github-mirrors/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/ysoftdevs/terraform-aws-eks.git synced 2026-03-22 17:39:05 +01:00
Code Issues Packages Projects Releases Wiki Activity

Make "dangerous" policy attachments optional (#539)

Browse Source
This commit is contained in:
Daniel Piddock
2019-10-04 14:25:19 +02:00
committed by Max Williams
parent 09635a36b7
commit 813c607e90
5 changed files with 36 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
variables.tf
View File

@@ -263,3 +263,21 @@ variable "workers_role_name" {
type = string
default = ""
}
variable "manage_worker_autoscaling_policy" {
description = "Whether to let the module manage the cluster autoscaling iam policy."
type = bool
default = true
}
variable "attach_worker_autoscaling_policy" {
description = "Whether to attach the module managed cluster autoscaling iam policy to the default worker IAM role. This requires `manage_worker_autoscaling_policy = true`"
type = bool
default = true
}
variable "attach_worker_cni_policy" {
description = "Whether to attach the Amazon managed `AmazonEKS_CNI_Policy` IAM policy to the default worker IAM role. WARNING: If set `false` the permissions must be assigned to the `aws-node` DaemonSet pods via another method or nodes will not be able to join the cluster."
type = bool
default = true
}