search

cds-snc / dns

DNS Configuration for domains managed by CDS
18 stars 15 forks source link

Adding code to replicate the dns-github-deployer user #399

Closed sylviamclaughlin closed 1 month ago

sylviamclaughlin commented 1 month ago

Summary | Résumé

Creating terraform code to replicate the existing dns-github-deployer user whose configuration does not exist in terraform.

github-actions[bot] commented 1 month ago

DNS

✅   Terraform Init: success ✅   Terraform Validate: success ✅   Terraform Format: success ✅   Terraform Plan: success ✅   Conftest: success 

Plan: 3 to import, 0 to add, 0 to change, 0 to destroy
Show summary | CHANGE | NAME | |--------|------|
Show plan ```terraform aws_iam_user.dns-github-deployer: Preparing import... [id=dns-github-deployer] aws_iam_policy.Route53TerraformDeploy: Preparing import... [id=arn:aws:iam::866996500832:policy/Route53TerraformDeploy] aws_iam_user.dns-github-deployer: Refreshing state... [id=dns-github-deployer] aws_iam_policy.Route53TerraformDeploy: Refreshing state... [id=arn:aws:iam::866996500832:policy/Route53TerraformDeploy] aws_route53_zone.cds-snc-ca-public: Refreshing state... [id=Z35N8HLYUZDWBH] aws_iam_role.notify_prod_dns_manager: Refreshing state... [id=notify_prod_dns_manager] aws_iam_policy.notify_prod_dns_manager_policy: Refreshing state... [id=arn:aws:iam::866996500832:policy/notify_prod_dns_manager_policy] aws_route53_zone.notification-canada-ca-public: Refreshing state... [id=Z1XG153PQF3VV5] aws_route53_zone.alpha-canada-ca-public: Refreshing state... [id=Z33C47YI9EN8XL] aws_route53_zone.platform-canada-ca-public: Refreshing state... [id=Z013622739PCMCHH1QD6O] aws_route53_record.status-cds-snc-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_status-statut.cds-snc.ca_CNAME] aws_route53_record.cds-snc-ca-MX: Refreshing state... [id=Z35N8HLYUZDWBH_cds-snc.ca_MX] aws_route53_record.google-_domainkey-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_google._domainkey.cds-snc.ca_TXT] aws_route53_record.cds-snc-ca-A: Refreshing state... [id=Z35N8HLYUZDWBH_cds-snc.ca_A] aws_route53_record._c77e17ef5146ea6fd6ba71f12813c9dc-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH__c77e17ef5146ea6fd6ba71f12813c9dc.cds-snc.ca_CNAME] aws_route53_record.cds-snc-ca-SOA: Refreshing state... [id=Z35N8HLYUZDWBH_cds-snc.ca_SOA] aws_route53_record.happyfox-dkim-01-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_happyfox1._domainkey.cds-snc.ca_CNAME] aws_route53_record.npuzzfyyhodvef3vwrj6qdu4tjqkw5ps-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_npuzzfyyhodvef3vwrj6qdu4tjqkw5ps._domainkey.cds-snc.ca_CNAME] aws_route53_record._amazonses-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH__amazonses.cds-snc.ca_TXT] aws_route53_record.freshdesk-dkim-01-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_xhlsf._domainkey.cds-snc.ca_CNAME] aws_route53_record.notification-assistance-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_fdkey.notification.assistance.cds-snc.ca_TXT] aws_route53_record.cloud-spend-cds-snc-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_cloud-spend.cds-snc.ca_CNAME] aws_route53_record.huaraq4dvcwl4dfjicrvjuyhod2zgyvz-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_huaraq4dvcwl4dfjicrvjuyhod2zgyvz._domainkey.cds-snc.ca_CNAME] aws_route53_record.cds-snc-ca-NS: Refreshing state... [id=Z35N8HLYUZDWBH_cds-snc.ca_NS] aws_route53_record.mailgun-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_mailgun.cds-snc.ca_TXT] aws_route53_record.freshdesk-dkim-03-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_pgl0m._domainkey.cds-snc.ca_CNAME] aws_route53_record.covid-assistance-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_covid.assistance.cds-snc.ca_CNAME] aws_route53_record.branch-review-apps-cds-snc-ca-A: