eks-irsa-policy-document
andreswebs/eks-irsa-policy-document/aws
Creates a trust policy for an IAM role that can be assumed by a Kubernetes service account
[//]: # (BEGIN_TF_DOCS) terraform-aws-eks-irsa-policy-document Creates a trust policy for an IAM role that can be assumed by a Kubernetes service account. The cluster OIDC provider value can be found with the command: ``sh aws eks describe-cluster \ --name "${CLUSTER_NAME}" \ --query "cluster.identity.oidc.issuer" \ --output text | sed -e "s/^https:\\/\\///" ` Usage Example: `hcl module "k8s_assume_role_policy" { source = "github.com/andreswebs/terraform-aws-eks-irsa-policy-document" k8s_sa_name = "hyperapp" k8s_sa_namespace = "frontend" cluster_oidc_provider = var.cluster_oidc_provider } resource "aws_iam_role" "hyperapp" { name = "hyperapp" assume_role_policy = module.k8s_assume_role_policy.json } ` Inputs | Name | Description | Type | Default | Required | |------|-------------|------|--
| Name | Type | Description | Default |
|---|---|---|---|
| cluster_oidc_provider | string | OpenID Connect (OIDC) Identity Provider associated with the Kubernetes cluster | |
| k8s_sa_name | string | Name of the Kubernetes service account | "default" |
| k8s_sa_namespace | string | Namespace of the Kubernetes namespace | "default" |
json — The IAM policy JSON contentsk8s_sa_name — Name of the Kubernetes service accountk8s_sa_namespace — Namespace of the Kubernetes namespaceoidc_provider — Cluster OIDC providerAzure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,