search

camunda / camunda-tf-eks-module

Terraform modules targeting AWS EKS Cluster creation for Camunda 8 Self-Managed usage on AWS
https://docs.camunda.io/docs/self-managed/setup/deploy/amazon/amazon-eks/eks-terraform/
Apache License 2.0
1 stars 0 forks source link

fix policy #88

Closed leiicamundi closed 1 month ago

leiicamundi commented 1 month ago

Following the upgrade of the EKS module to v20, we encounter a lot of permission denied on the storageclass policy 

                            �[31m│�[0m �[0m�[1m�[31mError: �[0m�[0m�[1mstorageclasses.storage.k8s.io is forbidden: User "arn:aws:iam::444804106854:user/tf-automation-user" cannot create resource "storageclasses" in API group "storage.k8s.io" at the cluster scope�[0m

e.g. https://github.com/camunda/camunda-tf-eks-module/actions/runs/9957809597

The error is due to a missing dependency between the creation of the cluster and the associated updated of the storage class. This PR solves this issue by moving the storage class definition in the same file.

Also, starting EKS 1.30, gp2 is not the default anymore, I removed it.

This PR also update EKS to v1.30

leiicamundi commented 1 month ago

@Langleu once it's merged, it will unlock https://github.com/camunda/camunda-tf-eks-module/pull/87

Also, I'll tag a new version for this module 2.1.0, then we will be able to merge https://github.com/camunda/camunda-docs/pull/4004