issues
search
SeaGL
/
seagl-terraform
Terraform used to maintain SeaGL's VMs, RDS database, DNS, etc.
GNU Affero General Public License v3.0
1
stars
2
forks
source link
enable versioning, skip ACL
#11
Closed
sntxrr
closed
2 years ago
sntxrr
commented
2 years ago
skip ACL, not needed when set to private
add 120 versioning retention
github-actions[bot]
commented
2 years ago
Terraform Format and Style 🖌``
Terraform Initialization ⚙️
success
Terraform Plan 📖
success
Terraform Validation 🤖
success
Show Plan
``` terraform random_password.osem_db_master_pass: Refreshing state... [id=none] aws_route53_record.route_53_dmarc_txt: Refreshing state... [id=Z0173878287JIU5M4KB8R__dmarc.seagl.org_TXT] aws_ses_email_identity.email: Refreshing state... [id=sre@seagl.org] aws_ses_domain_identity.email_domain_identity: Refreshing state... [id=seagl.org] aws_route53_record.stats-2022: Refreshing state... [id=Z0173878287JIU5M4KB8R_stats.2022.seagl.org_A] aws_route53_record.route_53_root_txt: Refreshing state... [id=Z0173878287JIU5M4KB8R__TXT] aws_db_subnet_group.osem: Refreshing state... [id=osem] aws_route53_record.alias: Refreshing state... [id=Z0173878287JIU5M4KB8R_alias.seagl.org_CNAME] aws_s3_bucket_acl.state: Refreshing state... [id=seagl-terraform] aws_ses_domain_identity.seagl: Refreshing state... [id=seagl.org] aws_s3_bucket.state: Refreshing state... [id=seagl-terraform] aws_route53_record.matrix-2022: Refreshing state... [id=Z0173878287JIU5M4KB8R_matrix.2022.seagl.org_A] aws_instance.dokku: Refreshing state... [id=i-02ee81d4bd0860d30] data.aws_vpc.vpc: Reading... aws_secretsmanager_secret.osem-db-pass: Refreshing state... [id=arn:aws:secretsmanager:us-west-2:663166083306:secret:db-pass-osem-5KW1mS] aws_ses_domain_dkim.email_dkim: Refreshing state... [id=seagl.org] aws_route53_record.seagl_amazonses_verification_record: Refreshing state... [id=Z0173878287JIU5M4KB8R__amazonses.seagl.org_TXT] aws_secretsmanager_secret_version.osem-db-pass-val: Refreshing state... [id=arn:aws:secretsmanager:us-west-2:663166083306:secret:db-pass-osem-5KW1mS|5E8ED816-E9AA-4E8E-A382-2EEE9FC74A66] aws_route53_record.email_dkim_records[1]: Refreshing state... [id=Z0173878287JIU5M4KB8R_zjerfwsrr5wpwp5p5klnsrrzp6ralpcp._domainkey.seagl.org_CNAME] aws_route53_record.email_dkim_records[2]: Refreshing state... [id=Z0173878287JIU5M4KB8R_o7o3tsrrlwgkmmx3a7f5njkrvi75woso._domainkey.seagl.org_CNAME] aws_route53_record.email_dkim_records[0]: Refreshing state... [id=Z0173878287JIU5M4KB8R_nldzqxeyq5fyslu3tzvj4ltbwbexupuj._domainkey.seagl.org_CNAME] data.aws_vpc.vpc: Read complete after 0s [id=vpc-231ecb46] aws_security_group.osem_rds_security_group: Refreshing state... [id=sg-006c493d98f3c7f1a] aws_security_group_rule.private_in: Refreshing state... [id=sgrule-3182957500] aws_security_group_rule.private_out: Refreshing state... [id=sgrule-1612436969] aws_db_instance.osem: Refreshing state... [id=osem] aws_s3_bucket_versioning.state: Refreshing state... [id=seagl-terraform] aws_s3_bucket_public_access_block.state: Refreshing state... [id=seagl-terraform] Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols: ~ update in-place - destroy Terraform will perform the following actions: # aws_s3_bucket.state will be updated in-place ~ resource "aws_s3_bucket" "state" { id = "seagl-terraform" tags = {} # (11 unchanged attributes hidden) + lifecycle_rule { + enabled = true + noncurrent_version_expiration { + days = 120 } } # (1 unchanged block hidden) } # aws_s3_bucket_acl.state will be destroyed # (because aws_s3_bucket_acl.state is not in configuration) - resource "aws_s3_bucket_acl" "state" { - bucket = "seagl-terraform" -> null - id = "seagl-terraform" -> null - access_control_policy { - grant { - permission = "FULL_CONTROL" -> null - grantee { - display_name = "rob" -> null - id = "d7cb23e3f92155289fa28d2bd668180ec46155c765317445210bbd3e4bc3e942" -> null - type = "CanonicalUser" -> null } } - owner { - display_name = "rob" -> null - id = "d7cb23e3f92155289fa28d2bd668180ec46155c765317445210bbd3e4bc3e942" -> null } } } Plan: 0 to add, 1 to change, 1 to destroy. Warning: Argument is deprecated with aws_s3_bucket.state, on s3.tf line 1, in resource "aws_s3_bucket" "state": 1: resource "aws_s3_bucket" "state" { Use the aws_s3_bucket_versioning resource instead (and 3 more similar warnings elsewhere) ───────────────────────────────────────────────────────────────────────────── Note: You didn't use the -out option to save this plan, so Terraform can't guarantee to take exactly these actions if you run "terraform apply" now. ```
Pushed by: @sntxrr, Action:
pull_request