Skip to content

Commit

Permalink
Add CAPA permissions for ASG lifecycle hooks (#128)
Browse files Browse the repository at this point in the history
  • Loading branch information
@AndiDog
AndiDog authored Nov 25, 2024
1 parent 4050ff3 commit 76b9557
Show file tree
Hide file tree
Showing 3 changed files with 7 additions and 0 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0

- Add support for removing some IAM permissions from the capa controller role in BYOVPC installations.
- CAPA role CloudFormation template: switch from inline to managed policies for the CAPA IAM role.
- Add CAPA permissions for ASG lifecycle hooks

## [4.2.0] - 2024-09-04

Expand Down
3 changes: 3 additions & 0 deletions capa-controller-role/capa-controller-policy.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,6 +46,9 @@
"autoscaling:SuspendProcesses",
"autoscaling:DescribeAutoScalingInstances",
"autoscaling:TerminateInstanceInAutoScalingGroup",
"autoscaling:DeleteLifecycleHook",
"autoscaling:DescribeLifecycleHooks",
"autoscaling:PutLifecycleHook",
"ec2:CreateLaunchTemplate",
"ec2:CreateLaunchTemplateVersion",
"ec2:DescribeLaunchTemplates",
Expand Down
3 changes: 3 additions & 0 deletions capa-controller-role/cloud-formation-template.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -111,6 +111,9 @@ Resources:
- "autoscaling:SuspendProcesses"
- "autoscaling:DescribeAutoScalingInstances"
- "autoscaling:TerminateInstanceInAutoScalingGroup"
- "autoscaling:DeleteLifecycleHook"
- "autoscaling:DescribeLifecycleHooks"
- "autoscaling:PutLifecycleHook"
- "ec2:CreateLaunchTemplate"
- "ec2:CreateLaunchTemplateVersion"
- "ec2:DescribeLaunchTemplates"
Expand Down

0 comments on commit 76b9557

Please sign in to comment.