Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

route53_zone - Add support for enabling DNSSEC signing in a specific hosted zone #2421

Merged
merged 20 commits into from
Jan 17, 2025
Merged

route53_zone - Add support for enabling DNSSEC signing in a specific hosted zone #2421

merged 20 commits into from
Jan 17, 2025

Conversation

alinabuzachis
Copy link
Collaborator

@alinabuzachis alinabuzachis commented Dec 11, 2024
edited
Loading

SUMMARY

route53_zone - Add support for enabling DNSSEC signing in a specific hosted zone

Will rebase once #2412 is merged.

Closes #1976

ISSUE TYPE
  • Feature Pull Request
COMPONENT NAME

route53_zone

ADDITIONAL INFORMATION

@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 11, 2024
edited
Loading

Docs Build 📝

Thank you for contribution!✨

This PR has been merged and your docs changes will be incorporated when they are next published.

@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.
https://ansible.softwarefactory-project.io/zuul/buildset/5bd94e7e4b2e498a8fc5ac61605d8bb1

✔️ ansible-galaxy-importer SUCCESS in 4m 38s
✔️ build-ansible-collection SUCCESS in 10m 18s
✔️ ansible-test-splitter SUCCESS in 4m 22s
✔️ integration-amazon.aws-1 SUCCESS in 5m 42s
✔️ integration-amazon.aws-2 SUCCESS in 5m 21s
Skipped 42 jobs

abikouo
abikouo requested changes Jan 7, 2025
View reviewed changes
plugins/modules/route53_zone.py Outdated
Comment on lines 343 to 346
try:
client.enable_hosted_zone_dnssec(HostedZoneId=zone_id)
except (BotoCoreError, ClientError) as e:
module.fail_json_aws(e, msg=f"Could not enable DNSSEC for {zone_id}")
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can you move this to a dedicated function?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done!

plugins/modules/route53_zone.py Outdated
Comment on lines 358 to 364
try:
client.disable_hosted_zone_dnssec(HostedZoneId=zone_id)
except (BotoCoreError, ClientError) as e:
module.fail_json_aws(e, msg=f"Could not enable DNSSEC for {zone_id}")
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can you move this to a dedicated function?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done!

@alinabuzachis alinabuzachis force-pushed the route53_dnssec branch 2 times, most recently from 7860313 to b28dff9 Compare January 15, 2025 13:27
@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.
https://ansible.softwarefactory-project.io/zuul/buildset/00ddea5edcff4c099a8faf22b41b7800

✔️ ansible-galaxy-importer SUCCESS in 5m 44s
✔️ build-ansible-collection SUCCESS in 10m 12s
✔️ ansible-test-splitter SUCCESS in 4m 10s
✔️ integration-amazon.aws-1 SUCCESS in 7m 22s
✔️ integration-amazon.aws-2 SUCCESS in 6m 58s
Skipped 42 jobs

@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.
https://ansible.softwarefactory-project.io/zuul/buildset/e04fdca3de82480cbf33f85804525078

✔️ ansible-galaxy-importer SUCCESS in 4m 24s
✔️ build-ansible-collection SUCCESS in 10m 51s
✔️ ansible-test-splitter SUCCESS in 3m 58s
✔️ integration-amazon.aws-1 SUCCESS in 6m 50s
✔️ integration-amazon.aws-2 SUCCESS in 5m 44s
Skipped 42 jobs

@alinabuzachis alinabuzachis requested a review from abikouo January 15, 2025 14:36
@alinabuzachis alinabuzachis force-pushed the route53_dnssec branch 4 times, most recently from de7ac14 to 26071ac Compare January 15, 2025 15:20
@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.
https://ansible.softwarefactory-project.io/zuul/buildset/729ad21bc0d545f5b6a88483d201fd25

✔️ ansible-galaxy-importer SUCCESS in 4m 49s
✔️ build-ansible-collection SUCCESS in 10m 42s
✔️ ansible-test-splitter SUCCESS in 4m 08s
✔️ integration-amazon.aws-1 SUCCESS in 6m 36s
✔️ integration-amazon.aws-2 SUCCESS in 6m 19s
Skipped 42 jobs

