#pr-reviews (2021-01)

Pull Request Reviews for Cloud Posse Projects

2021-01-02

Hao Wang avatar
Hao Wang
09:39:41 PM

Hi, I closed this PR for it may need more fixes, https://github.com/cloudposse/terraform-aws-ecs-alb-service-task/pull/89/commits/4c47d80f4d9aa51b23f51b3861b93a2008f9871c

Joe Niland avatar
Joe Niland
09:58:56 PM

Don’t those parameters take a single role? https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html

Task definition parameters - Amazon Elastic Container Service

Task definitions are split into separate parts: the task family, the IAM task role, the network mode, container definitions, volumes, task placement constraints, and launch types. The family and container definitions are required in a task definition, while task role, network mode, volumes, task placement constraints, and launch type are optional.

Hao Wang avatar
Hao Wang
10:40:06 PM

got this error from TF module:

Error: Invalid count argument

  on .terraform/modules/ecs_alb_service_tasks/main.tf line 99, in data "aws_iam_policy_document" "ecs_task":
  99:   count = local.enabled && length(var.task_role_arn) == 0 ? 1 : 0

The "count" value depends on resource attributes that cannot be determined
until apply, so Terraform cannot predict how many instances will be created.
To work around this, use the -target argument to first apply only the
resources that the count depends on.
Hao Wang avatar
Hao Wang
10:41:05 PM

TF module will create the roles but if I try to pass roles in I got some errors as above

Joe Niland avatar
Joe Niland
10:57:45 PM

Are you able to share your module code? Maybe just the parts that are failing.

Hao Wang avatar
Hao Wang
11:01:25 PM
module "ecs_alb_service_tasks" {
  source                             = "cloudposse/ecs-alb-service-task/aws"
  version                            = "0.42.3"

  count                              = length(var.container_definitions)
  attributes                         = [var.container_definitions[count.index].container_name]
  alb_security_group                 = module.vpc.vpc_default_security_group_id
  use_alb_security_group             = true
  #task_exec_role_arn                 = aws_iam_role.ecs_exec.arn
  #task_role_arn                      = aws_iam_role.ecs_task.arn
  container_definition_json          = module.container_definitions[count.index].json_map_encoded_list
  ecs_cluster_arn                    = aws_ecs_cluster.default.arn
  launch_type                        = var.ecs_launch_type
  vpc_id                             = module.vpc.vpc_id
  security_group_ids                 = [module.vpc.vpc_default_security_group_id]
  subnet_ids                         = module.subnets.public_subnet_ids
  ignore_changes_task_definition     = var.ignore_changes_task_definition
  network_mode                       = "bridge"
  assign_public_ip                   = var.assign_public_ip
  propagate_tags                     = var.propagate_tags
  deployment_minimum_healthy_percent = var.deployment_minimum_healthy_percent
  deployment_maximum_percent         = var.deployment_maximum_percent
  deployment_controller_type         = var.deployment_controller_type
  desired_count                      = var.desired_count
  task_memory                        = var.task_memory
  task_cpu                           = var.task_cpu
}
Hao Wang avatar
Hao Wang
11:01:44 PM

I used count to create multiple services

Hao Wang avatar
Hao Wang
11:02:17 PM

the module creates roles if no roles are passed

Joe Niland avatar
Joe Niland
11:08:34 PM

I think I would use a map variable with the key being the name of each image. Using count will make it hard for you to change things later.

Joe Niland avatar
Joe Niland
11:09:47 PM

I’m not sure about solving the error above. It doesn’t make sense to me without running it.

Hao Wang avatar
Hao Wang
11:11:04 PM

thanks Joe, I am looking into the codes and see if it is possible to use count

Hao Wang avatar
Hao Wang
11:12:06 PM

I can call the module twice for 2 services as a workaround

Joe Niland avatar
Joe Niland
11:12:09 PM

Sorry, also meant to add that you should use for_each instead of count, in my opinion

Hao Wang avatar
Hao Wang
11:12:50 PM

got it

Hao Wang avatar
Hao Wang
09:40:23 PM

do we need list type for all 3 roles, service/execute/task?

2021-01-03

pjaudiomv avatar
pjaudiomv
07:49:34 PM

got a tf 0.14 upgrade PR here https://github.com/cloudposse/terraform-aws-route53-cluster-zone/pull/39

Terraform 0.14 upgrade by pjaudiomv · Pull Request #39 · cloudposse/terraform-aws-route53-cluster-zone

what Upgrade to support Terraform 0.14 and bring up to current Cloud Posse standard why Support Terraform 0.14 references trying to use this upstream with 0.14 and need to upgrade