Refreshing state... [id=Z35N8HLYUZDWBH_branch-review-apps.cds-snc.ca_A] aws_route53_record.scph0917-_domainkey-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_scph0917._domainkey.cds-snc.ca_TXT] aws_route53_record.mailchimp-dkim-02-cds-snc-ca-cname: Refreshing state... [id=Z35N8HLYUZDWBH_k2._domainkey.cds-snc.ca_CNAME] aws_route53_record._github-challenge-cds-snc-org: Refreshing state... [id=Z35N8HLYUZDWBH__github-challenge-cds-snc-org_TXT] aws_route53_record.jmdsjkhll6xcr45eceudowr3i5biw7m4-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_jmdsjkhll6xcr45eceudowr3i5biw7m4._domainkey.cds-snc.ca_CNAME] aws_route53_record.happyfox-dkim-02-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_happyfox2._domainkey.cds-snc.ca_CNAME] aws_route53_record._dmarc-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH__dmarc.cds-snc.ca_TXT] aws_route53_record.assistance-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_assistance.cds-snc.ca_CNAME] aws_route53_record.notification-assistance-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_notification.assistance.cds-snc.ca_CNAME] aws_route53_record.covid-assistance-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_fdkey.covid.assistance.cds-snc.ca_TXT] aws_route53_record.freshdesk-dkim-04-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_fwdkim.cds-snc.ca_CNAME] aws_route53_record.freshdesk-dkim-02-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_epvl8._domainkey.cds-snc.ca_CNAME] aws_route53_record.k64c4rhiqy2utki3pdklkmx4yddgfsvz-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_k64c4rhiqy2utki3pdklkmx4yddgfsvz._domainkey.cds-snc.ca_CNAME] aws_route53_record.vqrxkdrwqioudvaw3rrvwb2c6yre5673-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_vqrxkdrwqioudvaw3rrvwb2c6yre5673._domainkey.cds-snc.ca_CNAME] aws_route53_record.pic-_domainkey-mailgun-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_pic._domainkey.mailgun.cds-snc.ca_TXT] aws_route53_record.doxsxvr6k6upbjhr2ruxm4mqtrxiehuw-_domainkey-cds-snc-ca-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_doxsxvr6k6upbjhr2ruxm4mqtrxiehuw._domainkey.cds-snc.ca_CNAME] aws_route53_record.cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_cds-snc.ca_TXT] aws_route53_record.mailchimp-dkim-03-cds-snc-ca-cname: Refreshing state... [id=Z35N8HLYUZDWBH_k3._domainkey.cds-snc.ca_CNAME] aws_route53_record.support-cds-snc-CNAME: Refreshing state... [id=Z35N8HLYUZDWBH_support.cds-snc.ca_CNAME] aws_route53_record.assistance-cds-snc-ca-TXT: Refreshing state... [id=Z35N8HLYUZDWBH_fdkey.assistance.cds-snc.ca_TXT] aws_route53_record.api-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_api.notification.canada.ca_A_loadbalancer] aws_route53_record.amazonses-mail-from-notification-canada-ca-TXT: Refreshing state... [id=Z1XG153PQF3VV5_bounce.notification.canada.ca_TXT] aws_route53_record.notification-canada-ca-SPF: Refreshing state... [id=Z1XG153PQF3VV5_notification.canada.ca_TXT] aws_route53_record.assets-notification-canada-ca-ACM-cname: Refreshing state... [id=Z1XG153PQF3VV5__4e30c74d7459e0d63bdcdaac7a57fdcf.assets.notification.canada.ca_CNAME] aws_route53_record.status-notification-validation-CNAME: Refreshing state... [id=Z1XG153PQF3VV5__7deec9582fbcae0f970d8192e402d455.status.notification.canada.ca_CNAME] aws_route53_record.doc-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_doc.notification.canada.ca_CNAME] aws_route53_record.lambda-api-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_api.notification.canada.ca_A_lambda] aws_route53_record.dkim2-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_wrtaqi2wdu42zqjzyf3ikn46kzos4f76._domainkey.notification.canada.ca_CNAME] aws_route53_record.document-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_document.notification.canada.ca_CNAME] aws_route53_record.amazonses-notification-canada-ca-TXT: