Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Kube2iam Addon #271

Closed
Lazyshot opened this issue Oct 17, 2018 · 9 comments
Closed

Kube2iam Addon #271

Lazyshot opened this issue Oct 17, 2018 · 9 comments
Labels
area/add-ons help wanted Extra attention is needed kind/feature New feature or request
Milestone
[archived] add-ons

Comments

@Lazyshot
Copy link

Looking to add a kube2iam addon that would auto create the IAM policies and install the helm chart (of course).

The only thing missing from possible full coverage would be handling trust relationships.
@Lazyshot Lazyshot added the kind/feature New feature or request label Oct 17, 2018
@Lazyshot Lazyshot added this to the 0.2.0 – add-ons milestone Oct 17, 2018
@Lazyshot Lazyshot added hacktoberfest help wanted Extra attention is needed labels Oct 17, 2018
@GSokol
Copy link

GSokol commented Oct 17, 2018

Could you please explain the idea of this issue in more detail?

@errordeveloper
Copy link
Contributor

Umbrella issue: #53
Add-ons proposal: #242

@kgoralski
Copy link

kube2iam or kiam ?

@whereisaaron
Copy link

I found this comparison useful:
https://www.bluematador.com/blog/iam-access-in-kubernetes-kube2iam-vs-kiam

Both tools need an extra policy attached to the nodegroup node role. Does eksctl have any option to attach a named IAM policy to the node role?

@errordeveloper errordeveloper mentioned this issue Mar 14, 2019
Closed
@atif1996
Copy link

atif1996 commented Jun 6, 2019

Looks like when I add the kube2iam role to the node group role, it works, but I can't teardown the elks cluster without first manually removing the kube2iam role. Would be great if eksctl allowed you to specify the name/arn of the policy to attach to the node group role.

@errordeveloper
Copy link
Contributor

Have people seen this https://github.com/mikkeloscar/kube-aws-iam-controller?

@github4es
Copy link

Are there any updates on this? I need to configure the AWS ALB ingress controller and it seems I need to configure kube2iam. I used eksctl to crreate my cluster. Are there any updated steps to configure eksctl with a given role or must we euse kube2iam ?

@errordeveloper
Copy link
Contributor

I think this can be close, IAM Roles for Service Accounts are the best recommended option.

@errordeveloper
Copy link
Contributor

@martina-if please close it =)

torredil pushed a commit to torredil/eksctl that referenced this issue May 20, 2022
Merge pull request eksctl-io#271 from bertinatto/volume_expansion
f1eec9e 
Add expand support
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/add-ons help wanted Extra attention is needed kind/feature New feature or request
Projects
None yet
Milestone
[archived] add-ons
Development

No branches or pull requests
8 participants
@errordeveloper @Lazyshot @martina-if @whereisaaron @GSokol @atif1996 @kgoralski @github4es