mirror of
https://github.com/kubernetes-sigs/external-dns.git
synced 2025-09-22 00:21:00 +02:00
413015ea76
* fix(aws): warn on TXT AccessDenied due to ABAC ExternalDNS writes TXT ownership records. ABAC missing TXT can cause 403 AccessDenied from Route 53. * Update AWS ABAC docs to include TXT in record types * Log entries when AccessDenied occurs and batch contains TXT * Added unit tests for AccessDenied detection, TXT detection and logging Refs: #5773 Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch> * fix(aws): Drop prescriptive IAM warning * Return the first Route 53 error from `submitChanges` so operators see the original AWS message * Remove IAM-guessing branch while keeping split-and-retry submission * Tidy error test and fall back to `provider.NewSoftErrorf` when no AWS error was captured * Add tests for error return on failures upon zone submission Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch> * fix(aws): Remove TXT-specific error handling Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch> * fix(aws): Remove Route53 final error message Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch> * fix(aws): Remove unused import of `error` Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch> --------- Signed-off-by: Tobias Harnickell <tobias.harnickell@bedag.ch>