-
Notifications
You must be signed in to change notification settings - Fork 19
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* operator module * pass license * Update main.tf * fix: Allow for inbound-cidrs for the ALB * Disabling otel per DD potential Conflict * Revert "fix: Allow for inbound-cidrs for the ALB" This reverts commit 3cb558b. * fixing a bug, can't quote the list of CIDRs * fxing MR mistake * Update main.tf * Add extra envs * testing tf change * removing test tf change * adding efs-csi-driver for weave * adding efs-csi-driver policy for weave * adding efs-csi-driver policy for weave and fmting * namespacing fix * fixing arn * updating policy * updates for weave EFS storage class * remove debug block * fix a provider error * removing name * updating sg name * refactor to app-eks * adding aws_security_group_rule * adding aws_security_group_rule * adding aws_security_group_rule * weird spacing issue * weird spacing issue * Fix bucket kms key arn for external buckets * fixing the username->user typo --------- Co-authored-by: Zachary Blasczyk <[email protected]> Co-authored-by: Zachary Blasczyk <[email protected]>
- Loading branch information
1 parent
9bbabcd
commit 95def33
Showing
14 changed files
with
155 additions
and
84 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,41 @@ | ||
resource "random_pet" "efs" { | ||
length = 2 | ||
} | ||
|
||
resource "aws_efs_file_system" "storage_class" { | ||
creation_token = "${var.namespace}-${random_pet.efs.id}" | ||
encrypted = true | ||
performance_mode = "generalPurpose" | ||
throughput_mode = "elastic" | ||
} | ||
|
||
resource "aws_efs_backup_policy" "storage_class" { | ||
file_system_id = aws_efs_file_system.storage_class.id | ||
|
||
backup_policy { | ||
status = "DISABLED" | ||
} | ||
} | ||
|
||
resource "aws_security_group" "storage_class_nfs" { | ||
name = "${var.namespace}-${random_pet.efs.id}" | ||
description = "Security group for NFS traffic" | ||
vpc_id = var.network_id | ||
} | ||
|
||
resource "aws_security_group_rule" "nfs_ingress" { | ||
description = "NFS inbound" | ||
type = "ingress" | ||
from_port = 2049 | ||
to_port = 2049 | ||
protocol = "tcp" | ||
security_group_id = aws_security_group.storage_class_nfs.id | ||
source_security_group_id = aws_security_group.primary_workers.id | ||
} | ||
|
||
resource "aws_efs_mount_target" "storage_class" { | ||
for_each = { for subnet in var.network_private_subnets : subnet => subnet } | ||
file_system_id = aws_efs_file_system.storage_class.id | ||
subnet_id = each.value | ||
security_groups = [aws_security_group.storage_class_nfs.id] | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,5 @@ | ||
variable "namespace" { | ||
type = string | ||
type = string | ||
} | ||
|
||
variable "oidc_provider" { | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,5 @@ | ||
variable "namespace" { | ||
type = string | ||
type = string | ||
} | ||
|
||
variable "oidc_provider" { | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,12 +1,19 @@ | ||
output "autoscaling_group_names" { | ||
value = { for name, value in module.eks.node_groups : name => lookup(lookup(lookup(value, "resources")[0], "autoscaling_groups")[0], "name") } | ||
} | ||
output "cluster_id" { | ||
value = module.eks.cluster_id | ||
description = "ID of the created EKS cluster" | ||
} | ||
|
||
output "autoscaling_group_names" { | ||
value = { for name, value in module.eks.node_groups : name => lookup(lookup(lookup(value, "resources")[0], "autoscaling_groups")[0], "name") } | ||
output "efs_id" { | ||
value = aws_efs_file_system.storage_class.id | ||
} | ||
|
||
output "node_role" { | ||
value = aws_iam_role.node | ||
} | ||
} | ||
|
||
output "primary_workers_security_group_id" { | ||
value = aws_security_group.primary_workers.id | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -55,4 +55,3 @@ output "url" { | |
value = local.url | ||
description = "The URL to the W&B application" | ||
} | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters