github-mirrors/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/ysoftdevs/terraform-aws-eks.git synced 2026-01-18 09:38:33 +01:00
Code Issues Packages Projects Releases Wiki Activity
954 Commits 2 Branches 0 Tags
fcb4256fa17b3e0bde8bbd69dfd191414977f30c
Commit Graph

171 Commits

Author SHA1 Message Date
김세환
703a76bf89 docs: Add more description in cluster_encryption_config input variable (#2609) 
Co-authored-by: Bryant Biggs <bryantbiggs@gmail.com>
 2023-05-17 10:13:02 -04:00
Bryant Biggs
78027f37e4 feat: Add support for enabling addons before data plane compute is created (#2478) 2023-02-17 07:28:03 -05:00
Bryant Biggs
b2e97ca3dc feat!: Add support for Outposts, remove node security group, add support for addon preserve and most_recent configurations (#2250) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
Resolves undefined
 2022-12-05 16:26:23 -05:00
Bryant Biggs
f24de3326d feat: New Karpenter sub-module for easily enabling Karpenter on EKS (#2303) 2022-11-21 13:50:34 -05:00
Bryant Biggs
0a52d690d5 feat: Add output for launch template name, and correct variable type value (#2205) 2022-08-17 12:24:22 +02:00
pen-pal
6d3fc1b93a docs: Update KMS Key Default Policy Description (#2176) 2022-08-08 20:01:07 -04:00
Bryant Biggs
4543ab454b feat: Add support for specifiying NTP address to use private Amazon Time Sync Service (#2125) 2022-06-28 12:16:20 -04:00
Bryant Biggs
75acb09ec5 feat: Add support for creating KMS key for cluster secret encryption (#2121) 
* feat: Add support for creating KMS key for cluster secret encryption

* fix: Update naming scheme to include `kms_`
 2022-06-28 10:55:39 -04:00
Bryant Biggs
ebc91bcd37 feat: Add support for specifying conrol plane subnets separate from those used by node groups (data plane) (#2113) 2022-06-18 17:52:30 -04:00
Bryant Biggs
51e418216f fix: Add conditional variable to allow users to opt out of tagging cluster primary security group (#2034) 2022-04-21 17:34:58 +02:00
Bryant Biggs
69a815c7df docs: Update documentation to reflect latest changes related to aws-auth configmap and upgrading (#2003) 2022-04-10 15:20:38 +02:00
Ken Kaizu
c576aadce9 fix: iam_role_user_name_prefix type as an bool (#2000) 2022-04-09 14:26:44 +02:00
Bryant Biggs
da3d54cde7 feat: Add support for managing aws-auth configmap using new kubernetes_config_map_v1_data resource (#1999) 2022-04-09 09:15:46 +02:00
Anton Babenko
fad350d5bf feat: Made it clear that we stand with Ukraine 2022-03-12 11:10:02 +01:00
Bryant Biggs
2df1572b8a feat: Add variables to allow users to control attributes on cluster_encryption IAM policy (#1928) 2022-03-09 15:13:18 +01:00
Bryant Biggs
7644952131 feat: Add additional IAM policy to allow cluster role to use KMS key provided for cluster encryption (#1915) 2022-03-02 18:29:35 +01:00
Bryant Biggs
9af0c2495a fix: Add support for overriding DNS suffix for cluster IAM role service principal endpoint (#1905) 2022-03-02 18:26:20 +01:00
Fernando Viana
3fc9f2d69c feat: Add variable to provide additional OIDC thumbprints (#1865) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-02-15 14:42:44 +01:00
Janosch Maier
6a30b73fe4 docs: Update security group additional rules description for sourcing created security groups (#1860) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-02-09 13:54:38 +01:00
Bryant Biggs
21c3802dea feat: enable IRSA by default (#1849) 2022-02-06 20:36:34 +01:00
Bryant Biggs
314192e2eb feat: Add support for networking ip_family which enables support for IPV6 (#1759) 2022-01-14 21:17:03 +01:00
Devin Young
7089c71e64 fix: Remove trailing hyphen from cluster security group and iam role name prefix (#1745) 2022-01-06 21:29:15 +01:00
Pedro Magalhães
89218279d4 fix: Change variable "node_security_group_additional_rules" from type map(any) to any (#1747) 2022-01-06 21:10:10 +01:00
Bryant Biggs
a2c7caac9f fix: Correct conditional map for cluster security group additional rules (#1738) 2022-01-06 12:27:04 +01:00
Bryant Biggs
ee9f0c646a feat!: Removed support for launch configuration and replace count with for_each (#1680) 2022-01-05 13:01:31 +01:00
Dawid Rogaczewski
4e54eaac16 chore: update cluster_version description (#1671) 2021-11-05 11:12:26 +01:00
Vilvaramadurai Samidurai (Vilva)
ed048f3c1a feat: Added support for client.authentication.k8s.io/v1beta1 (#1550) 2021-11-02 11:19:40 +01:00
Dawid Rogaczewski
99d289988d fix: Rebuild examples (#1625) 2021-10-12 15:20:14 +02:00
Marco Kilchhofer
46f16d6ae8 feat: Ability to specify cluster update timeout (#1588) 2021-09-17 16:45:49 +02:00
Anton Babenko
2bdf7d7dd6 refactor: Refactoring to match the rest of terraform-aws-modules (#1583) 2021-09-16 11:35:44 +02:00
DayneD89
4a7678d372 feat: Added ability to pass different subnets for fargate and the cluster (#1527) 2021-09-06 15:15:38 +02:00
Robert Kozak
b7413b3e37 feat: Allow override of timeouts in node_groups (#1552) 2021-09-03 17:07:59 +02:00
Anton Babenko
c2490c5148 feat: Ability to tag just EKS cluster (#1569) 2021-09-03 16:54:59 +02:00
Scott Cabrinha
6fb02c4fc4 feat: Allow users to add more Audiences to OpenID Connect (#1451) 2021-08-31 12:27:04 +02:00
SNA
686193ed4e feat: Add var.wait_for_cluster_timeout to allow configuring the wait for cluster timeout (#1420) 2021-06-01 23:10:31 +02:00
Marc Haase
796cbead2f feat: Add ability to use Security Groups as source for private endpoint access (#1274) 
BREAKING CHANGES: The private endpoint security group rule has been renamed to allow the use of CIDR blocks and Security Groups as source. This will delete the `cluster_private_access` Security Group Rule for existing cluster. Please rename by `aws_security_group_rule.cluster_private_access[0]` into `aws_security_group_rule.cluster_private_access_cidrs_source[0]`.

