This module creates following resources.
aws_eks_access_entry(optional)aws_eks_access_policy_association(optional)
| Name | Version |
|---|---|
| terraform | >= 1.6 |
| aws | >= 5.42 |
No providers.
| Name | Source | Version |
|---|---|---|
| node | ../eks-access-entry | n/a |
| resource_group | tedilabs/misc/aws//modules/resource-group | ~> 0.10.0 |
| user | ../eks-access-entry | n/a |
No resources.
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| cluster_name | (Required) The name of the Amazon EKS cluster to create IAM access entries. | string |
n/a | yes |
| module_tags_enabled | (Optional) Whether to create AWS Resource Tags for the module informations. | bool |
true |
no |
| node_access_entries | (Optional) A list of configurations for EKS access entries for nodes (EC2 instances, Fargate) that are allowed to access the EKS cluster. Each item of node_access_entries block as defined below.(Required) name - A unique name for the access entry. This value is only used internally within Terraform code.(Required) type - The type of the access entry. Valid values are EC2_LINUX, EC2_WINDOWS, FARGATE_LINUX.(Required) principal - The ARN of one, and only one, existing IAM principal to grant access to Kubernetes objects on the cluster. An IAM principal can't be included in more than one access entry. |
list(object({ |
[] |
no |
| resource_group_description | (Optional) The description of Resource Group. | string |
"Managed by Terraform." |
no |
| resource_group_enabled | (Optional) Whether to create Resource Group to find and group AWS resources which are created by this module. | bool |
true |
no |
| resource_group_name | (Optional) The name of Resource Group. A Resource Group name can have a maximum of 127 characters, including letters, numbers, hyphens, dots, and underscores. The name cannot start with AWS or aws. |
string |
"" |
no |
| tags | (Optional) A map of tags to add to all resources. | map(string) |
{} |
no |
| timeouts | (Optional) How long to wait for the EKS Cluster to be created/updated/deleted. | object({ |
{} |
no |
| user_access_entries | (Optional) A list of configurations for EKS access entries for users (IAM roles, users) that are allowed to access the EKS cluster. Each item of user_access_entries block as defined below.(Required) name - A unique name for the access entry. This value is only used internally within Terraform code.(Required) principal - The ARN of one, and only one, existing IAM principal to grant access to Kubernetes objects on the cluster. An IAM principal can't be included in more than one access entry.(Optional) kubernetes_username - The username to authenticate to Kubernetes with. We recommend not specifying a username and letting Amazon EKS specify it for you. Defaults to the IAM principal ARN.(Optional) kubernetes_groups - A set of groups within the Kubernetes cluster.(Optional) kubernetes_permissions - A list of permissions for EKS access entry to the EKS cluster. Each item of kubernetes_permissions block as defined below.(Required) policy - The ARN of the access policy that you're associating.(Optional) scope - The type of access scope that you're associating. Valid values are NAMESPACE, CLUSTER. Defaults to CLUSTER.(Optional) namespaces - A set of namespaces to which the access scope applies. You can enter plain text namespaces, or wildcard namespaces such as dev-*. |
list(object({ |
[] |
no |
| Name | Description |
|---|---|
| cluster_name | The name of the EKS cluster. |
| node_access_entries | The list of configurations for EKS access entries for nodes (EC2 instances, Fargate). |
| user_access_entries | The list of configurations for EKS access entries for users (IAM roles, users). |