feat: Support for encrypting the database and bucket with CMK #182

velotioaastha · 2024-02-22T13:43:26Z

The supported scenarios are listed in this doc -
https://docs.google.com/document/d/1DAQQx2h1weTDCsLNuH0jxJwfJpm95AIQgfCedIQkYlU/edit?usp=sharing

…ifferent kms keys and with external kms keys and external bucket.

gls4

I'm going to leave specific comments in the PR.

gls4

A few changes requested: variable names, consideration of performance insights key, remove boolean which toggles creation of KMS key.

main.tf

outputs.tf

variables.tf

velotioaastha · 2024-02-26T08:12:11Z

Hey @gls4, We have added changes for performance insights kms key and updated the naming convention for default kms key.

Can you also suggest on kms ARN conditions. I've added as a comment there. Will update accordingly.
Please review the PR.

gls4 · 2024-02-26T21:37:58Z

I need to test this. More to come.

gls4 · 2024-02-27T18:21:38Z

Hello! Looks like we might've missed changing a variable name here:

 Error: Reference to undeclared local value
│ 
│   on ../../outputs.tf line 51, in output "kms_key_arn":
│   51:   value       = local.kms_key_arn_generic
│ 
│ A local value with the name "kms_key_arn_generic" has not been declared.

velotioaastha · 2024-03-01T05:44:58Z

hey @gls4, all the comments are resolved. And the PR can be reviewed again.

…ifferent kms keys and with external kms keys and external bucket.

…m-aws-wandb into aastha/encryption

## [4.20.0](v4.19.0...v4.20.0) (2024-07-10) ### Features * Support for encrypting the database and bucket with CMK ([#182](#182)) ([bc7c957](bc7c957))

jsbroks · 2024-07-10T12:06:59Z

This PR is included in version 4.20.0 🎉

velotioaastha and others added 6 commits February 20, 2024 16:50

added changed to add encrytion feature for s3 and db, with same and d…

e55955b

…ifferent kms keys and with external kms keys and external bucket.

added changed to add encrytion feature for s3 and db, with same and d…

2f6f9b2

…ifferent kms keys and with external kms keys and external bucket.

added changed to add encrytion feature for s3 and db, with same and d…

68d9f44

…ifferent kms keys and with external kms keys and external bucket.

added changes for encryption as per the new requirements.

dd934c0

added changes for encryption as per the new requirements.

6f5afdc

Added readme doc for keys encryption

48ef8f9

velotioaastha self-assigned this Feb 22, 2024

velotioaastha requested a review from gls4 as a code owner February 22, 2024 13:43

velotioaastha requested a review from a team February 22, 2024 13:43

velotioaastha changed the title ~~Added support for encrypting the database and bucket with CMK~~ feat: Support for encrypting the database and bucket with CMK Feb 22, 2024

Merge branch 'main' into aastha/encryption

800d0fd

gls4 suggested changes Feb 22, 2024

View reviewed changes

Resolved PR comments

239ef06

Aastha Gupta and others added 3 commits February 28, 2024 14:09

removed create_kms boolean and updated conditions

3e0a0a9

added changes to update validation block.

28ae9b8

added changes to update validation block.

dc7d32a

velotioaastha requested a review from gls4 February 28, 2024 13:32

velotioaastha added 2 commits March 1, 2024 21:25

Merge branch 'main' into aastha/encryption

5f2af8d

Merge branch 'main' into aastha/encryption

67105aa

gls4 approved these changes Mar 7, 2024

View reviewed changes

velotioaastha added 5 commits March 18, 2024 14:40

added changed to add encrytion feature for s3 and db, with same and d…

e4d45a8

…ifferent kms keys and with external kms keys and external bucket.

added changed to add encrytion feature for s3 and db, with same and d…

adf076c

…ifferent kms keys and with external kms keys and external bucket.

added changed to add encrytion feature for s3 and db, with same and d…

67d6bbd

…ifferent kms keys and with external kms keys and external bucket.

added changes for encryption as per the new requirements.

c51e625

added changes for encryption as per the new requirements.

b79659f

Aastha Gupta and others added 5 commits March 18, 2024 14:40

Added readme doc for keys encryption

1caaa22

Resolved PR comments

b543e57

removed create_kms boolean and updated conditions

fc0730f

added changes to update validation block.

8cc700e

added changes to update validation block.

30221d0

velotioaastha force-pushed the aastha/encryption branch from 67105aa to 30221d0 Compare March 18, 2024 09:11

velotioaastha added 2 commits March 21, 2024 11:14

Merge branch 'aastha/encryption' of https://github.com/wandb/terrafor…

201e710

…m-aws-wandb into aastha/encryption

Merge branch 'main' into aastha/encryption

6b69e32

jsbroks linked an issue Apr 30, 2024 that may be closed by this pull request

Support for encrypting the database and bucket with CMK #211

Closed

Aastha Gupta and others added 3 commits May 2, 2024 11:38

Merge branch 'main' into aastha/encryption

e3bde1f

update db kms key arn validation

f26acac

Merge branch 'main' into aastha/encryption

bcaa8db

velotioaastha requested a review from jsbroks May 18, 2024 04:33

velotioaastha and others added 2 commits June 21, 2024 12:05

Merge branch 'main' into aastha/encryption

4b99ce7

fix terraform lint

697e65d

adityachoudhari26 approved these changes Jul 1, 2024

View reviewed changes

Merge branch 'main' into aastha/encryption

b9ba288

velotioaastha merged commit bc7c957 into main Jul 10, 2024
4 checks passed

velotioaastha deleted the aastha/encryption branch July 10, 2024 12:06

velotioaastha restored the aastha/encryption branch July 10, 2024 12:06

velotioaastha deleted the aastha/encryption branch July 10, 2024 12:06

jsbroks pushed a commit that referenced this pull request Jul 10, 2024

chore(release): version 4.20.0 [skip ci]

3d81781

## [4.20.0](v4.19.0...v4.20.0) (2024-07-10) ### Features * Support for encrypting the database and bucket with CMK ([#182](#182)) ([bc7c957](bc7c957))

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: Support for encrypting the database and bucket with CMK #182

feat: Support for encrypting the database and bucket with CMK #182

velotioaastha commented Feb 22, 2024 •

edited

Loading

gls4 left a comment •

edited

Loading

gls4 left a comment

velotioaastha commented Feb 26, 2024

gls4 commented Feb 26, 2024

gls4 commented Feb 27, 2024

velotioaastha commented Mar 1, 2024

jsbroks commented Jul 10, 2024

feat: Support for encrypting the database and bucket with CMK #182

feat: Support for encrypting the database and bucket with CMK #182

Conversation

velotioaastha commented Feb 22, 2024 • edited Loading

gls4 left a comment • edited Loading

Choose a reason for hiding this comment

gls4 left a comment

Choose a reason for hiding this comment

velotioaastha commented Feb 26, 2024

gls4 commented Feb 26, 2024

gls4 commented Feb 27, 2024

velotioaastha commented Mar 1, 2024

jsbroks commented Jul 10, 2024

velotioaastha commented Feb 22, 2024 •

edited

Loading

gls4 left a comment •

edited

Loading