github-mirrors/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/ysoftdevs/terraform-aws-eks.git synced 2026-02-23 19:14:53 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,003 Commits 2 Branches 0 Tags
f6992b159cdfda954d44d40908ce5d06fc879703
Commit Graph

283 Commits

Author SHA1 Message Date
Zack A
0d2a4c2af3 feat: Add output for access_policy_associations (#2904) 
* add output for access_policy_associations

* wording
 2024-02-06 07:48:19 -05:00
yutachaos
f8d49824b0 docs: Correct link for UPGRADE-20.0.md on main README (#2898) 
Fixed link
 2024-02-05 07:57:49 -05:00
Bryant Biggs
417791374c fix: Correct cluster access entry to create multiple policy associations per access entry (#2892) 2024-02-03 06:47:15 -05:00
Bryant Biggs
6b40bdbb1d feat!: Replace the use of aws-auth configmap with EKS cluster access entry (#2858) 
* feat: Replace `resolve_conflicts` with `resolve_conflicts_on_create`/`delete`; raise MSV of AWS provider to `v5.0` to support

* fix: Replace dynamic DNS suffix for `sts:AssumeRole` API calls for static suffix

* feat: Add module tag

* feat: Align Karpenter permissions with Karpenter v1beta1/v0.32 permissions from upstream

* refactor: Move `aws-auth` ConfigMap functionality to its own sub-module

* chore: Update examples

* feat: Add state `moved` block for Karpenter Pod Identity role re-name

* fix: Correct variable `create` description

* feat: Add support for cluster access entries

* chore: Bump MSV of Terraform to `1.3`

* fix: Replace defunct kubectl provider with an updated forked equivalent

* chore: Update and validate examples for access entry; clean up provider usage

* docs: Correct double redundant variable descriptions

* feat: Add support for Cloudwatch log group class argument

* fix: Update usage tag placement, fix Karpenter event spelling, add upcoming changes section to upgrade guide

* feat: Update Karpenter module to generalize naming used and align policy with the upstream Karpenter policy

* feat: Add native support for Windows based managed nodegroups similar to AL2 and Bottlerocket

* feat: Update self-managed nodegroup module to use latest features of ASG

* docs: Update and simplify docs

* fix: Correct variable description for AMI types

* fix: Update upgrade guide with changes; rename Karpenter controller resource names to support migrating for users

* docs: Complete upgrade guide docs for migration and changes applied

* Update examples/karpenter/README.md

Co-authored-by: Anton Babenko <anton@antonbabenko.com>

* Update examples/outposts/README.md

Co-authored-by: Anton Babenko <anton@antonbabenko.com>

* Update modules/karpenter/README.md

Co-authored-by: Anton Babenko <anton@antonbabenko.com>

---------

Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2024-02-02 09:36:25 -05:00
BlacksmithJoe
4c5c97b5d4 feat: Add tags for CloudWatch log group only (#2841) 
* feature: added cloudwatch log group tags input

* fix: terraform docs run
 2023-12-11 09:54:19 -05:00
Daniel Frankcom
091c68051d feat: Allow OIDC root CA thumbprint to be included/excluded (#2778) 
* fix: Allow OIDC root CA thumbprint to be included/excluded

* chore: Consolidate conditional logic within local conditional

---------

Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2023-11-14 10:07:47 -05:00
Bryant Biggs
0732bea85f feat: Update KMS module to avoid calling data sources when create_kms_key = false (#2804) 2023-11-04 08:41:59 -04:00
Jérémie Charest
feee18dd42 feat: Add support for allowed_instance_types on self-managed nodegroup ASG (#2757) 
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2023-10-06 09:20:13 -04:00
Brandon Wagner
918aa7cc40 docs: Correct Karpenter cfn link to IAM policy (#2736) 2023-09-07 07:11:34 -05:00
Joshua Pare
6c56e2ad20 fix: Ensure isra_tag_values can be tried before defaulting to cluster_name on Karpenter module (#2631) 
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2023-05-30 18:55:40 -04:00
김세환
703a76bf89 docs: Add more description in cluster_encryption_config input variable (#2609) 
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2023-05-17 10:13:02 -04:00
Bryant Biggs
78027f37e4 feat: Add support for enabling addons before data plane compute is created (#2478) 2023-02-17 07:28:03 -05:00
Bryant Biggs
71b8ecaa87 fix: Use IAM session context data source to resolve the identities role when using assumed_role (#2347) 2022-12-17 07:32:04 -05:00
Bryant Biggs
3b62f6c316 feat: Add support for addon configuration_values (#2345) 
Resolves undefined
 2022-12-16 14:44:21 -05:00
Bryant Biggs
ca03fd9ec1 docs: Correct spelling mistakes (#2334) 
Resolves undefined
 2022-12-08 09:35:28 -05:00
Bryant Biggs
b2e97ca3dc feat!: Add support for Outposts, remove node security group, add support for addon preserve and most_recent configurations (#2250) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
Resolves undefined
 2022-12-05 16:26:23 -05:00
Bryant Biggs
f24de3326d feat: New Karpenter sub-module for easily enabling Karpenter on EKS (#2303) 2022-11-21 13:50:34 -05:00
Bryant Biggs
a74e98017b feat: Add output for cluster TLS certificate SHA1 fingerprint and provider tags to cluster primary security group (#2249) 2022-09-29 15:34:20 -04:00
Karsten Siemer
f576a6f9ea feat: Allow TLS provider to use versions 3.0+ (i.e. - >= 3.0) (#2211) 2022-08-26 15:45:07 -04:00
Bryant Biggs
0a52d690d5 feat: Add output for launch template name, and correct variable type value (#2205) 2022-08-17 12:24:22 +02:00
pen-pal
6d3fc1b93a docs: Update KMS Key Default Policy Description (#2176) 2022-08-08 20:01:07 -04:00
Bryant Biggs
d990ea8aff fix: Pin TLS provider version to 3.x versions only (#2174) 2022-07-22 08:29:00 -04:00
Pedro Fragoso
0fd1ab1db9 fix: Bump kms module to 1.0.2 to fix malformed policy document when not specifying key_owners (#2163) 2022-07-20 14:05:47 -04:00
Bryant Biggs
bc04cd3a0a fix: Update KMS module version which aligns on module version requirements (#2127) 2022-06-29 07:51:44 -04:00
Bryant Biggs
4543ab454b feat: Add support for specifiying NTP address to use private Amazon Time Sync Service (#2125) 2022-06-28 12:16:20 -04:00
Bryant Biggs
75acb09ec5 feat: Add support for creating KMS key for cluster secret encryption (#2121) 
* feat: Add support for creating KMS key for cluster secret encryption

