feat: enable s3 endpoint for VPC and Public Subnet on standard network for AWS

This setup allow us to move things to S3 and reuse them internally without extra cost (no internet access required)

Signed-off-by: Adrian Riobo <[email protected]>

Author: adrianriobo

pkg/provider/aws/modules/network/standard/standard.go

@@ -89,6 +89,7 @@ func DefaultNetworkRequest(name, regionName string) NetworkRequest {
 	return NetworkRequest{
 		Name:                name,
 		CIDR:                DefaultCIDRNetwork,
+		Region:              regionName,
 		AvailabilityZones:   azs,
 		PublicSubnetsCIDRs:  GeneratePublicSubnetCIDRs(azCount),
 		PrivateSubnetsCIDRs: GeneratePrivateSubnetCIDRs(azCount),
@@ -166,6 +167,7 @@ func (r NetworkRequest) managePublicSubnets(mCtx *mc.Context, vpc *ec2.Vpc,
 					VPC:              vpc,
 					InternetGateway:  igw,
 					CIDR:             r.PublicSubnetsCIDRs[i],
+					Region:           r.Region,
 					AvailabilityZone: r.AvailabilityZones[i],
 					Name:             fmt.Sprintf("%s%s%d", namePrefix, r.Name, i),
 					AddNatGateway:    r.checkIfNatGatewayRequired(i),

pkg/provider/aws/services/vpc/subnet/public.go

@@ -13,6 +13,7 @@ type PublicSubnetRequest struct {
 	VPC              *ec2.Vpc
 	InternetGateway  *ec2.InternetGateway
 	CIDR             string
+	Region           string
 	AvailabilityZone string
 	Name             string
 	AddNatGateway    bool
@@ -89,6 +90,18 @@ func (r PublicSubnetRequest) Create(ctx *pulumi.Context, mCtx *mc.Context) (*Pub
 	if err != nil {
 		return nil, err
 	}
+	// Create the S3 VPC endpoint (Gateway type)
+	_, err = ec2.NewVpcEndpoint(ctx,
+		fmt.Sprintf("%s-%s", "s3", r.Name),
+		&ec2.VpcEndpointArgs{
+			VpcId:           r.VPC.ID(),
+			ServiceName:     pulumi.Sprintf("com.amazonaws.%s.s3", r.Region),
+			VpcEndpointType: pulumi.String("Gateway"),
+			RouteTableIds:   pulumi.StringArray{rt.ID()},
+		})
+	if err != nil {
+		return nil, err
+	}
 	return &PublicSubnetResources{
 			Subnet:                sn,
 			RouteTable:            rt,