awsutil

package

v0.1.69 Latest Latest Go to latest Published: Oct 16, 2025 License: Apache-2.0 Imports: 10 Imported by: 0

Details

View Source

const (
	AuthFailure           = "AuthFailure"
	UnauthorizedOperation = "UnauthorizedOperation"
)

This section is empty.

func AWSErrorCode(err error) string

func AssumeRole(sess *session.Session, roleSessionName, roleArn string) (*credentials.Credentials, error)

func AssumeRoleWithWebIdentity(sess *session.Session, roleSessionName, roleArn, token string) (*credentials.Credentials, error)

func DefaultWorkerSGEgressRules() []*ec2.IpPermission

func DefaultWorkerSGIngressRules(machineCIDRs []string, sgGroupID, sgUserID string) []*ec2.IpPermission

DefaultWorkerSGIngressRules templates out the required inbound security group rules for the default worker security group. This AWS security group is attached to worker node EC2 instances and the PrivateLink VPC Endpoint for the Hosted Control Plane. Sources: - https://github.com/openshift/installer/blob/da42a4d4020f8c8d8140c0cdc45ee11932343f7d/pkg/asset/manifests/aws/cluster.go#L48-L122 - https://github.com/openshift/installer/blob/da42a4d4020f8c8d8140c0cdc45ee11932343f7d/upi/aws/cloudformation/03_cluster_security.yaml

func EC2TagsToMap(tags []*ec2.Tag) map[string]string

func GetSecurityGroup(ec2Client ec2iface.EC2API, filter []*ec2.Filter) (*ec2.SecurityGroup, error)

func GetSecurityGroupById(ec2Client ec2iface.EC2API, id string) (*ec2.SecurityGroup, error)

func IsPermissionsError(err error) bool

IsPermissionsError returns true if on aws permission errors.

func MapToEC2Tags(m map[string]string) []*ec2.Tag

func UpdateResourceTags(ec2Client ec2iface.EC2API, resourceID string, create, remove map[string]string) error

func VPCEndpointSecurityGroupRules(machineCIDRs []string, port int64) []*ec2.IpPermission

This section is empty.