Closed jeffshep closed 1 year ago
Hi @jeffshep, I see your point. tooling account might have a tag {"stage"="non-prod"} while for production {"stage"="prod"} This is just an example, but I think we can find more. Are you comfortable picking up this tasks? if it is a configurable parameter in the cdk.json it is quite easy for us to merge it in the open-source version.
For the tooling tags, you are right, we only need to change the deploy/stacks/pipeline.py
for the deployment environments we need to look into the different stacks that are deployed in the deployment accounts
@dlpzx, thanks for your response and apologies for the delay in mine, as the proposal is acceptable I'm comfortable picking this up
Perfect, let us know if you need any support. We can discuss here any design decisions. Once the feature is ready, open a PR and we will review it. Thank you :)
Closing this issue as there has been no update, feel free to reopen if its still a requirement and you are still working on it
Scenario: Deploying the data.all solution into an existing account, with an enforced tagging policy. This would apply specifically to the Tooling and Deployment accounts in the architecture, and reduce the effort required to customise the deployment. Related to 179.
Possible solution Extension to the configuration provided in the cdk.json
Example below, see proposed
tooling_tags
I think both are implemented by iterating over the provided tags in https://github.com/awslabs/aws-dataall/blob/main/deploy/stacks/pipeline.py#L300
Initially having the same tags in the tooling and deployment account is ok, if the design could allow for separate tags in different accounts (to account for tier specific nature of deployment accounts) that would be best