Skip to content

Commit

Permalink
update IAM role policy configuration for Mountpoint for Amazon S3 CSI…
Browse files Browse the repository at this point in the history 
… driver
  • Loading branch information
Jiayi Nie committed Nov 25, 2024
1 parent d2b73c6 commit c6923b2
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions latest/ug/storage/s3-csi.adoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -185,9 +185,9 @@ Add a comma to the end of the previous line, and then add the following line aft
+
[source,json,subs="verbatim,attributes,quotes"]
----
"oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE:sub": "system:serviceaccount:kube-system:s3-csi-*"
"oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE:sub": "system:serviceaccount:kube-system:s3-csi-driver-sa"

Check warning on line 188 in latest/ug/storage/s3-csi.adoc

View workflow job for this annotation

GitHub Actions / style-job 

[vale] reported by reviewdog 🐶
[RedHat.PassiveVoice] 'is set' is passive voice. In general, use active voice. Consult the style guide for acceptable use of passive voice.

Raw Output:
{"message": "[RedHat.PassiveVoice] 'is set' is passive voice. In general, use active voice. Consult the style guide for acceptable use of passive voice.", "location": {"path": "latest/ug/storage/s3-csi.adoc", "range": {"start": {"line": 188, "column": 21}}}, "severity": "INFO"}
----
. Change the `Condition` operator from `"StringEquals"` to `"StringLike"`.
. Ensure that the `Condition` operator is set to `"StringEquals"`.

Check warning on line 190 in latest/ug/storage/s3-csi.adoc

View workflow job for this annotation

GitHub Actions / style-job 

[vale] reported by reviewdog 🐶
[RedHat.Definitions] Define acronyms and abbreviations (such as 'OIDC') on first occurrence if they're likely to be unfamiliar.

Raw Output:
{"message": "[RedHat.Definitions] Define acronyms and abbreviations (such as 'OIDC') on first occurrence if they're likely to be unfamiliar.", "location": {"path": "latest/ug/storage/s3-csi.adoc", "range": {"start": {"line": 190, "column": 4}}}, "severity": "INFO"}
. Choose *Update policy* to finish.

=== {aws} CLI [[awscli_s3_store_app_data]]
Expand Down Expand Up @@ -220,8 +220,8 @@ https://oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE
},
"Action": "sts:AssumeRoleWithWebIdentity",
"Condition": {
"StringLike": {
"oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE:sub": "system:serviceaccount:kube-system:s3-csi-*",
"StringEquals": {
"oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE:sub": "system:serviceaccount:kube-system:s3-csi-driver-sa",
"oidc.eks.region-code.amazonaws.com/id/EXAMPLED539D4633E53DE1B71EXAMPLE:aud": "sts.amazonaws.com"
}
}
Expand Down

0 comments on commit c6923b2

Please sign in to comment.