Refreshing state... [id=Z1XG153PQF3VV5__amazonses.notification.canada.ca_TXT] aws_route53_record.assets-notification-canada-ca-cname: Refreshing state... [id=Z1XG153PQF3VV5_assets.notification.canada.ca_CNAME] aws_route53_record.api-lambda-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_api-lambda.notification.canada.ca_A] aws_route53_record.dkim3-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_h2d5mnabqwlnowww7rkgpoagtrxt7d4z._domainkey.notification.canada.ca_CNAME] aws_route53_record.dkim1-notification-canada-ca-us-east-1-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_iymb7ahbsrpfy7ktku4tpibh2n3a2hdk._domainkey.notification.canada.ca_CNAME] aws_route53_record.notification-canada-ca-ACM-cname: Refreshing state... [id=Z1XG153PQF3VV5__2115a5004ab7895234c60254e152046b.notification.canada.ca_CNAME] aws_route53_record.api-k8s-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_api-k8s.notification.canada.ca_CNAME] aws_route53_record.dkim3-notification-canada-ca-us-east-1-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_pjmdrlcl2vsjodh4ruc4v2oogw5cs2cl._domainkey.notification.canada.ca_CNAME] aws_route53_record.www-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_www.notification.canada.ca_CNAME] aws_route53_record.modelezta-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_modelezta.alpha.canada.ca_NS] aws_route53_record.github-secret-scanning-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_github-secret-scanning.alpha.canada.ca_NS] aws_route53_record.api-document-notification-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_api.document.notification.alpha.canada.ca_CNAME] aws_route53_record.simplification-avis-confidentialite-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_simplification-avis-confidentialite.alpha.canada.ca_NS] aws_route53_record.energy-information-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_energy-information.alpha.canada.ca_CNAME] aws_route53_record.documentation-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_documentation.notification.canada.ca_CNAME] aws_route53_record.dkim2-notification-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_hofufbbtcrcvxie3vngnqb6ew3p4qjst._domainkey.notification.alpha.canada.ca_CNAME] aws_route53_record._dbb14456ed8ab3deed1f05507ff40373-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__dbb14456ed8ab3deed1f05507ff40373.alpha.canada.ca_CNAME] aws_route53_record.pbmm-notification-alpha-canada-ca-ACM-cname: Refreshing state... [id=Z33C47YI9EN8XL__c04744a360b120e8b7431728784deab4.notification.alpha.canada.ca_CNAME] aws_route53_record.tbs-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_tbs.alpha.canada.ca_NS] aws_route53_record.suivi-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_suivi.alpha.canada.ca_NS] aws_route53_record.articles-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_articles.alpha.canada.ca_NS] aws_route53_record.cse-cst-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_cse-cst.alpha.canada.ca_NS] aws_route53_record.simplify-privacy-statements-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_simplify-privacy-statements.alpha.canada.ca_NS] aws_route53_record.api-notification-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_api.notification.alpha.canada.ca_A] aws_route53_record.workplace-alpha-canada-ca-a: Refreshing state... [id=Z33C47YI9EN8XL_workplace.alpha.canada.ca_A] aws_route53_record.document-notification-canada-ca-ACM-cname: Refreshing