8912ae9a8b
docs: Fix typos in README and CONTRIBUTING ( #1167 )
2021-01-28 23:22:53 +01:00
d48ff6dccb
feat: Add support for service_ipv4_cidr for the EKS cluster ( #1139 )
2021-01-28 23:14:53 +01:00
8978997bb1
feat: Add the SPOT support for Managed Node Groups ( #1129 )
...
BREAKING CHANGES: To add add SPOT support for MNG, the `instance_type` is now a list and renamed as `instance_types`. This will probably rebuild existing Managed Node Groups.
2021-01-28 23:08:29 +01:00
76537d1b8d
feat: Use gp3 as default as it saves 20% and is more performant ( #1134 )
...
BREAKING CHANGES: The default root volume type is now `gp3` as it saves 20% and is more performant
2021-01-28 22:52:10 +01:00
576aa293f5
feat: Allow the overwrite of subnets for Fargate profiles ( #1117 )
...
NOTES: The EKS cluster can be provisioned with both private and public subnets. But Fargate only accepts private ones. This new variable allows to override the subnets to explicitly pass the private subnets to Fargate and work around that issue.
2021-01-28 22:46:53 +01:00
65777d0a37
fix: Merge tags from Fargate profiles with common tags from cluster ( #1159 )
2020-12-23 13:08:19 +01:00
618019e331
docs: Make it more obvious that var.cluster_iam_role_name will allow reusing an existing IAM Role for the cluster. ( #1133 )
2020-12-23 11:13:01 +01:00
5d90c8fa7a
docs: Fixes typo in variables description ( #1154 )
2020-12-22 16:50:04 +01:00
7d6e672303
feat: Add support for throughput parameter for gp3 volumes ( #1146 )
2020-12-22 16:26:47 +01:00
ccacc17792
feat: Add customizable Auto Scaling Group health check type ( #1118 )
2020-12-22 11:55:43 +01:00
b0f51fdbe5
feat: Add permissions boundary to fargate execution IAM role ( #1108 )
2020-12-22 11:43:08 +01:00
ea2f6982d5
chore: Fix terraform format for TF 0.14 ( #1157 )
2020-12-22 11:32:13 +01:00
942a88e18f
docs: Fix a typo in the aws-auth section of the README ( #1099 )
2020-12-22 10:27:38 +01:00
e4520d2c2e
chore: update changelog ( #1097 )
2020-11-12 11:03:46 +01:00
e5d26e1dcc
docs: Clarify usage of both AWS-Managed Node Groups and Self-Managed Worker Groups ( #1094 )
2020-11-12 10:53:37 +01:00
63217467a9
improvement: Tags passed into worker groups should also be excluded from Launch Template tag specification ( #1095 )
2020-11-12 10:17:55 +01:00
43101979ef
fix: Don’t add empty Roles ARN in aws-auth configmap, specifically when no Fargate profiles are specified ( #1096 )
2020-11-12 09:48:53 +01:00
669736f71b
chore: update changelog ( #1093 )
2020-11-07 23:10:37 +01:00
0d77e30075
feat: Add EKS Fargate support ( #1067 )
...
Co-authored-by: Simon Gurcke <simon@gurcke.de >
Co-authored-by: Daniel Piddock <33028589+dpiddockcmp@users.noreply.github.com >
2020-11-07 23:03:12 +01:00
571da60aea
fix: Change the default launch_template_id to null for Managed Node Groups ( #1088 )
2020-11-07 22:29:24 +01:00
bba7c151c8
feat: Tags passed into worker groups override tags from var.tags for Autoscaling Groups ( #1092 )
...
NOTES: Tags that are passed into `var.worker_groups_launch_template` or `var.worker_groups` now override tags passed in via `var.tags` for Autoscaling Groups only. This allow ASG Tags to be overwritten, so that `propagate_at_launch` can be tweaked for a particular key.
2020-11-07 22:20:22 +01:00
3cb8fa3d87
docs: Fix IRSA example when deploying cluster-autoscaler from the latest kubernetes/autoscaler helm repo ( #1090 )
2020-11-07 14:28:52 +01:00
fc40053c0c
docs: Explain node_groups and worker_groups difference in FAQ ( #1081 )
2020-11-03 17:02:13 +01:00
e8a060f5ae
docs: Update autoscaler installation in IRSA example ( #1063 )
2020-11-02 22:11:58 +01:00
3379e5982f
chore: update changelog ( #1080 )
2020-11-02 08:42:10 +01:00
571e4e7f4b
chore: Use # for comments. It's the recommended way to start comment and it's more idiomatic ( #1079 )
2020-11-02 08:35:12 +01:00
127a3a8831
feat: Add Launch Template support for Managed Node Groups ( #997 )
...
NOTES: Managed Node Groups now support Launch Templates. The Launch Template it self is not managed by this module, so you have to create it by your self and pass it's id to this module. See docs and [`examples/launch_templates_with_managed_node_groups/`](https://github.com/terraform-aws-modules/terraform-aws-eks/tree/master/examples/launch_templates_with_managed_node_group ) for more details.
2020-11-02 08:19:10 +01:00
62a8f46ba7
feat: Add cloudwatch_log_group_arn to outputs ( #1071 )
2020-10-29 01:17:17 +01:00
58f753e9f8
ci: Use ubuntu-latest instead of MacOS for docs checks ( #1074 )
2020-10-29 01:13:43 +01:00
ca7593a6db
fix: The type of the output cloudwatch_log_group_name should be a string instead of a list of strings ( #1061 )
...
