search

common-fate / glide

Automate permissions to your cloud and critical applications.
https://docs.commonfate.io/common-fate/introduction
GNU Affero General Public License v3.0
237 stars 21 forks source link

Glide 0.15: collission on multiple prod deployments in same account+region #640

Open keymon opened 10 months ago

keymon commented 10 months ago

When trying to deploy 2x deployments using different stackName with the regular prod deployment (using gdeploy, not mage dev:deploy) there is a name collision on some resources:

Final stack status: ROLLBACK_COMPLETE
Messages:
  - APIDBTableA8FD77F9: Granted already exists in stack arn:aws:cloudformation:us-west-2:975713946117:stack/CommonFate/cbacbfc0-400e-11ee-8249-0aefbb48e0c7
  - EventBusE9ABF535: Resource handler returned message: "Event bus Granted already exists." (RequestToken: 5f13e7af-0f7a-96dd-3ee3-5d10959d1040, HandlerErrorCode: AlreadyExists)
[!] Your Common Fate deployment update ended in status ROLLBACK_COMPLETE
keymon commented 10 months ago

Similarly, glide wizards put the secrets with a specific prefix apiToken: awsssm:///granted/providers/okta/apiToken:1 rather than using, maybe, the stackName