Skip to content

Latest commit

 

History

History

node_groups

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
data.tf
data.tf
 
 
locals.tf
locals.tf
 
 
node_groups.tf
node_groups.tf
 
 
outputs.tf
outputs.tf
 
 
random.tf
random.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

README.md

eks node_groups submodule

This submodule is designed for use by both the parent eks module and by the user.

node_groups is a map of maps. Key of first level will be used as unique value for for_each resources and in the aws_eks_node_group name. Inner map can take the below values.

Name Description Type If unset
additional_tags Additional tags to apply to node group map(string) Only var.tags applied
ami_release_version AMI version of workers string Provider default behavior
ami_type AMI Type. See Terraform or AWS docs string Provider default behavior
desired_capacity Desired number of workers number 1
disk_size Workers' disk size number Provider default behavior
iam_role_arn IAM role ARN for workers string aws_iam_role.node_groups[0].arn
instance_type Workers' instance type string m4.large
k8s_labels Kubernetes labels map(string) No labels applied
key_name Key name for workers. Set to empty string to disable remote access string ""
max_capacity Max number of workers number 3
min_capacity Min number of workers number 1
name Name of the node group string Auto generated
source_security_group_ids Source security groups for remote access to workers list(string) If key_name is specified: THE REMOTE ACCESS WILL BE OPENED TO THE WORLD
subnets Subnets to contain workers list(string) var.subnets
version Kubernetes version string Provider default behavior

Providers

Name Version
aws >= 2.52.0
random >= 2.1

Inputs

Name Description Type Default Required
attach_node_cni_policy Whether to attach the Amazon managed AmazonEKS_CNI_Policy IAM policy to the default node groups IAM role. WARNING: If set false the permissions must be assigned to the aws-node DaemonSet pods via another method or nodes will not be able to join the cluster. bool true no
cluster_name Name of parent cluster. string n/a yes
create_eks Controls if EKS resources should be created (it affects almost all resources). bool true no
iam_path If provided, all IAM roles will be created on this path. string "/" no
manage_node_iam_resources Whether to let the module manage node group IAM resources. If set to false, iam_instance_profile_name must be specified for nodes. bool true no
node_groups Map of map of node groups to create. See documentation above for more details. any {} no
node_groups_additional_policies Additional policies to be added to node groups. list(string) [] no
node_groups_defaults Map of values to be applied to all node groups. See documentation above for more details. any {} no
node_groups_role_name User defined node groups role name. string "" no
permissions_boundary If provided, all IAM roles will be created with this permissions boundary attached. string n/a yes
subnets A list of subnets to place the EKS cluster and nodes within. list(string) n/a yes
tags A map of tags to add to all resources. map(string) n/a yes

Outputs

Name Description
aws_auth_roles Roles for use in aws-auth ConfigMap
node_groups Outputs from EKS node groups. Map of maps, keyed by var.node_groups keys. See aws_eks_node_group Terraform documentation for values