Helper submodule to create and manage resources related to eks_node_groups.
- Designed for use by the parent module and not directly by end users
The role ARN specified in var.default_iam_role_arn will be used by default. In a simple configuration this will be the worker role created by the parent module.
iam_role_arn must be specified in either var.node_groups_defaults or var.node_groups if the default parent IAM role is not being created for whatever reason, for example if manage_worker_iam_resources is set to false in the parent.
node_groups_defaults is a map that can take the below keys. Values will be used if not specified in individual node groups.
node_groups is a map of maps. Key of first level will be used as unique value for for_each resources and in the aws_eks_node_group name. Inner map can take the below values.
| Name | Description | Type | If unset |
|---|---|---|---|
| additional_tags | Additional tags to apply to node group | map(string) | Only var.tags applied |
| ami_release_version | AMI version of workers | string | Provider default behavior |
| ami_type | AMI Type. See Terraform or AWS docs | string | Provider default behavior |
| desired_capacity | Desired number of workers | number | var.workers_group_defaults[asg_desired_capacity] |
| disk_size | Workers' disk size | number | Provider default behavior |
| iam_role_arn | IAM role ARN for workers | string | var.default_iam_role_arn |
| instance_type | Workers' instance type | string | var.workers_group_defaults[instance_type] |
| k8s_labels | Kubernetes labels | map(string) | No labels applied |
| key_name | Key name for workers. Set to empty string to disable remote access | string | var.workers_group_defaults[key_name] |
| max_capacity | Max number of workers | number | var.workers_group_defaults[asg_max_size] |
| min_capacity | Min number of workers | number | var.workers_group_defaults[asg_min_size] |
| name | Name of the node group | string | Auto generated |
| source_security_group_ids | Source security groups for remote access to workers | list(string) | If key_name is specified: THE REMOTE ACCESS WILL BE OPENED TO THE WORLD |
| subnets | Subnets to contain workers | list(string) | var.workers_group_defaults[subnets] |
| version | Kubernetes version | string | Provider default behavior |
No requirements.
| Name | Version |
|---|---|
| aws | n/a |
| random | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| cluster_name | Name of parent cluster | string |
n/a | yes |
| create_eks | Controls if EKS resources should be created (it affects almost all resources) | bool |
true |
no |
| default_iam_role_arn | ARN of the default IAM worker role to use if one is not specified in var.node_groups or var.node_groups_defaults |
string |
n/a | yes |
| ng_depends_on | List of references to other resources this submodule depends on | any |
null |
no |
| node_groups | Map of maps of eks_node_groups to create. See "node_groups and node_groups_defaults keys" section in README.md for more details |
any |
{} |
no |
| node_groups_defaults | map of maps of node groups to create. See "node_groups and node_groups_defaults keys" section in README.md for more details |
any |
n/a | yes |
| tags | A map of tags to add to all resources | map(string) |
n/a | yes |
| workers_group_defaults | Workers group defaults from parent | any |
n/a | yes |
| Name | Description |
|---|---|
| aws_auth_roles | Roles for use in aws-auth ConfigMap |
| node_groups | Outputs from EKS node groups. Map of maps, keyed by var.node_groups keys. See aws_eks_node_group Terraform documentation for values |