Skip to content

Commit

Permalink
feat: Add auto discovery permission of endpoint to karpenter role (#1417
Browse files Browse the repository at this point in the history 
)

Co-authored-by: Bryant Biggs <[email protected]>
  • Loading branch information
@woehrl01 @bryantbiggs
woehrl01 and bryantbiggs authored Feb 11, 2023
1 parent 0d8c548 commit 05da30c
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions modules/kubernetes-addons/karpenter/data.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -70,6 +70,11 @@ data "aws_iam_policy_document" "karpenter" {
]
}

statement {
actions = ["eks:DescribeCluster"]
resources = ["arn:${var.addon_context.aws_partition_id}:eks:*:${var.addon_context.aws_caller_identity_account_id}:cluster/${var.addon_context.eks_cluster_id}"]
}

statement {
sid = "ConditionalEC2Termination"
effect = "Allow"
Expand Down

0 comments on commit 05da30c

Please sign in to comment.