Crossplane Addon - Part1 #226
Conversation
vara-bonthu
added
documentation
docs/add-ons/crossplane.md
Outdated
| crossplane_irsa_policies = [] # Optional to add additional policies to Crossplane IRSA | ||
| ``` | ||
|
|
||
| Here is a full example to consume `kubernetes-addons` module and deploy Crossplane |
There was a problem hiding this comment.
To be concise, might be easiest to just link to the example here?
| @@ -0,0 +1,39 @@ | |||
| locals { | |||
| name = "crossplane-system" | |||
There was a problem hiding this comment.
should we call this var namespace? Since it is used for namespace values? Maybe need a name and a namespace var?
There was a problem hiding this comment.
You are right. Changed it now
| @@ -0,0 +1,39 @@ | |||
| locals { | |||
| name = "crossplane-system" | |||
| service_account_name = "crossplane" | |||
There was a problem hiding this comment.
service account name is the same as values on line 5 and 6. Prob can reword vars. Also convention in the codebase is to use the -sa postfix for namespaces yea?
There was a problem hiding this comment.
Crossplane doesn't provide option to create our own SA. I just removed the reference. SA will be created by Helm chart.
| @@ -0,0 +1,6 @@ | |||
| module "helm_addon" { | |||
| @@ -0,0 +1,6 @@ | |||
| module "helm_addon" { | |||
There was a problem hiding this comment.
I think you need to add the "short license" file header to these files. @jomcy-amzn ?
There was a problem hiding this comment.
No I don't think we need them. Repos like https://github.com/aws-ia/terraform-aws-control_tower_account_factory have not included license files in the source files. Root level is good enough.
| @@ -1,6 +1,6 @@ | |||
| locals { | |||
| namespace = "karpenter" | |||
| service_account_name = "karpenter-sa" | |||
There was a problem hiding this comment.
I know we did discuss this but it may be worth revisiting again. we don't need to tell namespace as -ns and service account as -sa. We are tagging the resources with SSP so we should be able to identify the resources created by SSP.
Also, we may avoid creating Service Accounts where possible and let the Helm chart handle that to avoid any possible issues. This also helps for ArgoCD sync.
examples/crossplane/main.tf
Outdated
|
|
||
| enable_crossplane = true | ||
|
|
||
| crossplane_helm_config = { |
There was a problem hiding this comment.
these are default values right? Why include in the example?
There was a problem hiding this comment.
Changed the example to enable_crossplane = true and commented the optional one.
I think this is one common question that many asked on how to pass their own values.yaml using our repo for the add-ons. Showing this in the example itself will be useful for users. They don't need to go through all the docs.
examples/crossplane/values.yaml
Outdated
| @@ -0,0 +1,5 @@ | |||
| nodeSelector: | |||
There was a problem hiding this comment.
same as default yaml right? Why include in example?
There was a problem hiding this comment.
see above response
examples/crossplane/main.tf
Outdated
| # Example to consume aws-eks-accelerator-for-terraform module | ||
| #--------------------------------------------------------------- | ||
| module "aws-eks-accelerator-for-terraform" { | ||
| source = "github.com/aws-samples/aws-eks-accelerator-for-terraform" |
There was a problem hiding this comment.
We've been doing relative paths for modules, might want to keep doing that for consistency.
| @@ -1,7 +1,7 @@ | |||
| module "helm_addon" { | |||
| source = "../helm_addon" | |||
| source = "../helm-addon" | |||
| @@ -0,0 +1,6 @@ | |||
| module "helm_addon" { | |||
There was a problem hiding this comment.
No I don't think we need them. Repos like https://github.com/aws-ia/terraform-aws-control_tower_account_factory have not included license files in the source files. Root level is good enough.
| count = var.enable_argo_rollouts ? 1 : 0 | ||
| source = "./argo-rollouts" | ||
| eks_cluster_id = var.eks_cluster_id | ||
| helm_config = var.argo_rollouts_helm_config |
There was a problem hiding this comment.
Can you please pass tags here? I forgot to add them in my PR.
add homepage and introduction video
What does this PR do?
Please note that this is a part1 of Crossplane PR. The next PR will include the configuration related to AWS Provider and some sample deployments
Motivation
More
pre-commit run -awith this PRNote: Not all the PRs required examples and docs except a new pattern or add-on added.
For Moderators
Additional Notes