Skip to content

Support specifying additional AWS IAM trust relationships for roles managed by Otterize #589

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
orishoshan merged 20 commits into from
Jun 4, 2025
Merged

Support specifying additional AWS IAM trust relationships for roles managed by Otterize #589

orishoshan merged 20 commits into from
Jun 4, 2025

Conversation

@orishoshan
Copy link
Collaborator

@orishoshan orishoshan commented May 7, 2025
edited
Loading

Description

Specify the following annotation on a pod to add an additional trust relationship statement:

credentials-operator.otterize.com/additional-role-trust-relationship-statements: '[{"Effect": "Allow", "Principal": {"AWS": "*"}, "Action": ["sts:AssumeRoleWithWebIdentity"]}]'

References

Infrastructure change to support the credentials operator functionality of the same, in otterize/credentials-operator#185.

Testing

  • This change adds test coverage for new/changed/fixed functionality

Checklist

  • I have added documentation for new/changed functionality in this PR and in github.com/otterize/docs

amitlicht
amitlicht reviewed May 8, 2025
View reviewed changes
@orishoshan orishoshan changed the title Additional trust relationships - POC Support specifying additional AWS IAM trust relationships for roles managed by Otterize Jun 2, 2025
@orishoshan orishoshan requested a review from amitlicht June 2, 2025 14:41
@orishoshan orishoshan mentioned this pull request Jun 2, 2025
Merged
2 tasks
amitlicht
amitlicht suggested changes Jun 3, 2025
View reviewed changes
@orishoshan orishoshan marked this pull request as ready for review June 4, 2025 08:54
@orishoshan orishoshan enabled auto-merge (squash) June 4, 2025 09:04
@orishoshan orishoshan merged commit c0ebfc4 into main Jun 4, 2025
22 checks passed
@orishoshan orishoshan deleted the orisho/additional_trust_rels branch June 4, 2025 09:18
@github-actions github-actions bot locked and limited conversation to collaborators Jun 4, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@amitlicht amitlicht amitlicht approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@orishoshan @amitlicht