* fix: Update naming scheme to include `kms_`
 2022-06-28 10:55:39 -04:00
Bryant Biggs
ebc91bcd37 feat: Add support for specifying conrol plane subnets separate from those used by node groups (data plane) (#2113) 2022-06-18 17:52:30 -04:00
Basile Chandesris
a4c61f41f9 docs: Update README to show KMS key ARN not ID (#2098) 
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2022-06-18 11:08:44 -04:00
Bryant Biggs
51e418216f fix: Add conditional variable to allow users to opt out of tagging cluster primary security group (#2034) 2022-04-21 17:34:58 +02:00
Bryant Biggs
69a815c7df docs: Update documentation to reflect latest changes related to aws-auth configmap and upgrading (#2003) 2022-04-10 15:20:38 +02:00
yutachaos
cd8731ec5a chore: Fixed doc link (#1984) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-04-09 19:26:15 +02:00
Ken Kaizu
c576aadce9 fix: iam_role_user_name_prefix type as an bool (#2000) 2022-04-09 14:26:44 +02:00
Bryant Biggs
da3d54cde7 feat: Add support for managing aws-auth configmap using new kubernetes_config_map_v1_data resource (#1999) 2022-04-09 09:15:46 +02:00
Bryant Biggs
3ff17205a4 docs: Replace cluster autoscaler/node termination handler example with Karpenter (#1994) 2022-04-07 20:47:22 +02:00
Bryant Biggs
39a7c0c1f0 docs: Fix broken link and correct doc mis-spelling (#1983) 2022-04-03 20:52:49 +02:00
Bryant Biggs
262b480c34 docs: Re-organize documentation for easier navigation and support for references in issues/PRs (#1981) 2022-04-03 19:48:06 +02:00
Bryant Biggs
0269d38fca feat: Update TLS provider and remove unnecessary cloud init version requirements (#1966) 2022-03-25 09:26:16 +01:00
Bryant Biggs
fd3a3e9a96 fix: Default to cluster version for EKS and self managed node groups when a cluster_version is not specified (#1963) 2022-03-24 15:56:55 +01:00
Bryant Biggs
9371a2943b feat: Add tags to EKS created cluster security group to match rest of module tagging scheme (#1957) 2022-03-24 08:05:59 +01:00
Bryant Biggs
e21db83d8f feat: Allow users to selectively attach the EKS created cluster primary security group to nodes (#1952) 2022-03-23 15:41:39 +01:00
Bryant Biggs
8b03b7b85e feat: Add outputs for autoscaling group names created to aid in autoscaling group tagging (#1953) 2022-03-22 22:26:00 +01:00
Adam Blasko
dd97344d2b chore: Fixed typo in readme (#1951) 2022-03-22 11:25:56 +01:00
Anton Babenko
f5511e4df1 chore: Updated information for users from Russia/Belarus 2022-03-17 14:57:15 +01:00
Bryant Biggs
5935670503 fix: Compact result of cluster security group to avoid disruptive updates when no security groups are supplied (#1934) 2022-03-15 22:06:15 +01:00
Anton Babenko
fad350d5bf feat: Made it clear that we stand with Ukraine 2022-03-12 11:10:02 +01:00
Bryant Biggs
2df1572b8a feat: Add variables to allow users to control attributes on cluster_encryption IAM policy (#1928) 2022-03-09 15:13:18 +01:00
Bryant Biggs
7644952131 feat: Add additional IAM policy to allow cluster role to use KMS key provided for cluster encryption (#1915) 2022-03-02 18:29:35 +01:00
Bryant Biggs
9af0c2495a fix: Add support for overriding DNS suffix for cluster IAM role service principal endpoint (#1905) 2022-03-02 18:26:20 +01:00
Bryant Biggs
8de02b9ff4 fix: Update examples to show integration and usage of new IRSA submodule (#1882) 2022-02-16 21:23:04 +01:00
Fernando Viana
3fc9f2d69c feat: Add variable to provide additional OIDC thumbprints (#1865) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-02-15 14:42:44 +01:00