xpk/terraform-aws-eks
1
0
Fork 0
mirror of https://github.com/terraform-aws-modules/terraform-aws-eks.git synced 2025-09-09 19:32:58 +08:00
Code Activity
1,082 Commits 2 Branches 286 Tags
75db486530459a04ce6eb2e4ed44b29d062de1b3
Commit Graph

291 Commits

Author SHA1 Message Date
Anton Babenko f5511e4df1 chore: Updated information for users from Russia/Belarus 2022-03-17 14:57:15 +01:00
Bryant Biggs 5935670503 fix: Compact result of cluster security group to avoid disruptive updates when no security groups are supplied (#1934) 2022-03-15 22:06:15 +01:00
Anton Babenko fad350d5bf feat: Made it clear that we stand with Ukraine 2022-03-12 11:10:02 +01:00
Bryant Biggs 2df1572b8a feat: Add variables to allow users to control attributes on cluster_encryption IAM policy (#1928) 2022-03-09 15:13:18 +01:00
Bryant Biggs 7644952131 feat: Add additional IAM policy to allow cluster role to use KMS key provided for cluster encryption (#1915) 2022-03-02 18:29:35 +01:00
Bryant Biggs 9af0c2495a fix: Add support for overriding DNS suffix for cluster IAM role service principal endpoint (#1905) 2022-03-02 18:26:20 +01:00
Bryant Biggs 8de02b9ff4 fix: Update examples to show integration and usage of new IRSA submodule (#1882) 2022-02-16 21:23:04 +01:00
Fernando Viana 3fc9f2d69c feat: Add variable to provide additional OIDC thumbprints (#1865) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-02-15 14:42:44 +01:00
Bryant Biggs d3b68479de feat: Add additional output for OIDC provider (issuer URL without leading https://) (#1870) 2022-02-11 22:26:36 +01:00
Janosch Maier 6a30b73fe4 docs: Update security group additional rules description for sourcing created security groups (#1860) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-02-09 13:54:38 +01:00
Bryant Biggs 21c3802dea feat: enable IRSA by default (#1849) 2022-02-06 20:36:34 +01:00
Bryant Biggs c45adce32e chore: add example usage of extending cluster and node security group access rules (#1805) 2022-01-22 08:17:09 +01:00
Bryant Biggs 314192e2eb feat: Add support for networking ip_family which enables support for IPV6 (#1759) 2022-01-14 21:17:03 +01:00
yutachaos cf985c2347 chore: Fixed some broken urls in the docs (#1775) 2022-01-13 12:28:04 +01:00
Bryant Biggs f54bd3047b fix: Correct remote access variable for security groups and add example for additional IAM policies (#1766) 
Co-authored-by: Anton Babenko <anton@antonbabenko.com>
 2022-01-11 21:03:20 +01:00
Bryant Biggs 7babe87775 chore: Update documentation related to default EKS node group settings and v18.x security group changes (#1760) 2022-01-10 17:57:23 +01:00
Devin Young 7089c71e64 fix: Remove trailing hyphen from cluster security group and iam role name prefix (#1745) 2022-01-06 21:29:15 +01:00
Pedro Magalhães 89218279d4 fix: Change variable "node_security_group_additional_rules" from type map(any) to any (#1747) 2022-01-06 21:10:10 +01:00
Bryant Biggs a2c7caac9f fix: Correct conditional map for cluster security group additional rules (#1738) 2022-01-06 12:27:04 +01:00
Bryant Biggs ee9f0c646a feat!: Removed support for launch configuration and replace count with for_each (#1680) 2022-01-05 13:01:31 +01:00
Bryant Biggs b876ff9513 fix: update CI/CD process to enable auto-release workflow (#1698) 2021-11-22 17:15:50 +01:00
Dawid Rogaczewski 4e54eaac16 chore: update cluster_version description (#1671) 2021-11-05 11:12:26 +01:00
Christopher Haar 6959b9bae3 fix: Added Deny for CreateLogGroup action in EKS cluster role (#1594) 2021-11-02 15:34:12 +01:00
Vilvaramadurai Samidurai (Vilva) ed048f3c1a feat: Added support for client.authentication.k8s.io/v1beta1 (#1550) 2021-11-02 11:19:40 +01:00
Dawid Rogaczewski 99d289988d fix: Rebuild examples (#1625) 2021-10-12 15:20:14 +02:00
Gabriel Virga 7371db1a51 docs: Fix broken URL in README (#1602) 2021-09-28 09:39:07 +02:00
Marco Kilchhofer 46f16d6ae8 feat: Ability to specify cluster update timeout (#1588) 2021-09-17 16:45:49 +02:00
Anton Babenko 2bdf7d7dd6 refactor: Refactoring to match the rest of terraform-aws-modules (#1583) 2021-09-16 11:35:44 +02:00
DayneD89 4a7678d372 feat: Added ability to pass different subnets for fargate and the cluster (#1527) 2021-09-06 15:15:38 +02:00
Anton Babenko 40e47a4020 fix: Updated required version of AWS provider to 3.56.0 (#1571) 2021-09-04 10:46:48 +02:00
Robert Kozak b7413b3e37 feat: Allow override of timeouts in node_groups (#1552) 2021-09-03 17:07:59 +02:00
Anton Babenko c2490c5148 feat: Ability to tag just EKS cluster (#1569) 2021-09-03 16:54:59 +02:00
Junaid Ali bcea0708e6 feat: Added throughput support for root and EBS disks (#1445) 2021-09-02 12:28:13 +02:00
Scott Cabrinha 6fb02c4fc4 feat: Allow users to add more Audiences to OpenID Connect (#1451) 2021-08-31 12:27:04 +02:00
Ryan White 3b1229837a feat: Enable ebs_optimized setting for node_groups (#1459) 2021-08-25 15:21:08 +02:00
SNA 686193ed4e feat: Add var.wait_for_cluster_timeout to allow configuring the wait for cluster timeout (#1420) 2021-06-01 23:10:31 +02:00
Thierno IB. BARRY 1d848b56bf fix: Remove duplicated security group rule for EKS private access endpoint (#1412) 
NOTES: In this bug fix, we remove a duplicated security rule introduced during a merge conflict resolution in [#1274](https://github.com/terraform-aws-modules/terraform-aws-eks/pull/1274)
 2021-05-28 21:11:02 +02:00
Marc Haase 796cbead2f feat: Add ability to use Security Groups as source for private endpoint access (#1274) 
BREAKING CHANGES: The private endpoint security group rule has been renamed to allow the use of CIDR blocks and Security Groups as source. This will delete the `cluster_private_access` Security Group Rule for existing cluster. Please rename by `aws_security_group_rule.cluster_private_access[0]` into `aws_security_group_rule.cluster_private_access_cidrs_source[0]`.

