capa-iam-operator

command module

v0.22.0 Latest Latest Go to latest Published: Apr 15, 2024 License: Apache-2.0 Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/giantswarm/capa-iam-operator

Links

Open Source Insights

README ¶

capa-iam-operator

capa-iam-operator is creating unique IAM roles for each CAPA cluster, it watches AWSMachineTemplate CRs and reads AWSMachineTemplate.spec.template.spec.iamInstanceProfile for ControlPlane and AWSMachinePool CRs and reads AWSMachinePool.spec.awsLaunchTemplate.iamInstanceProfile.

If the IAM role in CR is found in the AWS API it will skip the creation, if its missing it will create a new one from a template.

IAM roles for Control Plane

In addition to the IAM role for Control plane nodes, capa-iam-operator wil also create IAM role for kiam app and Route53 role for external-dns app.

You can disable creating KIAM and Route53 roles via arguments --enable-kiam-role=false and --enable-route53-role=false. Route53 role will be only created if KIAm role is enabled, as it depends on it.

IAM roles for Worker nodes

For each AWSMachinePool CR, a separate IAM role will be created.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
controllers
pkg
awsclient
iam
key
record
test/mocks

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL