A purpose driven module. If you've wanted to use kubectl
from inside a Kubernetes pod to describe resources of the cluster itself, but not use AWS credentials, this module may help. This module creates an IAM policy that gives the associated IAM User or Role the right to DescribeCluster
.
Works nicely/originally intended to work in conjunction with https://github.com/terraform-aws-modules/terraform-aws-iam/tree/master/modules/iam-eks-role - This AWS module associates IAM roles to Kube Service Accounts on EKS.
No requirements.
Name | Version |
---|---|
aws | n/a |
No modules.
Name | Type |
---|---|
aws_iam_policy.eks_cluster_describe_and_assume | resource |
aws_iam_role_policy_attachment.serviceAccountPolicyAttach | resource |
Name | Description | Type | Default | Required |
---|---|---|---|---|
cluster_arn | arn to use for a given iam user, role, group or policy | string |
n/a | yes |
description | Policy description | string |
n/a | yes |
local_policy_file_path | The path of the local policy file in this module | string |
"policies/policy.json.tftpl" |
no |
policy_name | Name of the IAM Policy | string |
n/a | yes |
role_name | Name of the Role to which a policy is attached | string |
n/a | yes |
Name | Description |
---|---|
policy_arn | n/a |