev60.dist-info/METADATA,sha256=UgjB2DF2QS6Tmaqe9QhrQYTHy0erysemfbOrUBjzi6E,24665
|
|
781
|
+
qontract_reconcile-0.10.2.dev60.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
|
|
782
|
+
qontract_reconcile-0.10.2.dev60.dist-info/entry_points.txt,sha256=5i9l54La3vQrDLAdwDKQWC0iG4sV9RRfOb1BpvzOWLc,698
|
|
783
|
+
qontract_reconcile-0.10.2.dev60.dist-info/RECORD,,
|
|
@@ -5261,6 +5261,31 @@ class TerrascriptClient: # pylint: disable=too-many-public-methods
|
|
|
5261
5261
|
)
|
|
5262
5262
|
tf_resources.append(lb_access_logs_s3_bucket_tf_resource)
|
|
5263
5263
|
|
|
5264
|
+
policy_identifier = f"{identifier}-s3-bucket-policy"
|
|
5265
|
+
# https://docs.aws.amazon.com/elasticloadbalancing/latest/application/enable-access-logging.html#access-log-create-bucket
|
|
5266
|
+
policy = {
|
|
5267
|
+
"Version": "2012-10-17",
|
|
5268
|
+
"Statement": [
|
|
5269
|
+
{
|
|
5270
|
+
"Effect": "Allow",
|
|
5271
|
+
"Principal": {
|
|
5272
|
+
"AWS": f"arn:aws:iam::{self.accounts[account]['uid']}:root"
|
|
5273
|
+
},
|
|
5274
|
+
"Action": "s3:PutObject",
|
|
5275
|
+
"Resource": f"{{{lb_access_logs_s3_bucket_tf_resource.arn}}}/*",
|
|
5276
|
+
}
|
|
5277
|
+
],
|
|
5278
|
+
}
|
|
5279
|
+
lb_access_logs_s3_bucket_policy_values = {
|
|
5280
|
+
"provider": provider,
|
|
5281
|
+
"bucket": f"${{{lb_access_logs_s3_bucket_tf_resource.id}}}",
|
|
5282
|
+
"policy": json.dumps(policy, sort_keys=True),
|
|
5283
|
+
}
|
|
5284
|
+
lb_access_logs_s3_bucket_policy_tf_resource = aws_s3_bucket_policy(
|
|
5285
|
+
policy_identifier, **lb_access_logs_s3_bucket_policy_values
|
|
5286
|
+
)
|
|
5287
|
+
tf_resources.append(lb_access_logs_s3_bucket_policy_tf_resource)
|
|
5288
|
+
|
|
5264
5289
|
lb_values["access_logs"] = {
|
|
5265
5290
|
"enabled": True,
|
|
5266
5291
|
"bucket": f"${{{lb_access_logs_s3_bucket_tf_resource.id}}}",
|
|
@@ -6050,6 +6075,10 @@ class TerrascriptClient: # pylint: disable=too-many-public-methods
|
|
|
6050
6075
|
"scope_name": "InsightsServiceAccount",
|
|
6051
6076
|
"scope_description": "Insights service account",
|
|
6052
6077
|
},
|
|
6078
|
+
{
|
|
6079
|
+
"scope_name": "OSDFleetManagerService",
|
|
6080
|
+
"scope_description": "Fleet Manager service account",
|
|
6081
|
+
},
|
|
6053
6082
|
],
|
|
6054
6083
|
**cognito_resource_server_args,
|
|
6055
6084
|
)
|
{qontract_reconcile-0.10.2.dev58.dist-info → qontract_reconcile-0.10.2.dev60.dist-info}/WHEEL
RENAMED
|
File without changes
|
|
File without changes
|