summaryrefslogtreecommitdiffstats
path: root/hacking/aws_config/testing_policies/ec2-policy.json
diff options
context:
space:
mode:
authorWill Thames <will@thames.id.au>2017-08-01 12:53:43 +0200
committerRyan Brown <sb@ryansb.com>2017-08-01 12:53:43 +0200
commitf9729946629303bd7b5b03d1357ee9e23c189705 (patch)
treea5a2d13ae00bec589bf7620a21edff3a00f1ea25 /hacking/aws_config/testing_policies/ec2-policy.json
parentFix for ios integration test failuers (#27552) (diff)
downloadansible-f9729946629303bd7b5b03d1357ee9e23c189705.tar.xz
ansible-f9729946629303bd7b5b03d1357ee9e23c189705.zip
[cloud] fix VPC behavior for ec2_group module, improve integration tests (#27038)
* Add tests for group in a VPC * Improve ec2_group output and documentation Update ec2_group to provide full security group information Add RETURN documentation to match * Fix ec2_group creation within a VPC Ensure VPC ID gets passed when creating security group * Add test for auto creating SG * Fix ec2_group auto group creation * Add backoff to describe_security_groups Getting LimitExceeded from describe_security_groups is definitely possible (source: me) so add backoff to increase likelihood of success. To ensure that all `describe_security_group` calls are backed off, remove implicit ones that use `ec2.SecurityGroup`. From there, the decision to remove the `ec2` boto3 resource and rely on the client alone makes good sense. * Tidy up auto created security group Add resource_prefix to auto created security group and delete it in the `always` section. Use YAML argument form for all module parameters
Diffstat (limited to 'hacking/aws_config/testing_policies/ec2-policy.json')
-rw-r--r--hacking/aws_config/testing_policies/ec2-policy.json1
1 files changed, 1 insertions, 0 deletions
diff --git a/hacking/aws_config/testing_policies/ec2-policy.json b/hacking/aws_config/testing_policies/ec2-policy.json
index 5a47f1b7dc..813157debf 100644
--- a/hacking/aws_config/testing_policies/ec2-policy.json
+++ b/hacking/aws_config/testing_policies/ec2-policy.json
@@ -20,6 +20,7 @@
"ec2:CreateVpc",
"ec2:DeleteKeyPair",
"ec2:DeleteNatGateway",
+ "ec2:DeleteVpc",
"ec2:Describe*",
"ec2:DisassociateAddress",
"ec2:DisassociateRouteTable",