Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve RBAC management for aws-auth #9

Open
jpolchlo opened this issue Sep 20, 2022 · 0 comments · May be fixed by #45
Open

Improve RBAC management for aws-auth #9

jpolchlo opened this issue Sep 20, 2022 · 0 comments · May be fixed by #45
Labels
kubernetes Kubernetes project work

Comments

@jpolchlo
Copy link
Collaborator

The EKS module gives the ability to configure the aws-auth ConfigMap to give users and roles access to the cluster. That can be for administration or monitoring purposes using local tools like kubectl or Lens. The problem is that the EKS module appears to have a dependency problem where it attempts to apply configurations to aws-auth before the ConfigMap is set up. I'm not overly thrilled with the solution being to create the cluster with the [manage_aws_auth_configmap](https://registry.terraform.io/modules/terraform-aws-modules/eks/aws/latest#input_manage_aws_auth_configmap) option set to false, and then update the configuration with this setting enabled, which is an obvious hack.

This issue is to resolve this problem definitively. A solution might be to file an issue to the module github, or to develop a more complex solution in-house, or to just implement the hack described above as a stop-gap.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kubernetes Kubernetes project work
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Simplify the 0-hardware stage to not use a separate module azavea/kubernetes-deployment
1 participant
@jpolchlo