From a975901893b8ca9d1aa7e7e2381659cdfc1e724d Mon Sep 17 00:00:00 2001 From: Adam Taylor Date: Thu, 17 Aug 2023 22:00:43 +0100 Subject: [PATCH 1/2] Update htan-project.yaml --- config/projects-prod/htan-project.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/config/projects-prod/htan-project.yaml b/config/projects-prod/htan-project.yaml index 4fcec0bb..583ae785 100644 --- a/config/projects-prod/htan-project.yaml +++ b/config/projects-prod/htan-project.yaml @@ -14,6 +14,7 @@ parameters: - '{{stack_group_config.tower_viewer_arn_prefix}}/phil.snyder@sagebase.org' - '{{stack_group_config.tower_viewer_arn_prefix}}/thomas.yu@sagebase.org' - 'arn:aws:sts::888810830951:assumed-role/AWSReservedSSO_Administrator_bf3b4691e22cc3c6/adam.taylor@sagebase.org' # Provides for htan-dev cross-account access + - 'arn:aws:sts::526515999252:assumed-role/AWSReservedSSO_S3ExternalCollab_40c062f682e7f3f5/adam.taylor@sagebase.org' # Provides access to HTAN buckets in SciComp AllowSynapseIndexing: Enabled AccountAdminArns: - '{{stack_group_config.sso_admin_role.arn}}' From 61b8e03dfec21b1b82c1f08d43d1dc9ed6b8777c Mon Sep 17 00:00:00 2001 From: Brad Macdonald Date: Tue, 29 Aug 2023 11:15:13 -0600 Subject: [PATCH 2/2] adds dynamic challenge workspace --- .../dynamic-challenge-project.yaml | 25 +++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 config/projects-prod/dynamic-challenge-project.yaml diff --git a/config/projects-prod/dynamic-challenge-project.yaml b/config/projects-prod/dynamic-challenge-project.yaml new file mode 100644 index 00000000..b59e0da1 --- /dev/null +++ b/config/projects-prod/dynamic-challenge-project.yaml @@ -0,0 +1,25 @@ +template: + path: tower-project.j2 +stack_name: dynamic-challenge-project + +stack_tags: + Department: DNT + Project: Dynamic Challenge + OwnerEmail: thomas.yu@sagebase.org + CostCenter: UW/NSF / 507900 + +parameters: + S3ReadWriteAccessArns: + - "{{stack_group_config.tower_viewer_arn_prefix}}/brad.macdonald@sagebase.org" + - "{{stack_group_config.tower_viewer_arn_prefix}}/thomas.yu@sagebase.org" + - "{{stack_group_config.tower_viewer_arn_prefix}}/rchai@sagebase.org" + AccountAdminArns: + - "{{stack_group_config.sso_admin_role.arn}}" + - !stack_output_external sagebase-github-oidc-workflows-prod-nextflow-infra::ProviderRoleArn + TemplateRootUrl: "https://{{stack_group_config.admincentral_cf_bucket}}.s3.amazonaws.com" + TowerForgePolicyArn: !stack_output_external nextflow-forge-iam-policy::NextFlowForgePolicyArn + TowerLaunchPolicyArn: !stack_output_external nextflow-launch-iam-policy::NextFlowLaunchPolicyArn + +dependencies: + - common/nextflow-forge-iam-policy.yaml + - common/nextflow-launch-iam-policy.yaml