Expose security groups as part of the service build interfaceΒ #305
Description
Allow modifying a fargate service's security groups using extensions
Use Case
We have a use case where in we want additional security groups to be added to a fargate service. These security groups are pre created and are used to restrict access to certain resources. The idea is to create an extension which modifies the service prop by adding these additional security groups.
Proposed Solution
The service build interface needs to be modified to account for security groups. Since this is only applicable to a fargate service, it becomes a little tricky. I think we could create a FargateServiceBuild that extends ServiceBuild. (similarly create Ec2ServiceBuild) and then modify extension interfaces where service build is referenced to use FargateServiceBuild | Ec2ServiceBuild
Other
N/A
- π I may be able to implement this feature request
-
β οΈ This feature might incur a breaking change
This is a π Feature Request
Copied from @npb17's comment: aws/aws-cdk#11585