fix: check for role attached to instance profile and create if it does not exist

backjo · backjo · commit a1f6192d459a · 2022-05-23T09:16:34.000-07:00
Signed-off-by: Jonah Back &lt;jonah@jonahback.com&gt;
diff --git a/controllers/providers/aws/iam.go b/controllers/providers/aws/iam.go
@@ -214,7 +214,12 @@ func (w *AwsWorker) CreateScalingGroupRole(name string) (*iam.Role, *iam.Instanc
 		createdProfile = out.InstanceProfile
 		time.Sleep(DefaultInstanceProfilePropagationDelay)
 
-		_, err = w.IamClient.AddRoleToInstanceProfile(&iam.AddRoleToInstanceProfileInput{
+	} else {
+		createdProfile = instanceProfile
+	}
+
+	if len(createdProfile.Roles) == 0 {
+		_, err := w.IamClient.AddRoleToInstanceProfile(&iam.AddRoleToInstanceProfileInput{
 			InstanceProfileName: aws.String(name),
 			RoleName:            aws.String(name),
 		})
@@ -224,10 +229,9 @@ func (w *AwsWorker) CreateScalingGroupRole(name string) (*iam.Role, *iam.Instanc
 					return createdRole, createdProfile, errors.Wrap(err, "failed to attach instance-profile")
 				}
 			}
+		} else {
+			createdProfile.Roles = append(createdProfile.Roles, createdRole)
 		}
-
-	} else {
-		createdProfile = instanceProfile
 	}
 
 	return createdRole, createdProfile, nil

Original file line number	Diff line number	Diff line change
`@@ -214,7 +214,12 @@ func (w AwsWorker) CreateScalingGroupRole(name string) (iam.Role, *iam.Instanc`
`214`	`214`	`createdProfile = out.InstanceProfile`
`215`	`215`	`time.Sleep(DefaultInstanceProfilePropagationDelay)`
`216`	`216`
`217`		`- _, err = w.IamClient.AddRoleToInstanceProfile(&iam.AddRoleToInstanceProfileInput{`
	`217`	`+ } else {`
	`218`	`+ createdProfile = instanceProfile`
	`219`	`+ }`
	`220`	`+`
	`221`	`+ if len(createdProfile.Roles) == 0 {`
	`222`	`+ _, err := w.IamClient.AddRoleToInstanceProfile(&iam.AddRoleToInstanceProfileInput{`
`218`	`223`	`InstanceProfileName: aws.String(name),`
`219`	`224`	`RoleName: aws.String(name),`
`220`	`225`	`})`
`@@ -224,10 +229,9 @@ func (w AwsWorker) CreateScalingGroupRole(name string) (iam.Role, *iam.Instanc`
`224`	`229`	`return createdRole, createdProfile, errors.Wrap(err, "failed to attach instance-profile")`
`225`	`230`	`}`
`226`	`231`	`}`
	`232`	`+ } else {`
	`233`	`+ createdProfile.Roles = append(createdProfile.Roles, createdRole)`
`227`	`234`	`}`
`228`		`-`
`229`		`- } else {`
`230`		`- createdProfile = instanceProfile`
`231`	`235`	`}`
`232`	`236`
`233`	`237`	`return createdRole, createdProfile, nil`