pulumi-eks 4.3.0a1766451683__py3-none-any.whl → 4.3.0a1768307250__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_eks/__init__.py +1 -1
- pulumi_eks/_enums.py +8 -8
- pulumi_eks/_inputs.py +630 -631
- pulumi_eks/addon.py +59 -60
- pulumi_eks/cluster.py +382 -383
- pulumi_eks/cluster_creation_role_provider.py +14 -15
- pulumi_eks/managed_node_group.py +195 -196
- pulumi_eks/node_group.py +265 -266
- pulumi_eks/node_group_security_group.py +21 -22
- pulumi_eks/node_group_v2.py +280 -281
- pulumi_eks/outputs.py +227 -228
- pulumi_eks/provider.py +1 -2
- pulumi_eks/pulumi-plugin.json +1 -1
- pulumi_eks/vpc_cni_addon.py +196 -197
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/METADATA +1 -1
- pulumi_eks-4.3.0a1768307250.dist-info/RECORD +20 -0
- pulumi_eks-4.3.0a1766451683.dist-info/RECORD +0 -20
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/WHEEL +0 -0
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/top_level.txt +0 -0
pulumi_eks/_inputs.py
CHANGED
|
@@ -2,8 +2,7 @@
|
|
|
2
2
|
# *** WARNING: this file was generated by pulumi-gen-eks. ***
|
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
4
|
|
|
5
|
-
import builtins
|
|
6
|
-
import copy
|
|
5
|
+
import builtins as _builtins
|
|
7
6
|
import warnings
|
|
8
7
|
import sys
|
|
9
8
|
import pulumi
|
|
@@ -66,7 +65,7 @@ if not MYPY:
|
|
|
66
65
|
You have the following options for authorizing an IAM principal to access Kubernetes objects on your cluster: Kubernetes role-based access control (RBAC), Amazon EKS, or both.
|
|
67
66
|
Kubernetes RBAC authorization requires you to create and manage Kubernetes Role , ClusterRole , RoleBinding , and ClusterRoleBinding objects, in addition to managing access entries. If you use Amazon EKS authorization exclusively, you don't need to create and manage Kubernetes Role , ClusterRole , RoleBinding , and ClusterRoleBinding objects.
|
|
68
67
|
"""
|
|
69
|
-
principal_arn: pulumi.Input[
|
|
68
|
+
principal_arn: pulumi.Input[_builtins.str]
|
|
70
69
|
"""
|
|
71
70
|
The IAM Principal ARN which requires Authentication access to the EKS cluster.
|
|
72
71
|
"""
|
|
@@ -74,11 +73,11 @@ if not MYPY:
|
|
|
74
73
|
"""
|
|
75
74
|
The access policies to associate to the access entry.
|
|
76
75
|
"""
|
|
77
|
-
kubernetes_groups: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
76
|
+
kubernetes_groups: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
78
77
|
"""
|
|
79
78
|
A list of groups within Kubernetes to which the IAM principal is mapped to.
|
|
80
79
|
"""
|
|
81
|
-
tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
80
|
+
tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
82
81
|
"""
|
|
83
82
|
The tags to apply to the AccessEntry.
|
|
84
83
|
"""
|
|
@@ -87,7 +86,7 @@ if not MYPY:
|
|
|
87
86
|
The type of the new access entry. Valid values are STANDARD, FARGATE_LINUX, EC2_LINUX, and EC2_WINDOWS.
|
|
88
87
|
Defaults to STANDARD which provides the standard workflow. EC2_LINUX, EC2_WINDOWS, FARGATE_LINUX types disallow users to input a username or kubernetesGroup, and prevent associating access policies.
|
|
89
88
|
"""
|
|
90
|
-
username: NotRequired[pulumi.Input[
|
|
89
|
+
username: NotRequired[pulumi.Input[_builtins.str]]
|
|
91
90
|
"""
|
|
92
91
|
Defaults to the principalArn if the principal is a user, else defaults to assume-role/session-name.
|
|
93
92
|
"""
|
|
@@ -97,24 +96,24 @@ elif False:
|
|
|
97
96
|
@pulumi.input_type
|
|
98
97
|
class AccessEntryArgs:
|
|
99
98
|
def __init__(__self__, *,
|
|
100
|
-
principal_arn: pulumi.Input[
|
|
99
|
+
principal_arn: pulumi.Input[_builtins.str],
|
|
101
100
|
access_policies: Optional[Mapping[str, pulumi.Input['AccessPolicyAssociationArgs']]] = None,
|
|
102
|
-
kubernetes_groups: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
103
|
-
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
101
|
+
kubernetes_groups: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
102
|
+
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
104
103
|
type: Optional[pulumi.Input['AccessEntryType']] = None,
|
|
105
|
-
username: Optional[pulumi.Input[
|
|
104
|
+
username: Optional[pulumi.Input[_builtins.str]] = None):
|
|
106
105
|
"""
|
|
107
106
|
Access entries allow an IAM principal to access your cluster.
|
|
108
107
|
|
|
109
108
|
You have the following options for authorizing an IAM principal to access Kubernetes objects on your cluster: Kubernetes role-based access control (RBAC), Amazon EKS, or both.
|
|
110
109
|
Kubernetes RBAC authorization requires you to create and manage Kubernetes Role , ClusterRole , RoleBinding , and ClusterRoleBinding objects, in addition to managing access entries. If you use Amazon EKS authorization exclusively, you don't need to create and manage Kubernetes Role , ClusterRole , RoleBinding , and ClusterRoleBinding objects.
|
|
111
|
-
:param pulumi.Input[
|
|
110
|
+
:param pulumi.Input[_builtins.str] principal_arn: The IAM Principal ARN which requires Authentication access to the EKS cluster.
|
|
112
111
|
:param Mapping[str, pulumi.Input['AccessPolicyAssociationArgs']] access_policies: The access policies to associate to the access entry.
|
|
113
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
114
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
112
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] kubernetes_groups: A list of groups within Kubernetes to which the IAM principal is mapped to.
|
|
113
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] tags: The tags to apply to the AccessEntry.
|
|
115
114
|
:param pulumi.Input['AccessEntryType'] type: The type of the new access entry. Valid values are STANDARD, FARGATE_LINUX, EC2_LINUX, and EC2_WINDOWS.
|
|
116
115
|
Defaults to STANDARD which provides the standard workflow. EC2_LINUX, EC2_WINDOWS, FARGATE_LINUX types disallow users to input a username or kubernetesGroup, and prevent associating access policies.
|
|
117
|
-
:param pulumi.Input[
|
|
116
|
+
:param pulumi.Input[_builtins.str] username: Defaults to the principalArn if the principal is a user, else defaults to assume-role/session-name.
|
|
118
117
|
"""
|
|
119
118
|
pulumi.set(__self__, "principal_arn", principal_arn)
|
|
120
119
|
if access_policies is not None:
|
|
@@ -128,19 +127,19 @@ class AccessEntryArgs:
|
|
|
128
127
|
if username is not None:
|
|
129
128
|
pulumi.set(__self__, "username", username)
|
|
130
129
|
|
|
131
|
-
@property
|
|
130
|
+
@_builtins.property
|
|
132
131
|
@pulumi.getter(name="principalArn")
|
|
133
|
-
def principal_arn(self) -> pulumi.Input[
|
|
132
|
+
def principal_arn(self) -> pulumi.Input[_builtins.str]:
|
|
134
133
|
"""
|
|
135
134
|
The IAM Principal ARN which requires Authentication access to the EKS cluster.
|
|
136
135
|
"""
|
|
137
136
|
return pulumi.get(self, "principal_arn")
|
|
138
137
|
|
|
139
138
|
@principal_arn.setter
|
|
140
|
-
def principal_arn(self, value: pulumi.Input[
|
|
139
|
+
def principal_arn(self, value: pulumi.Input[_builtins.str]):
|
|
141
140
|
pulumi.set(self, "principal_arn", value)
|
|
142
141
|
|
|
143
|
-
@property
|
|
142
|
+
@_builtins.property
|
|
144
143
|
@pulumi.getter(name="accessPolicies")
|
|
145
144
|
def access_policies(self) -> Optional[Mapping[str, pulumi.Input['AccessPolicyAssociationArgs']]]:
|
|
146
145
|
"""
|
|
@@ -152,31 +151,31 @@ class AccessEntryArgs:
|
|
|
152
151
|
def access_policies(self, value: Optional[Mapping[str, pulumi.Input['AccessPolicyAssociationArgs']]]):
|
|
153
152
|
pulumi.set(self, "access_policies", value)
|
|
154
153
|
|
|
155
|
-
@property
|
|
154
|
+
@_builtins.property
|
|
156
155
|
@pulumi.getter(name="kubernetesGroups")
|
|
157
|
-
def kubernetes_groups(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
156
|
+
def kubernetes_groups(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
158
157
|
"""
|
|
159
158
|
A list of groups within Kubernetes to which the IAM principal is mapped to.
|
|
160
159
|
"""
|
|
161
160
|
return pulumi.get(self, "kubernetes_groups")
|
|
162
161
|
|
|
163
162
|
@kubernetes_groups.setter
|
|
164
|
-
def kubernetes_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
163
|
+
def kubernetes_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
165
164
|
pulumi.set(self, "kubernetes_groups", value)
|
|
166
165
|
|
|
167
|
-
@property
|
|
166
|
+
@_builtins.property
|
|
168
167
|
@pulumi.getter
|
|
169
|
-
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
168
|
+
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
170
169
|
"""
|
|
171
170
|
The tags to apply to the AccessEntry.
|
|
172
171
|
"""
|
|
173
172
|
return pulumi.get(self, "tags")
|
|
174
173
|
|
|
175
174
|
@tags.setter
|
|
176
|
-
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
175
|
+
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
177
176
|
pulumi.set(self, "tags", value)
|
|
178
177
|
|
|
179
|
-
@property
|
|
178
|
+
@_builtins.property
|
|
180
179
|
@pulumi.getter
|
|
181
180
|
def type(self) -> Optional[pulumi.Input['AccessEntryType']]:
|
|
182
181
|
"""
|
|
@@ -189,16 +188,16 @@ class AccessEntryArgs:
|
|
|
189
188
|
def type(self, value: Optional[pulumi.Input['AccessEntryType']]):
|
|
190
189
|
pulumi.set(self, "type", value)
|
|
191
190
|
|
|
192
|
-
@property
|
|
191
|
+
@_builtins.property
|
|
193
192
|
@pulumi.getter
|
|
194
|
-
def username(self) -> Optional[pulumi.Input[
|
|
193
|
+
def username(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
195
194
|
"""
|
|
196
195
|
Defaults to the principalArn if the principal is a user, else defaults to assume-role/session-name.
|
|
197
196
|
"""
|
|
198
197
|
return pulumi.get(self, "username")
|
|
199
198
|
|
|
200
199
|
@username.setter
|
|
201
|
-
def username(self, value: Optional[pulumi.Input[
|
|
200
|
+
def username(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
202
201
|
pulumi.set(self, "username", value)
|
|
203
202
|
|
|
204
203
|
|
|
@@ -214,7 +213,7 @@ if not MYPY:
|
|
|
214
213
|
"""
|
|
215
214
|
The scope of the access policy association. This controls whether the access policy is scoped to the cluster or to a particular namespace.
|
|
216
215
|
"""
|
|
217
|
-
policy_arn: pulumi.Input[
|
|
216
|
+
policy_arn: pulumi.Input[_builtins.str]
|
|
218
217
|
"""
|
|
219
218
|
The ARN of the access policy to associate with the principal
|
|
220
219
|
"""
|
|
@@ -225,19 +224,19 @@ elif False:
|
|
|
225
224
|
class AccessPolicyAssociationArgs:
|
|
226
225
|
def __init__(__self__, *,
|
|
227
226
|
access_scope: pulumi.Input['pulumi_aws.eks.AccessPolicyAssociationAccessScopeArgs'],
|
|
228
|
-
policy_arn: pulumi.Input[
|
|
227
|
+
policy_arn: pulumi.Input[_builtins.str]):
|
|
229
228
|
"""
|
|
230
229
|
Associates an access policy and its scope to an IAM principal.
|
|
231
230
|
|
|
232
231
|
See for more details:
|
|
233
232
|
https://docs.aws.amazon.com/eks/latest/userguide/access-entries.html
|
|
234
233
|
:param pulumi.Input['pulumi_aws.eks.AccessPolicyAssociationAccessScopeArgs'] access_scope: The scope of the access policy association. This controls whether the access policy is scoped to the cluster or to a particular namespace.
|
|
235
|
-
:param pulumi.Input[
|
|
234
|
+
:param pulumi.Input[_builtins.str] policy_arn: The ARN of the access policy to associate with the principal
|
|
236
235
|
"""
|
|
237
236
|
pulumi.set(__self__, "access_scope", access_scope)
|
|
238
237
|
pulumi.set(__self__, "policy_arn", policy_arn)
|
|
239
238
|
|
|
240
|
-
@property
|
|
239
|
+
@_builtins.property
|
|
241
240
|
@pulumi.getter(name="accessScope")
|
|
242
241
|
def access_scope(self) -> pulumi.Input['pulumi_aws.eks.AccessPolicyAssociationAccessScopeArgs']:
|
|
243
242
|
"""
|
|
@@ -249,16 +248,16 @@ class AccessPolicyAssociationArgs:
|
|
|
249
248
|
def access_scope(self, value: pulumi.Input['pulumi_aws.eks.AccessPolicyAssociationAccessScopeArgs']):
|
|
250
249
|
pulumi.set(self, "access_scope", value)
|
|
251
250
|
|
|
252
|
-
@property
|
|
251
|
+
@_builtins.property
|
|
253
252
|
@pulumi.getter(name="policyArn")
|
|
254
|
-
def policy_arn(self) -> pulumi.Input[
|
|
253
|
+
def policy_arn(self) -> pulumi.Input[_builtins.str]:
|
|
255
254
|
"""
|
|
256
255
|
The ARN of the access policy to associate with the principal
|
|
257
256
|
"""
|
|
258
257
|
return pulumi.get(self, "policy_arn")
|
|
259
258
|
|
|
260
259
|
@policy_arn.setter
|
|
261
|
-
def policy_arn(self, value: pulumi.Input[
|
|
260
|
+
def policy_arn(self, value: pulumi.Input[_builtins.str]):
|
|
262
261
|
pulumi.set(self, "policy_arn", value)
|
|
263
262
|
|
|
264
263
|
|
|
@@ -269,7 +268,7 @@ if not MYPY:
|
|
|
269
268
|
|
|
270
269
|
For more information, see: https://docs.aws.amazon.com/eks/latest/userguide/automode.html
|
|
271
270
|
"""
|
|
272
|
-
enabled:
|
|
271
|
+
enabled: _builtins.bool
|
|
273
272
|
"""
|
|
274
273
|
Whether to enable EKS Auto Mode. If enabled, EKS will manage node pools, EBS volumes and Load Balancers for you.
|
|
275
274
|
When enabled, the vpc-cni and kube-proxy will not be enabled by default because EKS Auto Mode includes pod networking capabilities.
|
|
@@ -278,7 +277,7 @@ if not MYPY:
|
|
|
278
277
|
"""
|
|
279
278
|
Compute configuration for EKS Auto Mode.
|
|
280
279
|
"""
|
|
281
|
-
create_node_role: NotRequired[
|
|
280
|
+
create_node_role: NotRequired[_builtins.bool]
|
|
282
281
|
"""
|
|
283
282
|
Whether to create an IAM role for the EKS Auto Mode node group if none is provided in `computeConfig`.
|
|
284
283
|
"""
|
|
@@ -288,17 +287,17 @@ elif False:
|
|
|
288
287
|
@pulumi.input_type
|
|
289
288
|
class AutoModeOptionsArgs:
|
|
290
289
|
def __init__(__self__, *,
|
|
291
|
-
enabled:
|
|
290
|
+
enabled: _builtins.bool,
|
|
292
291
|
compute_config: Optional[pulumi.Input['ClusterComputeConfigArgs']] = None,
|
|
293
|
-
create_node_role: Optional[
|
|
292
|
+
create_node_role: Optional[_builtins.bool] = None):
|
|
294
293
|
"""
|
|
295
294
|
Configuration Options for EKS Auto Mode. If EKS Auto Mode is enabled, AWS will manage cluster infrastructure on your behalf.
|
|
296
295
|
|
|
297
296
|
For more information, see: https://docs.aws.amazon.com/eks/latest/userguide/automode.html
|
|
298
|
-
:param
|
|
297
|
+
:param _builtins.bool enabled: Whether to enable EKS Auto Mode. If enabled, EKS will manage node pools, EBS volumes and Load Balancers for you.
|
|
299
298
|
When enabled, the vpc-cni and kube-proxy will not be enabled by default because EKS Auto Mode includes pod networking capabilities.
|
|
300
299
|
:param pulumi.Input['ClusterComputeConfigArgs'] compute_config: Compute configuration for EKS Auto Mode.
|
|
301
|
-
:param
|
|
300
|
+
:param _builtins.bool create_node_role: Whether to create an IAM role for the EKS Auto Mode node group if none is provided in `computeConfig`.
|
|
302
301
|
"""
|
|
303
302
|
pulumi.set(__self__, "enabled", enabled)
|
|
304
303
|
if compute_config is not None:
|
|
@@ -308,9 +307,9 @@ class AutoModeOptionsArgs:
|
|
|
308
307
|
if create_node_role is not None:
|
|
309
308
|
pulumi.set(__self__, "create_node_role", create_node_role)
|
|
310
309
|
|
|
311
|
-
@property
|
|
310
|
+
@_builtins.property
|
|
312
311
|
@pulumi.getter
|
|
313
|
-
def enabled(self) ->
|
|
312
|
+
def enabled(self) -> _builtins.bool:
|
|
314
313
|
"""
|
|
315
314
|
Whether to enable EKS Auto Mode. If enabled, EKS will manage node pools, EBS volumes and Load Balancers for you.
|
|
316
315
|
When enabled, the vpc-cni and kube-proxy will not be enabled by default because EKS Auto Mode includes pod networking capabilities.
|
|
@@ -318,10 +317,10 @@ class AutoModeOptionsArgs:
|
|
|
318
317
|
return pulumi.get(self, "enabled")
|
|
319
318
|
|
|
320
319
|
@enabled.setter
|
|
321
|
-
def enabled(self, value:
|
|
320
|
+
def enabled(self, value: _builtins.bool):
|
|
322
321
|
pulumi.set(self, "enabled", value)
|
|
323
322
|
|
|
324
|
-
@property
|
|
323
|
+
@_builtins.property
|
|
325
324
|
@pulumi.getter(name="computeConfig")
|
|
326
325
|
def compute_config(self) -> Optional[pulumi.Input['ClusterComputeConfigArgs']]:
|
|
327
326
|
"""
|
|
@@ -333,16 +332,16 @@ class AutoModeOptionsArgs:
|
|
|
333
332
|
def compute_config(self, value: Optional[pulumi.Input['ClusterComputeConfigArgs']]):
|
|
334
333
|
pulumi.set(self, "compute_config", value)
|
|
335
334
|
|
|
336
|
-
@property
|
|
335
|
+
@_builtins.property
|
|
337
336
|
@pulumi.getter(name="createNodeRole")
|
|
338
|
-
def create_node_role(self) -> Optional[
|
|
337
|
+
def create_node_role(self) -> Optional[_builtins.bool]:
|
|
339
338
|
"""
|
|
340
339
|
Whether to create an IAM role for the EKS Auto Mode node group if none is provided in `computeConfig`.
|
|
341
340
|
"""
|
|
342
341
|
return pulumi.get(self, "create_node_role")
|
|
343
342
|
|
|
344
343
|
@create_node_role.setter
|
|
345
|
-
def create_node_role(self, value: Optional[
|
|
344
|
+
def create_node_role(self, value: Optional[_builtins.bool]):
|
|
346
345
|
pulumi.set(self, "create_node_role", value)
|
|
347
346
|
|
|
348
347
|
|
|
@@ -351,13 +350,13 @@ if not MYPY:
|
|
|
351
350
|
"""
|
|
352
351
|
Configuration for the compute capability of your EKS Auto Mode cluster.
|
|
353
352
|
"""
|
|
354
|
-
node_pools: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
353
|
+
node_pools: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
355
354
|
"""
|
|
356
355
|
Configuration for node pools that defines the compute resources for your EKS Auto Mode cluster. Valid options are `general-purpose` and `system`.
|
|
357
356
|
|
|
358
357
|
By default, the built-in `system` and `general-purpose` nodepools are enabled.
|
|
359
358
|
"""
|
|
360
|
-
node_role_arn: NotRequired[pulumi.Input[
|
|
359
|
+
node_role_arn: NotRequired[pulumi.Input[_builtins.str]]
|
|
361
360
|
"""
|
|
362
361
|
The ARN of the IAM Role EKS will assign to EC2 Managed Instances in your EKS Auto Mode cluster. This value cannot be changed after the compute capability of EKS Auto Mode is enabled.
|
|
363
362
|
"""
|
|
@@ -367,23 +366,23 @@ elif False:
|
|
|
367
366
|
@pulumi.input_type
|
|
368
367
|
class ClusterComputeConfigArgs:
|
|
369
368
|
def __init__(__self__, *,
|
|
370
|
-
node_pools: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
371
|
-
node_role_arn: Optional[pulumi.Input[
|
|
369
|
+
node_pools: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
370
|
+
node_role_arn: Optional[pulumi.Input[_builtins.str]] = None):
|
|
372
371
|
"""
|
|
373
372
|
Configuration for the compute capability of your EKS Auto Mode cluster.
|
|
374
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
373
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] node_pools: Configuration for node pools that defines the compute resources for your EKS Auto Mode cluster. Valid options are `general-purpose` and `system`.
|
|
375
374
|
|
|
376
375
|
By default, the built-in `system` and `general-purpose` nodepools are enabled.
|
|
377
|
-
:param pulumi.Input[
|
|
376
|
+
:param pulumi.Input[_builtins.str] node_role_arn: The ARN of the IAM Role EKS will assign to EC2 Managed Instances in your EKS Auto Mode cluster. This value cannot be changed after the compute capability of EKS Auto Mode is enabled.
|
|
378
377
|
"""
|
|
379
378
|
if node_pools is not None:
|
|
380
379
|
pulumi.set(__self__, "node_pools", node_pools)
|
|
381
380
|
if node_role_arn is not None:
|
|
382
381
|
pulumi.set(__self__, "node_role_arn", node_role_arn)
|
|
383
382
|
|
|
384
|
-
@property
|
|
383
|
+
@_builtins.property
|
|
385
384
|
@pulumi.getter(name="nodePools")
|
|
386
|
-
def node_pools(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
385
|
+
def node_pools(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
387
386
|
"""
|
|
388
387
|
Configuration for node pools that defines the compute resources for your EKS Auto Mode cluster. Valid options are `general-purpose` and `system`.
|
|
389
388
|
|
|
@@ -392,19 +391,19 @@ class ClusterComputeConfigArgs:
|
|
|
392
391
|
return pulumi.get(self, "node_pools")
|
|
393
392
|
|
|
394
393
|
@node_pools.setter
|
|
395
|
-
def node_pools(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
394
|
+
def node_pools(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
396
395
|
pulumi.set(self, "node_pools", value)
|
|
397
396
|
|
|
398
|
-
@property
|
|
397
|
+
@_builtins.property
|
|
399
398
|
@pulumi.getter(name="nodeRoleArn")
|
|
400
|
-
def node_role_arn(self) -> Optional[pulumi.Input[
|
|
399
|
+
def node_role_arn(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
401
400
|
"""
|
|
402
401
|
The ARN of the IAM Role EKS will assign to EC2 Managed Instances in your EKS Auto Mode cluster. This value cannot be changed after the compute capability of EKS Auto Mode is enabled.
|
|
403
402
|
"""
|
|
404
403
|
return pulumi.get(self, "node_role_arn")
|
|
405
404
|
|
|
406
405
|
@node_role_arn.setter
|
|
407
|
-
def node_role_arn(self, value: Optional[pulumi.Input[
|
|
406
|
+
def node_role_arn(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
408
407
|
pulumi.set(self, "node_role_arn", value)
|
|
409
408
|
|
|
410
409
|
|
|
@@ -413,7 +412,7 @@ if not MYPY:
|
|
|
413
412
|
"""
|
|
414
413
|
Describes the configuration options accepted by a cluster to create its own node groups.
|
|
415
414
|
"""
|
|
416
|
-
ami_id: NotRequired[pulumi.Input[
|
|
415
|
+
ami_id: NotRequired[pulumi.Input[_builtins.str]]
|
|
417
416
|
"""
|
|
418
417
|
The AMI ID to use for the worker nodes.