1
1
pjaudiomv avatar
pjaudiomv
02:02:08 AM

got another 0.14 PR https://github.com/cloudposse/terraform-aws-acm-request-certificate/pull/35

updates for tf 0.14 and aws provder 3.x by pjaudiomv · Pull Request #35 · cloudposse/terraform-aws-acm-request-certificate

what Upgrade to support Terraform 0.14 and bring up to current Cloud Posse standard why Support Terraform 0.14 Support AWS Provider >= 3.x references https://registry.terraform.io/providers

1
1

2021-01-04

pjaudiomv avatar
pjaudiomv
07:17:34 PM

got a PR to fix a regression from my last PR https://github.com/cloudposse/terraform-aws-acm-request-certificate/pull/38

remove uneeded tolist as is set now by pjaudiomv · Pull Request #38 · cloudposse/terraform-aws-acm-request-certificate

what there is no need to convert to a list anymore as its a set why fixes bug introduced by me :) references issue from slack thread https://sweetops.slack.com/archives/CB6GHNLG0/p1609784495001600

1
jose.amengual avatar
jose.amengual
07:45:27 PM

is it ok to merge? any more changes?

remove uneeded tolist as is set now by pjaudiomv · Pull Request #38 · cloudposse/terraform-aws-acm-request-certificate

what there is no need to convert to a list anymore as its a set why fixes bug introduced by me :) references issue from slack thread https://sweetops.slack.com/archives/CB6GHNLG0/p1609784495001600

pjaudiomv avatar
pjaudiomv
07:46:00 PM

yea my bad

pjaudiomv avatar
pjaudiomv
07:46:08 PM

im testing now with process_domain_validation_options set to false

jose.amengual avatar
jose.amengual
07:47:03 PM

ok

pjaudiomv avatar
pjaudiomv
07:50:06 PM

ok all set

pjaudiomv avatar
pjaudiomv
07:50:47 PM

just tested with every option of process_domain_validation_options and wait_for_certificate_issued

jose.amengual avatar
jose.amengual
07:51:11 PM

ok, cool

2021-01-06

2021-01-07

Alex Taylor avatar
Alex Taylor
09:49:55 AM

Hello. Is anyone able to help me push through this PR? (I’m currently having to reference my fork in our code which is less than ideal) - It needs approval and unsure as to why the tests are failing as I haven’t changed the default behaviour. Thanks

https://github.com/cloudposse/terraform-aws-msk-apache-kafka-cluster/pull/6

Add scram authentication by taylora433 · Pull Request #6 · cloudposse/terraform-aws-msk-apache-kafka-cluster

what Allow cluster to be created with SCRAM authentication. why TLS authentication is not suitable in our use case, we need to use the SCRAM authentication mechanism.

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
04:45:33 PM

@Maxim Mironenko (Cloud Posse)

Add scram authentication by taylora433 · Pull Request #6 · cloudposse/terraform-aws-msk-apache-kafka-cluster

what Allow cluster to be created with SCRAM authentication. why TLS authentication is not suitable in our use case, we need to use the SCRAM authentication mechanism.

Maxim Mironenko (Cloud Posse) avatar
Maxim Mironenko (Cloud Posse)
05:19:51 PM

@Alex Taylor will check for it first thing my morning. Thanks for letting us know about the problem

Alex Taylor avatar
Alex Taylor
09:17:28 AM

No problem thank you

2021-01-08

Mikhail Naletov avatar
Mikhail Naletov
06:13:05 PM

Hello! Could somebody take a look? https://github.com/cloudposse/terraform-aws-ecs-web-app/pull/79

Add customisable aws log prefix by okgolove · Pull Request #79 · cloudposse/terraform-aws-ecs-web-app

what Customisable aws log prefix why May be helpful in case of you don’t use name in label module

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
09:08:58 PM

@Maxim Mironenko (Cloud Posse)

Add customisable aws log prefix by okgolove · Pull Request #79 · cloudposse/terraform-aws-ecs-web-app

what Customisable aws log prefix why May be helpful in case of you don’t use name in label module

2021-01-09

loren avatar
loren
03:58:21 PM

fyi…

@Erik Osterman (Cloud Posse) @Matt Gowie @jose.amengual pr open… https://github.com/cloudposse/build-harness/pull/272

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
07:05:03 AM

Will review on Monday

@Erik Osterman (Cloud Posse) @Matt Gowie @jose.amengual pr open… https://github.com/cloudposse/build-harness/pull/272

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
02:34:56 AM

@Jeremy G (Cloud Posse)

2021-01-11

2021-01-26

Frank avatar
Frank
08:21:14 AM

Hi there. Can someone please take a look at https://github.com/cloudposse/terraform-aws-dynamic-subnets/pull/115? The current version (with the default settings) is broken

fix: add required metadata_options parameters by syphernl · Pull Request #115 · cloudposse/terraform-aws-dynamic-subnets

what Add required http_endpoint and http_put_response_hop_limit parameters to the metadata_options section why Changes done in 886a164 results in a Terraform error while provisioning (A value of…

1
    keyboard_arrow_up