feat: Removed the logic that creates a virtual private endpoint for COS since it was clashing with the one created by VPC clusters and breaking cluster communication from worker nodes to the COS direct endpoint. When upgrading from an older version, you will see the expected destroy of the virtual private endpoint for COS and its associated reserved ID (#954)

ocofaigh · web-flow · commit 5c64cf185faa · 2025-02-20T15:54:19.000Z
diff --git a/.secrets.baseline b/.secrets.baseline
@@ -3,7 +3,7 @@
     "files": "go.sum|^.secrets.baseline$",
     "lines": null
   },
-  "generated_at": "2023-12-15T18:26:42Z",
+  "generated_at": "2023-12-16T18:26:42Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"
diff --git a/patterns/mixed/config.tf b/patterns/mixed/config.tf
@@ -160,20 +160,9 @@ locals {
     ##############################################################################
     # VPE
     ##############################################################################
-    virtual_private_endpoints = [{
-      service_name   = "cos"
-      service_type   = "cloud-object-storage"
-      resource_group = "${var.prefix}-service-rg"
-      vpcs = [
-        # Create VPE for each VPC in VPE tier
-        for network in module.dynamic_values.vpc_list :
-        {
-          name                = network
-          subnets             = ["vpe-zone-1", "vpe-zone-2", "vpe-zone-3"]
-          security_group_name = "${network}-vpe-sg"
-        }
-      ]
-    }]
+    # By default, do not create any VPEs
+    virtual_private_endpoints = []
+
     ##############################################################################
 
     ##############################################################################
diff --git a/patterns/roks/module/config.tf b/patterns/roks/module/config.tf
@@ -144,20 +144,9 @@ locals {
     ##############################################################################
     # VPE
     ##############################################################################
-    virtual_private_endpoints = [{
-      service_name   = "cos"
-      service_type   = "cloud-object-storage"
-      resource_group = "${var.prefix}-service-rg"
-      vpcs = [
-        # Create VPE for each VPC in VPE tier
-        for network in module.dynamic_values.vpc_list :
-        {
-          name                = network
-          subnets             = ["vpe-zone-1", "vpe-zone-2", "vpe-zone-3"]
-          security_group_name = "${network}-vpe-sg"
-        }
-      ]
-    }]
+    # By default, do not create any VPEs
+    virtual_private_endpoints = []
+
     ##############################################################################
 
     ##############################################################################
diff --git a/patterns/vpc/module/config.tf b/patterns/vpc/module/config.tf
@@ -83,20 +83,9 @@ locals {
     ##############################################################################
     # VPE
     ##############################################################################
-    virtual_private_endpoints = [{
-      service_name   = "cos"
-      service_type   = "cloud-object-storage"
-      resource_group = "${var.prefix}-service-rg"
-      vpcs = [
-        # Create VPE for each VPC in VPE tier
-        for network in module.dynamic_values.vpc_list :
-        {
-          name                = network
-          subnets             = ["vpe-zone-1", "vpe-zone-2", "vpe-zone-3"]
-          security_group_name = "${network}-vpe-sg"
-        }
-      ]
-    }]
+    # By default, do not create any VPEs
+    virtual_private_endpoints = []
+
     ##############################################################################
 
     ##############################################################################
diff --git a/patterns/vsi/module/config.tf b/patterns/vsi/module/config.tf
@@ -120,20 +120,9 @@ locals {
     ##############################################################################
     # VPE
     ##############################################################################
-    virtual_private_endpoints = [{
-      service_name   = "cos"
-      service_type   = "cloud-object-storage"
-      resource_group = "${var.prefix}-service-rg"
-      vpcs = [
-        # Create VPE for each VPC in VPE tier
-        for network in module.dynamic_values.vpc_list :
-        {
-          name                = network
-          subnets             = ["vpe-zone-1", "vpe-zone-2", "vpe-zone-3"]
-          security_group_name = "${network}-vpe-sg"
-        }
-      ]
-    }]
+    # By default, do not create any VPEs
+    virtual_private_endpoints = []
+
     ##############################################################################
 
     ##############################################################################

Original file line number	Diff line number	Diff line change
`@@ -3,7 +3,7 @@`
`3`	`3`	`"files": "go.sum\|^.secrets.baseline$",`
`4`	`4`	`"lines": null`
`5`	`5`	`},`
`6`		`- "generated_at": "2023-12-15T18:26:42Z",`
	`6`	`+ "generated_at": "2023-12-16T18:26:42Z",`
`7`	`7`	`"plugins_used": [`
`8`	`8`	`{`
`9`	`9`	`"name": "AWSKeyDetector"`