Open maikbasel opened 1 week ago
@maikbasel Good afternoon. Thanks for opening the issue. Could you please share minimal self-contained code to troubleshoot the issue? This would ensure quick reproduction and mimic the same scenario.
Thanks, Ashish
This issue has not received a response in a while. If you want to keep this issue open, please leave a comment below and auto-close will be canceled.
@ashishdhingra I updated the issue with a simplyfied code example.
Describe the bug
The SourcedConfiguration construct does not make use of it's retrievalRole property regardless of wether is defined or not. It will always create a new IAM Role (except when it's location type is ConfigurationSourceType.CODE_PIPELINE then it will default to undefined).
I encountered this behavior while trying to use role of mine created in a different stack and encountered an error that the role used was not allowed to retrieve the secret my configuration profile should reference.
Expected Behavior
The SourcedConfiguration should make use of the role passed to it via the retrievalRole property.
Current Behavior
The SourcedConfiguration will always create a new IAM Role instead of using the role passed into it via the retrievalRole property.
Reproduction Steps
Here a simplyfied version of my code:
StackA:
StackB:
Possible Solution
The condition in the SourcedConfigurations constructor checking wether the retrievalRole is defined is wrong. As I already wrote, regardless of wether retrievalRole is defined or not. It will always create a new IAM Role (except when it's location type is ConfigurationSourceType.CODE_PIPELINE then it will default to undefined). This makes no sense. If the retrievalRole is defined it should use this role.
Additional Information/Context
No response
CDK CLI Version
2.146.0
Framework Version
No response
Node.js Version
20.14.0
OS
Windows 10
Language
TypeScript
Language Version
No response
Other information
No response