Co-authored-by: Thierno IB. BARRY <ibrahima.br@gmail.com>
 2021-05-28 14:56:02 +02:00
Thierno IB. BARRY
d7630ef632 docs: Clarify about the cluster_endpoint_private_access_cidrs usage (#1400) 2021-05-28 02:34:52 +02:00
Thierno IB. BARRY
8765362093 feat: Rename config_output_path into kubeconfig_output_path for naming consistency (#1399) 
BREAKING CHANGES: The  variable `config_output_path` is renamed into `kubeconfig_output_path` for naming consistency. Please upgrade your configuration accordingly.

NOTES: The kubeconfig file permission is not world and group readable anymore. The default permission is now `600`. This value can be changed with the variable `var.kubeconfig_file_permission`.
 2021-05-27 22:59:09 +02:00
Iryna Shustava
4a9fc3af11 feat: Kubeconfig file should not be world or group readable by default (#1114) 
Co-authored-by: Thierno IB. BARRY <ibrahima.br@gmail.com>
 2021-05-27 22:29:17 +02:00
Thierno IB. BARRY
e3bf48bba2 feat: Replace the local-exec script with a http datasource for waiting cluster (#1339) 
NOTES: Using the [terraform-aws-modules/http](https://registry.terraform.io/providers/terraform-aws-modules/http/latest) provider is a more platform agnostic way to wait for the cluster availability than using a local-exec. With this change we're able to provision EKS clusters and manage the `aws_auth` configmap while still using the `hashicorp/tfc-agent` docker image.
 2021-05-17 10:11:36 +02:00
Matt Dainty
2a78efd082 feat: Allow to override cluster and workers egress CIDRs (#1237) 2021-04-20 11:13:14 +02:00
Xavier Fernandez
81bc7a2dd1 feat: Allow to specify the managed cluster IAM role name (#1199) 2021-04-20 10:26:39 +02:00
Peter Parada
8912ae9a8b docs: Fix typos in README and CONTRIBUTING (#1167) 2021-01-28 23:22:53 +01:00
Suresh Kumar Nalluru
d48ff6dccb feat: Add support for service_ipv4_cidr for the EKS cluster (#1139) 2021-01-28 23:14:53 +01:00
nitro
618019e331 docs: Make it more obvious that var.cluster_iam_role_name will allow reusing an existing IAM Role for the cluster. (#1133) 2020-12-23 11:13:01 +01:00
Masih H. Derkani
5d90c8fa7a docs: Fixes typo in variables description (#1154) 2020-12-22 16:50:04 +01:00
Thierno IB. BARRY
0d77e30075 feat: Add EKS Fargate support (#1067) 
Co-authored-by: Simon Gurcke <simon@gurcke.de>
Co-authored-by: Daniel Piddock <33028589+dpiddockcmp@users.noreply.github.com>
 2020-11-07 23:03:12 +01:00
huddy
bba7c151c8 feat: Tags passed into worker groups override tags from var.tags for Autoscaling Groups (#1092) 
NOTES: Tags that are passed into `var.worker_groups_launch_template` or `var.worker_groups` now override tags passed in via `var.tags` for Autoscaling Groups only. This allow ASG Tags to be overwritten, so that `propagate_at_launch` can be tweaked for a particular key.
 2020-11-07 22:20:22 +01:00
Paul Pop
ca7593a6db fix: The type of the output cloudwatch_log_group_name should be a string instead of a list of strings (#1061) 
NOTES: The output `cloudwatch_log_group_name` was incorrectly returning the log group name as a list of strings. As a workaround, people were using `module.eks_cluster.cloudwatch_log_group_name[0]` but that was totally inconsistent with output name. Those users can now use `module.eks_cluster.cloudwatch_log_group_name` directly.
 2020-10-28 22:37:21 +01:00
Guillaume GILL
751c422330 feat: Add kubernetes standard labels to avoid manual mistakes on the managed aws-auth configmap (#989) 2020-10-25 15:14:50 +01:00