search

awslabs / mountpoint-s3-csi-driver

Built on Mountpoint for Amazon S3, the Mountpoint CSI driver presents an Amazon S3 bucket as a storage volume accessible by containers in your Kubernetes cluster.
Apache License 2.0
187 stars 23 forks source link

Pod Identity support for mountpoint-s3-csi-driver #215

Open miguelvidex opened 2 months ago

miguelvidex commented 2 months ago

/feature

Is your feature request related to a problem? Please describe.

Error: "aws-mountpoint-s3-csi-driver" addon does not support pod identity associations; use IRSA config (addon.serviceAccountRoleARN, addon.attachPolicyARNs, addon.attachPolicy or addon.wellKnownPolicies) instead

Describe the solution you'd like in detail Pod Identity support for mountpoint-s3-csi-driver

Additional context

apiVersion: eksctl.io/v1alpha5
kind: ClusterConfig
metadata:
  name: cluster-name
  region: eu-west-1

addons:
- name: aws-mountpoint-s3-csi-driver
  podIdentityAssociations:
  - serviceAccountName: s3-csi-driver-sa
    namespace: kube-system
    permissionPolicyARNs: ["arn:aws:iam::111111111111111111:policy/AmazonS3CSIDriverPolicy"]
dannycjones commented 2 months ago

Thanks for opening this feature request!

I don't have any information to share right now but I can see why leveraging EKS's new Pod Identity feature with Mountpoint CSI Driver would be beneficial. I'll share this with the team.

phmcder commented 1 month ago

Has there been any more thought on this? I'd be very interested in supporting pod identity as I had disabled IRSA as we had configuration issues with it

muddyfish commented 1 month ago

Thanks for your interest in this feature. We don’t have any more information to share right now on supporting EKS Pod Identity, though you can upvote the issue with 👍 to help us see what's needed most.