From 385eba4914d6f314e95cc84ff6eb4de3a75e1b80 Mon Sep 17 00:00:00 2001 From: smohiudd Date: Thu, 3 Oct 2024 10:39:43 -0600 Subject: [PATCH 1/5] add ecr endpoint --- network/infrastructure/construct.py | 1 + 1 file changed, 1 insertion(+) diff --git a/network/infrastructure/construct.py b/network/infrastructure/construct.py index bfd87db8..9be274ed 100644 --- a/network/infrastructure/construct.py +++ b/network/infrastructure/construct.py @@ -67,6 +67,7 @@ def __init__( "cloudwatch-logs": aws_ec2.InterfaceVpcEndpointAwsService.CLOUDWATCH_LOGS, "s3": aws_ec2.GatewayVpcEndpointAwsService.S3, "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, + "ecr":aws_ec2.InterfaceVpcEndpointAwsService.ECR, } for id, service in vpc_endpoints.items(): From d64d42d7d5e8cc4514dedb3e3c55732abbb613f7 Mon Sep 17 00:00:00 2001 From: smohiudd Date: Thu, 3 Oct 2024 10:42:41 -0600 Subject: [PATCH 2/5] format --- network/infrastructure/construct.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/network/infrastructure/construct.py b/network/infrastructure/construct.py index 9be274ed..21ca41ac 100644 --- a/network/infrastructure/construct.py +++ b/network/infrastructure/construct.py @@ -67,7 +67,7 @@ def __init__( "cloudwatch-logs": aws_ec2.InterfaceVpcEndpointAwsService.CLOUDWATCH_LOGS, "s3": aws_ec2.GatewayVpcEndpointAwsService.S3, "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, - "ecr":aws_ec2.InterfaceVpcEndpointAwsService.ECR, + "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, } for id, service in vpc_endpoints.items(): From a92e0a5df91b9183a60256ab4cfde47f780e6e73 Mon Sep 17 00:00:00 2001 From: ividito Date: Thu, 3 Oct 2024 13:49:12 -0300 Subject: [PATCH 3/5] Add dkr endpoint for ECR --- network/infrastructure/construct.py | 1 + 1 file changed, 1 insertion(+) diff --git a/network/infrastructure/construct.py b/network/infrastructure/construct.py index 21ca41ac..e3fdbeeb 100644 --- a/network/infrastructure/construct.py +++ b/network/infrastructure/construct.py @@ -68,6 +68,7 @@ def __init__( "s3": aws_ec2.GatewayVpcEndpointAwsService.S3, "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, + "ecr-docker": aws_ec2.InterfaceVpcEndpointAwsService.ECR_DOCKER, } for id, service in vpc_endpoints.items(): From 199c871efecccd957a3f4f67b14305476577b002 Mon Sep 17 00:00:00 2001 From: ividito Date: Thu, 3 Oct 2024 15:16:40 -0300 Subject: [PATCH 4/5] Add ECR endpoints to standalone network --- standalone_base_infrastructure/network_construct.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/standalone_base_infrastructure/network_construct.py b/standalone_base_infrastructure/network_construct.py index d8785d4a..edd23148 100644 --- a/standalone_base_infrastructure/network_construct.py +++ b/standalone_base_infrastructure/network_construct.py @@ -42,6 +42,8 @@ def __init__( "cloudwatch-logs": aws_ec2.InterfaceVpcEndpointAwsService.CLOUDWATCH_LOGS, "s3": aws_ec2.GatewayVpcEndpointAwsService.S3, "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, + "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, + "ecr-docker": aws_ec2.InterfaceVpcEndpointAwsService.ECR_DOCKER, } for id, service in vpc_endpoints.items(): From e3c4ec252ef1ea7cfb218a204bd130e7909d9e2b Mon Sep 17 00:00:00 2001 From: ividito Date: Fri, 4 Oct 2024 13:29:24 -0300 Subject: [PATCH 5/5] Add STS endpoint --- network/infrastructure/construct.py | 1 + standalone_base_infrastructure/network_construct.py | 5 +++-- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/network/infrastructure/construct.py b/network/infrastructure/construct.py index e3fdbeeb..21d0ceb2 100644 --- a/network/infrastructure/construct.py +++ b/network/infrastructure/construct.py @@ -69,6 +69,7 @@ def __init__( "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, "ecr-docker": aws_ec2.InterfaceVpcEndpointAwsService.ECR_DOCKER, + "sts": aws_ec2.InterfaceVpcEndpointAwsService.STS, } for id, service in vpc_endpoints.items(): diff --git a/standalone_base_infrastructure/network_construct.py b/standalone_base_infrastructure/network_construct.py index edd23148..3911c5e3 100644 --- a/standalone_base_infrastructure/network_construct.py +++ b/standalone_base_infrastructure/network_construct.py @@ -42,8 +42,9 @@ def __init__( "cloudwatch-logs": aws_ec2.InterfaceVpcEndpointAwsService.CLOUDWATCH_LOGS, "s3": aws_ec2.GatewayVpcEndpointAwsService.S3, "dynamodb": aws_ec2.GatewayVpcEndpointAwsService.DYNAMODB, - "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, - "ecr-docker": aws_ec2.InterfaceVpcEndpointAwsService.ECR_DOCKER, + "ecr": aws_ec2.InterfaceVpcEndpointAwsService.ECR, # allows airflow to pull task images + "ecr-docker": aws_ec2.InterfaceVpcEndpointAwsService.ECR_DOCKER, # allows airflow to pull task images + "sts": aws_ec2.InterfaceVpcEndpointAwsService.STS, # allows airflow tasks to assume access roles } for id, service in vpc_endpoints.items():