Skip to content

v0.23.0 Unstable Pre-release

Pre-release
Pre-release
Compare
Choose a tag to compare
@cloudpossebot cloudpossebot released this 30 Jul 17:27
0.23.0
1f767c1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

See note in Release v0.21.0 (https://github.com/cloudposse/terraform-aws-eks-node-group/releases/tag/0.21.0)

Add flag to optionally not attach AmazonEKS_CNI_Policy to nodegroups @cvittoriasona (#76)

what

  • Adds worker_role_cni_iam_enabled bool so nodegroups can have the AmazonEKS_CNI_Policy omitted from IAM Instance Role.
  • Defaults to true to not break existing use cases.

why

  • Meant to be used with EKS IAM role for aws-node service account
  • Similar to worker_role_autoscale_iam_enabled bool so nodes are configured with least privileges required for EKS to work (AmazonEC2ContainerRegistryReadOnly and AmazonEKSWorkerNodePolicy) ref

Contributors

cvittoriasona
Assets 2
Loading