state... [id=Z1XG153PQF3VV5__db43d1cf891afd4671fb913d18ef0a0e.document.notification.canada.ca_CNAME] aws_route53_record.ztapattern-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_ztapattern.alpha.canada.ca_NS] aws_route53_record.recensement-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_recensement.alpha.canada.ca_CNAME] aws_route53_record.entreessecurisees-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_entreessecurisees.alpha.canada.ca_NS] aws_route53_record.notification-canada-ca-ALIAS: Refreshing state... [id=Z1XG153PQF3VV5_notification.canada.ca_A] aws_route53_record.api-notification-canada-ca-ACM-cname: Refreshing state... [id=Z1XG153PQF3VV5__902cdb1a2cb8214fc698261ee3085b64.api.notification.canada.ca._CNAME] aws_route53_record.dkim1-notification-canada-ca-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_wrs6wsp65k764hnaouax5t66vfqrbrst._domainkey.notification.canada.ca_CNAME] aws_route53_record.aspc-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_aspc.alpha.canada.ca_NS] aws_route53_record.performance-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_performance.alpha.canada.ca_A] aws_route53_record.cpho-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_cpho.alpha.canada.ca_NS] aws_route53_record.dkim2-notification-canada-ca-us-east-1-CNAME: Refreshing state... [id=Z1XG153PQF3VV5_z7ujljo4n4hbl4slxawnomvstjhlbgx2._domainkey.notification.canada.ca_CNAME] aws_route53_record.pbmm-document-notification-alpha-canada-ca-ACM-cname: Refreshing state... [id=Z33C47YI9EN8XL__35e023fab08debc90c4312ec398d5458.document.notification.alpha.canada.ca_CNAME] aws_route53_record.amazonses-notification-alpha-canada-ca-TXT: Refreshing state... [id=Z33C47YI9EN8XL__amazonses.notification.alpha.canada.ca_TXT] aws_route53_record.scan-files-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_scan-files.alpha.canada.ca_NS] aws_route53_record.inspection-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_inspection.alpha.canada.ca_NS] aws_route53_record.sp-ssc-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_sp.ssc.alpha.canada.ca_NS] aws_route53_record.m-notification-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_m.notification.alpha.canada.ca_NS] aws_route53_record.cyber-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_cyber.alpha.canada.ca_NS] aws_route53_record.acsp-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_acsp.alpha.canada.ca_NS] aws_route53_record.notification-alpha-canada-ca-DMARC: Refreshing state... [id=Z33C47YI9EN8XL__dmarc.notification.alpha.canada.ca_TXT] aws_route53_record.notification-alpha-canada-ca-ALIAS: Refreshing state... [id=Z33C47YI9EN8XL_notification.alpha.canada.ca_A] aws_route53_record.systeme-design-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_systeme-design.alpha.canada.ca_NS] aws_route53_record.resources-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_resources.alpha.canada.ca_CNAME] aws_route53_record.amazonses-mail-from-notification-canada-ca-MX: Refreshing state... [id=Z1XG153PQF3VV5_bounce.notification.canada.ca_MX] aws_route53_record._b3259586aedbdb670a1126167ef4fad9-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__b3259586aedbdb670a1126167ef4fad9.alpha.canada.ca_CNAME] aws_route53_record.id-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_id.alpha.canada.ca_NS] aws_route53_record.dkim3-notification-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_t2ihvmsa65nqcjuemxykbsivxbqhecg7._domainkey.notification.alpha.canada.ca_CNAME] aws_route53_record.amazonses-inbound-notification-canada-ca-MX: Refreshing state... [id=Z1XG153PQF3VV5_notification.canada.ca_MX] aws_route53_record.alpha-canada-ca-alias: Refreshing