feat: Add support for Karpenter v1 controller IAM role permissions (#3126)

* chore: update controller IAM role permissions to support karpenter v1 * Update versions.tf * Revert "Update versions.tf" This reverts commit f0e5c791443301ef7f802c627efe7f7226b95046. * fix: Add support for both v1 and prior to v1 controller permission policy --------- Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
2026-03-22 09:29:06 +01:00 · 2024-08-19 20:31:36 +01:00
parent 1360e3de68
commit e317651535
6 changed files with 764 additions and 342 deletions
--- a/modules/karpenter/variables.tf
+++ b/modules/karpenter/variables.tf
@@ -116,6 +116,13 @@ variable "enable_pod_identity" {
  default     = true
 }

+# TODO - make v1 permssions the default policy at next breaking change
+variable "enable_v1_permissions" {
+  description = "Determines whether to enable permissions suitable for v1+ (`true`) or for v0.33.x-v0.37.x (`false`)"
+  type        = bool
+  default     = false
+}
+
 ################################################################################
 # IAM Role for Service Account (IRSA)
 ################################################################################