Skip to content

fix: updated S3 permissions and credential link#1166

Draft
gwright99 wants to merge 4 commits intomasterfrom
gwright99/fix-fusion-permissions
Draft

fix: updated S3 permissions and credential link#1166
gwright99 wants to merge 4 commits intomasterfrom
gwright99/fix-fusion-permissions

Conversation

@gwright99
Copy link
Member

@gwright99 gwright99 commented Mar 3, 2026
edited
Loading

  • Added additional S3 permissions to IAM policy blocks based on recent troubleshoot.

    • Added new IAM policy section to 'local/aws-s3'.
    • Updated aws-batch and aws-eks existing policies.

  • Fixed incorrect Credential link (pointed to Google, should have been pointing to AWS).

  • NOTES:

    • s3:GetObjectTagging may not always be necessary (still investigating), but it makes sense to me to always include it since it ensures problems won't be encountered and does not worsen the security posture.
    • Policies are defined x3. This should be made DRY but I dont know how to do this in framework, so I did a quick dumb implementation so clients dont get caught.

@gwright99
fix: updated S3 permissions and credential link
a3cc522 
- Added additional S3 permissions to IAM policy blocks based on recent troubleshoot.
    - Added new IAM policy section to 'local/aws-s3'.
    - Updated aws-batch and aws-eks existing policies.

- NOTES:
    - s3:GetObjectTagging may not always be necessary (still investigating), but it makes sense to me to always include it since it ensures problems won't be encountered and does not worsen the security posture.
    - Policies are defined x3. This should be made DRY but I dont know how to do this in framework, so I did a quick dumb implementation so clients dont get caught.
@netlify
Copy link

netlify bot commented Mar 3, 2026
edited
Loading

Deploy Preview for seqera-docs ready!

Name Link
🔨 Latest commit 2c2e2ff
🔍 Latest deploy log https://app.netlify.com/projects/seqera-docs/deploys/69a85cf0a1647b00087a3e1d
😎 Deploy Preview https://deploy-preview-1166--seqera-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@gwright99 gwright99 marked this pull request as draft March 3, 2026 16:21
@gwright99
Copy link
Member Author

gwright99 commented Mar 3, 2026

@christopher-hakkaart @llewellyn-sl -- I've converted this to draft while I wait for a troubleshooting client to confirm that this IAM fix truly got to end-of-job (we're pretty confident it's working since we bypassed the original S3 403 error, but I want official confirmation with this specific policy).

@justinegeffen justinegeffen added 1. Editor review Needs a language review 1. Dev/PM/SME Needs a review by a Dev/PM/SME labels Mar 3, 2026
@justinegeffen justinegeffen removed the request for review from llewellyn-sl March 3, 2026 21:20
@justinegeffen
Copy link
Contributor

justinegeffen commented Mar 4, 2026

@gwright99, I have made some edits to fix one of the build errors related to trailing white spaces, you can safely ignore the changes.

@justinegeffen justinegeffen added the do not merge Do not merge until this label is removed label Mar 4, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@christopher-hakkaart christopher-hakkaart Awaiting requested review from christopher-hakkaart

@munishchouhan munishchouhan Awaiting requested review from munishchouhan

@gavinelder gavinelder Awaiting requested review from gavinelder

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

1. Dev/PM/SME Needs a review by a Dev/PM/SME 1. Editor review Needs a language review do not merge Do not merge until this label is removed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@gwright99 @justinegeffen