state... [id=Z33C47YI9EN8XL_alpha.canada.ca_A] aws_route53_record.itap-piem-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_itap-piem.alpha.canada.ca_A] aws_route53_record.census-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_census.alpha.canada.ca_CNAME] aws_route53_record.dmarc-report-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_dmarc-reports.alpha.canada.ca_CNAME] aws_route53_record.api-document-notification-alpha-canada-ca-ACM-cname: Refreshing state... [id=Z33C47YI9EN8XL__01d16c796a05d4f42e7919c19dde8838.api.document.notification.alpha.canada.ca_CNAME] aws_route53_record.list-manager-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_list-manager.alpha.canada.ca_NS] aws_route53_record.notification-canada-ca-DMARC: Refreshing state... [id=Z1XG153PQF3VV5__dmarc.notification.canada.ca_TXT] aws_route53_record.api-document-notification-canada-ca-A: Refreshing state... [id=Z1XG153PQF3VV5_api.document.notification.canada.ca_CNAME] aws_route53_record.safeinputs-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_safeinputs.alpha.canada.ca_NS] aws_route53_record.system-status-notification-canada-ca-cname: Refreshing state... [id=Z1XG153PQF3VV5_status.notification.canada.ca_CNAME] aws_route53_record.ressources-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_ressources.alpha.canada.ca_CNAME] aws_route53_record.notification-alpha-canada-ca-SPF: Refreshing state... [id=Z33C47YI9EN8XL_notification.alpha.canada.ca_TXT] aws_route53_record.document-notification-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_document.notification.alpha.canada.ca_CNAME] aws_route53_record.cra-arc-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_cra-arc.alpha.canada.ca_NS] aws_route53_record.phac-aspc-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_phac-aspc.alpha.canada.ca_NS] aws_route53_record.tracker-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_tracker.alpha.canada.ca_NS] aws_route53_record.milieu-travail-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_milieu-travail.alpha.canada.ca_A] aws_route53_record.information-energie-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_information-energie.alpha.canada.ca_CNAME] aws_route53_record.dkim1-notification-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_vqaz5umlocfrnmfbflvju6qduqut7i5h._domainkey.notification.alpha.canada.ca_CNAME] aws_route53_record.web-templates-pspc-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_web-templates.pspc.alpha.canada.ca_A] aws_route53_record.forms-formulaires-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_forms-formulaires.alpha.canada.ca_NS] aws_route53_record.phac-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_phac.alpha.canada.ca_NS] aws_route53_record.rendement-alpha-canada-ca-A: Refreshing state... [id=Z33C47YI9EN8XL_rendement.alpha.canada.ca_A] aws_route53_record.api-notification-alpha-canada-ca-ACM-cname: Refreshing state... [id=Z33C47YI9EN8XL__5d022a2aee7df473fcb75e0e12b47220.api.notification.alpha.canada.ca._CNAME] aws_route53_record.design-system-alpha-canada-ca-NS: Refreshing state... [id=Z33C47YI9EN8XL_design-system.alpha.canada.ca_NS] aws_route53_record.micro-acquisition-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL_micro-acquisition.alpha.canada.ca_CNAME] aws_route53_record.notification-alpha-canada-ca-ACM-cname: Refreshing state... [id=Z33C47YI9EN8XL__73714e81c7f7350e34a22f64fc6892bf.notification.alpha.canada.ca_CNAME] aws_iam_user_policy_attachment.dns-github-deployer-policy-attachment: Preparing import... [id=dns-github-deployer/arn:aws:iam::866996500832:policy/Route53TerraformDeploy] aws_iam_user_policy_attachment.dns-github-deployer-policy-attachment: Refreshing state... [id=dns-github-deployer-arn:aws:iam::866996500832:policy/Route53TerraformDeploy] aws_iam_role_policy_attachment.prod_dns_manager_policy_attachment: Refreshing