-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy path03-locals.tf
55 lines (48 loc) · 1.53 KB
/
03-locals.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
# locals
locals {
cluster_name = format("%s-cluster", var.cluster_name)
worker_name = format("%s-worker", var.cluster_name)
}
# locals {
# cluster_info = {
# name = data.aws_eks_cluster.cluster.name
# certificate_authority = data.aws_eks_cluster.cluster.certificate_authority.0.data
# endpoint = data.aws_eks_cluster.cluster.endpoint
# ip_family = var.ip_family
# version = data.aws_eks_cluster.cluster.version
# }
# }
locals {
worker_ami_arch = var.worker_ami_arch == "arm64" ? "amazon-eks-arm64-node" : "amazon-eks-node"
worker_ami_keyword = format("%s-%s-%s", local.worker_ami_arch, var.kubernetes_version, var.worker_ami_keyword)
}
locals {
roles = [
for item in var.iam_roles :
{
"rolearn" = item.role
"username" = item.name
"groups" = item.groups
}
]
masters = var.iam_group != "" ? compact(concat(var.masters, data.aws_iam_group.master[0].users.*.user_name)) : var.masters
users = [
for item in local.masters :
{
"userarn" = format("arn:aws:iam::%s:user/%s", var.account_id, item)
"username" = format("iam-user-%s", item)
"groups" = ["system:masters"]
}
]
}
locals {
tags = merge(
var.tags,
{
"KubernetesCluster" = var.cluster_name
"KubernetesVersion" = var.kubernetes_version
"kubernetes.io/cluster/${var.cluster_name}" = "owned"
"krmt.io/cluster" = var.cluster_name
},
)
}