mrnicegyu11
commented
5 months ago Actions:
- [ ] add aws account for all backend users. Potentially use programamtic (
frontnend) users - [ ] add aws-tags to infrastructure where possible
Closed mrnicegyu11 closed 2 weeks ago
mrnicegyu11
commented
5 months ago Actions:
frontnend) users
YuryHrytsuk
commented
2 weeks ago Done but some improvements are possible later. Closing for now
When checking aws cloudtrail logs during an incident, we noticed that the names of our AWS IAM accounts are not up to date and not unique. Clear names would help to identify who (or which programmatic service) did what changes in the cloud instantly.
The cloudtrail logs shall be checked for IAM usernames, and the IAM usernames shall be adjusted to correctly reflect their permissions and usage. The name should include for example the deployment (
stagingvsproduction)