state... [id=notify_prod_dns_manager-20240711180549612000000001] aws_route53_record._acme-challenge-energy-information-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__acme-challenge.energy-information.alpha.canada.ca_CNAME] aws_route53_record._acme-challenge-recensement-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__acme-challenge.recensement.alpha.canada.ca_CNAME] aws_route53_record._acme-challenge-information-energie-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__acme-challenge.information-energie.alpha.canada.ca_CNAME] aws_route53_record._acme-challenge-census-alpha-canada-ca-CNAME: Refreshing state... [id=Z33C47YI9EN8XL__acme-challenge.census.alpha.canada.ca_CNAME] Terraform will perform the following actions: # aws_iam_policy.Route53TerraformDeploy will be imported resource "aws_iam_policy" "Route53TerraformDeploy" { arn = "arn:aws:iam::866996500832:policy/Route53TerraformDeploy" attachment_count = 1 description = "Provides admin access to Route53 and limited access to the S3 Terraform state bucket." id = "arn:aws:iam::866996500832:policy/Route53TerraformDeploy" name = "Route53TerraformDeploy" name_prefix = null path = "/" policy = jsonencode( { Statement = [ { Action = [ "route53:*", ] Effect = "Allow" Resource = "*" }, { Action = [ "s3:ListBucket", ] Effect = "Allow" Resource = [ "arn:aws:s3:::cds-dns-terraform-state", ] }, { Action = [ "s3:PutObject", "s3:GetObject", "s3:DeleteObject", ] Effect = "Allow" Resource = [ "arn:aws:s3:::cds-dns-terraform-state/*", ] }, { Action = [ "iam:GetUser", "iam:GetRole", "iam:ListRolePolicies", "iam:GetPolicyVersion", "iam:GetPolicy", "iam:ListAttachedRolePolicies", "iam:ListAttachedUserPolicies", ] Effect = "Allow" Resource = [ "arn:aws:iam::866996500832:role/notify_prod_dns_manager", "arn:aws:iam::866996500832:policy/notify_prod_dns_manager_policy", "arn:aws:iam::866996500832:policy/Route53TerraformDeploy", "arn:aws:iam::866996500832:user/dns-github-deployer", ] }, ] Version = "2012-10-17" } ) policy_id = "ANPA4TXIEXFQLTSZDSWCV" tags = {} tags_all = {} } # aws_iam_user.dns-github-deployer will be imported resource "aws_iam_user" "dns-github-deployer" { arn = "arn:aws:iam::866996500832:user/dns-github-deployer" id = "dns-github-deployer" name = "dns-github-deployer" path = "/" permissions_boundary = null tags = {} tags_all = {} unique_id = "AIDA4TXIEXFQMYOVB2ZMA" } # aws_iam_user_policy_attachment.dns-github-deployer-policy-attachment will be imported resource "aws_iam_user_policy_attachment" "dns-github-deployer-policy-attachment" { id = "dns-github-deployer-arn:aws:iam::866996500832:policy/Route53TerraformDeploy" policy_arn = "arn:aws:iam::866996500832:policy/Route53TerraformDeploy" user = "dns-github-deployer" } Plan: 3 to import, 0 to add, 0 to change, 0 to destroy. ───────────────────────────────────────────────────────────────────────────── Saved the plan to: plan.tfplan To perform exactly these actions, run the following command to apply: terraform apply "plan.tfplan" ```
Show Conftest results ```sh WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.Route53TerraformDeploy"] WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.notify_prod_dns_manager_policy"] WARN - plan.json - main - Missing Common Tags: ["aws_iam_role.notify_prod_dns_manager"] WARN - plan.json - main - Missing Common Tags: ["aws_iam_user.dns-github-deployer"] WARN - plan.json - main - Missing Common Tags: ["aws_route53_zone.alpha-canada-ca-public"] WARN - plan.json - main - Missing Common Tags: ["aws_route53_zone.cds-snc-ca-public"] WARN - plan.json - main - Missing Common Tags: ["aws_route53_zone.notification-canada-ca-public"] WARN - plan.json - main - Missing Common Tags: ["aws_route53_zone.platform-canada-ca-public"] 27 tests, 19 passed, 8 warnings, 0 failures, 0 exceptions ```