Comments (7)
we do not have any plans to remove this module, and in fact we have plans to replace some of the duplicated functionality for ASGs/launch templates with the ASG module in the next major version release https://github.com/terraform-aws-modules/terraform-aws-eks/blob/master/docs/UPGRADE-20.0.md#%EF%B8%8F-upcoming-changes-planned-in-v210-%EF%B8%8F
from terraform-aws-eks.
@bryantbiggs okay. What about an another alternative ?
for these two lines, add custom_terraform_registry_version_url
as Inputs
?
From
source = "terraform-aws-modules/kms/aws"
version = "2.1.0" # Note - be mindful of Terraform/provider version compatibility between modules
to
variable "custom_terraform_registry_version_url" {
description = "URL for custom Terraform registry version"
type = string
default = ""
}
locals {
version = var.custom_terraform_registry_version_url != "" ? "" : "2.1.0"
}
source = try(var.custom_terraform_registry_version_url, "terraform-aws-modules/kms/aws")
version = local.version
As for private terraform registry, customers do want to leverage the full benefits of the public registry. Some customers use github or gitlab with the following format, instead of terraform-aws-eks
public terraform registry
source = "[email protected]:XXX/terraform-aws-eks.git?ref=v20.12.0"
from terraform-aws-eks.
does that work? hashicorp/terraform#1439
they are better off forking and updating these values on their own
from terraform-aws-eks.
does that work? hashicorp/terraform#1439
they are better off forking and updating these values on their own
@bryantbiggs it doesnt seem to address the same issue. We have no issues using the source = "[email protected]:XXX/terraform-aws-eks.git?ref=v20.12.0"
. Only when it has hard coded code inside of the module using another public terraform module making it difficult.
Customers did a fork a year ago, and made changes directly on the forked module. Now they found it extremely hard to sync with the latest changes from the public terraform-aws-eks module.
Hence, they made a pivot, which is to develop a terraform-aws-eks-customer-wrapper
to incorporate the customer related changes that they would like to make, and make a local copy of the terraform-aws-eks
module in their private gitlab. in this case, they could both enjoy syncing with the new changes from public repo, while making custom settings on their wrapper without touching the backend module.
It is all working fine, but the sub hard coded module like this one is challenging. They might need to git fetch remote
, git push --force
with new changes, then find out the terraform-aws-modules/kms/aws
and replace that with source = "[email protected]:XXX/terraform-aws-kms.git?ref=v2.1.0"
, instead of only touching their wrapper module.
from terraform-aws-eks.
@bryantbiggs you see the current design for the customer. It will be quite difficult to manage without making the changes as above. In this diagram, eks-cluster
is the wrapper class mentioned above.
![image](https://private-user-images.githubusercontent.com/56006724/335874376-c53e7a08-05f3-428a-a497-c4e3847fdab0.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MjAwMTg3NTIsIm5iZiI6MTcyMDAxODQ1MiwicGF0aCI6Ii81NjAwNjcyNC8zMzU4NzQzNzYtYzUzZTdhMDgtMDVmMy00MjhhLWE0OTctYzRlMzg0N2ZkYWIwLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA3MDMlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNzAzVDE0NTQxMlomWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTY1MDczMTAwMjlmNDIxMjc5YTIxMjBiMTdiMTQ3OTRhMGUwYzRkNWEzZjk0ZTU1NmVjNmY1YjUwMWU2OTNjYzcmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.bpMt9W-V-8A6D-4L60bgJJx_XivSArwnIKr7Z7_uOvY)
from terraform-aws-eks.
@haofeif you are not listening - the two solutions you proposed are not going to be feasible:
- We are not removing the KMS module
- Terraform does not support variables for a module source
from terraform-aws-eks.
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
from terraform-aws-eks.
Related Issues (20)
- how to assign additional security groups to a node HOT 2
- Access entry for aws console HOT 6
- Self-Managed Node Groups Not Joining EKS Cluster (CoreDNS 'DEGRADE' Error) HOT 24
- Karpenter example missing basic permissions HOT 13
- aws-auth configmap while calling using module throws error HOT 1
- Can't deploy aws-ebs-csi-driver with Karpenter HOT 4
- The iam_role_permissions_boundary variable is being ignored in the eks-managed-node HOT 2
- EKS created security group is (sometimes) orphaned when `terraform destroy` is interrupted HOT 1
- create: unexpected state 'CREATE_FAILED', wanted target 'ACTIVE'. last error: i-089cae66b828ac922, i-0cd41e8867fda97cb: NodeCreationFailure: Instances failed to join the kubernetes cluster HOT 3
- ALB Ingress 504 when running multiple EKS clusters HOT 2
- `pre_bootstrap_user_data` breaking change from 20.8.5 to 20.9.0 HOT 6
- The aws-auth submodule for the aws/eks module no longer validates HOT 6
- Failed to upgrade node group with taints HOT 1
- Aws eks addon version result crashes with adot HOT 5
- Cannot pass a label to eks_managed_node_group HOT 1
- The eks sub-module aws-auth reports Unauthorized HOT 5
- Checkov Scan Findings for "terraform-aws-eks" Repository HOT 2
- Question - v1.29 to v1.30 OIDC Provider/Issuer URL upgrade problem? HOT 2
- Karpenter controller error: message:ec2 api connectivity check failed,error:NoCredentialProviders: no valid providers in chain. HOT 1
- eks node group: should print a warning when `use_name_prefix` = false HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from terraform-aws-eks.