Merge branch 'main' of https://github.com/opszero/terraform-aws-kubespot

opszero · May 10, 2024 · 6166e9a · 6166e9a
2 parents b9d38bb + 2b3baa7
commit 6166e9a
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 1 deletion.
diff --git a/cluster.tf b/cluster.tf
@@ -26,7 +26,7 @@ resource "aws_eks_cluster" "cluster" {
   }
 
   access_config {
-    authentication_mode = "API_AND_CONFIG_MAP"
+    authentication_mode = var.cluster_authentication_mode
   }
 
   dynamic "encryption_config" {

diff --git a/kubernetes.tf b/kubernetes.tf
@@ -9,6 +9,8 @@ data "aws_eks_cluster_auth" "cluster" {
 }
 
 resource "kubernetes_config_map" "aws_auth" {
+  count = var.cluster_authentication_mode == "API_AND_CONFIG_MAP" ? 1 : 0
+
   metadata {
     name      = "aws-auth"
     namespace = "kube-system"

diff --git a/variables.tf b/variables.tf
@@ -8,6 +8,12 @@ variable "cluster_version" {
   description = "Desired Kubernetes master version"
 }
 
+variable "cluster_authentication_mode" {
+  default     = "API"
+  description = "Desired Kubernetes authentication. API or API_AND_CONFIG_MAP"
+
+}
+
 variable "cloudwatch_retention_in_days" {
   default     = 30
   description = "How long to keep CloudWatch logs in days"