@alinabuzachis
Add route53_ksk module
8580a53 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Add support for dnssec
5d5abe3 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Add changelog fragment
e10e6e7 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Run black and isort
96fdc4a 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Minor updates
ba8697d 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Fix sanity
99c81a9 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Update
0b800ca 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Fix
8be9f64 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Split into two PRs
ba40a3a 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Apply suggested changes
2cfaaee
@alinabuzachis
Apply suggested changes
1b5028d
@alinabuzachis
Modify upon review
ca4d58f 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Modify upon review
f8d098c
@alinabuzachis
Use info from find_ksk
1e09674 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Return info in check_mode
b78ae26 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Update
318d4b7 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Apply suggestions
ac9d861 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Modify upon review
3e8ebf3 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Bring changes from route53
823186a 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@alinabuzachis
Fixes
e888025 
Signed-off-by: Alina Buzachis <abuzachis@redhat.com>
@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded.
https://ansible.softwarefactory-project.io/zuul/buildset/3637eb0a70cc470b8e2e9b8142a25904

✔️ ansible-galaxy-importer SUCCESS in 3m 31s
✔️ build-ansible-collection SUCCESS in 10m 13s
✔️ ansible-test-splitter SUCCESS in 4m 03s
✔️ integration-amazon.aws-1 SUCCESS in 5m 17s
✔️ integration-amazon.aws-2 SUCCESS in 6m 04s
Skipped 42 jobs

abikouo
abikouo approved these changes Jan 16, 2025
View reviewed changes
plugins/modules/route53_zone.py
Comment on lines +379 to +380
# if dnssec_status == "DELETING":
# DNSSEC signing is in the process of being removed for the hosted zone.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
# if dnssec_status == "DELETING":
# DNSSEC signing is in the process of being removed for the hosted zone.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added these comments to document what's happening if dnssec_status == "DELETING":.

@alinabuzachis alinabuzachis added the mergeit Merge the PR (SoftwareFactory) label Jan 17, 2025
@softwarefactory-project-zuul softwarefactory-project-zuul
Copy link
Contributor

Build succeeded (gate pipeline).
https://ansible.softwarefactory-project.io/zuul/buildset/e187ab6875794c1c92bacd0ee3e7ef11

✔️ ansible-galaxy-importer SUCCESS in 5m 04s
✔️ build-ansible-collection SUCCESS in 10m 25s
✔️ ansible-test-splitter SUCCESS in 4m 27s
✔️ integration-amazon.aws-1 SUCCESS in 6m 51s
✔️ integration-amazon.aws-2 SUCCESS in 6m 45s
Skipped 42 jobs

@softwarefactory-project-zuul softwarefactory-project-zuul bot merged commit 8e690f8 into ansible-collections:main Jan 17, 2025
49 checks passed
@patchback Patchback
Copy link

patchback bot commented Jan 17, 2025
edited
Loading

Backport to stable-9: 💚 backport PR created

✅ Backport PR branch: patchback/backports/stable-9/8e690f8deef7e7ee66eb98ee70ab2b6cc9b79416/pr-2421

Backported as #2474

🤖 @patchback
I'm built with octomachinery and
my source is open — https://github.com/sanitizers/patchback-github-app.

patchback bot pushed a commit that referenced this pull request Jan 17, 2025
@alinabuzachis @patchback
route53_zone - Add support for enabling DNSSEC signing in a specific …
964a207 
…hosted zone (#2421)

SUMMARY

route53_zone - Add support for enabling DNSSEC signing in a specific hosted zone
Will rebase once #2412 is merged.
Closes #1976

ISSUE TYPE

Feature Pull Request

COMPONENT NAME

route53_zone
ADDITIONAL INFORMATION

Reviewed-by: Bikouo Aubin
Reviewed-by: Alina Buzachis
(cherry picked from commit 8e690f8)
@patchback patchback bot mentioned this pull request Jan 17, 2025
Merged
softwarefactory-project-zuul bot pushed a commit that referenced this pull request Jan 17, 2025
@patchback
route53_zone - Add support for enabling DNSSEC signing in a specific …
857b30a 
…hosted zone (#2421) (#2474)

This is a backport of PR #2421 as merged into main (8e690f8).
SUMMARY

route53_zone - Add support for enabling DNSSEC signing in a specific hosted zone
Will rebase once #2412 is merged.
Closes #1976

ISSUE TYPE


Feature Pull Request

COMPONENT NAME

route53_zone
ADDITIONAL INFORMATION

Reviewed-by: Alina Buzachis
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@abikouo abikouo abikouo approved these changes

Assignees
No one assigned
Labels
backport-9 mergeit Merge the PR (SoftwareFactory)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Allow Route53 DNSSEC Signing
2 participants
@alinabuzachis @abikouo