github-mirrors/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/ysoftdevs/terraform-aws-eks.git synced 2026-01-16 08:37:18 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: Do not attach policy if Karpenter node role is not created by module (#2964)

Browse Source
This commit is contained in:
Piotr Roszatycki
2024-03-11 00:16:24 +01:00
committed by GitHub
parent 6d3d6d9383
commit 3ad19d7435
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
modules/karpenter/main.tf
View File

@@ -570,7 +570,7 @@ resource "aws_iam_role_policy_attachment" "node" {
AmazonEC2ContainerRegistryReadOnly = "${local.node_iam_role_policy_prefix}/AmazonEC2ContainerRegistryReadOnly"
AmazonEKS_CNI_IPv6_Policy = var.node_iam_role_attach_cni_policy && var.cluster_ip_family == "ipv6" ? local.cni_policy : ""
AmazonEKS_CNI_Policy = var.node_iam_role_attach_cni_policy && var.cluster_ip_family == "ipv4" ? local.cni_policy : ""
} : k => v if var.create && var.create_iam_role && v != "" }
} : k => v if local.create_node_iam_role && v != "" }
policy_arn = each.value
role = aws_iam_role.node[0].name