v0.23.0 Unstable Pre-release
Pre-release
Pre-release
See note in Release v0.21.0 (https://github.com/cloudposse/terraform-aws-eks-node-group/releases/tag/0.21.0)
Add flag to optionally not attach AmazonEKS_CNI_Policy to nodegroups @cvittoriasona (#76)
what
- Adds
worker_role_cni_iam_enabled
bool so nodegroups can have the AmazonEKS_CNI_Policy omitted from IAM Instance Role. - Defaults to true to not break existing use cases.
why
- Meant to be used with EKS IAM role for aws-node service account
- Similar to
worker_role_autoscale_iam_enabled
bool so nodes are configured with least privileges required for EKS to work (AmazonEC2ContainerRegistryReadOnly
andAmazonEKSWorkerNodePolicy
) ref