|
|
419
418
|
|
|
@@ -424,7 +423,7 @@ if not MYPY:
|
|
|
424
423
|
See for more details:
|
|
425
424
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html.
|
|
426
425
|
"""
|
|
427
|
-
ami_type: NotRequired[pulumi.Input[
|
|
426
|
+
ami_type: NotRequired[pulumi.Input[_builtins.str]]
|
|
428
427
|
"""
|
|
429
428
|
The AMI Type to use for the worker nodes.
|
|
430
429
|
|
|
@@ -432,7 +431,7 @@ if not MYPY:
|
|
|
432
431
|
|
|
433
432
|
Note: `amiType` and `gpu` are mutually exclusive.
|
|
434
433
|
"""
|
|
435
|
-
auto_scaling_group_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
434
|
+
auto_scaling_group_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
436
435
|
"""
|
|
437
436
|
The tags to apply to the NodeGroup's AutoScalingGroup in the CloudFormation Stack.
|
|
438
437
|
|
|
@@ -440,7 +439,7 @@ if not MYPY:
|
|
|
440
439
|
|
|
441
440
|
Note: Given the inheritance of auto-generated CF tags and `cloudFormationTags`, you should either supply the tag in `autoScalingGroupTags` or `cloudFormationTags`, but not both.
|
|
442
441
|
"""
|
|
443
|
-
bootstrap_extra_args: NotRequired[pulumi.Input[
|
|
442
|
+
bootstrap_extra_args: NotRequired[pulumi.Input[_builtins.str]]
|
|
444
443
|
"""
|
|
445
444
|
Additional args to pass directly to `/etc/eks/bootstrap.sh`. For details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the `--apiserver-endpoint`, `--b64-cluster-ca` and `--kubelet-extra-args` flags are included automatically based on other configuration parameters.
|
|
446
445
|
"""
|
|
@@ -457,7 +456,7 @@ if not MYPY:
|
|
|
457
456
|
|
|
458
457
|
For an overview of the available settings, see https://bottlerocket.dev/en/os/1.20.x/api/settings/.
|
|
459
458
|
"""
|
|
460
|
-
cloud_formation_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
459
|
+
cloud_formation_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
461
460
|
"""
|
|
462
461
|
The tags to apply to the CloudFormation Stack of the Worker NodeGroup.
|
|
463
462
|
|
|
@@ -467,15 +466,15 @@ if not MYPY:
|
|
|
467
466
|
"""
|
|
468
467
|
The ingress rule that gives node group access.
|
|
469
468
|
"""
|
|
470
|
-
cluster_ingress_rule_id: NotRequired[pulumi.Input[
|
|
469
|
+
cluster_ingress_rule_id: NotRequired[pulumi.Input[_builtins.str]]
|
|
471
470
|
"""
|
|
472
471
|
The ID of the ingress rule that gives node group access.
|
|
473
472
|
"""
|
|
474
|
-
desired_capacity: NotRequired[pulumi.Input[
|
|
473
|
+
desired_capacity: NotRequired[pulumi.Input[_builtins.int]]
|
|
475
474
|
"""
|
|
476
475
|
The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
477
476
|
"""
|
|
478
|
-
enable_detailed_monitoring: NotRequired[pulumi.Input[
|
|
477
|
+
enable_detailed_monitoring: NotRequired[pulumi.Input[_builtins.bool]]
|
|
479
478
|
"""
|
|
480
479
|
Enables/disables detailed monitoring of the EC2 instances.
|
|
481
480
|
|
|
@@ -485,7 +484,7 @@ if not MYPY:
|
|
|
485
484
|
Note: You are charged per metric that is sent to CloudWatch. You are not charged for data storage.
|
|
486
485
|
For more information, see "Paid tier" and "Example 1 - EC2 Detailed Monitoring" here https://aws.amazon.com/cloudwatch/pricing/.
|
|
487
486
|
"""
|
|
488
|
-
encrypt_root_block_device: NotRequired[pulumi.Input[
|
|
487
|
+
encrypt_root_block_device: NotRequired[pulumi.Input[_builtins.bool]]
|
|
489
488
|
"""
|
|
490
489
|
Encrypt the root block device of the nodes in the node group.
|
|
491
490
|
"""
|
|
@@ -495,7 +494,7 @@ if not MYPY:
|
|
|
495
494
|
|
|
496
495
|
This additional set of security groups captures any user application rules that will be needed for the nodes.
|
|
497
496
|
"""
|
|
498
|
-
gpu: NotRequired[pulumi.Input[
|
|
497
|
+
gpu: NotRequired[pulumi.Input[_builtins.bool]]
|
|
499
498
|
"""
|
|
500
499
|
Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
501
500
|
|
|
@@ -507,7 +506,7 @@ if not MYPY:
|
|
|
507
506
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html
|
|
508
507
|
- https://docs.aws.amazon.com/eks/latest/userguide/retrieve-ami-id.html
|
|
509
508
|
"""
|
|
510
|
-
ignore_scaling_changes: NotRequired[
|
|
509
|
+
ignore_scaling_changes: NotRequired[_builtins.bool]
|
|
511
510
|
"""
|
|
512
511
|
Whether to ignore changes to the desired size of the Auto Scaling Group. This is useful when using Cluster Autoscaler.
|
|
513
512
|
|
|
@@ -517,23 +516,23 @@ if not MYPY:
|
|
|
517
516
|
"""
|
|
518
517
|
The IAM InstanceProfile to use on the NodeGroup. Properties instanceProfile and instanceProfileName are mutually exclusive.
|
|
519
518
|
"""
|
|
520
|
-
instance_profile_name: NotRequired[pulumi.Input[
|
|
519
|
+
instance_profile_name: NotRequired[pulumi.Input[_builtins.str]]
|
|
521
520
|
"""
|
|
522
521
|
The name of the IAM InstanceProfile to use on the NodeGroup. Properties instanceProfile and instanceProfileName are mutually exclusive.
|
|
523
522
|
"""
|
|
524
|
-
instance_type: NotRequired[pulumi.Input[
|
|
523
|
+
instance_type: NotRequired[pulumi.Input[_builtins.str]]
|
|
525
524
|
"""
|
|
526
525
|
The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
527
526
|
"""
|
|
528
|
-
key_name: NotRequired[pulumi.Input[
|
|
527
|
+
key_name: NotRequired[pulumi.Input[_builtins.str]]
|
|
529
528
|
"""
|
|
530
529
|
Name of the key pair to use for SSH access to worker nodes.
|
|
531
530
|
"""
|
|
532
|
-
kubelet_extra_args: NotRequired[pulumi.Input[
|
|
531
|
+
kubelet_extra_args: NotRequired[pulumi.Input[_builtins.str]]
|
|
533
532
|
"""
|
|
534
533
|
Extra args to pass to the Kubelet. Corresponds to the options passed in the `--kubeletExtraArgs` flag to `/etc/eks/bootstrap.sh`. For example, '--port=10251 --address=0.0.0.0'. Note that the `labels` and `taints` properties will be applied to this list (using `--node-labels` and `--register-with-taints` respectively) after to the explicit `kubeletExtraArgs`.
|
|
535
534
|
"""
|
|
536
|
-
labels: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
535
|
+
labels: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
537
536
|
"""
|
|
538
537
|
Custom k8s node labels to be attached to each worker node. Adds the given key/value pairs to the `--node-labels` kubelet argument.
|
|
539
538
|
"""
|
|
@@ -541,49 +540,49 @@ if not MYPY:
|
|
|
541
540
|
"""
|
|
542
541
|
The tag specifications to apply to the launch template.
|
|
543
542
|
"""
|
|
544
|
-
max_size: NotRequired[pulumi.Input[
|
|
543
|
+
max_size: NotRequired[pulumi.Input[_builtins.int]]
|
|
545
544
|
"""
|
|
546
545
|
The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
547
546
|
"""
|
|
548
|
-
min_refresh_percentage: NotRequired[pulumi.Input[
|
|
547
|
+
min_refresh_percentage: NotRequired[pulumi.Input[_builtins.int]]
|
|
549
548
|
"""
|
|
550
549
|
The minimum amount of instances that should remain available during an instance refresh, expressed as a percentage. Defaults to 50.
|
|
551
550
|
"""
|
|
552
|
-
min_size: NotRequired[pulumi.Input[
|
|
551
|
+
min_size: NotRequired[pulumi.Input[_builtins.int]]
|
|
553
552
|
"""
|
|
554
553
|
The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
555
554
|
"""
|
|
556
|
-
node_associate_public_ip_address: NotRequired[pulumi.Input[
|
|
555
|
+
node_associate_public_ip_address: NotRequired[pulumi.Input[_builtins.bool]]
|
|
557
556
|
"""
|
|
558
557
|
Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
559
558
|
"""
|
|
560
|
-
node_public_key: NotRequired[pulumi.Input[
|
|
559
|
+
node_public_key: NotRequired[pulumi.Input[_builtins.str]]
|
|
561
560
|
"""
|
|
562
561
|
Public key material for SSH access to worker nodes. See allowed formats at:
|
|
563
562
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
564
563
|
If not provided, no SSH access is enabled on VMs.
|
|
565
564
|
"""
|
|
566
|
-
node_root_volume_delete_on_termination: NotRequired[pulumi.Input[
|
|
565
|
+
node_root_volume_delete_on_termination: NotRequired[pulumi.Input[_builtins.bool]]
|
|
567
566
|
"""
|
|
568
567
|
Whether the root block device should be deleted on termination of the instance. Defaults to true.
|
|
569
568
|
"""
|
|
570
|
-
node_root_volume_encrypted: NotRequired[pulumi.Input[
|
|
569
|
+
node_root_volume_encrypted: NotRequired[pulumi.Input[_builtins.bool]]
|
|
571
570
|
"""
|
|
572
571
|
Whether to encrypt a cluster node's root volume. Defaults to false.
|
|
573
572
|
"""
|
|
574
|
-
node_root_volume_iops: NotRequired[pulumi.Input[
|
|
573
|
+
node_root_volume_iops: NotRequired[pulumi.Input[_builtins.int]]
|
|
575
574
|
"""
|
|
576
575
|
The amount of provisioned IOPS. This is only valid with a volumeType of 'io1'.
|
|
577
576
|
"""
|
|
578
|
-
node_root_volume_size: NotRequired[pulumi.Input[
|
|
577
|
+
node_root_volume_size: NotRequired[pulumi.Input[_builtins.int]]
|
|
579
578
|
"""
|
|
580
579
|
The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
581
580
|
"""
|
|
582
|
-
node_root_volume_throughput: NotRequired[pulumi.Input[
|
|
581
|
+
node_root_volume_throughput: NotRequired[pulumi.Input[_builtins.int]]
|
|
583
582
|
"""
|
|
584
583
|
Provisioned throughput performance in integer MiB/s for a cluster node's root volume. This is only valid with a volumeType of 'gp3'.
|
|
585
584
|
"""
|
|
586
|
-
node_root_volume_type: NotRequired[pulumi.Input[
|
|
585
|
+
node_root_volume_type: NotRequired[pulumi.Input[_builtins.str]]
|
|
587
586
|
"""
|
|
588
587
|
Configured EBS type for a cluster node's root volume. Default is 'gp2'. Supported values are 'standard', 'gp2', 'gp3', 'st1', 'sc1', 'io1'.
|
|
589
588
|
"""
|
|
@@ -598,7 +597,7 @@ if not MYPY:
|
|
|
598
597
|
|
|
599
598
|
Note: The `nodeSecurityGroup` option and the cluster option`nodeSecurityGroupTags` are mutually exclusive.
|
|
600
599
|
"""
|
|
601
|
-
node_security_group_id: NotRequired[pulumi.Input[
|
|
600
|
+
node_security_group_id: NotRequired[pulumi.Input[_builtins.str]]
|
|
602
601
|
"""
|
|
603
602
|
The ID of the security group for the worker node group to communicate with the cluster.
|
|
604
603
|
|
|
@@ -609,17 +608,17 @@ if not MYPY:
|
|
|
609
608
|
|
|
610
609
|
Note: The `nodeSecurityGroupId` option and the cluster option `nodeSecurityGroupTags` are mutually exclusive.
|
|
611
610
|
"""
|
|
612
|
-
node_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
611
|
+
node_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
613
612
|
"""
|
|
614
613
|
The set of subnets to override and use for the worker node group.
|
|
615
614
|
|
|
616
615
|
Setting this option overrides which subnets to use for the worker node group, regardless if the cluster's `subnetIds` is set, or if `publicSubnetIds` and/or `privateSubnetIds` were set.
|
|
617
616
|
"""
|
|
618
|
-
node_user_data: NotRequired[pulumi.Input[
|
|
617
|
+
node_user_data: NotRequired[pulumi.Input[_builtins.str]]
|
|
619
618
|
"""
|
|
620
619
|
Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
621
620
|
"""
|
|
622
|
-
node_user_data_override: NotRequired[pulumi.Input[
|
|
621
|
+
node_user_data_override: NotRequired[pulumi.Input[_builtins.str]]
|
|
623
622
|
"""
|
|
624
623
|
User specified code to run on node startup. This code is expected to handle the full AWS EKS bootstrapping code and signal node readiness to the managing CloudFormation stack. This code must be a complete and executable user data script in bash (Linux) or powershell (Windows).
|
|
625
624
|
|
|
@@ -646,7 +645,7 @@ if not MYPY:
|
|
|
646
645
|
|
|
647
646
|
Defaults to the current recommended OS.
|
|
648
647
|
"""
|
|
649
|
-
spot_price: NotRequired[pulumi.Input[
|
|
648
|
+
spot_price: NotRequired[pulumi.Input[_builtins.str]]
|
|
650
649
|
"""
|
|
651
650
|
Bidding price for spot instance. If set, only spot instances will be added as worker node.
|
|
652
651
|
"""
|
|
@@ -654,7 +653,7 @@ if not MYPY:
|
|
|
654
653
|
"""
|
|
655
654
|
Custom k8s node taints to be attached to each worker node. Adds the given taints to the `--register-with-taints` kubelet argument
|
|
656
655
|
"""
|
|
657
|
-
version: NotRequired[pulumi.Input[
|
|
656
|
+
version: NotRequired[pulumi.Input[_builtins.str]]
|
|
658
657
|
"""
|
|
659
658
|
Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
660
659
|
"""
|
|
@@ -664,51 +663,51 @@ elif False:
|
|
|
664
663
|
@pulumi.input_type
|
|
665
664
|
class ClusterNodeGroupOptionsArgs:
|
|
666
665
|
def __init__(__self__, *,
|
|
667
|
-
ami_id: Optional[pulumi.Input[
|
|
668
|
-
ami_type: Optional[pulumi.Input[
|
|
669
|
-
auto_scaling_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
670
|
-
bootstrap_extra_args: Optional[pulumi.Input[
|
|
666
|
+
ami_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
667
|
+
ami_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
668
|
+
auto_scaling_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
669
|
+
bootstrap_extra_args: Optional[pulumi.Input[_builtins.str]] = None,
|
|
671
670
|
bottlerocket_settings: Optional[pulumi.Input[Mapping[str, Any]]] = None,
|
|
672
|
-
cloud_formation_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
671
|
+
cloud_formation_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
673
672
|
cluster_ingress_rule: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroupRule']] = None,
|
|
674
|
-
cluster_ingress_rule_id: Optional[pulumi.Input[
|
|
675
|
-
desired_capacity: Optional[pulumi.Input[
|
|
676
|
-
enable_detailed_monitoring: Optional[pulumi.Input[
|
|
677
|
-
encrypt_root_block_device: Optional[pulumi.Input[
|
|
673
|
+
cluster_ingress_rule_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
674
|
+
desired_capacity: Optional[pulumi.Input[_builtins.int]] = None,
|
|
675
|
+
enable_detailed_monitoring: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
676
|
+
encrypt_root_block_device: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
678
677
|
extra_node_security_groups: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]]] = None,
|
|
679
|
-
gpu: Optional[pulumi.Input[
|
|
680
|
-
ignore_scaling_changes: Optional[
|
|
678
|
+
gpu: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
679
|
+
ignore_scaling_changes: Optional[_builtins.bool] = None,
|
|
681
680
|
instance_profile: Optional['pulumi_aws.iam.InstanceProfile'] = None,
|
|
682
|
-
instance_profile_name: Optional[pulumi.Input[
|
|
683
|
-
instance_type: Optional[pulumi.Input[
|
|
684
|
-
key_name: Optional[pulumi.Input[
|
|
685
|
-
kubelet_extra_args: Optional[pulumi.Input[
|
|
686
|
-
labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
681
|
+
instance_profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
682
|
+
instance_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
683
|
+
key_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
684
|
+
kubelet_extra_args: Optional[pulumi.Input[_builtins.str]] = None,
|
|
685
|
+
labels: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
687
686
|
launch_template_tag_specifications: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.LaunchTemplateTagSpecificationArgs']]]] = None,
|
|
688
|
-
max_size: Optional[pulumi.Input[
|
|
689
|
-
min_refresh_percentage: Optional[pulumi.Input[
|
|
690
|
-
min_size: Optional[pulumi.Input[
|
|
691
|
-
node_associate_public_ip_address: Optional[pulumi.Input[
|
|
692
|
-
node_public_key: Optional[pulumi.Input[
|
|
693
|
-
node_root_volume_delete_on_termination: Optional[pulumi.Input[
|
|
694
|
-
node_root_volume_encrypted: Optional[pulumi.Input[
|
|
695
|
-
node_root_volume_iops: Optional[pulumi.Input[
|
|
696
|
-
node_root_volume_size: Optional[pulumi.Input[
|
|
697
|
-
node_root_volume_throughput: Optional[pulumi.Input[
|
|
698
|
-
node_root_volume_type: Optional[pulumi.Input[
|
|
687
|
+
max_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
688
|
+
min_refresh_percentage: Optional[pulumi.Input[_builtins.int]] = None,
|
|
689
|
+
min_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
690
|
+
node_associate_public_ip_address: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
691
|
+
node_public_key: Optional[pulumi.Input[_builtins.str]] = None,
|
|
692
|
+
node_root_volume_delete_on_termination: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
693
|
+
node_root_volume_encrypted: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
694
|
+
node_root_volume_iops: Optional[pulumi.Input[_builtins.int]] = None,
|
|
695
|
+
node_root_volume_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
696
|
+
node_root_volume_throughput: Optional[pulumi.Input[_builtins.int]] = None,
|
|
697
|
+
node_root_volume_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
699
698
|
node_security_group: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']] = None,
|
|
700
|
-
node_security_group_id: Optional[pulumi.Input[
|
|
701
|
-
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
702
|
-
node_user_data: Optional[pulumi.Input[
|
|
703
|
-
node_user_data_override: Optional[pulumi.Input[
|
|
699
|
+
node_security_group_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
700
|
+
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
701
|
+
node_user_data: Optional[pulumi.Input[_builtins.str]] = None,
|
|
702
|
+
node_user_data_override: Optional[pulumi.Input[_builtins.str]] = None,
|
|
704
703
|
nodeadm_extra_options: Optional[pulumi.Input[Sequence[pulumi.Input['NodeadmOptionsArgs']]]] = None,
|
|
705
704
|
operating_system: Optional[pulumi.Input['OperatingSystem']] = None,
|
|
706
|
-
spot_price: Optional[pulumi.Input[
|
|
705
|
+
spot_price: Optional[pulumi.Input[_builtins.str]] = None,
|
|
707
706
|
taints: Optional[pulumi.Input[Mapping[str, pulumi.Input['TaintArgs']]]] = None,
|
|
708
|
-
version: Optional[pulumi.Input[
|
|
707
|
+
version: Optional[pulumi.Input[_builtins.str]] = None):
|
|
709
708
|
"""
|
|
710
709
|
Describes the configuration options accepted by a cluster to create its own node groups.
|
|
711
|
-
:param pulumi.Input[
|
|
710
|
+
:param pulumi.Input[_builtins.str] ami_id: The AMI ID to use for the worker nodes.
|
|
712
711
|
|
|
713
712
|
Defaults to the latest recommended EKS Optimized Linux AMI from the AWS Systems Manager Parameter Store.
|
|
714
713
|
|
|
@@ -716,17 +715,17 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
716
715
|
|
|
717
716
|
See for more details:
|
|
718
717
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html.
|
|
719
|
-
:param pulumi.Input[
|
|
718
|
+
:param pulumi.Input[_builtins.str] ami_type: The AMI Type to use for the worker nodes.
|
|
720
719
|
|
|
721
720
|
Only applicable when setting an AMI ID that is of type `arm64`.
|
|
722
721
|
|
|
723
722
|
Note: `amiType` and `gpu` are mutually exclusive.
|
|
724
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
723
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] auto_scaling_group_tags: The tags to apply to the NodeGroup's AutoScalingGroup in the CloudFormation Stack.
|
|
725
724
|
|
|
726
725
|
Per AWS, all stack-level tags, including automatically created tags, and the `cloudFormationTags` option are propagated to resources that AWS CloudFormation supports, including the AutoScalingGroup. See https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html
|
|
727
726
|
|
|
728
727
|
Note: Given the inheritance of auto-generated CF tags and `cloudFormationTags`, you should either supply the tag in `autoScalingGroupTags` or `cloudFormationTags`, but not both.
|
|
729
|
-
:param pulumi.Input[
|
|
728
|
+
:param pulumi.Input[_builtins.str] bootstrap_extra_args: Additional args to pass directly to `/etc/eks/bootstrap.sh`. For details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the `--apiserver-endpoint`, `--b64-cluster-ca` and `--kubelet-extra-args` flags are included automatically based on other configuration parameters.
|
|
730
729
|
:param pulumi.Input[Mapping[str, Any]] bottlerocket_settings: The configuration settings for Bottlerocket OS.
|
|
731
730
|
The settings will get merged with the base settings the provider uses to configure Bottlerocket.
|
|
732
731
|
|
|
@@ -737,24 +736,24 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
737
736
|
- settings.kubernetes.cluster-dns-ip
|
|
738
737
|
|
|
739
738
|
For an overview of the available settings, see https://bottlerocket.dev/en/os/1.20.x/api/settings/.
|
|
740
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
739
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] cloud_formation_tags: The tags to apply to the CloudFormation Stack of the Worker NodeGroup.
|
|
741
740
|
|
|
742
741
|
Note: Given the inheritance of auto-generated CF tags and `cloudFormationTags`, you should either supply the tag in `autoScalingGroupTags` or `cloudFormationTags`, but not both.
|
|
743
742
|
:param pulumi.Input['pulumi_aws.ec2.SecurityGroupRule'] cluster_ingress_rule: The ingress rule that gives node group access.
|
|
744
|
-
:param pulumi.Input[
|
|
745
|
-
:param pulumi.Input[
|
|
746
|
-
:param pulumi.Input[
|
|
743
|
+
:param pulumi.Input[_builtins.str] cluster_ingress_rule_id: The ID of the ingress rule that gives node group access.
|
|
744
|
+
:param pulumi.Input[_builtins.int] desired_capacity: The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
745
|
+
:param pulumi.Input[_builtins.bool] enable_detailed_monitoring: Enables/disables detailed monitoring of the EC2 instances.
|
|
747
746
|
|
|
748
747
|
With detailed monitoring, all metrics, including status check metrics, are available in 1-minute intervals.
|
|
749
748
|
When enabled, you can also get aggregated data across groups of similar instances.
|
|
750
749
|
|
|
751
750
|
Note: You are charged per metric that is sent to CloudWatch. You are not charged for data storage.
|
|
752
751
|
For more information, see "Paid tier" and "Example 1 - EC2 Detailed Monitoring" here https://aws.amazon.com/cloudwatch/pricing/.
|
|
753
|
-
:param pulumi.Input[
|
|
752
|
+
:param pulumi.Input[_builtins.bool] encrypt_root_block_device: Encrypt the root block device of the nodes in the node group.
|
|
754
753
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]] extra_node_security_groups: Extra security groups to attach on all nodes in this worker node group.
|
|
755
754
|
|
|
756
755
|
This additional set of security groups captures any user application rules that will be needed for the nodes.
|
|
757
|
-
:param pulumi.Input[
|
|
756
|
+
:param pulumi.Input[_builtins.bool] gpu: Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
758
757
|
|
|
759
758
|
Defaults to false.
|
|
760
759
|
|
|
@@ -763,29 +762,29 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
763
762
|
See for more details:
|
|
764
763
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html
|
|
765
764
|
- https://docs.aws.amazon.com/eks/latest/userguide/retrieve-ami-id.html
|
|
766
|
-
:param
|
|
765
|
+
:param _builtins.bool ignore_scaling_changes: Whether to ignore changes to the desired size of the Auto Scaling Group. This is useful when using Cluster Autoscaler.
