Skip to content

feat: enable benchmark on organizational management account #58

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 9 commits into from
Feb 8, 2022
Merged

feat: enable benchmark on organizational management account #58

merged 9 commits into from
Feb 8, 2022

Conversation

aq17
Copy link

@aq17 aq17 commented Feb 3, 2022

Previously, the organizational example did not create a cloud account and include the management account in the benchmark task scope

@wideawakening wideawakening changed the title Option to create management cloud account feat: enable benchmark on organizational management account Feb 3, 2022
wideawakening
wideawakening reviewed Feb 3, 2022
View reviewed changes
modules/services/cloud-bench/variables.tf
variable "provision_in_management_account" {
type = bool
default = true
description = "Whether to deploy the stack in the management account"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

guess we can hold exposing this variable to the examples

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍🏼

@wideawakening
Copy link
Contributor

wideawakening commented Feb 3, 2022
edited
Loading

doing some maintenance on module so will add the "cft stackset instance" to managed account on diagrams too

nkraemer-sysdig
nkraemer-sysdig approved these changes Feb 4, 2022
View reviewed changes
Copy link
Contributor

@nkraemer-sysdig nkraemer-sysdig left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks great, thanks @aq17!

@wideawakening
Copy link
Contributor

i was iterating this yesterday and got 409 cloud-account setup conflict over and over again thinking it may be due to other causes, but after properly passing checks on other PR's (with some cleanup).. i'm thinking there may be something wrong with these changes.

been digging on the organizations_organization data and seems like you got it all right, but dunno what's making it fail. could
you give a look see if you spot what's going on?
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/organizations_organization#master-account-attributes-reference

some non-critical code review

  • per terraform-guideliness, there should only be one local block, positioned on the top of the manifest
  • account_ids_to_deploy seems like concat(local.member_account_ids, [data.aws_organizations_organization.org[0].master_account_id])

@aq17
Copy link
Author

aq17 commented Feb 4, 2022

i was iterating this yesterday and got 409 cloud-account setup conflict over and over again thinking it may be due to other causes, but after properly passing checks on other PR's (with some cleanup).. i'm thinking there may be something wrong with these changes.

been digging on the organizations_organization data and seems like you got it all right, but dunno what's making it fail. could you give a look see if you spot what's going on? https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/organizations_organization#master-account-attributes-reference

some non-critical code review

  • per terraform-guideliness, there should only be one local block, positioned on the top of the manifest
  • account_ids_to_deploy seems like concat(local.member_account_ids, [data.aws_organizations_organization.org[0].master_account_id])

Is the 409 for all accounts or specifically the master account?

@wideawakening
Copy link
Contributor

fix for tests through the provider running smoothly
thx for the work @aq17!

@wideawakening wideawakening merged commit e86cfd8 into master Feb 8, 2022
@wideawakening wideawakening deleted the SSPROD-10941 branch February 8, 2022 10:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nkraemer-sysdig nkraemer-sysdig nkraemer-sysdig approved these changes

@tembleking tembleking Awaiting requested review from tembleking

+1 more reviewer

@wideawakening wideawakening wideawakening left review comments

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@aq17 @wideawakening @nkraemer-sysdig