Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent recreation of the aws_securityhub_member resource #25

Merged
merged 1 commit into from
Nov 30, 2020
Merged

Prevent recreation of the aws_securityhub_member resource #25

merged 1 commit into from
Nov 30, 2020

Conversation

marwinbaumannsbp
Copy link
Contributor

@marwinbaumannsbp marwinbaumannsbp commented Nov 30, 2020
edited
Loading

Remove the invite line in the aws_securityhub_member resource since this is only needed when inviting member accounts that are not in our organization.

@marwinbaumannsbp marwinbaumannsbp changed the title prevent recreation of the aws_securityhub_member resource Prevent recreation of the aws_securityhub_member resource Nov 30, 2020
fernandogoncalves-me
fernandogoncalves-me reviewed Nov 30, 2020
View reviewed changes
modules/security_hub/main.tf Outdated
@@ -14,6 +14,14 @@ resource "aws_securityhub_member" "default" {
email = each.value
invite = true
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Have you tested setting invite = false? I believe the invite is useful when adding accounts via email but since we are using Organizations, I believe this should be set to false.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ferando and I did a little more research about the invite functionality and this is only needed when inviting member accounts that are not in our organization. We will remove this setting for now (since the default is false). More information: https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-accounts-add-invite.html

fernandogoncalves-me
fernandogoncalves-me approved these changes Nov 30, 2020
View reviewed changes
Copy link
Contributor

@fernandogoncalves-me fernandogoncalves-me left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@marwinbaumannsbp marwinbaumannsbp merged commit 996c9b9 into master Nov 30, 2020
@marwinbaumannsbp marwinbaumannsbp deleted the fix-sh-invite branch November 30, 2020 16:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@fernandogoncalves-me fernandogoncalves-me fernandogoncalves-me approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@marwinbaumannsbp @fernandogoncalves-me