|
|
767
766
|
|
|
768
767
|
See [EKS best practices](https://aws.github.io/aws-eks-best-practices/cluster-autoscaling/) for more details.
|
|
769
768
|
:param 'pulumi_aws.iam.InstanceProfile' instance_profile: The IAM InstanceProfile to use on the NodeGroup. Properties instanceProfile and instanceProfileName are mutually exclusive.
|
|
770
|
-
:param pulumi.Input[
|
|
771
|
-
:param pulumi.Input[
|
|
772
|
-
:param pulumi.Input[
|
|
773
|
-
:param pulumi.Input[
|
|
774
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
769
|
+
:param pulumi.Input[_builtins.str] instance_profile_name: The name of the IAM InstanceProfile to use on the NodeGroup. Properties instanceProfile and instanceProfileName are mutually exclusive.
|
|
770
|
+
:param pulumi.Input[_builtins.str] instance_type: The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
771
|
+
:param pulumi.Input[_builtins.str] key_name: Name of the key pair to use for SSH access to worker nodes.
|
|
772
|
+
:param pulumi.Input[_builtins.str] kubelet_extra_args: Extra args to pass to the Kubelet. Corresponds to the options passed in the `--kubeletExtraArgs` flag to `/etc/eks/bootstrap.sh`. For example, '--port=10251 --address=0.0.0.0'. Note that the `labels` and `taints` properties will be applied to this list (using `--node-labels` and `--register-with-taints` respectively) after to the explicit `kubeletExtraArgs`.
|
|
773
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] labels: Custom k8s node labels to be attached to each worker node. Adds the given key/value pairs to the `--node-labels` kubelet argument.
|
|
775
774
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.LaunchTemplateTagSpecificationArgs']]] launch_template_tag_specifications: The tag specifications to apply to the launch template.
|
|
776
|
-
:param pulumi.Input[
|
|
777
|
-
:param pulumi.Input[
|
|
778
|
-
:param pulumi.Input[
|
|
779
|
-
:param pulumi.Input[
|
|
780
|
-
:param pulumi.Input[
|
|
775
|
+
:param pulumi.Input[_builtins.int] max_size: The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
776
|
+
:param pulumi.Input[_builtins.int] min_refresh_percentage: The minimum amount of instances that should remain available during an instance refresh, expressed as a percentage. Defaults to 50.
|
|
777
|
+
:param pulumi.Input[_builtins.int] min_size: The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
778
|
+
:param pulumi.Input[_builtins.bool] node_associate_public_ip_address: Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
779
|
+
:param pulumi.Input[_builtins.str] node_public_key: Public key material for SSH access to worker nodes. See allowed formats at:
|
|
781
780
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
782
781
|
If not provided, no SSH access is enabled on VMs.
|
|
783
|
-
:param pulumi.Input[
|
|
784
|
-
:param pulumi.Input[
|
|
785
|
-
:param pulumi.Input[
|
|
786
|
-
:param pulumi.Input[
|
|
787
|
-
:param pulumi.Input[
|
|
788
|
-
:param pulumi.Input[
|
|
782
|
+
:param pulumi.Input[_builtins.bool] node_root_volume_delete_on_termination: Whether the root block device should be deleted on termination of the instance. Defaults to true.
|
|
783
|
+
:param pulumi.Input[_builtins.bool] node_root_volume_encrypted: Whether to encrypt a cluster node's root volume. Defaults to false.
|
|
784
|
+
:param pulumi.Input[_builtins.int] node_root_volume_iops: The amount of provisioned IOPS. This is only valid with a volumeType of 'io1'.
|
|
785
|
+
:param pulumi.Input[_builtins.int] node_root_volume_size: The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
786
|
+
:param pulumi.Input[_builtins.int] node_root_volume_throughput: Provisioned throughput performance in integer MiB/s for a cluster node's root volume. This is only valid with a volumeType of 'gp3'.
|
|
787
|
+
:param pulumi.Input[_builtins.str] node_root_volume_type: Configured EBS type for a cluster node's root volume. Default is 'gp2'. Supported values are 'standard', 'gp2', 'gp3', 'st1', 'sc1', 'io1'.
|
|
789
788
|
:param pulumi.Input['pulumi_aws.ec2.SecurityGroup'] node_security_group: The security group for the worker node group to communicate with the cluster.
|
|
790
789
|
|
|
791
790
|
This security group requires specific inbound and outbound rules.
|
|
@@ -794,7 +793,7 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
794
793
|
https://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html
|
|
795
794
|
|
|
796
795
|
Note: The `nodeSecurityGroup` option and the cluster option`nodeSecurityGroupTags` are mutually exclusive.
|
|
797
|
-
:param pulumi.Input[
|
|
796
|
+
:param pulumi.Input[_builtins.str] node_security_group_id: The ID of the security group for the worker node group to communicate with the cluster.
|
|
798
797
|
|
|
799
798
|
This security group requires specific inbound and outbound rules.
|
|
800
799
|
|
|
@@ -802,11 +801,11 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
802
801
|
https://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html
|
|
803
802
|
|
|
804
803
|
Note: The `nodeSecurityGroupId` option and the cluster option `nodeSecurityGroupTags` are mutually exclusive.
|
|
805
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
804
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] node_subnet_ids: The set of subnets to override and use for the worker node group.
|
|
806
805
|
|
|
807
806
|
Setting this option overrides which subnets to use for the worker node group, regardless if the cluster's `subnetIds` is set, or if `publicSubnetIds` and/or `privateSubnetIds` were set.
|
|
808
|
-
:param pulumi.Input[
|
|
809
|
-
:param pulumi.Input[
|
|
807
|
+
:param pulumi.Input[_builtins.str] node_user_data: Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
808
|
+
:param pulumi.Input[_builtins.str] node_user_data_override: User specified code to run on node startup. This code is expected to handle the full AWS EKS bootstrapping code and signal node readiness to the managing CloudFormation stack. This code must be a complete and executable user data script in bash (Linux) or powershell (Windows).
|
|
810
809
|
|
|
811
810
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/worker.html
|
|
812
811
|
:param pulumi.Input[Sequence[pulumi.Input['NodeadmOptionsArgs']]] nodeadm_extra_options: Extra nodeadm configuration sections to be added to the nodeadm user data. This can be shell scripts, nodeadm NodeConfig or any other user data compatible script. When configuring additional nodeadm NodeConfig sections, they'll be merged with the base settings the provider sets. You can overwrite base settings or provide additional settings this way.
|
|
@@ -824,9 +823,9 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
824
823
|
Valid values are `RECOMMENDED`, `AL2`, `AL2023` and `Bottlerocket`.
|
|
825
824
|
|
|
826
825
|
Defaults to the current recommended OS.
|
|
827
|
-
:param pulumi.Input[
|
|
826
|
+
:param pulumi.Input[_builtins.str] spot_price: Bidding price for spot instance. If set, only spot instances will be added as worker node.
|
|
828
827
|
:param pulumi.Input[Mapping[str, pulumi.Input['TaintArgs']]] taints: Custom k8s node taints to be attached to each worker node. Adds the given taints to the `--register-with-taints` kubelet argument
|
|
829
|
-
:param pulumi.Input[
|
|
828
|
+
:param pulumi.Input[_builtins.str] version: Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
830
829
|
"""
|
|
831
830
|
if ami_id is not None:
|
|
832
831
|
pulumi.set(__self__, "ami_id", ami_id)
|
|
@@ -913,9 +912,9 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
913
912
|
if version is not None:
|
|
914
913
|
pulumi.set(__self__, "version", version)
|
|
915
914
|
|
|
916
|
-
@property
|
|
915
|
+
@_builtins.property
|
|
917
916
|
@pulumi.getter(name="amiId")
|
|
918
|
-
def ami_id(self) -> Optional[pulumi.Input[
|
|
917
|
+
def ami_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
919
918
|
"""
|
|
920
919
|
The AMI ID to use for the worker nodes.
|
|
921
920
|
|
|
@@ -929,12 +928,12 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
929
928
|
return pulumi.get(self, "ami_id")
|
|
930
929
|
|
|
931
930
|
@ami_id.setter
|
|
932
|
-
def ami_id(self, value: Optional[pulumi.Input[
|
|
931
|
+
def ami_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
933
932
|
pulumi.set(self, "ami_id", value)
|
|
934
933
|
|
|
935
|
-
@property
|
|
934
|
+
@_builtins.property
|
|
936
935
|
@pulumi.getter(name="amiType")
|
|
937
|
-
def ami_type(self) -> Optional[pulumi.Input[
|
|
936
|
+
def ami_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
938
937
|
"""
|
|
939
938
|
The AMI Type to use for the worker nodes.
|
|
940
939
|
|
|
@@ -945,12 +944,12 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
945
944
|
return pulumi.get(self, "ami_type")
|
|
946
945
|
|
|
947
946
|
@ami_type.setter
|
|
948
|
-
def ami_type(self, value: Optional[pulumi.Input[
|
|
947
|
+
def ami_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
949
948
|
pulumi.set(self, "ami_type", value)
|
|
950
949
|
|
|
951
|
-
@property
|
|
950
|
+
@_builtins.property
|
|
952
951
|
@pulumi.getter(name="autoScalingGroupTags")
|
|
953
|
-
def auto_scaling_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
952
|
+
def auto_scaling_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
954
953
|
"""
|
|
955
954
|
The tags to apply to the NodeGroup's AutoScalingGroup in the CloudFormation Stack.
|
|
956
955
|
|
|
@@ -961,22 +960,22 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
961
960
|
return pulumi.get(self, "auto_scaling_group_tags")
|
|
962
961
|
|
|
963
962
|
@auto_scaling_group_tags.setter
|
|
964
|
-
def auto_scaling_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
963
|
+
def auto_scaling_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
965
964
|
pulumi.set(self, "auto_scaling_group_tags", value)
|
|
966
965
|
|
|
967
|
-
@property
|
|
966
|
+
@_builtins.property
|
|
968
967
|
@pulumi.getter(name="bootstrapExtraArgs")
|
|
969
|
-
def bootstrap_extra_args(self) -> Optional[pulumi.Input[
|
|
968
|
+
def bootstrap_extra_args(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
970
969
|
"""
|
|
971
970
|
Additional args to pass directly to `/etc/eks/bootstrap.sh`. For details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the `--apiserver-endpoint`, `--b64-cluster-ca` and `--kubelet-extra-args` flags are included automatically based on other configuration parameters.
|
|
972
971
|
"""
|
|
973
972
|
return pulumi.get(self, "bootstrap_extra_args")
|
|
974
973
|
|
|
975
974
|
@bootstrap_extra_args.setter
|
|
976
|
-
def bootstrap_extra_args(self, value: Optional[pulumi.Input[
|
|
975
|
+
def bootstrap_extra_args(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
977
976
|
pulumi.set(self, "bootstrap_extra_args", value)
|
|
978
977
|
|
|
979
|
-
@property
|
|
978
|
+
@_builtins.property
|
|
980
979
|
@pulumi.getter(name="bottlerocketSettings")
|
|
981
980
|
def bottlerocket_settings(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
|
|
982
981
|
"""
|
|
@@ -997,9 +996,9 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
997
996
|
def bottlerocket_settings(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
|
|
998
997
|
pulumi.set(self, "bottlerocket_settings", value)
|
|
999
998
|
|
|
1000
|
-
@property
|
|
999
|
+
@_builtins.property
|
|
1001
1000
|
@pulumi.getter(name="cloudFormationTags")
|
|
1002
|
-
def cloud_formation_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1001
|
+
def cloud_formation_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
1003
1002
|
"""
|
|
1004
1003
|
The tags to apply to the CloudFormation Stack of the Worker NodeGroup.
|
|
1005
1004
|
|
|
@@ -1008,10 +1007,10 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1008
1007
|
return pulumi.get(self, "cloud_formation_tags")
|
|
1009
1008
|
|
|
1010
1009
|
@cloud_formation_tags.setter
|
|
1011
|
-
def cloud_formation_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1010
|
+
def cloud_formation_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
1012
1011
|
pulumi.set(self, "cloud_formation_tags", value)
|
|
1013
1012
|
|
|
1014
|
-
@property
|
|
1013
|
+
@_builtins.property
|
|
1015
1014
|
@pulumi.getter(name="clusterIngressRule")
|
|
1016
1015
|
def cluster_ingress_rule(self) -> Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroupRule']]:
|
|
1017
1016
|
"""
|
|
@@ -1023,33 +1022,33 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1023
1022
|
def cluster_ingress_rule(self, value: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroupRule']]):
|
|
1024
1023
|
pulumi.set(self, "cluster_ingress_rule", value)
|
|
1025
1024
|
|
|
1026
|
-
@property
|
|
1025
|
+
@_builtins.property
|
|
1027
1026
|
@pulumi.getter(name="clusterIngressRuleId")
|
|
1028
|
-
def cluster_ingress_rule_id(self) -> Optional[pulumi.Input[
|
|
1027
|
+
def cluster_ingress_rule_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1029
1028
|
"""
|
|
1030
1029
|
The ID of the ingress rule that gives node group access.
|
|
1031
1030
|
"""
|
|
1032
1031
|
return pulumi.get(self, "cluster_ingress_rule_id")
|
|
1033
1032
|
|
|
1034
1033
|
@cluster_ingress_rule_id.setter
|
|
1035
|
-
def cluster_ingress_rule_id(self, value: Optional[pulumi.Input[
|
|
1034
|
+
def cluster_ingress_rule_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1036
1035
|
pulumi.set(self, "cluster_ingress_rule_id", value)
|
|
1037
1036
|
|
|
1038
|
-
@property
|
|
1037
|
+
@_builtins.property
|
|
1039
1038
|
@pulumi.getter(name="desiredCapacity")
|
|
1040
|
-
def desired_capacity(self) -> Optional[pulumi.Input[
|
|
1039
|
+
def desired_capacity(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1041
1040
|
"""
|
|
1042
1041
|
The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
1043
1042
|
"""
|
|
1044
1043
|
return pulumi.get(self, "desired_capacity")
|
|
1045
1044
|
|
|
1046
1045
|
@desired_capacity.setter
|
|
1047
|
-
def desired_capacity(self, value: Optional[pulumi.Input[
|
|
1046
|
+
def desired_capacity(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1048
1047
|
pulumi.set(self, "desired_capacity", value)
|
|
1049
1048
|
|
|
1050
|
-
@property
|
|
1049
|
+
@_builtins.property
|
|
1051
1050
|
@pulumi.getter(name="enableDetailedMonitoring")
|
|
1052
|
-
def enable_detailed_monitoring(self) -> Optional[pulumi.Input[
|
|
1051
|
+
def enable_detailed_monitoring(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1053
1052
|
"""
|
|
1054
1053
|
Enables/disables detailed monitoring of the EC2 instances.
|
|
1055
1054
|
|
|
@@ -1062,22 +1061,22 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1062
1061
|
return pulumi.get(self, "enable_detailed_monitoring")
|
|
1063
1062
|
|
|
1064
1063
|
@enable_detailed_monitoring.setter
|
|
1065
|
-
def enable_detailed_monitoring(self, value: Optional[pulumi.Input[
|
|
1064
|
+
def enable_detailed_monitoring(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1066
1065
|
pulumi.set(self, "enable_detailed_monitoring", value)
|
|
1067
1066
|
|
|
1068
|
-
@property
|
|
1067
|
+
@_builtins.property
|
|
1069
1068
|
@pulumi.getter(name="encryptRootBlockDevice")
|
|
1070
|
-
def encrypt_root_block_device(self) -> Optional[pulumi.Input[
|
|
1069
|
+
def encrypt_root_block_device(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1071
1070
|
"""
|
|
1072
1071
|
Encrypt the root block device of the nodes in the node group.
|
|
1073
1072
|
"""
|
|
1074
1073
|
return pulumi.get(self, "encrypt_root_block_device")
|
|
1075
1074
|
|
|
1076
1075
|
@encrypt_root_block_device.setter
|
|
1077
|
-
def encrypt_root_block_device(self, value: Optional[pulumi.Input[
|
|
1076
|
+
def encrypt_root_block_device(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1078
1077
|
pulumi.set(self, "encrypt_root_block_device", value)
|
|
1079
1078
|
|
|
1080
|
-
@property
|
|
1079
|
+
@_builtins.property
|
|
1081
1080
|
@pulumi.getter(name="extraNodeSecurityGroups")
|
|
1082
1081
|
def extra_node_security_groups(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]]]:
|
|
1083
1082
|
"""
|
|
@@ -1091,9 +1090,9 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1091
1090
|
def extra_node_security_groups(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]]]):
|
|
1092
1091
|
pulumi.set(self, "extra_node_security_groups", value)
|
|
1093
1092
|
|
|
1094
|
-
@property
|
|
1093
|
+
@_builtins.property
|
|
1095
1094
|
@pulumi.getter
|
|
1096
|
-
def gpu(self) -> Optional[pulumi.Input[
|
|
1095
|
+
def gpu(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1097
1096
|
"""
|
|
1098
1097
|
Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
1099
1098
|
|
|
@@ -1108,12 +1107,12 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1108
1107
|
return pulumi.get(self, "gpu")
|
|
1109
1108
|
|
|
1110
1109
|
@gpu.setter
|
|
1111
|
-
def gpu(self, value: Optional[pulumi.Input[
|
|
1110
|
+
def gpu(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1112
1111
|
pulumi.set(self, "gpu", value)
|
|
1113
1112
|
|
|
1114
|
-
@property
|
|
1113
|
+
@_builtins.property
|
|
1115
1114
|
@pulumi.getter(name="ignoreScalingChanges")
|
|
1116
|
-
def ignore_scaling_changes(self) -> Optional[
|
|
1115
|
+
def ignore_scaling_changes(self) -> Optional[_builtins.bool]:
|
|
1117
1116
|
"""
|
|
1118
1117
|
Whether to ignore changes to the desired size of the Auto Scaling Group. This is useful when using Cluster Autoscaler.
|
|
1119
1118
|
|
|
@@ -1122,10 +1121,10 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1122
1121
|
return pulumi.get(self, "ignore_scaling_changes")
|
|
1123
1122
|
|
|
1124
1123
|
@ignore_scaling_changes.setter
|
|
1125
|
-
def ignore_scaling_changes(self, value: Optional[
|
|
1124
|
+
def ignore_scaling_changes(self, value: Optional[_builtins.bool]):
|
|
1126
1125
|
pulumi.set(self, "ignore_scaling_changes", value)
|
|
1127
1126
|
|
|
1128
|
-
@property
|
|
1127
|
+
@_builtins.property
|
|
1129
1128
|
@pulumi.getter(name="instanceProfile")
|
|
1130
1129
|
def instance_profile(self) -> Optional['pulumi_aws.iam.InstanceProfile']:
|
|
1131
1130
|
"""
|
|
@@ -1137,67 +1136,67 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1137
1136
|
def instance_profile(self, value: Optional['pulumi_aws.iam.InstanceProfile']):
|
|
1138
1137
|
pulumi.set(self, "instance_profile", value)
|
|
1139
1138
|
|
|
1140
|
-
@property
|
|
1139
|
+
@_builtins.property
|
|
1141
1140
|
@pulumi.getter(name="instanceProfileName")
|
|
1142
|
-
def instance_profile_name(self) -> Optional[pulumi.Input[
|
|
1141
|
+
def instance_profile_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1143
1142
|
"""
|
|
1144
1143
|
The name of the IAM InstanceProfile to use on the NodeGroup. Properties instanceProfile and instanceProfileName are mutually exclusive.
|
|
1145
1144
|
"""
|
|
1146
1145
|
return pulumi.get(self, "instance_profile_name")
|
|
1147
1146
|
|
|
1148
1147
|
@instance_profile_name.setter
|
|
1149
|
-
def instance_profile_name(self, value: Optional[pulumi.Input[
|
|
1148
|
+
def instance_profile_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1150
1149
|
pulumi.set(self, "instance_profile_name", value)
|
|
1151
1150
|
|
|
1152
|
-
@property
|
|
1151
|
+
@_builtins.property
|
|
1153
1152
|
@pulumi.getter(name="instanceType")
|
|
1154
|
-
def instance_type(self) -> Optional[pulumi.Input[
|
|
1153
|
+
def instance_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1155
1154
|
"""
|
|
1156
1155
|
The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
1157
1156
|
"""
|
|
1158
1157
|
return pulumi.get(self, "instance_type")
|
|
1159
1158
|
|
|
1160
1159
|
@instance_type.setter
|
|
1161
|
-
def instance_type(self, value: Optional[pulumi.Input[
|
|
1160
|
+
def instance_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1162
1161
|
pulumi.set(self, "instance_type", value)
|
|
1163
1162
|
|
|
1164
|
-
@property
|
|
1163
|
+
@_builtins.property
|
|
1165
1164
|
@pulumi.getter(name="keyName")
|
|
1166
|
-
def key_name(self) -> Optional[pulumi.Input[
|
|
1165
|
+
def key_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1167
1166
|
"""
|
|
1168
1167
|
Name of the key pair to use for SSH access to worker nodes.
|
|
1169
1168
|
"""
|
|
1170
1169
|
return pulumi.get(self, "key_name")
|
|
1171
1170
|
|
|
1172
1171
|
@key_name.setter
|
|
1173
|
-
def key_name(self, value: Optional[pulumi.Input[
|
|
1172
|
+
def key_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1174
1173
|
pulumi.set(self, "key_name", value)
|
|
1175
1174
|
|
|
1176
|
-
@property
|
|
1175
|
+
@_builtins.property
|
|
1177
1176
|
@pulumi.getter(name="kubeletExtraArgs")
|
|
1178
|
-
def kubelet_extra_args(self) -> Optional[pulumi.Input[
|
|
1177
|
+
def kubelet_extra_args(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1179
1178
|
"""
|
|
1180
1179
|
Extra args to pass to the Kubelet. Corresponds to the options passed in the `--kubeletExtraArgs` flag to `/etc/eks/bootstrap.sh`. For example, '--port=10251 --address=0.0.0.0'. Note that the `labels` and `taints` properties will be applied to this list (using `--node-labels` and `--register-with-taints` respectively) after to the explicit `kubeletExtraArgs`.
|
|
1181
1180
|
"""
|
|
1182
1181
|
return pulumi.get(self, "kubelet_extra_args")
|
|
1183
1182
|
|
|
1184
1183
|
@kubelet_extra_args.setter
|
|
1185
|
-
def kubelet_extra_args(self, value: Optional[pulumi.Input[
|
|
1184
|
+
def kubelet_extra_args(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1186
1185
|
pulumi.set(self, "kubelet_extra_args", value)
|
|
1187
1186
|
|
|
1188
|
-
@property
|
|
1187
|
+
@_builtins.property
|
|
1189
1188
|
@pulumi.getter
|
|
1190
|
-
def labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1189
|
+
def labels(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
1191
1190
|
"""
|
|
1192
1191
|
Custom k8s node labels to be attached to each worker node. Adds the given key/value pairs to the `--node-labels` kubelet argument.
|
|
1193
1192
|
"""
|
|
1194
1193
|
return pulumi.get(self, "labels")
|
|
1195
1194
|
|
|
1196
1195
|
@labels.setter
|
|
1197
|
-
def labels(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1196
|
+
def labels(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
1198
1197
|
pulumi.set(self, "labels", value)
|
|
1199
1198
|
|
|
1200
|
-
@property
|
|
1199
|
+
@_builtins.property
|
|
1201
1200
|
@pulumi.getter(name="launchTemplateTagSpecifications")
|
|
1202
1201
|
def launch_template_tag_specifications(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.LaunchTemplateTagSpecificationArgs']]]]:
|
|
1203
1202
|
"""
|
|
@@ -1209,57 +1208,57 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1209
1208
|
def launch_template_tag_specifications(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.ec2.LaunchTemplateTagSpecificationArgs']]]]):
|
|
1210
1209
|
pulumi.set(self, "launch_template_tag_specifications", value)
|
|
1211
1210
|
|
|
1212
|
-
@property
|
|
1211
|
+
@_builtins.property
|
|
1213
1212
|
@pulumi.getter(name="maxSize")
|
|
1214
|
-
def max_size(self) -> Optional[pulumi.Input[
|
|
1213
|
+
def max_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1215
1214
|
"""
|
|
1216
1215
|
The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
1217
1216
|
"""
|
|
1218
1217
|
return pulumi.get(self, "max_size")
|
|
1219
1218
|
|
|
1220
1219
|
@max_size.setter
|
|
1221
|
-
def max_size(self, value: Optional[pulumi.Input[
|
|
1220
|
+
def max_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1222
1221
|
pulumi.set(self, "max_size", value)
|
|
1223
1222
|
|
|
1224
|
-
@property
|
|
1223
|
+
@_builtins.property
|
|
1225
1224
|
@pulumi.getter(name="minRefreshPercentage")
|
|
1226
|
-
def min_refresh_percentage(self) -> Optional[pulumi.Input[
|
|
1225
|
+
def min_refresh_percentage(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1227
1226
|
"""
|
|
1228
1227
|
The minimum amount of instances that should remain available during an instance refresh, expressed as a percentage. Defaults to 50.
