-
When the provider is run in an EKS pod, with the IAM assume role setup, that works with the AWS provider too, the provider cannot use the assumed role, the following error is dropped:
`* failed to lo…
-
The IAM controller implements the Role kind in `iam.services.k8s.aws` API group.
The issue is that the short name for the object is 'role' and it is overridden by Role from rbac.authorization.k8s.io …
-
While reproducing a case, I noticed that customers using this public document to create GKE on bare metal are likely to encounter errors due to some missing prerequisites..
Under the list on APIs t…
-
**Is your feature request related to a problem?**
When using the IAM controller, I expect to be able to create an IAM role suitable for use with IRSA
This would involve creation of an `assumeRoleP…
-
### What happened?
The docs show the Roles being created with all values lowercased, but this results in an `MalformedPolicyDocumentException` in AWS with the error message "Unknown field statement".…
-
### Describe the bug
Pivot Role (auto created and custom) has the following unrestricted permissions on KMS and RAM shares. This role needs to be added as an exception until the following are remed…
-
With [IAM roles for service accounts](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html), my understanding was that kube2iam was not required anymore and that IAM ro…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Affected Resource(s)
* iam.aws.upbound.io/v1beta1 - Role
### Resource MRs required to reproduce the b…
-
**Describe the bug**
Renaming PermissionSet fails to delete original PermissionSet in Cloudformation (leaves two visible in Identity Centre)
**To Reproduce**
Deploy the following
`iam-config.y…
-
### Description
When an `aws_dynamodb_table` resource is created with the `import_table` option, but insufficient IAM permissions are set, the error that's displayed doesn't indicate the real reaso…