Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refactor staging bucket to use bucket module #140

Merged
merged 1 commit into from
Mar 6, 2023
Merged

Refactor staging bucket to use bucket module #140

merged 1 commit into from
Mar 6, 2023

Conversation

danlamanna
Copy link
Contributor

This is the first of a couple PRs I'd like to make around refactoring our S3 infrastructure. I tried to make the plan as minimal as possible by using the moved blocks but there's still a small portion that couldn't be covered. Namely, the heroku user is getting some permissions through an IAM policy that it used to have through a bucket policy. This refactor gives slightly more permissions than necessary to the heroku user for the ease of refactoring these parts. Once everything uses the common module then we can be judicious about principle of least privilege (ideally this would be data driven via #131).

@mvandenburgh I double checked this but since everything we're doing here will eventually be applied to the sponsored bucket I'd like you to take a careful look at it and let me know what you think.

@danlamanna danlamanna requested a review from mvandenburgh March 6, 2023 17:49
mvandenburgh
mvandenburgh approved these changes Mar 6, 2023
View reviewed changes
Copy link
Member

@mvandenburgh mvandenburgh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This makes sense to me. Regarding the moved blocks - do we just have a follow up PR that removes them?

@danlamanna
Copy link
Contributor Author

This makes sense to me. Regarding the moved blocks - do we just have a follow up PR that removes them?

Yeah I'm planning on removing them after they've been applied.

@danlamanna danlamanna force-pushed the staging-bucket-refactor branch from 2bbcc5c to 398673e Compare March 6, 2023 22:09
@danlamanna danlamanna force-pushed the staging-bucket-refactor branch from 398673e to 823a972 Compare March 6, 2023 22:11
@danlamanna danlamanna merged commit 947f811 into master Mar 6, 2023
@danlamanna danlamanna deleted the staging-bucket-refactor branch March 6, 2023 22:16
@danlamanna
Copy link
Contributor Author

Related #107

@danlamanna danlamanna mentioned this pull request Mar 6, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mvandenburgh mvandenburgh mvandenburgh approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@danlamanna @mvandenburgh