|
|
1229
1228
|
"""
|
|
1230
1229
|
return pulumi.get(self, "min_refresh_percentage")
|
|
1231
1230
|
|
|
1232
1231
|
@min_refresh_percentage.setter
|
|
1233
|
-
def min_refresh_percentage(self, value: Optional[pulumi.Input[
|
|
1232
|
+
def min_refresh_percentage(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1234
1233
|
pulumi.set(self, "min_refresh_percentage", value)
|
|
1235
1234
|
|
|
1236
|
-
@property
|
|
1235
|
+
@_builtins.property
|
|
1237
1236
|
@pulumi.getter(name="minSize")
|
|
1238
|
-
def min_size(self) -> Optional[pulumi.Input[
|
|
1237
|
+
def min_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1239
1238
|
"""
|
|
1240
1239
|
The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
1241
1240
|
"""
|
|
1242
1241
|
return pulumi.get(self, "min_size")
|
|
1243
1242
|
|
|
1244
1243
|
@min_size.setter
|
|
1245
|
-
def min_size(self, value: Optional[pulumi.Input[
|
|
1244
|
+
def min_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1246
1245
|
pulumi.set(self, "min_size", value)
|
|
1247
1246
|
|
|
1248
|
-
@property
|
|
1247
|
+
@_builtins.property
|
|
1249
1248
|
@pulumi.getter(name="nodeAssociatePublicIpAddress")
|
|
1250
|
-
def node_associate_public_ip_address(self) -> Optional[pulumi.Input[
|
|
1249
|
+
def node_associate_public_ip_address(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1251
1250
|
"""
|
|
1252
1251
|
Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
1253
1252
|
"""
|
|
1254
1253
|
return pulumi.get(self, "node_associate_public_ip_address")
|
|
1255
1254
|
|
|
1256
1255
|
@node_associate_public_ip_address.setter
|
|
1257
|
-
def node_associate_public_ip_address(self, value: Optional[pulumi.Input[
|
|
1256
|
+
def node_associate_public_ip_address(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1258
1257
|
pulumi.set(self, "node_associate_public_ip_address", value)
|
|
1259
1258
|
|
|
1260
|
-
@property
|
|
1259
|
+
@_builtins.property
|
|
1261
1260
|
@pulumi.getter(name="nodePublicKey")
|
|
1262
|
-
def node_public_key(self) -> Optional[pulumi.Input[
|
|
1261
|
+
def node_public_key(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1263
1262
|
"""
|
|
1264
1263
|
Public key material for SSH access to worker nodes. See allowed formats at:
|
|
1265
1264
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
@@ -1268,82 +1267,82 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1268
1267
|
return pulumi.get(self, "node_public_key")
|
|
1269
1268
|
|
|
1270
1269
|
@node_public_key.setter
|
|
1271
|
-
def node_public_key(self, value: Optional[pulumi.Input[
|
|
1270
|
+
def node_public_key(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1272
1271
|
pulumi.set(self, "node_public_key", value)
|
|
1273
1272
|
|
|
1274
|
-
@property
|
|
1273
|
+
@_builtins.property
|
|
1275
1274
|
@pulumi.getter(name="nodeRootVolumeDeleteOnTermination")
|
|
1276
|
-
def node_root_volume_delete_on_termination(self) -> Optional[pulumi.Input[
|
|
1275
|
+
def node_root_volume_delete_on_termination(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1277
1276
|
"""
|
|
1278
1277
|
Whether the root block device should be deleted on termination of the instance. Defaults to true.
|
|
1279
1278
|
"""
|
|
1280
1279
|
return pulumi.get(self, "node_root_volume_delete_on_termination")
|
|
1281
1280
|
|
|
1282
1281
|
@node_root_volume_delete_on_termination.setter
|
|
1283
|
-
def node_root_volume_delete_on_termination(self, value: Optional[pulumi.Input[
|
|
1282
|
+
def node_root_volume_delete_on_termination(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1284
1283
|
pulumi.set(self, "node_root_volume_delete_on_termination", value)
|
|
1285
1284
|
|
|
1286
|
-
@property
|
|
1285
|
+
@_builtins.property
|
|
1287
1286
|
@pulumi.getter(name="nodeRootVolumeEncrypted")
|
|
1288
|
-
def node_root_volume_encrypted(self) -> Optional[pulumi.Input[
|
|
1287
|
+
def node_root_volume_encrypted(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
1289
1288
|
"""
|
|
1290
1289
|
Whether to encrypt a cluster node's root volume. Defaults to false.
|
|
1291
1290
|
"""
|
|
1292
1291
|
return pulumi.get(self, "node_root_volume_encrypted")
|
|
1293
1292
|
|
|
1294
1293
|
@node_root_volume_encrypted.setter
|
|
1295
|
-
def node_root_volume_encrypted(self, value: Optional[pulumi.Input[
|
|
1294
|
+
def node_root_volume_encrypted(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
1296
1295
|
pulumi.set(self, "node_root_volume_encrypted", value)
|
|
1297
1296
|
|
|
1298
|
-
@property
|
|
1297
|
+
@_builtins.property
|
|
1299
1298
|
@pulumi.getter(name="nodeRootVolumeIops")
|
|
1300
|
-
def node_root_volume_iops(self) -> Optional[pulumi.Input[
|
|
1299
|
+
def node_root_volume_iops(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1301
1300
|
"""
|
|
1302
1301
|
The amount of provisioned IOPS. This is only valid with a volumeType of 'io1'.
|
|
1303
1302
|
"""
|
|
1304
1303
|
return pulumi.get(self, "node_root_volume_iops")
|
|
1305
1304
|
|
|
1306
1305
|
@node_root_volume_iops.setter
|
|
1307
|
-
def node_root_volume_iops(self, value: Optional[pulumi.Input[
|
|
1306
|
+
def node_root_volume_iops(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1308
1307
|
pulumi.set(self, "node_root_volume_iops", value)
|
|
1309
1308
|
|
|
1310
|
-
@property
|
|
1309
|
+
@_builtins.property
|
|
1311
1310
|
@pulumi.getter(name="nodeRootVolumeSize")
|
|
1312
|
-
def node_root_volume_size(self) -> Optional[pulumi.Input[
|
|
1311
|
+
def node_root_volume_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1313
1312
|
"""
|
|
1314
1313
|
The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
1315
1314
|
"""
|
|
1316
1315
|
return pulumi.get(self, "node_root_volume_size")
|
|
1317
1316
|
|
|
1318
1317
|
@node_root_volume_size.setter
|
|
1319
|
-
def node_root_volume_size(self, value: Optional[pulumi.Input[
|
|
1318
|
+
def node_root_volume_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1320
1319
|
pulumi.set(self, "node_root_volume_size", value)
|
|
1321
1320
|
|
|
1322
|
-
@property
|
|
1321
|
+
@_builtins.property
|
|
1323
1322
|
@pulumi.getter(name="nodeRootVolumeThroughput")
|
|
1324
|
-
def node_root_volume_throughput(self) -> Optional[pulumi.Input[
|
|
1323
|
+
def node_root_volume_throughput(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
1325
1324
|
"""
|
|
1326
1325
|
Provisioned throughput performance in integer MiB/s for a cluster node's root volume. This is only valid with a volumeType of 'gp3'.
|
|
1327
1326
|
"""
|
|
1328
1327
|
return pulumi.get(self, "node_root_volume_throughput")
|
|
1329
1328
|
|
|
1330
1329
|
@node_root_volume_throughput.setter
|
|
1331
|
-
def node_root_volume_throughput(self, value: Optional[pulumi.Input[
|
|
1330
|
+
def node_root_volume_throughput(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
1332
1331
|
pulumi.set(self, "node_root_volume_throughput", value)
|
|
1333
1332
|
|
|
1334
|
-
@property
|
|
1333
|
+
@_builtins.property
|
|
1335
1334
|
@pulumi.getter(name="nodeRootVolumeType")
|
|
1336
|
-
def node_root_volume_type(self) -> Optional[pulumi.Input[
|
|
1335
|
+
def node_root_volume_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1337
1336
|
"""
|
|
1338
1337
|
Configured EBS type for a cluster node's root volume. Default is 'gp2'. Supported values are 'standard', 'gp2', 'gp3', 'st1', 'sc1', 'io1'.
|
|
1339
1338
|
"""
|
|
1340
1339
|
return pulumi.get(self, "node_root_volume_type")
|
|
1341
1340
|
|
|
1342
1341
|
@node_root_volume_type.setter
|
|
1343
|
-
def node_root_volume_type(self, value: Optional[pulumi.Input[
|
|
1342
|
+
def node_root_volume_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1344
1343
|
pulumi.set(self, "node_root_volume_type", value)
|
|
1345
1344
|
|
|
1346
|
-
@property
|
|
1345
|
+
@_builtins.property
|
|
1347
1346
|
@pulumi.getter(name="nodeSecurityGroup")
|
|
1348
1347
|
def node_security_group(self) -> Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]:
|
|
1349
1348
|
"""
|
|
@@ -1362,9 +1361,9 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1362
1361
|
def node_security_group(self, value: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]):
|
|
1363
1362
|
pulumi.set(self, "node_security_group", value)
|
|
1364
1363
|
|
|
1365
|
-
@property
|
|
1364
|
+
@_builtins.property
|
|
1366
1365
|
@pulumi.getter(name="nodeSecurityGroupId")
|
|
1367
|
-
def node_security_group_id(self) -> Optional[pulumi.Input[
|
|
1366
|
+
def node_security_group_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1368
1367
|
"""
|
|
1369
1368
|
The ID of the security group for the worker node group to communicate with the cluster.
|
|
1370
1369
|
|
|
@@ -1378,12 +1377,12 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1378
1377
|
return pulumi.get(self, "node_security_group_id")
|
|
1379
1378
|
|
|
1380
1379
|
@node_security_group_id.setter
|
|
1381
|
-
def node_security_group_id(self, value: Optional[pulumi.Input[
|
|
1380
|
+
def node_security_group_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1382
1381
|
pulumi.set(self, "node_security_group_id", value)
|
|
1383
1382
|
|
|
1384
|
-
@property
|
|
1383
|
+
@_builtins.property
|
|
1385
1384
|
@pulumi.getter(name="nodeSubnetIds")
|
|
1386
|
-
def node_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1385
|
+
def node_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1387
1386
|
"""
|
|
1388
1387
|
The set of subnets to override and use for the worker node group.
|
|
1389
1388
|
|
|
@@ -1392,24 +1391,24 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1392
1391
|
return pulumi.get(self, "node_subnet_ids")
|
|
1393
1392
|
|
|
1394
1393
|
@node_subnet_ids.setter
|
|
1395
|
-
def node_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1394
|
+
def node_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1396
1395
|
pulumi.set(self, "node_subnet_ids", value)
|
|
1397
1396
|
|
|
1398
|
-
@property
|
|
1397
|
+
@_builtins.property
|
|
1399
1398
|
@pulumi.getter(name="nodeUserData")
|
|
1400
|
-
def node_user_data(self) -> Optional[pulumi.Input[
|
|
1399
|
+
def node_user_data(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1401
1400
|
"""
|
|
1402
1401
|
Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
1403
1402
|
"""
|
|
1404
1403
|
return pulumi.get(self, "node_user_data")
|
|
1405
1404
|
|
|
1406
1405
|
@node_user_data.setter
|
|
1407
|
-
def node_user_data(self, value: Optional[pulumi.Input[
|
|
1406
|
+
def node_user_data(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1408
1407
|
pulumi.set(self, "node_user_data", value)
|
|
1409
1408
|
|
|
1410
|
-
@property
|
|
1409
|
+
@_builtins.property
|
|
1411
1410
|
@pulumi.getter(name="nodeUserDataOverride")
|
|
1412
|
-
def node_user_data_override(self) -> Optional[pulumi.Input[
|
|
1411
|
+
def node_user_data_override(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1413
1412
|
"""
|
|
1414
1413
|
User specified code to run on node startup. This code is expected to handle the full AWS EKS bootstrapping code and signal node readiness to the managing CloudFormation stack. This code must be a complete and executable user data script in bash (Linux) or powershell (Windows).
|
|
1415
1414
|
|
|
@@ -1418,10 +1417,10 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1418
1417
|
return pulumi.get(self, "node_user_data_override")
|
|
1419
1418
|
|
|
1420
1419
|
@node_user_data_override.setter
|
|
1421
|
-
def node_user_data_override(self, value: Optional[pulumi.Input[
|
|
1420
|
+
def node_user_data_override(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1422
1421
|
pulumi.set(self, "node_user_data_override", value)
|
|
1423
1422
|
|
|
1424
|
-
@property
|
|
1423
|
+
@_builtins.property
|
|
1425
1424
|
@pulumi.getter(name="nodeadmExtraOptions")
|
|
1426
1425
|
def nodeadm_extra_options(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['NodeadmOptionsArgs']]]]:
|
|
1427
1426
|
"""
|
|
@@ -1443,7 +1442,7 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1443
1442
|
def nodeadm_extra_options(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['NodeadmOptionsArgs']]]]):
|
|
1444
1443
|
pulumi.set(self, "nodeadm_extra_options", value)
|
|
1445
1444
|
|
|
1446
|
-
@property
|
|
1445
|
+
@_builtins.property
|
|
1447
1446
|
@pulumi.getter(name="operatingSystem")
|
|
1448
1447
|
def operating_system(self) -> Optional[pulumi.Input['OperatingSystem']]:
|
|
1449
1448
|
"""
|
|
@@ -1458,19 +1457,19 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1458
1457
|
def operating_system(self, value: Optional[pulumi.Input['OperatingSystem']]):
|
|
1459
1458
|
pulumi.set(self, "operating_system", value)
|
|
1460
1459
|
|
|
1461
|
-
@property
|
|
1460
|
+
@_builtins.property
|
|
1462
1461
|
@pulumi.getter(name="spotPrice")
|
|
1463
|
-
def spot_price(self) -> Optional[pulumi.Input[
|
|
1462
|
+
def spot_price(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1464
1463
|
"""
|
|
1465
1464
|
Bidding price for spot instance. If set, only spot instances will be added as worker node.
|
|
1466
1465
|
"""
|
|
1467
1466
|
return pulumi.get(self, "spot_price")
|
|
1468
1467
|
|
|
1469
1468
|
@spot_price.setter
|
|
1470
|
-
def spot_price(self, value: Optional[pulumi.Input[
|
|
1469
|
+
def spot_price(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1471
1470
|
pulumi.set(self, "spot_price", value)
|
|
1472
1471
|
|
|
1473
|
-
@property
|
|
1472
|
+
@_builtins.property
|
|
1474
1473
|
@pulumi.getter
|
|
1475
1474
|
def taints(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input['TaintArgs']]]]:
|
|
1476
1475
|
"""
|
|
@@ -1482,16 +1481,16 @@ class ClusterNodeGroupOptionsArgs:
|
|
|
1482
1481
|
def taints(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input['TaintArgs']]]]):
|
|
1483
1482
|
pulumi.set(self, "taints", value)
|
|
1484
1483
|
|
|
1485
|
-
@property
|
|
1484
|
+
@_builtins.property
|
|
1486
1485
|
@pulumi.getter
|
|
1487
|
-
def version(self) -> Optional[pulumi.Input[
|
|
1486
|
+
def version(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1488
1487
|
"""
|
|
1489
1488
|
Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
1490
1489
|
"""
|
|
1491
1490
|
return pulumi.get(self, "version")
|
|
1492
1491
|
|
|
1493
1492
|
@version.setter
|
|
1494
|
-
def version(self, value: Optional[pulumi.Input[
|
|
1493
|
+
def version(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1495
1494
|
pulumi.set(self, "version", value)
|
|
1496
1495
|
|
|
1497
1496
|
|
|
@@ -1505,7 +1504,7 @@ if not MYPY:
|
|
|
1505
1504
|
"""
|
|
1506
1505
|
The IAM Role attached to the EKS Cluster
|
|
1507
1506
|
"""
|
|
1508
|
-
endpoint: pulumi.Input[
|
|
1507
|
+
endpoint: pulumi.Input[_builtins.str]
|
|
1509
1508
|
"""
|
|
1510
1509
|
The EKS cluster's Kubernetes API server endpoint.
|
|
1511
1510
|
"""
|
|
@@ -1518,11 +1517,11 @@ if not MYPY:
|
|
|
1518
1517
|
The cluster's node group options.
|
|
1519
1518
|
"""
|
|
1520
1519
|
provider: pulumi.Input['pulumi_kubernetes.Provider']
|
|
1521
|
-
subnet_ids: pulumi.Input[Sequence[pulumi.Input[
|
|
1520
|
+
subnet_ids: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]
|
|
1522
1521
|
"""
|
|
1523
1522
|
List of subnet IDs for the EKS cluster.
|
|
1524
1523
|
"""
|
|
1525
|
-
vpc_id: pulumi.Input[
|
|
1524
|
+
vpc_id: pulumi.Input[_builtins.str]
|
|
1526
1525
|
"""
|
|
1527
1526
|
ID of the cluster's VPC.
|
|
1528
1527
|
"""
|
|
@@ -1542,16 +1541,16 @@ if not MYPY:
|
|
|
1542
1541
|
"""
|
|
1543
1542
|
The kubeconfig file for the cluster.
|
|
1544
1543
|
"""
|
|
1545
|
-
node_security_group_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1544
|
+
node_security_group_tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
1546
1545
|
"""
|
|
1547
1546
|
Tags attached to the security groups associated with the cluster's worker nodes.
|
|
1548
1547
|
"""
|
|
1549
1548
|
oidc_provider: NotRequired[pulumi.Input['pulumi_aws.iam.OpenIdConnectProvider']]
|
|
1550
|
-
private_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
1549
|
+
private_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
1551
1550
|
"""
|
|
1552
1551
|
List of subnet IDs for the private subnets.
|
|
1553
1552
|
"""
|
|
1554
|
-
public_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
1553
|
+
public_subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
1555
1554
|
"""
|
|
1556
1555
|
List of subnet IDs for the public subnets.
|
|
1557
1556
|
"""
|
|
@@ -1559,7 +1558,7 @@ if not MYPY:
|
|
|
1559
1558
|
"""
|
|
1560
1559
|
The storage class used for persistent storage by the cluster.
|
|
1561
1560
|
"""
|
|
1562
|
-
tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1561
|
+
tags: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
|
|
1563
1562
|
"""
|
|
1564
1563
|
A map of tags assigned to the EKS cluster.
|
|
1565
1564
|
"""
|
|
@@ -1575,12 +1574,12 @@ class CoreDataArgs:
|
|
|
1575
1574
|
def __init__(__self__, *,
|
|
1576
1575
|
cluster: pulumi.Input['pulumi_aws.eks.Cluster'],
|
|
1577
1576
|
cluster_iam_role: pulumi.Input['pulumi_aws.iam.Role'],
|
|
1578
|
-
endpoint: pulumi.Input[
|
|
1577
|
+
endpoint: pulumi.Input[_builtins.str],
|
|
1579
1578
|
instance_roles: pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]],
|
|
1580
1579
|
node_group_options: pulumi.Input['ClusterNodeGroupOptionsArgs'],
|
|
1581
1580
|
provider: pulumi.Input['pulumi_kubernetes.Provider'],
|
|
1582
|
-
subnet_ids: pulumi.Input[Sequence[pulumi.Input[
|
|
1583
|
-
vpc_id: pulumi.Input[
|
|
1581
|
+
subnet_ids: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]],
|
|
1582
|
+
vpc_id: pulumi.Input[_builtins.str],
|
|
1584
1583
|
access_entries: Optional[pulumi.Input[Sequence[pulumi.Input['AccessEntryArgs']]]] = None,
|
|
1585
1584
|
aws_provider: Optional[pulumi.Input['pulumi_aws.Provider']] = None,
|
|
1586
1585
|
cluster_security_group: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']] = None,
|
|
@@ -1588,29 +1587,29 @@ class CoreDataArgs:
|
|
|
1588
1587
|
encryption_config: Optional[pulumi.Input['pulumi_aws.eks.ClusterEncryptionConfigArgs']] = None,
|
|
1589
1588
|
fargate_profile: Optional[pulumi.Input['pulumi_aws.eks.FargateProfile']] = None,
|
|
1590
1589
|
kubeconfig: Optional[Any] = None,
|
|
1591
|
-
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1590
|
+
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1592
1591
|
oidc_provider: Optional[pulumi.Input['pulumi_aws.iam.OpenIdConnectProvider']] = None,
|
|
1593
|
-
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1594
|
-
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1592
|
+
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1593
|
+
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1595
1594
|
storage_classes: Optional[pulumi.Input[Mapping[str, pulumi.Input['pulumi_kubernetes.storage.v1.StorageClass']]]] = None,
|
|
1596
|
-
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1595
|
+
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1597
1596
|
vpc_cni: Optional[pulumi.Input['VpcCniAddon']] = None):
|
|
1598
1597
|
"""
|
|
1599
1598
|
Defines the core set of data associated with an EKS cluster, including the network in which it runs.
|
|
1600
1599
|
:param pulumi.Input['pulumi_aws.iam.Role'] cluster_iam_role: The IAM Role attached to the EKS Cluster
|
|
1601
|
-
:param pulumi.Input[
|
|
1600
|
+
:param pulumi.Input[_builtins.str] endpoint: The EKS cluster's Kubernetes API server endpoint.
|
|
1602
1601
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]] instance_roles: The IAM instance roles for the cluster's nodes.
|
|
1603
1602
|
:param pulumi.Input['ClusterNodeGroupOptionsArgs'] node_group_options: The cluster's node group options.
|
|
1604
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1605
|
-
:param pulumi.Input[
|
|
1603
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] subnet_ids: List of subnet IDs for the EKS cluster.
|
|
1604
|
+
:param pulumi.Input[_builtins.str] vpc_id: ID of the cluster's VPC.
|
|
1606
1605
|
:param pulumi.Input[Sequence[pulumi.Input['AccessEntryArgs']]] access_entries: The access entries added to the cluster.
|
|
1607
1606
|
:param pulumi.Input['pulumi_aws.eks.FargateProfile'] fargate_profile: The Fargate profile used to manage which pods run on Fargate.
|
|
1608
1607
|
:param Any kubeconfig: The kubeconfig file for the cluster.
|
|
1609
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1610
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1611
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1608
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] node_security_group_tags: Tags attached to the security groups associated with the cluster's worker nodes.
|
|
1609
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] private_subnet_ids: List of subnet IDs for the private subnets.
|
|
1610
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] public_subnet_ids: List of subnet IDs for the public subnets.
|
|
1612
1611
|
:param pulumi.Input[Mapping[str, pulumi.Input['pulumi_kubernetes.storage.v1.StorageClass']]] storage_classes: The storage class used for persistent storage by the cluster.
|
|
1613
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1612
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] tags: A map of tags assigned to the EKS cluster.
|
|
1614
1613
|
:param pulumi.Input['VpcCniAddon'] vpc_cni: The VPC CNI for the cluster.
|
|
1615
1614
|
"""
|
|
1616
1615
|
pulumi.set(__self__, "cluster", cluster)
|
|
@@ -1650,7 +1649,7 @@ class CoreDataArgs:
|
|
|
1650
1649
|
if vpc_cni is not None:
|
|
1651
1650
|
pulumi.set(__self__, "vpc_cni", vpc_cni)
|
|
1652
1651
|
|
|
1653
|
-
@property
|
|
1652
|
+
@_builtins.property
|
|
1654
1653
|
@pulumi.getter
|
|
1655
1654
|
def cluster(self) -> pulumi.Input['pulumi_aws.eks.Cluster']:
|
|
1656
1655
|
return pulumi.get(self, "cluster")
|
|
@@ -1659,7 +1658,7 @@ class CoreDataArgs:
|
|
|
1659
1658
|
def cluster(self, value: pulumi.Input['pulumi_aws.eks.Cluster']):
|
|
1660
1659
|
pulumi.set(self, "cluster", value)
|
|
1661
1660
|
|
|
1662
|
-
@property
|
|
1661
|
+
@_builtins.property
|
|
1663
1662
|
@pulumi.getter(name="clusterIamRole")
|
|
1664
1663
|
def cluster_iam_role(self) -> pulumi.Input['pulumi_aws.iam.Role']:
|
|
1665
1664
|
"""
|
|
@@ -1671,19 +1670,19 @@ class CoreDataArgs:
|
|
|
1671
1670
|
def cluster_iam_role(self, value: pulumi.Input['pulumi_aws.iam.Role']):
|
|
1672
1671
|
pulumi.set(self, "cluster_iam_role", value)
|
|
1673
1672
|
|
|
1674
|
-
@property
|
|
1673
|
+
@_builtins.property
|
|
1675
1674
|
@pulumi.getter
|
|
1676
|
-
def endpoint(self) -> pulumi.Input[
|
|
1675
|
+
def endpoint(self) -> pulumi.Input[_builtins.str]:
|
|
1677
1676
|
"""
|
|
1678
1677
|
The EKS cluster's Kubernetes API server endpoint.
