Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add IAM role filters #49

Merged
merged 2 commits into from
Nov 23, 2017
Merged

Add IAM role filters #49

merged 2 commits into from
Nov 23, 2017

Conversation

svenwltr
Copy link
Member

@svenwltr svenwltr commented Nov 23, 2017
edited
Loading

Add additional filters to prevent errors like that:

eu-west-1 - IamRolePolicyAttachement - 'AWSServiceRoleForEC2Spot -> AWSEC2SpotServiceRolePolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForEC2Spot' - this role is only modifyable by AWS
	status code: 400, request id: 5dce7817-d02c-11e7-a395-9be537ee44f3
eu-west-1 - IamRolePolicyAttachement - 'AWSServiceRoleForEC2SpotFleet -> AWSEC2SpotFleetServiceRolePolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForEC2SpotFleet' - this role is only modifyable by AWS
	status code: 400, request id: 5e5c38ec-d02c-11e7-821c-d1b97041f7ca
eu-west-1 - IamRolePolicyAttachement - 'AWSServiceRoleForOrganizations -> AWSOrganizationsServiceTrustPolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForOrganizations' - this role is only modifyable by AWS
	status code: 400, request id: 5e9f83c1-d02c-11e7-a395-9be537ee44f3
us-east-1 - IamRolePolicyAttachement - 'AWSServiceRoleForEC2Spot -> AWSEC2SpotServiceRolePolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForEC2Spot' - this role is only modifyable by AWS
	status code: 400, request id: 5f45393a-d02c-11e7-a972-a1e741747b1a
us-east-1 - IamRolePolicyAttachement - 'AWSServiceRoleForEC2SpotFleet -> AWSEC2SpotFleetServiceRolePolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForEC2SpotFleet' - this role is only modifyable by AWS
	status code: 400, request id: 5f86fd7b-d02c-11e7-b57f-af3e065a40e2
us-east-1 - IamRolePolicyAttachement - 'AWSServiceRoleForOrganizations -> AWSOrganizationsServiceTrustPolicy' - UnmodifiableEntity: Cannot perform the operation on the protected role 'AWSServiceRoleForOrganizations' - this role is only modifyable by AWS
	status code: 400, request id: 5fcbf624-d02c-11e7-b57f-af3e065a40e2

Removal requested: 0 waiting, 7 failed, 59 skipped, 2 finished

Error: There are resources in failed state, but none are ready for deletion, anymore.

@rebuy-de/prp-aws-nuke Please review.

@svenwltr svenwltr self-assigned this Nov 23, 2017
@svenwltr svenwltr merged commit 997454e into master Nov 23, 2017
@svenwltr svenwltr deleted the iam-filters branch November 23, 2017 10:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bethge bethge bethge approved these changes

@stephanlindauer stephanlindauer stephanlindauer approved these changes

@bjoernhaeuser bjoernhaeuser bjoernhaeuser approved these changes

Assignees

@svenwltr svenwltr

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@svenwltr @bethge @stephanlindauer @bjoernhaeuser