-
Notifications
You must be signed in to change notification settings - Fork 9.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix PrivateDnsOnlyForInboundResolverEndpoint for S3 interface endpoints #32355
Fix PrivateDnsOnlyForInboundResolverEndpoint for S3 interface endpoints #32355
Conversation
This field was always set to True or nil, and could not be set to False.
Community NoteVoting for Prioritization
For Submitters
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM 🚀.
% make testacc TESTARGS='-run=TestAccVPCEndpoint_' PKG=ec2 ACCTEST_PARALLELISM=2
==> Checking that code complies with gofmt requirements...
TF_ACC=1 go test ./internal/service/ec2/... -v -count 1 -parallel 2 -run=TestAccVPCEndpoint_ -timeout 180m
=== RUN TestAccVPCEndpoint_gatewayBasic
=== PAUSE TestAccVPCEndpoint_gatewayBasic
=== RUN TestAccVPCEndpoint_interfaceBasic
=== PAUSE TestAccVPCEndpoint_interfaceBasic
=== RUN TestAccVPCEndpoint_interfacePrivateDNS
=== PAUSE TestAccVPCEndpoint_interfacePrivateDNS
=== RUN TestAccVPCEndpoint_interfacePrivateDNSNoGateway
=== PAUSE TestAccVPCEndpoint_interfacePrivateDNSNoGateway
=== RUN TestAccVPCEndpoint_disappears
=== PAUSE TestAccVPCEndpoint_disappears
=== RUN TestAccVPCEndpoint_tags
=== PAUSE TestAccVPCEndpoint_tags
=== RUN TestAccVPCEndpoint_gatewayWithRouteTableAndPolicy
=== PAUSE TestAccVPCEndpoint_gatewayWithRouteTableAndPolicy
=== RUN TestAccVPCEndpoint_gatewayPolicy
=== PAUSE TestAccVPCEndpoint_gatewayPolicy
=== RUN TestAccVPCEndpoint_ignoreEquivalent
=== PAUSE TestAccVPCEndpoint_ignoreEquivalent
=== RUN TestAccVPCEndpoint_ipAddressType
=== PAUSE TestAccVPCEndpoint_ipAddressType
=== RUN TestAccVPCEndpoint_interfaceWithSubnetAndSecurityGroup
=== PAUSE TestAccVPCEndpoint_interfaceWithSubnetAndSecurityGroup
=== RUN TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnCreate
=== PAUSE TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnCreate
=== RUN TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnUpdate
=== PAUSE TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnUpdate
=== RUN TestAccVPCEndpoint_VPCEndpointType_gatewayLoadBalancer
=== PAUSE TestAccVPCEndpoint_VPCEndpointType_gatewayLoadBalancer
=== CONT TestAccVPCEndpoint_gatewayBasic
=== CONT TestAccVPCEndpoint_gatewayPolicy
--- PASS: TestAccVPCEndpoint_gatewayBasic (41.95s)
=== CONT TestAccVPCEndpoint_disappears
--- PASS: TestAccVPCEndpoint_gatewayPolicy (70.49s)
=== CONT TestAccVPCEndpoint_gatewayWithRouteTableAndPolicy
--- PASS: TestAccVPCEndpoint_disappears (35.94s)
=== CONT TestAccVPCEndpoint_tags
--- PASS: TestAccVPCEndpoint_gatewayWithRouteTableAndPolicy (67.16s)
=== CONT TestAccVPCEndpoint_interfacePrivateDNS
--- PASS: TestAccVPCEndpoint_tags (78.96s)
=== CONT TestAccVPCEndpoint_interfacePrivateDNSNoGateway
--- PASS: TestAccVPCEndpoint_interfacePrivateDNSNoGateway (384.20s)
=== CONT TestAccVPCEndpoint_interfaceBasic
--- PASS: TestAccVPCEndpoint_interfaceBasic (94.87s)
=== CONT TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnCreate
--- PASS: TestAccVPCEndpoint_interfacePrivateDNS (499.54s)
=== CONT TestAccVPCEndpoint_VPCEndpointType_gatewayLoadBalancer
--- PASS: TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnCreate (318.58s)
=== CONT TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnUpdate
--- PASS: TestAccVPCEndpoint_VPCEndpointType_gatewayLoadBalancer (412.20s)
=== CONT TestAccVPCEndpoint_ipAddressType
--- PASS: TestAccVPCEndpoint_interfaceNonAWSServiceAcceptOnUpdate (331.56s)
=== CONT TestAccVPCEndpoint_interfaceWithSubnetAndSecurityGroup
--- PASS: TestAccVPCEndpoint_ipAddressType (371.23s)
=== CONT TestAccVPCEndpoint_ignoreEquivalent
--- PASS: TestAccVPCEndpoint_ignoreEquivalent (52.70s)
--- PASS: TestAccVPCEndpoint_interfaceWithSubnetAndSecurityGroup (414.33s)
PASS
ok github.com/hashicorp/terraform-provider-aws/internal/service/ec2 1706.268s
@ddericco Thanks for the contribution 🎉 👏. |
This functionality has been released in v5.7.0 of the Terraform AWS Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you! |
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. |
Description
com.amazonaws.us-west-2.s3
, the CREATE and UPDATE calls will include thePrivateDnsOnlyForInboundResolverEndpoint
attribute. Otherwise, this attribute will not be included in the API calls. A new acceptance test is included to cover this use case.PrivateDnsOnlyForInboundResolverEndpoint
on an interface endpoint resource with an existing gateway endpoint in the same VPC.References
PrivateDnsOnlyForInboundResolverEndpoint
is only supported for services that support BOTH gateway and interface endpoints. See: https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/service/[email protected]/types#DnsOptionsSpecificationPrivateDnsOnlyForInboundResolverEndpoint
when creating an S3 interface endpoint, it will default to true. See: https://docs.aws.amazon.com/AmazonS3/latest/userguide/privatelink-interface-endpoints.html#s3-creating-vpcPrivateDnsOnlyForInboundResolverEndpoint
when creating a non-S3 interface endpoint, it will fail with the error:PrivateDnsOnlyForInboundResolverEndpoint not supported for this service.
Relations
Closes #30041.
Relates #31117.
Closes #32021.
Relates #31873.
Output from Acceptance Testing