|
|
1679
1678
|
"""
|
|
1680
1679
|
return pulumi.get(self, "endpoint")
|
|
1681
1680
|
|
|
1682
1681
|
@endpoint.setter
|
|
1683
|
-
def endpoint(self, value: pulumi.Input[
|
|
1682
|
+
def endpoint(self, value: pulumi.Input[_builtins.str]):
|
|
1684
1683
|
pulumi.set(self, "endpoint", value)
|
|
1685
1684
|
|
|
1686
|
-
@property
|
|
1685
|
+
@_builtins.property
|
|
1687
1686
|
@pulumi.getter(name="instanceRoles")
|
|
1688
1687
|
def instance_roles(self) -> pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]:
|
|
1689
1688
|
"""
|
|
@@ -1695,7 +1694,7 @@ class CoreDataArgs:
|
|
|
1695
1694
|
def instance_roles(self, value: pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]):
|
|
1696
1695
|
pulumi.set(self, "instance_roles", value)
|
|
1697
1696
|
|
|
1698
|
-
@property
|
|
1697
|
+
@_builtins.property
|
|
1699
1698
|
@pulumi.getter(name="nodeGroupOptions")
|
|
1700
1699
|
def node_group_options(self) -> pulumi.Input['ClusterNodeGroupOptionsArgs']:
|
|
1701
1700
|
"""
|
|
@@ -1707,7 +1706,7 @@ class CoreDataArgs:
|
|
|
1707
1706
|
def node_group_options(self, value: pulumi.Input['ClusterNodeGroupOptionsArgs']):
|
|
1708
1707
|
pulumi.set(self, "node_group_options", value)
|
|
1709
1708
|
|
|
1710
|
-
@property
|
|
1709
|
+
@_builtins.property
|
|
1711
1710
|
@pulumi.getter
|
|
1712
1711
|
def provider(self) -> pulumi.Input['pulumi_kubernetes.Provider']:
|
|
1713
1712
|
return pulumi.get(self, "provider")
|
|
@@ -1716,31 +1715,31 @@ class CoreDataArgs:
|
|
|
1716
1715
|
def provider(self, value: pulumi.Input['pulumi_kubernetes.Provider']):
|
|
1717
1716
|
pulumi.set(self, "provider", value)
|
|
1718
1717
|
|
|
1719
|
-
@property
|
|
1718
|
+
@_builtins.property
|
|
1720
1719
|
@pulumi.getter(name="subnetIds")
|
|
1721
|
-
def subnet_ids(self) -> pulumi.Input[Sequence[pulumi.Input[
|
|
1720
|
+
def subnet_ids(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
|
|
1722
1721
|
"""
|
|
1723
1722
|
List of subnet IDs for the EKS cluster.
|
|
1724
1723
|
"""
|
|
1725
1724
|
return pulumi.get(self, "subnet_ids")
|
|
1726
1725
|
|
|
1727
1726
|
@subnet_ids.setter
|
|
1728
|
-
def subnet_ids(self, value: pulumi.Input[Sequence[pulumi.Input[
|
|
1727
|
+
def subnet_ids(self, value: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]):
|
|
1729
1728
|
pulumi.set(self, "subnet_ids", value)
|
|
1730
1729
|
|
|
1731
|
-
@property
|
|
1730
|
+
@_builtins.property
|
|
1732
1731
|
@pulumi.getter(name="vpcId")
|
|
1733
|
-
def vpc_id(self) -> pulumi.Input[
|
|
1732
|
+
def vpc_id(self) -> pulumi.Input[_builtins.str]:
|
|
1734
1733
|
"""
|
|
1735
1734
|
ID of the cluster's VPC.
|
|
1736
1735
|
"""
|
|
1737
1736
|
return pulumi.get(self, "vpc_id")
|
|
1738
1737
|
|
|
1739
1738
|
@vpc_id.setter
|
|
1740
|
-
def vpc_id(self, value: pulumi.Input[
|
|
1739
|
+
def vpc_id(self, value: pulumi.Input[_builtins.str]):
|
|
1741
1740
|
pulumi.set(self, "vpc_id", value)
|
|
1742
1741
|
|
|
1743
|
-
@property
|
|
1742
|
+
@_builtins.property
|
|
1744
1743
|
@pulumi.getter(name="accessEntries")
|
|
1745
1744
|
def access_entries(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AccessEntryArgs']]]]:
|
|
1746
1745
|
"""
|
|
@@ -1752,7 +1751,7 @@ class CoreDataArgs:
|
|
|
1752
1751
|
def access_entries(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AccessEntryArgs']]]]):
|
|
1753
1752
|
pulumi.set(self, "access_entries", value)
|
|
1754
1753
|
|
|
1755
|
-
@property
|
|
1754
|
+
@_builtins.property
|
|
1756
1755
|
@pulumi.getter(name="awsProvider")
|
|
1757
1756
|
def aws_provider(self) -> Optional[pulumi.Input['pulumi_aws.Provider']]:
|
|
1758
1757
|
return pulumi.get(self, "aws_provider")
|
|
@@ -1761,7 +1760,7 @@ class CoreDataArgs:
|
|
|
1761
1760
|
def aws_provider(self, value: Optional[pulumi.Input['pulumi_aws.Provider']]):
|
|
1762
1761
|
pulumi.set(self, "aws_provider", value)
|
|
1763
1762
|
|
|
1764
|
-
@property
|
|
1763
|
+
@_builtins.property
|
|
1765
1764
|
@pulumi.getter(name="clusterSecurityGroup")
|
|
1766
1765
|
def cluster_security_group(self) -> Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]:
|
|
1767
1766
|
return pulumi.get(self, "cluster_security_group")
|
|
@@ -1770,7 +1769,7 @@ class CoreDataArgs:
|
|
|
1770
1769
|
def cluster_security_group(self, value: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]):
|
|
1771
1770
|
pulumi.set(self, "cluster_security_group", value)
|
|
1772
1771
|
|
|
1773
|
-
@property
|
|
1772
|
+
@_builtins.property
|
|
1774
1773
|
@pulumi.getter(name="eksNodeAccess")
|
|
1775
1774
|
def eks_node_access(self) -> Optional[pulumi.Input['pulumi_kubernetes.core.v1.ConfigMap']]:
|
|
1776
1775
|
return pulumi.get(self, "eks_node_access")
|
|
@@ -1779,7 +1778,7 @@ class CoreDataArgs:
|
|
|
1779
1778
|
def eks_node_access(self, value: Optional[pulumi.Input['pulumi_kubernetes.core.v1.ConfigMap']]):
|
|
1780
1779
|
pulumi.set(self, "eks_node_access", value)
|
|
1781
1780
|
|
|
1782
|
-
@property
|
|
1781
|
+
@_builtins.property
|
|
1783
1782
|
@pulumi.getter(name="encryptionConfig")
|
|
1784
1783
|
def encryption_config(self) -> Optional[pulumi.Input['pulumi_aws.eks.ClusterEncryptionConfigArgs']]:
|
|
1785
1784
|
return pulumi.get(self, "encryption_config")
|
|
@@ -1788,7 +1787,7 @@ class CoreDataArgs:
|
|
|
1788
1787
|
def encryption_config(self, value: Optional[pulumi.Input['pulumi_aws.eks.ClusterEncryptionConfigArgs']]):
|
|
1789
1788
|
pulumi.set(self, "encryption_config", value)
|
|
1790
1789
|
|
|
1791
|
-
@property
|
|
1790
|
+
@_builtins.property
|
|
1792
1791
|
@pulumi.getter(name="fargateProfile")
|
|
1793
1792
|
def fargate_profile(self) -> Optional[pulumi.Input['pulumi_aws.eks.FargateProfile']]:
|
|
1794
1793
|
"""
|
|
@@ -1800,7 +1799,7 @@ class CoreDataArgs:
|
|
|
1800
1799
|
def fargate_profile(self, value: Optional[pulumi.Input['pulumi_aws.eks.FargateProfile']]):
|
|
1801
1800
|
pulumi.set(self, "fargate_profile", value)
|
|
1802
1801
|
|
|
1803
|
-
@property
|
|
1802
|
+
@_builtins.property
|
|
1804
1803
|
@pulumi.getter
|
|
1805
1804
|
def kubeconfig(self) -> Optional[Any]:
|
|
1806
1805
|
"""
|
|
@@ -1812,19 +1811,19 @@ class CoreDataArgs:
|
|
|
1812
1811
|
def kubeconfig(self, value: Optional[Any]):
|
|
1813
1812
|
pulumi.set(self, "kubeconfig", value)
|
|
1814
1813
|
|
|
1815
|
-
@property
|
|
1814
|
+
@_builtins.property
|
|
1816
1815
|
@pulumi.getter(name="nodeSecurityGroupTags")
|
|
1817
|
-
def node_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1816
|
+
def node_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
1818
1817
|
"""
|
|
1819
1818
|
Tags attached to the security groups associated with the cluster's worker nodes.
|
|
1820
1819
|
"""
|
|
1821
1820
|
return pulumi.get(self, "node_security_group_tags")
|
|
1822
1821
|
|
|
1823
1822
|
@node_security_group_tags.setter
|
|
1824
|
-
def node_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1823
|
+
def node_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
1825
1824
|
pulumi.set(self, "node_security_group_tags", value)
|
|
1826
1825
|
|
|
1827
|
-
@property
|
|
1826
|
+
@_builtins.property
|
|
1828
1827
|
@pulumi.getter(name="oidcProvider")
|
|
1829
1828
|
def oidc_provider(self) -> Optional[pulumi.Input['pulumi_aws.iam.OpenIdConnectProvider']]:
|
|
1830
1829
|
return pulumi.get(self, "oidc_provider")
|
|
@@ -1833,31 +1832,31 @@ class CoreDataArgs:
|
|
|
1833
1832
|
def oidc_provider(self, value: Optional[pulumi.Input['pulumi_aws.iam.OpenIdConnectProvider']]):
|
|
1834
1833
|
pulumi.set(self, "oidc_provider", value)
|
|
1835
1834
|
|
|
1836
|
-
@property
|
|
1835
|
+
@_builtins.property
|
|
1837
1836
|
@pulumi.getter(name="privateSubnetIds")
|
|
1838
|
-
def private_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1837
|
+
def private_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1839
1838
|
"""
|
|
1840
1839
|
List of subnet IDs for the private subnets.
|
|
1841
1840
|
"""
|
|
1842
1841
|
return pulumi.get(self, "private_subnet_ids")
|
|
1843
1842
|
|
|
1844
1843
|
@private_subnet_ids.setter
|
|
1845
|
-
def private_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1844
|
+
def private_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1846
1845
|
pulumi.set(self, "private_subnet_ids", value)
|
|
1847
1846
|
|
|
1848
|
-
@property
|
|
1847
|
+
@_builtins.property
|
|
1849
1848
|
@pulumi.getter(name="publicSubnetIds")
|
|
1850
|
-
def public_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1849
|
+
def public_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1851
1850
|
"""
|
|
1852
1851
|
List of subnet IDs for the public subnets.
|
|
1853
1852
|
"""
|
|
1854
1853
|
return pulumi.get(self, "public_subnet_ids")
|
|
1855
1854
|
|
|
1856
1855
|
@public_subnet_ids.setter
|
|
1857
|
-
def public_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1856
|
+
def public_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1858
1857
|
pulumi.set(self, "public_subnet_ids", value)
|
|
1859
1858
|
|
|
1860
|
-
@property
|
|
1859
|
+
@_builtins.property
|
|
1861
1860
|
@pulumi.getter(name="storageClasses")
|
|
1862
1861
|
def storage_classes(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input['pulumi_kubernetes.storage.v1.StorageClass']]]]:
|
|
1863
1862
|
"""
|
|
@@ -1869,19 +1868,19 @@ class CoreDataArgs:
|
|
|
1869
1868
|
def storage_classes(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input['pulumi_kubernetes.storage.v1.StorageClass']]]]):
|
|
1870
1869
|
pulumi.set(self, "storage_classes", value)
|
|
1871
1870
|
|
|
1872
|
-
@property
|
|
1871
|
+
@_builtins.property
|
|
1873
1872
|
@pulumi.getter
|
|
1874
|
-
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1873
|
+
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
1875
1874
|
"""
|
|
1876
1875
|
A map of tags assigned to the EKS cluster.
|
|
1877
1876
|
"""
|
|
1878
1877
|
return pulumi.get(self, "tags")
|
|
1879
1878
|
|
|
1880
1879
|
@tags.setter
|
|
1881
|
-
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1880
|
+
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
1882
1881
|
pulumi.set(self, "tags", value)
|
|
1883
1882
|
|
|
1884
|
-
@property
|
|
1883
|
+
@_builtins.property
|
|
1885
1884
|
@pulumi.getter(name="vpcCni")
|
|
1886
1885
|
def vpc_cni(self) -> Optional[pulumi.Input['VpcCniAddon']]:
|
|
1887
1886
|
"""
|
|
@@ -1900,7 +1899,7 @@ if not MYPY:
|
|
|
1900
1899
|
"""
|
|
1901
1900
|
Custom configuration values for the coredns addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
1902
1901
|
"""
|
|
1903
|
-
enabled: NotRequired[
|
|
1902
|
+
enabled: NotRequired[_builtins.bool]
|
|
1904
1903
|
"""
|
|
1905
1904
|
Whether or not to create the `coredns` Addon in the cluster
|
|
1906
1905
|
|
|
@@ -1915,7 +1914,7 @@ if not MYPY:
|
|
|
1915
1914
|
"""
|
|
1916
1915
|
How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
1917
1916
|
"""
|
|
1918
|
-
version: NotRequired[pulumi.Input[
|
|
1917
|
+
version: NotRequired[pulumi.Input[_builtins.str]]
|
|
1919
1918
|
"""
|
|
1920
1919
|
The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
1921
1920
|
"""
|
|
@@ -1926,19 +1925,19 @@ elif False:
|
|
|
1926
1925
|
class CoreDnsAddonOptionsArgs:
|
|
1927
1926
|
def __init__(__self__, *,
|
|
1928
1927
|
configuration_values: Optional[pulumi.Input[Mapping[str, Any]]] = None,
|
|
1929
|
-
enabled: Optional[
|
|
1928
|
+
enabled: Optional[_builtins.bool] = None,
|
|
1930
1929
|
resolve_conflicts_on_create: Optional['ResolveConflictsOnCreate'] = None,
|
|
1931
1930
|
resolve_conflicts_on_update: Optional['ResolveConflictsOnUpdate'] = None,
|
|
1932
|
-
version: Optional[pulumi.Input[
|
|
1931
|
+
version: Optional[pulumi.Input[_builtins.str]] = None):
|
|
1933
1932
|
"""
|
|
1934
1933
|
:param pulumi.Input[Mapping[str, Any]] configuration_values: Custom configuration values for the coredns addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
1935
|
-
:param
|
|
1934
|
+
:param _builtins.bool enabled: Whether or not to create the `coredns` Addon in the cluster
|
|
1936
1935
|
|
|
1937
1936
|
The managed addon can only be enabled if the cluster is a Fargate cluster or if the cluster
|
|
1938
1937
|
uses the default node group, otherwise the self-managed addon is used.
|
|
1939
1938
|
:param 'ResolveConflictsOnCreate' resolve_conflicts_on_create: How to resolve field value conflicts when migrating a self-managed add-on to an Amazon EKS add-on. Valid values are `NONE` and `OVERWRITE`. For more details see the [CreateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_CreateAddon.html) API Docs.
|
|
1940
1939
|
:param 'ResolveConflictsOnUpdate' resolve_conflicts_on_update: How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
1941
|
-
:param pulumi.Input[
|
|
1940
|
+
:param pulumi.Input[_builtins.str] version: The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
1942
1941
|
"""
|
|
1943
1942
|
if configuration_values is not None:
|
|
1944
1943
|
pulumi.set(__self__, "configuration_values", configuration_values)
|
|
@@ -1957,7 +1956,7 @@ class CoreDnsAddonOptionsArgs:
|
|
|
1957
1956
|
if version is not None:
|
|
1958
1957
|
pulumi.set(__self__, "version", version)
|
|
1959
1958
|
|
|
1960
|
-
@property
|
|
1959
|
+
@_builtins.property
|
|
1961
1960
|
@pulumi.getter(name="configurationValues")
|
|
1962
1961
|
def configuration_values(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
|
|
1963
1962
|
"""
|
|
@@ -1969,9 +1968,9 @@ class CoreDnsAddonOptionsArgs:
|
|
|
1969
1968
|
def configuration_values(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
|
|
1970
1969
|
pulumi.set(self, "configuration_values", value)
|
|
1971
1970
|
|
|
1972
|
-
@property
|
|
1971
|
+
@_builtins.property
|
|
1973
1972
|
@pulumi.getter
|
|
1974
|
-
def enabled(self) -> Optional[
|
|
1973
|
+
def enabled(self) -> Optional[_builtins.bool]:
|
|
1975
1974
|
"""
|
|
1976
1975
|
Whether or not to create the `coredns` Addon in the cluster
|
|
1977
1976
|
|
|
@@ -1981,10 +1980,10 @@ class CoreDnsAddonOptionsArgs:
|
|
|
1981
1980
|
return pulumi.get(self, "enabled")
|
|
1982
1981
|
|
|
1983
1982
|
@enabled.setter
|
|
1984
|
-
def enabled(self, value: Optional[
|
|
1983
|
+
def enabled(self, value: Optional[_builtins.bool]):
|
|
1985
1984
|
pulumi.set(self, "enabled", value)
|
|
1986
1985
|
|
|
1987
|
-
@property
|
|
1986
|
+
@_builtins.property
|
|
1988
1987
|
@pulumi.getter(name="resolveConflictsOnCreate")
|
|
1989
1988
|
def resolve_conflicts_on_create(self) -> Optional['ResolveConflictsOnCreate']:
|
|
1990
1989
|
"""
|
|
@@ -1996,7 +1995,7 @@ class CoreDnsAddonOptionsArgs:
|
|
|
1996
1995
|
def resolve_conflicts_on_create(self, value: Optional['ResolveConflictsOnCreate']):
|
|
1997
1996
|
pulumi.set(self, "resolve_conflicts_on_create", value)
|
|
1998
1997
|
|
|
1999
|
-
@property
|
|
1998
|
+
@_builtins.property
|
|
2000
1999
|
@pulumi.getter(name="resolveConflictsOnUpdate")
|
|
2001
2000
|
def resolve_conflicts_on_update(self) -> Optional['ResolveConflictsOnUpdate']:
|
|
2002
2001
|
"""
|
|
@@ -2008,16 +2007,16 @@ class CoreDnsAddonOptionsArgs:
|
|
|
2008
2007
|
def resolve_conflicts_on_update(self, value: Optional['ResolveConflictsOnUpdate']):
|
|
2009
2008
|
pulumi.set(self, "resolve_conflicts_on_update", value)
|
|
2010
2009
|
|
|
2011
|
-
@property
|
|
2010
|
+
@_builtins.property
|
|
2012
2011
|
@pulumi.getter
|
|
2013
|
-
def version(self) -> Optional[pulumi.Input[
|
|
2012
|
+
def version(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2014
2013
|
"""
|
|
2015
2014
|
The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
2016
2015
|
"""
|
|
2017
2016
|
return pulumi.get(self, "version")
|
|
2018
2017
|
|
|
2019
2018
|
@version.setter
|
|
2020
|
-
def version(self, value: Optional[pulumi.Input[
|
|
2019
|
+
def version(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2021
2020
|
pulumi.set(self, "version", value)
|
|
2022
2021
|
|
|
2023
2022
|
|
|
@@ -2046,7 +2045,7 @@ class CreationRoleProviderArgs:
|
|
|
2046
2045
|
pulumi.set(__self__, "provider", provider)
|
|
2047
2046
|
pulumi.set(__self__, "role", role)
|
|
2048
2047
|
|
|
2049
|
-
@property
|
|
2048
|
+
@_builtins.property
|
|
2050
2049
|
@pulumi.getter
|
|
2051
2050
|
def provider(self) -> 'pulumi_aws.Provider':
|
|
2052
2051
|
return pulumi.get(self, "provider")
|
|
@@ -2055,7 +2054,7 @@ class CreationRoleProviderArgs:
|
|
|
2055
2054
|
def provider(self, value: 'pulumi_aws.Provider'):
|
|
2056
2055
|
pulumi.set(self, "provider", value)
|
|
2057
2056
|
|
|
2058
|
-
@property
|
|
2057
|
+
@_builtins.property
|
|
2059
2058
|
@pulumi.getter
|
|
2060
2059
|
def role(self) -> 'pulumi_aws.iam.Role':
|
|
2061
2060
|
return pulumi.get(self, "role")
|
|
@@ -2070,7 +2069,7 @@ if not MYPY:
|
|
|
2070
2069
|
"""
|
|
2071
2070
|
Defines how Kubernetes pods are executed in Fargate. See aws.eks.FargateProfileArgs for reference.
|
|
2072
2071
|
"""
|
|
2073
|
-
pod_execution_role_arn: NotRequired[pulumi.Input[
|
|
2072
|
+
pod_execution_role_arn: NotRequired[pulumi.Input[_builtins.str]]
|
|
2074
2073
|
"""
|
|
2075
2074
|
Specify a custom role to use for executing pods in Fargate. Defaults to creating a new role with the `arn:aws:iam::aws:policy/AmazonEKSFargatePodExecutionRolePolicy` policy attached.
|
|
2076
2075
|
"""
|
|
@@ -2078,7 +2077,7 @@ if not MYPY:
|
|
|
2078
2077
|
"""
|
|
2079
2078
|
Specify the namespace and label selectors to use for launching pods into Fargate.
|
|
2080
2079
|
"""
|
|
2081
|
-
subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
2080
|
+
subnet_ids: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
2082
2081
|
"""
|
|
2083
2082
|
Specify the subnets in which to execute Fargate tasks for pods. Defaults to the private subnets associated with the cluster.
|
|
2084
2083
|
"""
|
|
@@ -2088,14 +2087,14 @@ elif False:
|
|
|
2088
2087
|
@pulumi.input_type
|
|
2089
2088
|
class FargateProfileArgs:
|
|
2090
2089
|
def __init__(__self__, *,
|
|
2091
|
-
pod_execution_role_arn: Optional[pulumi.Input[
|
|
2090
|
+
pod_execution_role_arn: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2092
2091
|
selectors: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.eks.FargateProfileSelectorArgs']]]] = None,
|
|
2093
|
-
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2092
|
+
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None):
|
|
2094
2093
|
"""
|
|
2095
2094
|
Defines how Kubernetes pods are executed in Fargate. See aws.eks.FargateProfileArgs for reference.
|
|
2096
|
-
:param pulumi.Input[
|
|
2095
|
+
:param pulumi.Input[_builtins.str] pod_execution_role_arn: Specify a custom role to use for executing pods in Fargate. Defaults to creating a new role with the `arn:aws:iam::aws:policy/AmazonEKSFargatePodExecutionRolePolicy` policy attached.
|
|
2097
2096
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.eks.FargateProfileSelectorArgs']]] selectors: Specify the namespace and label selectors to use for launching pods into Fargate.
|
|
2098
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
2097
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] subnet_ids: Specify the subnets in which to execute Fargate tasks for pods. Defaults to the private subnets associated with the cluster.