NOTES: The output `cloudwatch_log_group_name` was incorrectly returning the log group name as a list of strings. As a workaround, people were using `module.eks_cluster.cloudwatch_log_group_name[0]` but that was totally inconsistent with output name. Those users can now use `module.eks_cluster.cloudwatch_log_group_name` directly.
2020-10-28 22:37:21 +01:00
751c422330
feat: Add kubernetes standard labels to avoid manual mistakes on the managed aws-auth configmap ( #989 )
2020-10-25 15:14:50 +01:00
c7f88997d1
ci: Fix GitHub Actions CI macOS build errors ( #1065 )
...
Temporary fix for https://github.com/actions/virtual-environments/issues/1811
2020-10-25 15:07:22 +01:00
d97edde9cd
fix: Use splat syntax to avoid errors during destroy with an empty state ( #1041 )
2020-10-12 21:59:29 +02:00
c75fbb0164
fix: Fix cycle error during the destroy phase when we change workers order ( #1043 )
...
NOTES: Keep in mind that changing the order of workers group is a destructive operation. All workers group are destroyed and recreated. If you want to do this safely, you should move then in state with `terraform state mv` until we manage workers groups as maps.
2020-10-12 21:50:22 +02:00
c54ce911dc
fix: Set IAM Path for cluster_elb_sl_role_creation IAM policy ( #1045 )
2020-10-12 13:51:28 +02:00
094e363362
fix: Use the amazon ImageOwnerAlias for worker ami owner instead of owner id ( #1038 )
2020-10-06 14:26:50 +02:00
d6f3a4265f
chore: update changelog for v13.0.0 release ( #1034 )
2020-10-06 09:39:11 +02:00
c799fecd85
fix: Use customer managed policy instead of inline policy for cluster_elb_sl_role_creation ( #1039 )
...
NOTE: The usage of customer managed policy, not an inline policy, for the `cluster_elb_sl_role_creation policy` is common for "enterprise" AWS users to disallow inline policies with an SCP rule for auditing-related reasons, and this accomplishes the same thing.
2020-10-06 09:24:22 +02:00
93614b329d
improvement: Make the cpu_credits optional for workers launch template ( #1030 )
...
NOTES: `credit_specification` for worker groups launch template can now be set to `null` so that we can use non burstable EC2 families
2020-10-05 15:24:47 +02:00
8c8f4b56eb
feat: Add load_balancers parameter to associate a CLB (Classic Load Balancer) to worker groups ASG ( #992 )
2020-10-05 15:07:57 +02:00
d8ab5d4d6d
improvement: update the wait_for_cluster_cmd logic to use curl if wget doesn't exist ( #1002 )
2020-10-05 14:59:40 +02:00
c4e95b3b04
docs: Add ec2:CreateVpcEndpoint action to minimum permission list ( #1022 )
2020-10-04 21:19:05 +02:00
f0ae6c6751
feat: Dynamic Partition for IRSA to support AWS-CN Deployments ( #1028 )
2020-10-04 20:49:41 +02:00
594602f75a
ci: Bump terraform pre-commit hook version and re-run terraform-docs with the latest version to fix the CI ( #1033 )
...
* bump pre-commit hook version
* re-run terraform-docs with the latest version
2020-10-04 20:45:43 +02:00
31ad394dbc
feat: Add AmazonEKSVPCResourceController to cluster policy to be able to set AWS Security Groups for pod ( #1011 )
...
Co-authored-by: Thomas O'Neill <toneill@new-innov.com >
2020-10-04 20:08:02 +02:00
bceb966dfd
fix: More compatibility fixes for Terraform v0.13 and aws v3 ( #976 )
...
Additional support for Terraform v0.13 and aws v3!
- The update to the vpc module in examples was, strictly speaking, unnecessary but it adds the terraform block with supported versions.
- Update for iam module in the example was very necessary to support new versions
- Workaround for "Provider produced inconsistent final plan" when creating ASGs at the same time as the cluster. See https://github.com/terraform-providers/terraform-provider-aws/issues/14085 for full details.
- Blacklist 0.13.0 as it was too strict when migrating from aws v2 to v3 about dropped attributes.
2020-09-08 18:25:46 +02:00
ad5373dc61
docs: Add important notes about the retry logic and the wget requirement ( #999 )
2020-09-04 23:04:41 +02:00
1adbe82e15
fix: Create cluster_private_access security group rules when it should ( #981 )
...
BREAKING CHANGES: Default for `cluster_endpoint_private_access_cidrs` is now `null` instead of `["0.0.0.0/0"]`. It makes the variable required when `cluster_create_endpoint_private_access_sg_rule` is set to `true`. This will force everyone who want to have a private access to set explicitly their allowed subnets for the sake of the principle of least access by default.
2020-09-02 22:38:02 +02:00
44d59da57b
docs: Update README about cluster_version variable requirement ( #988 )
2020-08-27 10:08:11 +02:00
1bd5bf5ab9
feat: Cluster version is now a required variable. ( #972 )
...
BREAKING CHANGES: `cluster_version` variable is now required.
2020-08-14 16:06:53 +02:00
Peter Parada