Co-authored-by: Thierno IB. BARRY <ibrahima.br@gmail.com>
 2021-05-28 14:56:02 +02:00
Thierno IB. BARRY d7630ef632 docs: Clarify about the cluster_endpoint_private_access_cidrs usage (#1400) 2021-05-28 02:34:52 +02:00
Thierno IB. BARRY 6d7d6f6f5a feat: Drop random pets from Managed Node Groups (#1372) 
BREAKING CHANGES: We now decided to remove `random_pet` resources in Managed Node Groups (MNG). Those were used to recreate MNG if something change and also simulate the newly added argument `node_group_name_prefix`. But they were causing a lot of troubles. To upgrade the module without recreating your MNG, you will need to explicitly reuse their previous name and set them in your MNG `name` argument. Please see [upgrade docs](https://github.com/terraform-aws-modules/terraform-aws-eks/blob/master/docs/upgrades.md#upgrade-module-to-v1700-for-managed-node-groups) for more details.
 2021-05-28 01:50:16 +02:00
Thierno IB. BARRY 8765362093 feat: Rename config_output_path into kubeconfig_output_path for naming consistency (#1399) 
BREAKING CHANGES: The  variable `config_output_path` is renamed into `kubeconfig_output_path` for naming consistency. Please upgrade your configuration accordingly.

NOTES: The kubeconfig file permission is not world and group readable anymore. The default permission is now `600`. This value can be changed with the variable `var.kubeconfig_file_permission`.
 2021-05-27 22:59:09 +02:00
Iryna Shustava 4a9fc3af11 feat: Kubeconfig file should not be world or group readable by default (#1114) 
Co-authored-by: Thierno IB. BARRY <ibrahima.br@gmail.com>
 2021-05-27 22:29:17 +02:00
Thierno IB. BARRY 7898da2ff7 fix: Bump terraform-provider-http required version to 2.4.1 to avoid TLS Cert Pool issue on Windows (#1387) 2021-05-24 21:54:28 +02:00
Thierno IB. BARRY f024da8276 docs: Update license to Apache 2 License (#1375) 2021-05-20 13:08:36 +02:00
Thierno IB. BARRY 06e9078bf4 feat: Search for Windows or Linux AMIs only if they are needed (#1371) 2021-05-19 16:47:40 +02:00
Thierno IB. BARRY 91545abd75 fix: Bump terraform-aws-modules/http provider version to support darwin arm64 release (#1369) 2021-05-19 00:04:24 +02:00
Benjamin Ash 68e9df92c3 feat: Add support for Auto Scaling Group Instance Refresh for self-managed worker groups (#1224) 
Co-authored-by: Thierno IB. BARRY <ibrahima.br@gmail.com>
 2021-05-17 22:12:53 +02:00
Thierno IB. BARRY 19e6be9df3 feat: Add timeout of 5mn when waiting for cluster (#1359) 2021-05-17 14:10:33 +02:00
Thierno IB. BARRY 5cbbe80302 fix: Remove provider from required providers (#1357) 2021-05-17 11:06:19 +02:00
Thierno IB. BARRY e3bf48bba2 feat: Replace the local-exec script with a http datasource for waiting cluster (#1339) 
NOTES: Using the [terraform-aws-modules/http](https://registry.terraform.io/providers/terraform-aws-modules/http/latest) provider is a more platform agnostic way to wait for the cluster availability than using a local-exec. With this change we're able to provision EKS clusters and manage the `aws_auth` configmap while still using the `hashicorp/tfc-agent` docker image.
 2021-05-17 10:11:36 +02:00