|
|
2099
2098
|
"""
|
|
2100
2099
|
if pod_execution_role_arn is not None:
|
|
2101
2100
|
pulumi.set(__self__, "pod_execution_role_arn", pod_execution_role_arn)
|
|
@@ -2104,19 +2103,19 @@ class FargateProfileArgs:
|
|
|
2104
2103
|
if subnet_ids is not None:
|
|
2105
2104
|
pulumi.set(__self__, "subnet_ids", subnet_ids)
|
|
2106
2105
|
|
|
2107
|
-
@property
|
|
2106
|
+
@_builtins.property
|
|
2108
2107
|
@pulumi.getter(name="podExecutionRoleArn")
|
|
2109
|
-
def pod_execution_role_arn(self) -> Optional[pulumi.Input[
|
|
2108
|
+
def pod_execution_role_arn(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2110
2109
|
"""
|
|
2111
2110
|
Specify a custom role to use for executing pods in Fargate. Defaults to creating a new role with the `arn:aws:iam::aws:policy/AmazonEKSFargatePodExecutionRolePolicy` policy attached.
|
|
2112
2111
|
"""
|
|
2113
2112
|
return pulumi.get(self, "pod_execution_role_arn")
|
|
2114
2113
|
|
|
2115
2114
|
@pod_execution_role_arn.setter
|
|
2116
|
-
def pod_execution_role_arn(self, value: Optional[pulumi.Input[
|
|
2115
|
+
def pod_execution_role_arn(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2117
2116
|
pulumi.set(self, "pod_execution_role_arn", value)
|
|
2118
2117
|
|
|
2119
|
-
@property
|
|
2118
|
+
@_builtins.property
|
|
2120
2119
|
@pulumi.getter
|
|
2121
2120
|
def selectors(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.eks.FargateProfileSelectorArgs']]]]:
|
|
2122
2121
|
"""
|
|
@@ -2128,16 +2127,16 @@ class FargateProfileArgs:
|
|
|
2128
2127
|
def selectors(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.eks.FargateProfileSelectorArgs']]]]):
|
|
2129
2128
|
pulumi.set(self, "selectors", value)
|
|
2130
2129
|
|
|
2131
|
-
@property
|
|
2130
|
+
@_builtins.property
|
|
2132
2131
|
@pulumi.getter(name="subnetIds")
|
|
2133
|
-
def subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2132
|
+
def subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
2134
2133
|
"""
|
|
2135
2134
|
Specify the subnets in which to execute Fargate tasks for pods. Defaults to the private subnets associated with the cluster.
|
|
2136
2135
|
"""
|
|
2137
2136
|
return pulumi.get(self, "subnet_ids")
|
|
2138
2137
|
|
|
2139
2138
|
@subnet_ids.setter
|
|
2140
|
-
def subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2139
|
+
def subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
2141
2140
|
pulumi.set(self, "subnet_ids", value)
|
|
2142
2141
|
|
|
2143
2142
|
|
|
@@ -2147,7 +2146,7 @@ if not MYPY:
|
|
|
2147
2146
|
"""
|
|
2148
2147
|
Custom configuration values for the kube-proxy addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
2149
2148
|
"""
|
|
2150
|
-
enabled: NotRequired[
|
|
2149
|
+
enabled: NotRequired[_builtins.bool]
|
|
2151
2150
|
"""
|
|
2152
2151
|
Whether or not to create the `kube-proxy` Addon in the cluster. Defaults to true, unless `autoMode` is enabled.
|
|
2153
2152
|
"""
|
|
@@ -2159,7 +2158,7 @@ if not MYPY:
|
|
|
2159
2158
|
"""
|
|
2160
2159
|
How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
2161
2160
|
"""
|
|
2162
|
-
version: NotRequired[pulumi.Input[
|
|
2161
|
+
version: NotRequired[pulumi.Input[_builtins.str]]
|
|
2163
2162
|
"""
|
|
2164
2163
|
The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
2165
2164
|
"""
|
|
@@ -2170,16 +2169,16 @@ elif False:
|
|
|
2170
2169
|
class KubeProxyAddonOptionsArgs:
|
|
2171
2170
|
def __init__(__self__, *,
|
|
2172
2171
|
configuration_values: Optional[pulumi.Input[Mapping[str, Any]]] = None,
|
|
2173
|
-
enabled: Optional[
|
|
2172
|
+
enabled: Optional[_builtins.bool] = None,
|
|
2174
2173
|
resolve_conflicts_on_create: Optional['ResolveConflictsOnCreate'] = None,
|
|
2175
2174
|
resolve_conflicts_on_update: Optional['ResolveConflictsOnUpdate'] = None,
|
|
2176
|
-
version: Optional[pulumi.Input[
|
|
2175
|
+
version: Optional[pulumi.Input[_builtins.str]] = None):
|
|
2177
2176
|
"""
|
|
2178
2177
|
:param pulumi.Input[Mapping[str, Any]] configuration_values: Custom configuration values for the kube-proxy addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
2179
|
-
:param
|
|
2178
|
+
:param _builtins.bool enabled: Whether or not to create the `kube-proxy` Addon in the cluster. Defaults to true, unless `autoMode` is enabled.
|
|
2180
2179
|
:param 'ResolveConflictsOnCreate' resolve_conflicts_on_create: How to resolve field value conflicts when migrating a self-managed add-on to an Amazon EKS add-on. Valid values are `NONE` and `OVERWRITE`. For more details see the [CreateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_CreateAddon.html) API Docs.
|
|
2181
2180
|
:param 'ResolveConflictsOnUpdate' resolve_conflicts_on_update: How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
2182
|
-
:param pulumi.Input[
|
|
2181
|
+
:param pulumi.Input[_builtins.str] version: The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
2183
2182
|
"""
|
|
2184
2183
|
if configuration_values is not None:
|
|
2185
2184
|
pulumi.set(__self__, "configuration_values", configuration_values)
|
|
@@ -2196,7 +2195,7 @@ class KubeProxyAddonOptionsArgs:
|
|
|
2196
2195
|
if version is not None:
|
|
2197
2196
|
pulumi.set(__self__, "version", version)
|
|
2198
2197
|
|
|
2199
|
-
@property
|
|
2198
|
+
@_builtins.property
|
|
2200
2199
|
@pulumi.getter(name="configurationValues")
|
|
2201
2200
|
def configuration_values(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
|
|
2202
2201
|
"""
|
|
@@ -2208,19 +2207,19 @@ class KubeProxyAddonOptionsArgs:
|
|
|
2208
2207
|
def configuration_values(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
|
|
2209
2208
|
pulumi.set(self, "configuration_values", value)
|
|
2210
2209
|
|
|
2211
|
-
@property
|
|
2210
|
+
@_builtins.property
|
|
2212
2211
|
@pulumi.getter
|
|
2213
|
-
def enabled(self) -> Optional[
|
|
2212
|
+
def enabled(self) -> Optional[_builtins.bool]:
|
|
2214
2213
|
"""
|
|
2215
2214
|
Whether or not to create the `kube-proxy` Addon in the cluster. Defaults to true, unless `autoMode` is enabled.
|
|
2216
2215
|
"""
|
|
2217
2216
|
return pulumi.get(self, "enabled")
|
|
2218
2217
|
|
|
2219
2218
|
@enabled.setter
|
|
2220
|
-
def enabled(self, value: Optional[
|
|
2219
|
+
def enabled(self, value: Optional[_builtins.bool]):
|
|
2221
2220
|
pulumi.set(self, "enabled", value)
|
|
2222
2221
|
|
|
2223
|
-
@property
|
|
2222
|
+
@_builtins.property
|
|
2224
2223
|
@pulumi.getter(name="resolveConflictsOnCreate")
|
|
2225
2224
|
def resolve_conflicts_on_create(self) -> Optional['ResolveConflictsOnCreate']:
|
|
2226
2225
|
"""
|
|
@@ -2232,7 +2231,7 @@ class KubeProxyAddonOptionsArgs:
|
|
|
2232
2231
|
def resolve_conflicts_on_create(self, value: Optional['ResolveConflictsOnCreate']):
|
|
2233
2232
|
pulumi.set(self, "resolve_conflicts_on_create", value)
|
|
2234
2233
|
|
|
2235
|
-
@property
|
|
2234
|
+
@_builtins.property
|
|
2236
2235
|
@pulumi.getter(name="resolveConflictsOnUpdate")
|
|
2237
2236
|
def resolve_conflicts_on_update(self) -> Optional['ResolveConflictsOnUpdate']:
|
|
2238
2237
|
"""
|
|
@@ -2244,16 +2243,16 @@ class KubeProxyAddonOptionsArgs:
|
|
|
2244
2243
|
def resolve_conflicts_on_update(self, value: Optional['ResolveConflictsOnUpdate']):
|
|
2245
2244
|
pulumi.set(self, "resolve_conflicts_on_update", value)
|
|
2246
2245
|
|
|
2247
|
-
@property
|
|
2246
|
+
@_builtins.property
|
|
2248
2247
|
@pulumi.getter
|
|
2249
|
-
def version(self) -> Optional[pulumi.Input[
|
|
2248
|
+
def version(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2250
2249
|
"""
|
|
2251
2250
|
The version of the EKS add-on. The version must match one of the versions returned by [describe-addon-versions](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-versions.html).
|
|
2252
2251
|
"""
|
|
2253
2252
|
return pulumi.get(self, "version")
|
|
2254
2253
|
|
|
2255
2254
|
@version.setter
|
|
2256
|
-
def version(self, value: Optional[pulumi.Input[
|
|
2255
|
+
def version(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2257
2256
|
pulumi.set(self, "version", value)
|
|
2258
2257
|
|
|
2259
2258
|
|
|
@@ -2277,13 +2276,13 @@ if not MYPY:
|
|
|
2277
2276
|
- https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-role.html
|
|
2278
2277
|
- https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-profiles.html
|
|
2279
2278
|
"""
|
|
2280
|
-
profile_name: NotRequired[pulumi.Input[
|
|
2279
|
+
profile_name: NotRequired[pulumi.Input[_builtins.str]]
|
|
2281
2280
|
"""
|
|
2282
2281
|
AWS credential profile name to always use instead of the default AWS credential provider chain.
|
|
2283
2282
|
|
|
2284
2283
|
The profile is passed to kubeconfig as an authentication environment setting.
|
|
2285
2284
|
"""
|
|
2286
|
-
role_arn: NotRequired[pulumi.Input[
|
|
2285
|
+
role_arn: NotRequired[pulumi.Input[_builtins.str]]
|
|
2287
2286
|
"""
|
|
2288
2287
|
Role ARN to assume instead of the default AWS credential provider chain.
|
|
2289
2288
|
|
|
@@ -2295,8 +2294,8 @@ elif False:
|
|
|
2295
2294
|
@pulumi.input_type
|
|
2296
2295
|
class KubeconfigOptionsArgs:
|
|
2297
2296
|
def __init__(__self__, *,
|
|
2298
|
-
profile_name: Optional[pulumi.Input[
|
|
2299
|
-
role_arn: Optional[pulumi.Input[
|
|
2297
|
+
profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2298
|
+
role_arn: Optional[pulumi.Input[_builtins.str]] = None):
|
|
2300
2299
|
"""
|
|
2301
2300
|
Represents the AWS credentials to scope a given kubeconfig when using a non-default credential chain.
|
|
2302
2301
|
|
|
@@ -2314,10 +2313,10 @@ class KubeconfigOptionsArgs:
|
|
|
2314
2313
|
- https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html
|
|
2315
2314
|
- https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-role.html
|
|
2316
2315
|
- https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-profiles.html
|
|
2317
|
-
:param pulumi.Input[
|
|
2316
|
+
:param pulumi.Input[_builtins.str] profile_name: AWS credential profile name to always use instead of the default AWS credential provider chain.
|
|
2318
2317
|
|
|
2319
2318
|
The profile is passed to kubeconfig as an authentication environment setting.
|
|
2320
|
-
:param pulumi.Input[
|
|
2319
|
+
:param pulumi.Input[_builtins.str] role_arn: Role ARN to assume instead of the default AWS credential provider chain.
|
|
2321
2320
|
|
|
2322
2321
|
The role is passed to kubeconfig as an authentication exec argument.
|
|
2323
2322
|
"""
|
|
@@ -2326,9 +2325,9 @@ class KubeconfigOptionsArgs:
|
|
|
2326
2325
|
if role_arn is not None:
|
|
2327
2326
|
pulumi.set(__self__, "role_arn", role_arn)
|
|
2328
2327
|
|
|
2329
|
-
@property
|
|
2328
|
+
@_builtins.property
|
|
2330
2329
|
@pulumi.getter(name="profileName")
|
|
2331
|
-
def profile_name(self) -> Optional[pulumi.Input[
|
|
2330
|
+
def profile_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2332
2331
|
"""
|
|
2333
2332
|
AWS credential profile name to always use instead of the default AWS credential provider chain.
|
|
2334
2333
|
|
|
@@ -2337,12 +2336,12 @@ class KubeconfigOptionsArgs:
|
|
|
2337
2336
|
return pulumi.get(self, "profile_name")
|
|
2338
2337
|
|
|
2339
2338
|
@profile_name.setter
|
|
2340
|
-
def profile_name(self, value: Optional[pulumi.Input[
|
|
2339
|
+
def profile_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2341
2340
|
pulumi.set(self, "profile_name", value)
|
|
2342
2341
|
|
|
2343
|
-
@property
|
|
2342
|
+
@_builtins.property
|
|
2344
2343
|
@pulumi.getter(name="roleArn")
|
|
2345
|
-
def role_arn(self) -> Optional[pulumi.Input[
|
|
2344
|
+
def role_arn(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2346
2345
|
"""
|
|
2347
2346
|
Role ARN to assume instead of the default AWS credential provider chain.
|
|
2348
2347
|
|
|
@@ -2351,7 +2350,7 @@ class KubeconfigOptionsArgs:
|
|
|
2351
2350
|
return pulumi.get(self, "role_arn")
|
|
2352
2351
|
|
|
2353
2352
|
@role_arn.setter
|
|
2354
|
-
def role_arn(self, value: Optional[pulumi.Input[
|
|
2353
|
+
def role_arn(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2355
2354
|
pulumi.set(self, "role_arn", value)
|
|
2356
2355
|
|
|
2357
2356
|
|
|
@@ -2362,11 +2361,11 @@ if not MYPY:
|
|
|
2362
2361
|
|
|
2363
2362
|
See for more details: https://awslabs.github.io/amazon-eks-ami/nodeadm/.
|
|
2364
2363
|
"""
|
|
2365
|
-
content: pulumi.Input[
|
|
2364
|
+
content: pulumi.Input[_builtins.str]
|
|
2366
2365
|
"""
|
|
2367
2366
|
The actual content of the MIME document part, such as shell script code or nodeadm configuration. Must be compatible with the specified contentType.
|
|
2368
2367
|
"""
|
|
2369
|
-
content_type: pulumi.Input[
|
|
2368
|
+
content_type: pulumi.Input[_builtins.str]
|
|
2370
2369
|
"""
|
|
2371
2370
|
The MIME type of the content. Examples are `text/x-shellscript; charset="us-ascii"` for shell scripts, and `application/node.eks.aws` nodeadm configuration.
|
|
2372
2371
|
"""
|
|
@@ -2376,40 +2375,40 @@ elif False:
|
|
|
2376
2375
|
@pulumi.input_type
|
|
2377
2376
|
class NodeadmOptionsArgs:
|
|
2378
2377
|
def __init__(__self__, *,
|
|
2379
|
-
content: pulumi.Input[
|
|
2380
|
-
content_type: pulumi.Input[
|
|
2378
|
+
content: pulumi.Input[_builtins.str],
|
|
2379
|
+
content_type: pulumi.Input[_builtins.str]):
|
|
2381
2380
|
"""
|
|
2382
2381
|
MIME document parts for nodeadm configuration. This can be shell scripts, nodeadm configuration or any other user data compatible script.
|
|
2383
2382
|
|
|
2384
2383
|
See for more details: https://awslabs.github.io/amazon-eks-ami/nodeadm/.
|
|
2385
|
-
:param pulumi.Input[
|
|
2386
|
-
:param pulumi.Input[
|
|
2384
|
+
:param pulumi.Input[_builtins.str] content: The actual content of the MIME document part, such as shell script code or nodeadm configuration. Must be compatible with the specified contentType.
|
|
2385
|
+
:param pulumi.Input[_builtins.str] content_type: The MIME type of the content. Examples are `text/x-shellscript; charset="us-ascii"` for shell scripts, and `application/node.eks.aws` nodeadm configuration.
|
|
2387
2386
|
"""
|
|
2388
2387
|
pulumi.set(__self__, "content", content)
|
|
2389
2388
|
pulumi.set(__self__, "content_type", content_type)
|
|
2390
2389
|
|
|
2391
|
-
@property
|
|
2390
|
+
@_builtins.property
|
|
2392
2391
|
@pulumi.getter
|
|
2393
|
-
def content(self) -> pulumi.Input[
|
|
2392
|
+
def content(self) -> pulumi.Input[_builtins.str]:
|
|
2394
2393
|
"""
|
|
2395
2394
|
The actual content of the MIME document part, such as shell script code or nodeadm configuration. Must be compatible with the specified contentType.
|
|
2396
2395
|
"""
|
|
2397
2396
|
return pulumi.get(self, "content")
|
|
2398
2397
|
|
|
2399
2398
|
@content.setter
|
|
2400
|
-
def content(self, value: pulumi.Input[
|
|
2399
|
+
def content(self, value: pulumi.Input[_builtins.str]):
|
|
2401
2400
|
pulumi.set(self, "content", value)
|
|
2402
2401
|
|
|
2403
|
-
@property
|
|
2402
|
+
@_builtins.property
|
|
2404
2403
|
@pulumi.getter(name="contentType")
|
|
2405
|
-
def content_type(self) -> pulumi.Input[
|
|
2404
|
+
def content_type(self) -> pulumi.Input[_builtins.str]:
|
|
2406
2405
|
"""
|
|
2407
2406
|
The MIME type of the content. Examples are `text/x-shellscript; charset="us-ascii"` for shell scripts, and `application/node.eks.aws` nodeadm configuration.
|
|
2408
2407
|
"""
|
|
2409
2408
|
return pulumi.get(self, "content_type")
|
|
2410
2409
|
|
|
2411
2410
|
@content_type.setter
|
|
2412
|
-
def content_type(self, value: pulumi.Input[
|
|
2411
|
+
def content_type(self, value: pulumi.Input[_builtins.str]):
|
|
2413
2412
|
pulumi.set(self, "content_type", value)
|
|
2414
2413
|
|
|
2415
2414
|
|
|
@@ -2418,15 +2417,15 @@ if not MYPY:
|
|
|
2418
2417
|
"""
|
|
2419
2418
|
Describes a mapping from an AWS IAM role to a Kubernetes user and groups.
|
|
2420
2419
|
"""
|
|
2421
|
-
groups: pulumi.Input[Sequence[pulumi.Input[
|
|
2420
|
+
groups: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]
|
|
2422
2421
|
"""
|
|
2423
2422
|
A list of groups within Kubernetes to which the role is mapped.
|
|
2424
2423
|
"""
|
|
2425
|
-
role_arn: pulumi.Input[
|
|
2424
|
+
role_arn: pulumi.Input[_builtins.str]
|
|
2426
2425
|
"""
|
|
2427
2426
|
The ARN of the IAM role to add.
|
|
2428
2427
|
"""
|
|
2429
|
-
username: pulumi.Input[
|
|
2428
|
+
username: pulumi.Input[_builtins.str]
|
|
2430
2429
|
"""
|
|
2431
2430
|
The user name within Kubernetes to map to the IAM role. By default, the user name is the ARN of the IAM role.
|
|
2432
2431
|
"""
|
|
@@ -2436,53 +2435,53 @@ elif False:
|
|
|
2436
2435
|
@pulumi.input_type
|
|
2437
2436
|
class RoleMappingArgs:
|
|
2438
2437
|
def __init__(__self__, *,
|
|
2439
|
-
groups: pulumi.Input[Sequence[pulumi.Input[
|
|
2440
|
-
role_arn: pulumi.Input[
|
|
2441
|
-
username: pulumi.Input[
|
|
2438
|
+
groups: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]],
|
|
2439
|
+
role_arn: pulumi.Input[_builtins.str],
|
|
2440
|
+
username: pulumi.Input[_builtins.str]):
|
|
2442
2441
|
"""
|
|
2443
2442
|
Describes a mapping from an AWS IAM role to a Kubernetes user and groups.
|
|
2444
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
2445
|
-
:param pulumi.Input[
|
|
2446
|
-
:param pulumi.Input[
|
|
2443
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] groups: A list of groups within Kubernetes to which the role is mapped.
|
|
2444
|
+
:param pulumi.Input[_builtins.str] role_arn: The ARN of the IAM role to add.
|
|
2445
|
+
:param pulumi.Input[_builtins.str] username: The user name within Kubernetes to map to the IAM role. By default, the user name is the ARN of the IAM role.
|
|
2447
2446
|
"""
|
|
2448
2447
|
pulumi.set(__self__, "groups", groups)
|
|
2449
2448
|
pulumi.set(__self__, "role_arn", role_arn)
|
|
2450
2449
|
pulumi.set(__self__, "username", username)
|
|
2451
2450
|
|
|
2452
|
-
@property
|
|
2451
|
+
@_builtins.property
|
|
2453
2452
|
@pulumi.getter
|
|
2454
|
-
def groups(self) -> pulumi.Input[Sequence[pulumi.Input[
|
|
2453
|
+
def groups(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
|
|
2455
2454
|
"""
|
|
2456
2455
|
A list of groups within Kubernetes to which the role is mapped.
|
|
2457
2456
|
"""
|
|
2458
2457
|
return pulumi.get(self, "groups")
|
|
2459
2458
|
|
|
2460
2459
|
@groups.setter
|
|
2461
|
-
def groups(self, value: pulumi.Input[Sequence[pulumi.Input[
|
|
2460
|
+
def groups(self, value: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]):
|
|
2462
2461
|
pulumi.set(self, "groups", value)
|
|
2463
2462
|
|
|
2464
|
-
@property
|
|
2463
|
+
@_builtins.property
|
|
2465
2464
|
@pulumi.getter(name="roleArn")
|
|
2466
|
-
def role_arn(self) -> pulumi.Input[
|
|
2465
|
+
def role_arn(self) -> pulumi.Input[_builtins.str]:
|
|
2467
2466
|
"""
|
|
2468
2467
|
The ARN of the IAM role to add.
|
|
2469
2468
|
"""
|
|
2470
2469
|
return pulumi.get(self, "role_arn")
|
|
2471
2470
|
|
|
2472
2471
|
@role_arn.setter
|
|
2473
|
-
def role_arn(self, value: pulumi.Input[
|
|
2472
|
+
def role_arn(self, value: pulumi.Input[_builtins.str]):
|
|
2474
2473
|
pulumi.set(self, "role_arn", value)
|
|
2475
2474
|
|
|
2476
|
-
@property
|
|
2475
|
+
@_builtins.property
|
|
2477
2476
|
@pulumi.getter
|
|
2478
|
-
def username(self) -> pulumi.Input[
|
|
2477
|
+
def username(self) -> pulumi.Input[_builtins.str]:
|
|
2479
2478
|
"""
|
|
2480
2479
|
The user name within Kubernetes to map to the IAM role. By default, the user name is the ARN of the IAM role.
|
|
2481
2480
|
"""
|
|
2482
2481
|
return pulumi.get(self, "username")
|
|
2483
2482
|
|
|
2484
2483
|
@username.setter
|
|
2485
|
-
def username(self, value: pulumi.Input[
|
|
2484
|
+
def username(self, value: pulumi.Input[_builtins.str]):
|
|
2486
2485
|
pulumi.set(self, "username", value)
|
|
2487
2486
|
|
|
2488
2487
|
|
|
@@ -2491,15 +2490,15 @@ if not MYPY:
|
|
|
2491
2490
|
"""
|
|
2492
2491
|
StorageClass describes the inputs to a single Kubernetes StorageClass provisioned by AWS. Any number of storage classes can be added to a cluster at creation time. One of these storage classes may be configured the default storage class for the cluster.
|
|
2493
2492
|
"""
|
|
2494
|
-
type: pulumi.Input[
|
|
2493
|
+
type: pulumi.Input[_builtins.str]
|
|
2495
2494
|
"""
|
|
2496
2495
|
The EBS volume type.
|
|
2497
2496
|
"""
|
|
2498
|
-
allow_volume_expansion: NotRequired[pulumi.Input[
|
|
2497
|
+
allow_volume_expansion: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2499
2498
|
"""
|
|
2500
2499
|
AllowVolumeExpansion shows whether the storage class allow volume expand.
|
|
2501
2500
|
"""
|
|
2502
|
-
default: NotRequired[pulumi.Input[
|
|
2501
|
+
default: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2503
2502
|
"""
|
|
2504
2503
|
True if this storage class should be a default storage class for the cluster.
