Skip to content

feat: Update EBS CSI IAM policy to match current upstream project #575

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Jul 5, 2025
Merged

feat: Update EBS CSI IAM policy to match current upstream project #575

merged 4 commits into from
Jul 5, 2025
+60 −44

Conversation

Kkasuga904
Copy link
Contributor

@Kkasuga904 Kkasuga904 commented Jul 3, 2025
edited by bryantbiggs
Loading

Description

This PR removes the unnecessary condition block from the ebs_csi IAM policy document.
According to AWS documentation, this condition is not required and may cause permission issues when using the EBS CSI driver with IRSA.

Closes #562

Reference

Impact

No impact on functionality. Simplifies the policy and aligns with AWS recommendations.

@Kkasuga904 Kkasuga904 force-pushed the fix/ebs-csi-policy-update branch from 74344ec to 768426d Compare July 3, 2025 07:29
@Kkasuga904 Kkasuga904 changed the title fix: remove unused condition block from EBS CSI IAM policy fix: Remove unused condition block from EBS CSI IAM policy Jul 3, 2025
@bryantbiggs bryantbiggs force-pushed the fix/ebs-csi-policy-update branch from 650df2d to 971f563 Compare July 5, 2025 14:51
@bryantbiggs bryantbiggs changed the title fix: Remove unused condition block from EBS CSI IAM policy feat: Update EBS CSI IAM policy to match current upstream project Jul 5, 2025
@bryantbiggs bryantbiggs merged commit 49efa8c into terraform-aws-modules:master Jul 5, 2025
36 checks passed
antonbabenko pushed a commit that referenced this pull request Jul 5, 2025
@semantic-release-bot
chore(release): version 5.59.0 [skip ci]
0792d7f 
## [5.59.0](v5.58.0...v5.59.0) (2025-07-05)

### Features

* Update EBS CSI IAM policy to match current upstream project ([#575](#575)) ([49efa8c](49efa8c))
@antonbabenko
Copy link
Member

This PR is included in version 5.59.0 🎉

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bryantbiggs bryantbiggs bryantbiggs approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

EBS CSI IRSA policy preventing creating tags on an EBS volume in case of using VAC
3 participants
@Kkasuga904 @antonbabenko @bryantbiggs