Skip to content

add restrict-resources-by-module-source.sentinel #268

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 19, 2021
Merged

add restrict-resources-by-module-source.sentinel #268

merged 1 commit into from
Feb 19, 2021

Conversation

rberlind
Copy link
Contributor

@rberlind rberlind commented Feb 19, 2021
edited
Loading

This adds a new restrict-resources-by-modules-source.sentinel poilcy that restricts resources of specific types to only be created in modules with sources in a given list. It used the tfconfig/v2 import and a new function, get_module_source(), that I added to the tfconfig-functions.sentinel module. There is a new MD file to describe that new function.

It also fixes an error in the recently added restrict-s3-bucket-policies.sentinel policy, replacing an occurrence of break with continue.

It also changes some comments in the MD file for tfconfig-functions.find_descendant_modules() to refer to module labels instead of names and fixes a broken link in that file.

And it makes a mior typographical change in aws-functions.sentinel to change num_segments -1 to num_segments-1.

@rberlind rberlind merged commit 1aef8ea into master Feb 19, 2021
@rberlind rberlind deleted the restrict-resources-by-module-source branch February 19, 2021 15:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@abbasrsyed abbasrsyed abbasrsyed approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rberlind @abbasrsyed