|
|
2505
2504
|
|
|
@@ -2507,15 +2506,15 @@ if not MYPY:
|
|
|
2507
2506
|
|
|
2508
2507
|
Please note that at most one storage class can be marked as default. If two or more of them are marked as default, a PersistentVolumeClaim without `storageClassName` explicitly specified cannot be created. See: https://kubernetes.io/docs/tasks/administer-cluster/change-default-storage-class/#changing-the-default-storageclass
|
|
2509
2508
|
"""
|
|
2510
|
-
encrypted: NotRequired[pulumi.Input[
|
|
2509
|
+
encrypted: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2511
2510
|
"""
|
|
2512
2511
|
Denotes whether the EBS volume should be encrypted.
|
|
2513
2512
|
"""
|
|
2514
|
-
iops_per_gb: NotRequired[pulumi.Input[
|
|
2513
|
+
iops_per_gb: NotRequired[pulumi.Input[_builtins.int]]
|
|
2515
2514
|
"""
|
|
2516
2515
|
I/O operations per second per GiB for "io1" volumes. The AWS volume plugin multiplies this with the size of a requested volume to compute IOPS of the volume and caps the result at 20,000 IOPS.
|
|
2517
2516
|
"""
|
|
2518
|
-
kms_key_id: NotRequired[pulumi.Input[
|
|
2517
|
+
kms_key_id: NotRequired[pulumi.Input[_builtins.str]]
|
|
2519
2518
|
"""
|
|
2520
2519
|
The full Amazon Resource Name of the key to use when encrypting the volume. If none is supplied but encrypted is true, a key is generated by AWS.
|
|
2521
2520
|
"""
|
|
@@ -2523,19 +2522,19 @@ if not MYPY:
|
|
|
2523
2522
|
"""
|
|
2524
2523
|
Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#metadata
|
|
2525
2524
|
"""
|
|
2526
|
-
mount_options: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
2525
|
+
mount_options: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
2527
2526
|
"""
|
|
2528
2527
|
Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. ["ro", "soft"]. Not validated - mount of the PVs will simply fail if one is invalid.
|
|
2529
2528
|
"""
|
|
2530
|
-
reclaim_policy: NotRequired[pulumi.Input[
|
|
2529
|
+
reclaim_policy: NotRequired[pulumi.Input[_builtins.str]]
|
|
2531
2530
|
"""
|
|
2532
2531
|
Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.
|
|
2533
2532
|
"""
|
|
2534
|
-
volume_binding_mode: NotRequired[pulumi.Input[
|
|
2533
|
+
volume_binding_mode: NotRequired[pulumi.Input[_builtins.str]]
|
|
2535
2534
|
"""
|
|
2536
2535
|
VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound. When unset, VolumeBindingImmediate is used. This field is alpha-level and is only honored by servers that enable the VolumeScheduling feature.
|
|
2537
2536
|
"""
|
|
2538
|
-
zones: NotRequired[pulumi.Input[Sequence[pulumi.Input[
|
|
2537
|
+
zones: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
|
|
2539
2538
|
"""
|
|
2540
2539
|
The AWS zone or zones for the EBS volume. If zones is not specified, volumes are generally round-robin-ed across all active zones where Kubernetes cluster has a node. zone and zones parameters must not be used at the same time.
|
|
2541
2540
|
"""
|
|
@@ -2545,34 +2544,34 @@ elif False:
|
|
|
2545
2544
|
@pulumi.input_type
|
|
2546
2545
|
class StorageClassArgs:
|
|
2547
2546
|
def __init__(__self__, *,
|
|
2548
|
-
type: pulumi.Input[
|
|
2549
|
-
allow_volume_expansion: Optional[pulumi.Input[
|
|
2550
|
-
default: Optional[pulumi.Input[
|
|
2551
|
-
encrypted: Optional[pulumi.Input[
|
|
2552
|
-
iops_per_gb: Optional[pulumi.Input[
|
|
2553
|
-
kms_key_id: Optional[pulumi.Input[
|
|
2547
|
+
type: pulumi.Input[_builtins.str],
|
|
2548
|
+
allow_volume_expansion: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
2549
|
+
default: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
2550
|
+
encrypted: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
2551
|
+
iops_per_gb: Optional[pulumi.Input[_builtins.int]] = None,
|
|
2552
|
+
kms_key_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2554
2553
|
metadata: Optional[pulumi.Input['pulumi_kubernetes.meta.v1.ObjectMetaArgs']] = None,
|
|
2555
|
-
mount_options: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2556
|
-
reclaim_policy: Optional[pulumi.Input[
|
|
2557
|
-
volume_binding_mode: Optional[pulumi.Input[
|
|
2558
|
-
zones: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2554
|
+
mount_options: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
2555
|
+
reclaim_policy: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2556
|
+
volume_binding_mode: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2557
|
+
zones: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None):
|
|
2559
2558
|
"""
|
|
2560
2559
|
StorageClass describes the inputs to a single Kubernetes StorageClass provisioned by AWS. Any number of storage classes can be added to a cluster at creation time. One of these storage classes may be configured the default storage class for the cluster.
|
|
2561
|
-
:param pulumi.Input[
|
|
2562
|
-
:param pulumi.Input[
|
|
2563
|
-
:param pulumi.Input[
|
|
2560
|
+
:param pulumi.Input[_builtins.str] type: The EBS volume type.
|
|
2561
|
+
:param pulumi.Input[_builtins.bool] allow_volume_expansion: AllowVolumeExpansion shows whether the storage class allow volume expand.
|
|
2562
|
+
:param pulumi.Input[_builtins.bool] default: True if this storage class should be a default storage class for the cluster.
|
|
2564
2563
|
|
|
2565
2564
|
Note: As of Kubernetes v1.11+ on EKS, a default `gp2` storage class will always be created automatically for the cluster by the EKS service. See https://docs.aws.amazon.com/eks/latest/userguide/storage-classes.html
|
|
2566
2565
|
|
|
2567
2566
|
Please note that at most one storage class can be marked as default. If two or more of them are marked as default, a PersistentVolumeClaim without `storageClassName` explicitly specified cannot be created. See: https://kubernetes.io/docs/tasks/administer-cluster/change-default-storage-class/#changing-the-default-storageclass
|
|
2568
|
-
:param pulumi.Input[
|
|
2569
|
-
:param pulumi.Input[
|
|
2570
|
-
:param pulumi.Input[
|
|
2567
|
+
:param pulumi.Input[_builtins.bool] encrypted: Denotes whether the EBS volume should be encrypted.
|
|
2568
|
+
:param pulumi.Input[_builtins.int] iops_per_gb: I/O operations per second per GiB for "io1" volumes. The AWS volume plugin multiplies this with the size of a requested volume to compute IOPS of the volume and caps the result at 20,000 IOPS.
|
|
2569
|
+
:param pulumi.Input[_builtins.str] kms_key_id: The full Amazon Resource Name of the key to use when encrypting the volume. If none is supplied but encrypted is true, a key is generated by AWS.
|
|
2571
2570
|
:param pulumi.Input['pulumi_kubernetes.meta.v1.ObjectMetaArgs'] metadata: Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#metadata
|
|
2572
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
2573
|
-
:param pulumi.Input[
|
|
2574
|
-
:param pulumi.Input[
|
|
2575
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
2571
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] mount_options: Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. ["ro", "soft"]. Not validated - mount of the PVs will simply fail if one is invalid.
|
|
2572
|
+
:param pulumi.Input[_builtins.str] reclaim_policy: Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.
|
|
2573
|
+
:param pulumi.Input[_builtins.str] volume_binding_mode: VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound. When unset, VolumeBindingImmediate is used. This field is alpha-level and is only honored by servers that enable the VolumeScheduling feature.
|
|
2574
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] zones: The AWS zone or zones for the EBS volume. If zones is not specified, volumes are generally round-robin-ed across all active zones where Kubernetes cluster has a node. zone and zones parameters must not be used at the same time.
|
|
2576
2575
|
"""
|
|
2577
2576
|
pulumi.set(__self__, "type", type)
|
|
2578
2577
|
if allow_volume_expansion is not None:
|
|
@@ -2596,33 +2595,33 @@ class StorageClassArgs:
|
|
|
2596
2595
|
if zones is not None:
|
|
2597
2596
|
pulumi.set(__self__, "zones", zones)
|
|
2598
2597
|
|
|
2599
|
-
@property
|
|
2598
|
+
@_builtins.property
|
|
2600
2599
|
@pulumi.getter
|
|
2601
|
-
def type(self) -> pulumi.Input[
|
|
2600
|
+
def type(self) -> pulumi.Input[_builtins.str]:
|
|
2602
2601
|
"""
|
|
2603
2602
|
The EBS volume type.
|
|
2604
2603
|
"""
|
|
2605
2604
|
return pulumi.get(self, "type")
|
|
2606
2605
|
|
|
2607
2606
|
@type.setter
|
|
2608
|
-
def type(self, value: pulumi.Input[
|
|
2607
|
+
def type(self, value: pulumi.Input[_builtins.str]):
|
|
2609
2608
|
pulumi.set(self, "type", value)
|
|
2610
2609
|
|
|
2611
|
-
@property
|
|
2610
|
+
@_builtins.property
|
|
2612
2611
|
@pulumi.getter(name="allowVolumeExpansion")
|
|
2613
|
-
def allow_volume_expansion(self) -> Optional[pulumi.Input[
|
|
2612
|
+
def allow_volume_expansion(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
2614
2613
|
"""
|
|
2615
2614
|
AllowVolumeExpansion shows whether the storage class allow volume expand.
|
|
2616
2615
|
"""
|
|
2617
2616
|
return pulumi.get(self, "allow_volume_expansion")
|
|
2618
2617
|
|
|
2619
2618
|
@allow_volume_expansion.setter
|
|
2620
|
-
def allow_volume_expansion(self, value: Optional[pulumi.Input[
|
|
2619
|
+
def allow_volume_expansion(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
2621
2620
|
pulumi.set(self, "allow_volume_expansion", value)
|
|
2622
2621
|
|
|
2623
|
-
@property
|
|
2622
|
+
@_builtins.property
|
|
2624
2623
|
@pulumi.getter
|
|
2625
|
-
def default(self) -> Optional[pulumi.Input[
|
|
2624
|
+
def default(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
2626
2625
|
"""
|
|
2627
2626
|
True if this storage class should be a default storage class for the cluster.
|
|
2628
2627
|
|
|
@@ -2633,46 +2632,46 @@ class StorageClassArgs:
|
|
|
2633
2632
|
return pulumi.get(self, "default")
|
|
2634
2633
|
|
|
2635
2634
|
@default.setter
|
|
2636
|
-
def default(self, value: Optional[pulumi.Input[
|
|
2635
|
+
def default(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
2637
2636
|
pulumi.set(self, "default", value)
|
|
2638
2637
|
|
|
2639
|
-
@property
|
|
2638
|
+
@_builtins.property
|
|
2640
2639
|
@pulumi.getter
|
|
2641
|
-
def encrypted(self) -> Optional[pulumi.Input[
|
|
2640
|
+
def encrypted(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
2642
2641
|
"""
|
|
2643
2642
|
Denotes whether the EBS volume should be encrypted.
|
|
2644
2643
|
"""
|
|
2645
2644
|
return pulumi.get(self, "encrypted")
|
|
2646
2645
|
|
|
2647
2646
|
@encrypted.setter
|
|
2648
|
-
def encrypted(self, value: Optional[pulumi.Input[
|
|
2647
|
+
def encrypted(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
2649
2648
|
pulumi.set(self, "encrypted", value)
|
|
2650
2649
|
|
|
2651
|
-
@property
|
|
2650
|
+
@_builtins.property
|
|
2652
2651
|
@pulumi.getter(name="iopsPerGb")
|
|
2653
|
-
def iops_per_gb(self) -> Optional[pulumi.Input[
|
|
2652
|
+
def iops_per_gb(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
2654
2653
|
"""
|
|
2655
2654
|
I/O operations per second per GiB for "io1" volumes. The AWS volume plugin multiplies this with the size of a requested volume to compute IOPS of the volume and caps the result at 20,000 IOPS.
|
|
2656
2655
|
"""
|
|
2657
2656
|
return pulumi.get(self, "iops_per_gb")
|
|
2658
2657
|
|
|
2659
2658
|
@iops_per_gb.setter
|
|
2660
|
-
def iops_per_gb(self, value: Optional[pulumi.Input[
|
|
2659
|
+
def iops_per_gb(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
2661
2660
|
pulumi.set(self, "iops_per_gb", value)
|
|
2662
2661
|
|
|
2663
|
-
@property
|
|
2662
|
+
@_builtins.property
|
|
2664
2663
|
@pulumi.getter(name="kmsKeyId")
|
|
2665
|
-
def kms_key_id(self) -> Optional[pulumi.Input[
|
|
2664
|
+
def kms_key_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2666
2665
|
"""
|
|
2667
2666
|
The full Amazon Resource Name of the key to use when encrypting the volume. If none is supplied but encrypted is true, a key is generated by AWS.
|
|
2668
2667
|
"""
|
|
2669
2668
|
return pulumi.get(self, "kms_key_id")
|
|
2670
2669
|
|
|
2671
2670
|
@kms_key_id.setter
|
|
2672
|
-
def kms_key_id(self, value: Optional[pulumi.Input[
|
|
2671
|
+
def kms_key_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2673
2672
|
pulumi.set(self, "kms_key_id", value)
|
|
2674
2673
|
|
|
2675
|
-
@property
|
|
2674
|
+
@_builtins.property
|
|
2676
2675
|
@pulumi.getter
|
|
2677
2676
|
def metadata(self) -> Optional[pulumi.Input['pulumi_kubernetes.meta.v1.ObjectMetaArgs']]:
|
|
2678
2677
|
"""
|
|
@@ -2684,52 +2683,52 @@ class StorageClassArgs:
|
|
|
2684
2683
|
def metadata(self, value: Optional[pulumi.Input['pulumi_kubernetes.meta.v1.ObjectMetaArgs']]):
|
|
2685
2684
|
pulumi.set(self, "metadata", value)
|
|
2686
2685
|
|
|
2687
|
-
@property
|
|
2686
|
+
@_builtins.property
|
|
2688
2687
|
@pulumi.getter(name="mountOptions")
|
|
2689
|
-
def mount_options(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2688
|
+
def mount_options(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
2690
2689
|
"""
|
|
2691
2690
|
Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. ["ro", "soft"]. Not validated - mount of the PVs will simply fail if one is invalid.
|
|
2692
2691
|
"""
|
|
2693
2692
|
return pulumi.get(self, "mount_options")
|
|
2694
2693
|
|
|
2695
2694
|
@mount_options.setter
|
|
2696
|
-
def mount_options(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2695
|
+
def mount_options(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
2697
2696
|
pulumi.set(self, "mount_options", value)
|
|
2698
2697
|
|
|
2699
|
-
@property
|
|
2698
|
+
@_builtins.property
|
|
2700
2699
|
@pulumi.getter(name="reclaimPolicy")
|
|
2701
|
-
def reclaim_policy(self) -> Optional[pulumi.Input[
|
|
2700
|
+
def reclaim_policy(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2702
2701
|
"""
|
|
2703
2702
|
Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.
|
|
2704
2703
|
"""
|
|
2705
2704
|
return pulumi.get(self, "reclaim_policy")
|
|
2706
2705
|
|
|
2707
2706
|
@reclaim_policy.setter
|
|
2708
|
-
def reclaim_policy(self, value: Optional[pulumi.Input[
|
|
2707
|
+
def reclaim_policy(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2709
2708
|
pulumi.set(self, "reclaim_policy", value)
|
|
2710
2709
|
|
|
2711
|
-
@property
|
|
2710
|
+
@_builtins.property
|
|
2712
2711
|
@pulumi.getter(name="volumeBindingMode")
|
|
2713
|
-
def volume_binding_mode(self) -> Optional[pulumi.Input[
|
|
2712
|
+
def volume_binding_mode(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
2714
2713
|
"""
|
|
2715
2714
|
VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound. When unset, VolumeBindingImmediate is used. This field is alpha-level and is only honored by servers that enable the VolumeScheduling feature.
|
|
2716
2715
|
"""
|
|
2717
2716
|
return pulumi.get(self, "volume_binding_mode")
|
|
2718
2717
|
|
|
2719
2718
|
@volume_binding_mode.setter
|
|
2720
|
-
def volume_binding_mode(self, value: Optional[pulumi.Input[
|
|
2719
|
+
def volume_binding_mode(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
2721
2720
|
pulumi.set(self, "volume_binding_mode", value)
|
|
2722
2721
|
|
|
2723
|
-
@property
|
|
2722
|
+
@_builtins.property
|
|
2724
2723
|
@pulumi.getter
|
|
2725
|
-
def zones(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2724
|
+
def zones(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
2726
2725
|
"""
|
|
2727
2726
|
The AWS zone or zones for the EBS volume. If zones is not specified, volumes are generally round-robin-ed across all active zones where Kubernetes cluster has a node. zone and zones parameters must not be used at the same time.
|
|
2728
2727
|
"""
|
|
2729
2728
|
return pulumi.get(self, "zones")
|
|
2730
2729
|
|
|
2731
2730
|
@zones.setter
|
|
2732
|
-
def zones(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
2731
|
+
def zones(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
2733
2732
|
pulumi.set(self, "zones", value)
|
|
2734
2733
|
|
|
2735
2734
|
|
|
@@ -2738,11 +2737,11 @@ if not MYPY:
|
|
|
2738
2737
|
"""
|
|
2739
2738
|
Represents a Kubernetes `taint` to apply to all Nodes in a NodeGroup. See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/.
|
|
2740
2739
|
"""
|
|
2741
|
-
effect: pulumi.Input[
|
|
2740
|
+
effect: pulumi.Input[_builtins.str]
|
|
2742
2741
|
"""
|
|
2743
2742
|
The effect of the taint.
|
|
2744
2743
|
"""
|
|
2745
|
-
value: pulumi.Input[
|
|
2744
|
+
value: pulumi.Input[_builtins.str]
|
|
2746
2745
|
"""
|
|
2747
2746
|
The value of the taint.
|
|
2748
2747
|
"""
|
|
@@ -2752,38 +2751,38 @@ elif False:
|
|
|
2752
2751
|
@pulumi.input_type
|
|
2753
2752
|
class TaintArgs:
|
|
2754
2753
|
def __init__(__self__, *,
|
|
2755
|
-
effect: pulumi.Input[
|
|
2756
|
-
value: pulumi.Input[
|
|
2754
|
+
effect: pulumi.Input[_builtins.str],
|
|
2755
|
+
value: pulumi.Input[_builtins.str]):
|
|
2757
2756
|
"""
|
|
2758
2757
|
Represents a Kubernetes `taint` to apply to all Nodes in a NodeGroup. See https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/.
|
|
2759
|
-
:param pulumi.Input[
|
|
2760
|
-
:param pulumi.Input[
|
|
2758
|
+
:param pulumi.Input[_builtins.str] effect: The effect of the taint.
|
|
2759
|
+
:param pulumi.Input[_builtins.str] value: The value of the taint.
|
|
2761
2760
|
"""
|
|
2762
2761
|
pulumi.set(__self__, "effect", effect)
|
|
2763
2762
|
pulumi.set(__self__, "value", value)
|
|
2764
2763
|
|
|
2765
|
-
@property
|
|
2764
|
+
@_builtins.property
|
|
2766
2765
|
@pulumi.getter
|
|
2767
|
-
def effect(self) -> pulumi.Input[
|
|
2766
|
+
def effect(self) -> pulumi.Input[_builtins.str]:
|
|
2768
2767
|
"""
|
|
2769
2768
|
The effect of the taint.
|
|
2770
2769
|
"""
|
|
2771
2770
|
return pulumi.get(self, "effect")
|
|
2772
2771
|
|
|
2773
2772
|
@effect.setter
|
|
2774
|
-
def effect(self, value: pulumi.Input[
|
|
2773
|
+
def effect(self, value: pulumi.Input[_builtins.str]):
|
|
2775
2774
|
pulumi.set(self, "effect", value)
|
|
2776
2775
|
|
|
2777
|
-
@property
|
|
2776
|
+
@_builtins.property
|
|
2778
2777
|
@pulumi.getter
|
|
2779
|
-
def value(self) -> pulumi.Input[
|
|
2778
|
+
def value(self) -> pulumi.Input[_builtins.str]:
|
|
2780
2779
|
"""
|
|
2781
2780
|
The value of the taint.
|
|
2782
2781
|
"""
|
|
2783
2782
|
return pulumi.get(self, "value")
|
|
2784
2783
|
|
|
2785
2784
|
@value.setter
|
|
2786
|
-
def value(self, value: pulumi.Input[
|
|
2785
|
+
def value(self, value: pulumi.Input[_builtins.str]):
|
|
2787
2786
|
pulumi.set(self, "value", value)
|
|
2788
2787
|
|
|
2789
2788
|
|
|
@@ -2792,15 +2791,15 @@ if not MYPY:
|
|
|
2792
2791
|
"""
|
|
2793
2792
|
Describes a mapping from an AWS IAM user to a Kubernetes user and groups.
|
|
2794
2793
|
"""
|
|
2795
|
-
groups: pulumi.Input[Sequence[pulumi.Input[
|
|
2794
|
+
groups: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]
|
|
2796
2795
|
"""
|
|
2797
2796
|
A list of groups within Kubernetes to which the user is mapped to.
|
|
2798
2797
|
"""
|
|
2799
|
-
user_arn: pulumi.Input[
|
|
2798
|
+
user_arn: pulumi.Input[_builtins.str]
|
|
2800
2799
|
"""
|
|
2801
2800
|
The ARN of the IAM user to add.
|
|
2802
2801
|
"""
|
|
2803
|
-
username: pulumi.Input[
|
|
2802
|
+
username: pulumi.Input[_builtins.str]
|
|
2804
2803
|
"""
|
|
2805
2804
|
The user name within Kubernetes to map to the IAM user. By default, the user name is the ARN of the IAM user.
|
|
2806
2805
|
"""
|
|
@@ -2810,53 +2809,53 @@ elif False:
|
|
|
2810
2809
|
@pulumi.input_type
|
|
2811
2810
|
class UserMappingArgs:
|
|
2812
2811
|
def __init__(__self__, *,
|
|
2813
|
-
groups: pulumi.Input[Sequence[pulumi.Input[
|
|
2814
|
-
user_arn: pulumi.Input[
|
|
2815
|
-
username: pulumi.Input[
|
|
2812
|
+
groups: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]],
|
|
2813
|
+
user_arn: pulumi.Input[_builtins.str],
|
|
2814
|
+
username: pulumi.Input[_builtins.str]):
|
|
2816
2815
|
"""
|
|
2817
2816
|
Describes a mapping from an AWS IAM user to a Kubernetes user and groups.
|
|
2818
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
2819
|
-
:param pulumi.Input[
|
|
2820
|
-
:param pulumi.Input[
|
|
2817
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] groups: A list of groups within Kubernetes to which the user is mapped to.
|
|
2818
|
+
:param pulumi.Input[_builtins.str] user_arn: The ARN of the IAM user to add.
|
|
2819
|
+
:param pulumi.Input[_builtins.str] username: The user name within Kubernetes to map to the IAM user. By default, the user name is the ARN of the IAM user.
|
|
2821
2820
|
"""
|
|
2822
2821
|
pulumi.set(__self__, "groups", groups)
|
|
2823
2822
|
pulumi.set(__self__, "user_arn", user_arn)
|
|
2824
2823
|
pulumi.set(__self__, "username", username)
|
|
2825
2824
|
|
|
2826
|
-
@property
|
|
2825
|
+
@_builtins.property
|
|
2827
2826
|
@pulumi.getter
|
|
2828
|
-
def groups(self) -> pulumi.Input[Sequence[pulumi.Input[
|
|
2827
|
+
def groups(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
|
|
2829
2828
|
"""
|
|
2830
2829
|
A list of groups within Kubernetes to which the user is mapped to.
|
|
2831
2830
|
"""
|
|
2832
2831
|
return pulumi.get(self, "groups")
|
|
2833
2832
|
|
|
2834
2833
|
@groups.setter
|
|
2835
|
-
def groups(self, value: pulumi.Input[Sequence[pulumi.Input[
|
|
2834
|
+
def groups(self, value: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]):
|
|
2836
2835
|
pulumi.set(self, "groups", value)
|
|
2837
2836
|
|
|
2838
|
-
@property
|
|
2837
|
+
@_builtins.property
|
|
2839
2838
|
@pulumi.getter(name="userArn")
|
|
2840
|
-
def user_arn(self) -> pulumi.Input[
|
|
2839
|
+
def user_arn(self) -> pulumi.Input[_builtins.str]:
|
|
2841
2840
|
"""
|
|
2842
2841
|
The ARN of the IAM user to add.
