Open cra-schleupen opened 3 weeks ago
Voting for Prioritization
Volunteering to Work on This Issue
While on it, it might be interesting to also output the provider url as well, which is required for the iam-assumable-role-with-oidc module.
module "irsa_vpc_cni" {
source = "terraform-aws-modules/iam/aws//modules/iam-assumable-role-with-oidc"
version = "5.39.1"
provider_url = data.eks_cluster.this.identity[0].oidc[0].url
[...]
}
Hi @cra-schleupen! Does data.eks_cluster.this.oidc_provider_arn
not expose the required ARN?
@aristosvo where do you get this from? It's not in the docs https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/eks_cluster
Oops, sorry, it is in the module: https://github.com/terraform-aws-modules/terraform-aws-eks/blob/098c6a86ca716dae74bd98974accc29f66178c43/outputs.tf#L155 š¢
I digged a bit into it, but it seems like the API is not exposing anything more than the what is currently available..
Using the module would solve the problem, but I read using data source for a resource in the same module, where that resource is created, is not recommended, right?
I wouldn't need the aws_eks_cluster
data source then, but probably the one for cluster auth.
Description
The aws-ai module for eks addons requires the
oidc_provider_arn
as input. It would be helpful, when the data source for eks cluster would output the arn. It already outputs the oidc issuerdata.aws_eks_cluster.example.identity[0].oidc[0].issuer
.I'm open to implement this, if you point me to where to touch the code.
Affected Resource(s) and/or Data Source(s)
data source aws_eks_cluster
Potential Terraform Configuration
References
https://registry.terraform.io/modules/aws-ia/eks-blueprints-addons/aws/latest
Would you like to implement a fix?
Yes