|
|
2843
2842
|
"""
|
|
2844
2843
|
return pulumi.get(self, "user_arn")
|
|
2845
2844
|
|
|
2846
2845
|
@user_arn.setter
|
|
2847
|
-
def user_arn(self, value: pulumi.Input[
|
|
2846
|
+
def user_arn(self, value: pulumi.Input[_builtins.str]):
|
|
2848
2847
|
pulumi.set(self, "user_arn", value)
|
|
2849
2848
|
|
|
2850
|
-
@property
|
|
2849
|
+
@_builtins.property
|
|
2851
2850
|
@pulumi.getter
|
|
2852
|
-
def username(self) -> pulumi.Input[
|
|
2851
|
+
def username(self) -> pulumi.Input[_builtins.str]:
|
|
2853
2852
|
"""
|
|
2854
2853
|
The user name within Kubernetes to map to the IAM user. By default, the user name is the ARN of the IAM user.
|
|
2855
2854
|
"""
|
|
2856
2855
|
return pulumi.get(self, "username")
|
|
2857
2856
|
|
|
2858
2857
|
@username.setter
|
|
2859
|
-
def username(self, value: pulumi.Input[
|
|
2858
|
+
def username(self, value: pulumi.Input[_builtins.str]):
|
|
2860
2859
|
pulumi.set(self, "username", value)
|
|
2861
2860
|
|
|
2862
2861
|
|
|
@@ -2865,19 +2864,19 @@ if not MYPY:
|
|
|
2865
2864
|
"""
|
|
2866
2865
|
Describes the configuration options available for the Amazon VPC CNI plugin for Kubernetes.
|
|
2867
2866
|
"""
|
|
2868
|
-
addon_version: NotRequired[pulumi.Input[
|
|
2867
|
+
addon_version: NotRequired[pulumi.Input[_builtins.str]]
|
|
2869
2868
|
"""
|
|
2870
2869
|
The version of the addon to use. If not specified, the latest version of the addon for the cluster's Kubernetes version will be used.
|
|
2871
2870
|
"""
|
|
2872
|
-
cni_configure_rpfilter: NotRequired[pulumi.Input[
|
|
2871
|
+
cni_configure_rpfilter: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2873
2872
|
"""
|
|
2874
2873
|
Specifies whether ipamd should configure rp filter for primary interface. Default is `false`.
|
|
2875
2874
|
"""
|
|
2876
|
-
cni_custom_network_cfg: NotRequired[pulumi.Input[
|
|
2875
|
+
cni_custom_network_cfg: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2877
2876
|
"""
|
|
2878
2877
|
Specifies that your pods may use subnets and security groups that are independent of your worker node's VPC configuration. By default, pods share the same subnet and security groups as the worker node's primary interface. Setting this variable to true causes ipamd to use the security groups and VPC subnet in a worker node's ENIConfig for elastic network interface allocation. You must create an ENIConfig custom resource for each subnet that your pods will reside in, and then annotate or label each worker node to use a specific ENIConfig (multiple worker nodes can be annotated or labelled with the same ENIConfig). Worker nodes can only be annotated with a single ENIConfig at a time, and the subnet in the ENIConfig must belong to the same Availability Zone that the worker node resides in. For more information, see CNI Custom Networking in the Amazon EKS User Guide. Default is `false`
|
|
2879
2878
|
"""
|
|
2880
|
-
cni_external_snat: NotRequired[pulumi.Input[
|
|
2879
|
+
cni_external_snat: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2881
2880
|
"""
|
|
2882
2881
|
Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied. Disable SNAT if you need to allow inbound communication to your pods from external VPNs, direct connections, and external VPCs, and your pods do not need to access the Internet directly via an Internet Gateway. However, your nodes must be running in a private subnet and connected to the internet through an AWS NAT Gateway or another external NAT device. Default is `false`
|
|
2883
2882
|
"""
|
|
@@ -2885,63 +2884,63 @@ if not MYPY:
|
|
|
2885
2884
|
"""
|
|
2886
2885
|
Custom configuration values for the vpc-cni addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
2887
2886
|
"""
|
|
2888
|
-
custom_network_config: NotRequired[pulumi.Input[
|
|
2887
|
+
custom_network_config: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2889
2888
|
"""
|
|
2890
2889
|
Specifies that your pods may use subnets and security groups (within the same VPC as your control plane resources) that are independent of your cluster's `resourcesVpcConfig`.
|
|
2891
2890
|
|
|
2892
2891
|
Defaults to false.
|
|
2893
2892
|
"""
|
|
2894
|
-
disable_tcp_early_demux: NotRequired[pulumi.Input[
|
|
2893
|
+
disable_tcp_early_demux: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2895
2894
|
"""
|
|
2896
2895
|
Allows the kubelet's liveness and readiness probes to connect via TCP when pod ENI is enabled. This will slightly increase local TCP connection latency.
|
|
2897
2896
|
"""
|
|
2898
|
-
enable_network_policy: NotRequired[pulumi.Input[
|
|
2897
|
+
enable_network_policy: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2899
2898
|
"""
|
|
2900
2899
|
Enables using Kubernetes network policies. In Kubernetes, by default, all pod-to-pod communication is allowed. Communication can be restricted with Kubernetes NetworkPolicy objects.
|
|
2901
2900
|
|
|
2902
2901
|
See for more information: [Kubernetes Network Policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/).
|
|
2903
2902
|
"""
|
|
2904
|
-
enable_pod_eni: NotRequired[pulumi.Input[
|
|
2903
|
+
enable_pod_eni: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2905
2904
|
"""
|
|
2906
2905
|
Specifies whether to allow IPAMD to add the `vpc.amazonaws.com/has-trunk-attached` label to the node if the instance has capacity to attach an additional ENI. Default is `false`. If using liveness and readiness probes, you will also need to disable TCP early demux.
|
|
2907
2906
|
"""
|
|
2908
|
-
enable_prefix_delegation: NotRequired[pulumi.Input[
|
|
2907
|
+
enable_prefix_delegation: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2909
2908
|
"""
|
|
2910
2909
|
IPAMD will start allocating (/28) prefixes to the ENIs with ENABLE_PREFIX_DELEGATION set to true.
|
|
2911
2910
|
"""
|
|
2912
|
-
eni_config_label_def: NotRequired[pulumi.Input[
|
|
2911
|
+
eni_config_label_def: NotRequired[pulumi.Input[_builtins.str]]
|
|
2913
2912
|
"""
|
|
2914
2913
|
Specifies the ENI_CONFIG_LABEL_DEF environment variable value for worker nodes. This is used to tell Kubernetes to automatically apply the ENIConfig for each Availability Zone
|
|
2915
2914
|
Ref: https://docs.aws.amazon.com/eks/latest/userguide/cni-custom-network.html (step 5(c))
|
|
2916
2915
|
|
|
2917
2916
|
Defaults to the official AWS CNI image in ECR.
|
|
2918
2917
|
"""
|
|
2919
|
-
eni_mtu: NotRequired[pulumi.Input[
|
|
2918
|
+
eni_mtu: NotRequired[pulumi.Input[_builtins.int]]
|
|
2920
2919
|
"""
|
|
2921
2920
|
Used to configure the MTU size for attached ENIs. The valid range is from 576 to 9001.
|
|
2922
2921
|
|
|
2923
2922
|
Defaults to 9001.
|
|
2924
2923
|
"""
|
|
2925
|
-
external_snat: NotRequired[pulumi.Input[
|
|
2924
|
+
external_snat: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2926
2925
|
"""
|
|
2927
2926
|
Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied.
|
|
2928
2927
|
|
|
2929
2928
|
Defaults to false.
|
|
2930
2929
|
"""
|
|
2931
|
-
log_file: NotRequired[pulumi.Input[
|
|
2930
|
+
log_file: NotRequired[pulumi.Input[_builtins.str]]
|
|
2932
2931
|
"""
|
|
2933
2932
|
Specifies the file path used for logs.
|
|
2934
2933
|
|
|
2935
2934
|
Defaults to "stdout" to emit Pod logs for `kubectl logs`.
|
|
2936
2935
|
"""
|
|
2937
|
-
log_level: NotRequired[pulumi.Input[
|
|
2936
|
+
log_level: NotRequired[pulumi.Input[_builtins.str]]
|
|
2938
2937
|
"""
|
|
2939
2938
|
Specifies the log level used for logs.
|
|
2940
2939
|
|
|
2941
2940
|
Defaults to "DEBUG"
|
|
2942
2941
|
Valid values: "DEBUG", "INFO", "WARN", "ERROR", or "FATAL".
|
|
2943
2942
|
"""
|
|
2944
|
-
node_port_support: NotRequired[pulumi.Input[
|
|
2943
|
+
node_port_support: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2945
2944
|
"""
|
|
2946
2945
|
Specifies whether NodePort services are enabled on a worker node's primary network interface. This requires additional iptables rules and that the kernel's reverse path filter on the primary interface is set to loose.
|
|
2947
2946
|
|
|
@@ -2955,11 +2954,11 @@ if not MYPY:
|
|
|
2955
2954
|
"""
|
|
2956
2955
|
How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
2957
2956
|
"""
|
|
2958
|
-
security_context_privileged: NotRequired[pulumi.Input[
|
|
2957
|
+
security_context_privileged: NotRequired[pulumi.Input[_builtins.bool]]
|
|
2959
2958
|
"""
|
|
2960
2959
|
Pass privilege to containers securityContext. This is required when SELinux is enabled. This value will not be passed to the CNI config by default
|
|
2961
2960
|
"""
|
|
2962
|
-
service_account_role_arn: NotRequired[pulumi.Input[
|
|
2961
|
+
service_account_role_arn: NotRequired[pulumi.Input[_builtins.str]]
|
|
2963
2962
|
"""
|
|
2964
2963
|
The Amazon Resource Name (ARN) of an existing IAM role to bind to the add-on's service account. The role must be assigned the IAM permissions required by the add-on. If you don't specify an existing IAM role, then the add-on uses the permissions assigned to the node IAM role.
|
|
2965
2964
|
|
|
@@ -2967,7 +2966,7 @@ if not MYPY:
|
|
|
2967
2966
|
|
|
2968
2967
|
Note: To specify an existing IAM role, you must have an IAM OpenID Connect (OIDC) provider created for your cluster. For more information, see [Enabling IAM roles for service accounts on your cluster](https://docs.aws.amazon.com/eks/latest/userguide/enable-iam-roles-for-service-accounts.html) in the Amazon EKS User Guide.
|
|
2969
2968
|
"""
|
|
2970
|
-
veth_prefix: NotRequired[pulumi.Input[
|
|
2969
|
+
veth_prefix: NotRequired[pulumi.Input[_builtins.str]]
|
|
2971
2970
|
"""
|
|
2972
2971
|
Specifies the veth prefix used to generate the host-side veth device name for the CNI.
|
|
2973
2972
|
|
|
@@ -2975,17 +2974,17 @@ if not MYPY:
|
|
|
2975
2974
|
|
|
2976
2975
|
Defaults to "eni".
|
|
2977
2976
|
"""
|
|
2978
|
-
warm_eni_target: NotRequired[pulumi.Input[
|
|
2977
|
+
warm_eni_target: NotRequired[pulumi.Input[_builtins.int]]
|
|
2979
2978
|
"""
|
|
2980
2979
|
Specifies the number of free elastic network interfaces (and all of their available IP addresses) that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
2981
2980
|
|
|
2982
2981
|
Defaults to 1.
|
|
2983
2982
|
"""
|
|
2984
|
-
warm_ip_target: NotRequired[pulumi.Input[
|
|
2983
|
+
warm_ip_target: NotRequired[pulumi.Input[_builtins.int]]
|
|
2985
2984
|
"""
|
|
2986
2985
|
Specifies the number of free IP addresses that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
2987
2986
|
"""
|
|
2988
|
-
warm_prefix_target: NotRequired[pulumi.Input[
|
|
2987
|
+
warm_prefix_target: NotRequired[pulumi.Input[_builtins.int]]
|
|
2989
2988
|
"""
|
|
2990
2989
|
WARM_PREFIX_TARGET will allocate one full (/28) prefix even if a single IP is consumed with the existing prefix. Ref: https://github.com/aws/amazon-vpc-cni-k8s/blob/master/docs/prefix-and-ip-target.md
|
|
2991
2990
|
"""
|
|
@@ -2995,84 +2994,84 @@ elif False:
|
|
|
2995
2994
|
@pulumi.input_type
|
|
2996
2995
|
class VpcCniOptionsArgs:
|
|
2997
2996
|
def __init__(__self__, *,
|
|
2998
|
-
addon_version: Optional[pulumi.Input[
|
|
2999
|
-
cni_configure_rpfilter: Optional[pulumi.Input[
|
|
3000
|
-
cni_custom_network_cfg: Optional[pulumi.Input[
|
|
3001
|
-
cni_external_snat: Optional[pulumi.Input[
|
|
2997
|
+
addon_version: Optional[pulumi.Input[_builtins.str]] = None,
|
|
2998
|
+
cni_configure_rpfilter: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
2999
|
+
cni_custom_network_cfg: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3000
|
+
cni_external_snat: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3002
3001
|
configuration_values: Optional[pulumi.Input[Mapping[str, Any]]] = None,
|
|
3003
|
-
custom_network_config: Optional[pulumi.Input[
|
|
3004
|
-
disable_tcp_early_demux: Optional[pulumi.Input[
|
|
3005
|
-
enable_network_policy: Optional[pulumi.Input[
|
|
3006
|
-
enable_pod_eni: Optional[pulumi.Input[
|
|
3007
|
-
enable_prefix_delegation: Optional[pulumi.Input[
|
|
3008
|
-
eni_config_label_def: Optional[pulumi.Input[
|
|
3009
|
-
eni_mtu: Optional[pulumi.Input[
|
|
3010
|
-
external_snat: Optional[pulumi.Input[
|
|
3011
|
-
log_file: Optional[pulumi.Input[
|
|
3012
|
-
log_level: Optional[pulumi.Input[
|
|
3013
|
-
node_port_support: Optional[pulumi.Input[
|
|
3002
|
+
custom_network_config: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3003
|
+
disable_tcp_early_demux: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3004
|
+
enable_network_policy: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3005
|
+
enable_pod_eni: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3006
|
+
enable_prefix_delegation: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3007
|
+
eni_config_label_def: Optional[pulumi.Input[_builtins.str]] = None,
|
|
3008
|
+
eni_mtu: Optional[pulumi.Input[_builtins.int]] = None,
|
|
3009
|
+
external_snat: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3010
|
+
log_file: Optional[pulumi.Input[_builtins.str]] = None,
|
|
3011
|
+
log_level: Optional[pulumi.Input[_builtins.str]] = None,
|
|
3012
|
+
node_port_support: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3014
3013
|
resolve_conflicts_on_create: Optional['ResolveConflictsOnCreate'] = None,
|
|
3015
3014
|
resolve_conflicts_on_update: Optional['ResolveConflictsOnUpdate'] = None,
|
|
3016
|
-
security_context_privileged: Optional[pulumi.Input[
|
|
3017
|
-
service_account_role_arn: Optional[pulumi.Input[
|
|
3018
|
-
veth_prefix: Optional[pulumi.Input[
|
|
3019
|
-
warm_eni_target: Optional[pulumi.Input[
|
|
3020
|
-
warm_ip_target: Optional[pulumi.Input[
|
|
3021
|
-
warm_prefix_target: Optional[pulumi.Input[
|
|
3015
|
+
security_context_privileged: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
3016
|
+
service_account_role_arn: Optional[pulumi.Input[_builtins.str]] = None,
|
|
3017
|
+
veth_prefix: Optional[pulumi.Input[_builtins.str]] = None,
|
|
3018
|
+
warm_eni_target: Optional[pulumi.Input[_builtins.int]] = None,
|
|
3019
|
+
warm_ip_target: Optional[pulumi.Input[_builtins.int]] = None,
|
|
3020
|
+
warm_prefix_target: Optional[pulumi.Input[_builtins.int]] = None):
|
|
3022
3021
|
"""
|
|
3023
3022
|
Describes the configuration options available for the Amazon VPC CNI plugin for Kubernetes.
|
|
3024
|
-
:param pulumi.Input[
|
|
3025
|
-
:param pulumi.Input[
|
|
3026
|
-
:param pulumi.Input[
|
|
3027
|
-
:param pulumi.Input[
|
|
3023
|
+
:param pulumi.Input[_builtins.str] addon_version: The version of the addon to use. If not specified, the latest version of the addon for the cluster's Kubernetes version will be used.
|
|
3024
|
+
:param pulumi.Input[_builtins.bool] cni_configure_rpfilter: Specifies whether ipamd should configure rp filter for primary interface. Default is `false`.
|
|
3025
|
+
:param pulumi.Input[_builtins.bool] cni_custom_network_cfg: Specifies that your pods may use subnets and security groups that are independent of your worker node's VPC configuration. By default, pods share the same subnet and security groups as the worker node's primary interface. Setting this variable to true causes ipamd to use the security groups and VPC subnet in a worker node's ENIConfig for elastic network interface allocation. You must create an ENIConfig custom resource for each subnet that your pods will reside in, and then annotate or label each worker node to use a specific ENIConfig (multiple worker nodes can be annotated or labelled with the same ENIConfig). Worker nodes can only be annotated with a single ENIConfig at a time, and the subnet in the ENIConfig must belong to the same Availability Zone that the worker node resides in. For more information, see CNI Custom Networking in the Amazon EKS User Guide. Default is `false`
|
|
3026
|
+
:param pulumi.Input[_builtins.bool] cni_external_snat: Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied. Disable SNAT if you need to allow inbound communication to your pods from external VPNs, direct connections, and external VPCs, and your pods do not need to access the Internet directly via an Internet Gateway. However, your nodes must be running in a private subnet and connected to the internet through an AWS NAT Gateway or another external NAT device. Default is `false`
|
|
3028
3027
|
:param pulumi.Input[Mapping[str, Any]] configuration_values: Custom configuration values for the vpc-cni addon. This object must match the schema derived from [describe-addon-configuration](https://docs.aws.amazon.com/cli/latest/reference/eks/describe-addon-configuration.html).
|
|
3029
|
-
:param pulumi.Input[
|
|
3028
|
+
:param pulumi.Input[_builtins.bool] custom_network_config: Specifies that your pods may use subnets and security groups (within the same VPC as your control plane resources) that are independent of your cluster's `resourcesVpcConfig`.
|
|
3030
3029
|
|
|
3031
3030
|
Defaults to false.
|
|
3032
|
-
:param pulumi.Input[
|
|
3033
|
-
:param pulumi.Input[
|
|
3031
|
+
:param pulumi.Input[_builtins.bool] disable_tcp_early_demux: Allows the kubelet's liveness and readiness probes to connect via TCP when pod ENI is enabled. This will slightly increase local TCP connection latency.
|
|
3032
|
+
:param pulumi.Input[_builtins.bool] enable_network_policy: Enables using Kubernetes network policies. In Kubernetes, by default, all pod-to-pod communication is allowed. Communication can be restricted with Kubernetes NetworkPolicy objects.
|
|
3034
3033
|
|
|
3035
3034
|
See for more information: [Kubernetes Network Policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/).
|
|
3036
|
-
:param pulumi.Input[
|
|
3037
|
-
:param pulumi.Input[
|
|
3038
|
-
:param pulumi.Input[
|
|
3035
|
+
:param pulumi.Input[_builtins.bool] enable_pod_eni: Specifies whether to allow IPAMD to add the `vpc.amazonaws.com/has-trunk-attached` label to the node if the instance has capacity to attach an additional ENI. Default is `false`. If using liveness and readiness probes, you will also need to disable TCP early demux.
|
|
3036
|
+
:param pulumi.Input[_builtins.bool] enable_prefix_delegation: IPAMD will start allocating (/28) prefixes to the ENIs with ENABLE_PREFIX_DELEGATION set to true.
|
|
3037
|
+
:param pulumi.Input[_builtins.str] eni_config_label_def: Specifies the ENI_CONFIG_LABEL_DEF environment variable value for worker nodes. This is used to tell Kubernetes to automatically apply the ENIConfig for each Availability Zone
|
|
3039
3038
|
Ref: https://docs.aws.amazon.com/eks/latest/userguide/cni-custom-network.html (step 5(c))
|
|
3040
3039
|
|
|
3041
3040
|
Defaults to the official AWS CNI image in ECR.
|
|
3042
|
-
:param pulumi.Input[
|
|
3041
|
+
:param pulumi.Input[_builtins.int] eni_mtu: Used to configure the MTU size for attached ENIs. The valid range is from 576 to 9001.
|
|
3043
3042
|
|
|
3044
3043
|
Defaults to 9001.
|
|
3045
|
-
:param pulumi.Input[
|
|
3044
|
+
:param pulumi.Input[_builtins.bool] external_snat: Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied.
|
|
3046
3045
|
|
|
3047
3046
|
Defaults to false.
|
|
3048
|
-
:param pulumi.Input[
|
|
3047
|
+
:param pulumi.Input[_builtins.str] log_file: Specifies the file path used for logs.
|
|
3049
3048
|
|
|
3050
3049
|
Defaults to "stdout" to emit Pod logs for `kubectl logs`.
|
|
3051
|
-
:param pulumi.Input[
|
|
3050
|
+
:param pulumi.Input[_builtins.str] log_level: Specifies the log level used for logs.
|
|
3052
3051
|
|
|
3053
3052
|
Defaults to "DEBUG"
|
|
3054
3053
|
Valid values: "DEBUG", "INFO", "WARN", "ERROR", or "FATAL".
|
|
3055
|
-
:param pulumi.Input[
|
|
3054
|
+
:param pulumi.Input[_builtins.bool] node_port_support: Specifies whether NodePort services are enabled on a worker node's primary network interface. This requires additional iptables rules and that the kernel's reverse path filter on the primary interface is set to loose.
|
|
3056
3055
|
|
|
3057
3056
|
Defaults to true.
|
|
3058
3057
|
:param 'ResolveConflictsOnCreate' resolve_conflicts_on_create: How to resolve field value conflicts when migrating a self-managed add-on to an Amazon EKS add-on. Valid values are `NONE` and `OVERWRITE`. For more details see the [CreateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_CreateAddon.html) API Docs.
|
|
3059
3058
|
:param 'ResolveConflictsOnUpdate' resolve_conflicts_on_update: How to resolve field value conflicts for an Amazon EKS add-on if you've changed a value from the Amazon EKS default value. Valid values are `NONE`, `OVERWRITE`, and `PRESERVE`. For more details see the [UpdateAddon](https://docs.aws.amazon.com/eks/latest/APIReference/API_UpdateAddon.html) API Docs.
|
|
3060
|
-
:param pulumi.Input[
|
|
3061
|
-
:param pulumi.Input[
|
|
3059
|
+
:param pulumi.Input[_builtins.bool] security_context_privileged: Pass privilege to containers securityContext. This is required when SELinux is enabled. This value will not be passed to the CNI config by default
|
|
3060
|
+
:param pulumi.Input[_builtins.str] service_account_role_arn: The Amazon Resource Name (ARN) of an existing IAM role to bind to the add-on's service account. The role must be assigned the IAM permissions required by the add-on. If you don't specify an existing IAM role, then the add-on uses the permissions assigned to the node IAM role.
|
|
3062
3061
|
|
|
3063
3062
|
For more information, see [Amazon EKS node IAM role](https://docs.aws.amazon.com/eks/latest/userguide/create-node-role.html) in the Amazon EKS User Guide.
|
|
3064
3063
|
|
|
3065
3064
|
Note: To specify an existing IAM role, you must have an IAM OpenID Connect (OIDC) provider created for your cluster. For more information, see [Enabling IAM roles for service accounts on your cluster](https://docs.aws.amazon.com/eks/latest/userguide/enable-iam-roles-for-service-accounts.html) in the Amazon EKS User Guide.
|
|
3066
|
-
:param pulumi.Input[
|
|
3065
|
+
:param pulumi.Input[_builtins.str] veth_prefix: Specifies the veth prefix used to generate the host-side veth device name for the CNI.
|
|
3067
3066
|
|
|
3068
3067
|
The prefix can be at most 4 characters long.
|
|
3069
3068
|
|
|
3070
3069
|
Defaults to "eni".
|
|
3071
|
-
:param pulumi.Input[
|
|
3070
|
+
:param pulumi.Input[_builtins.int] warm_eni_target: Specifies the number of free elastic network interfaces (and all of their available IP addresses) that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
3072
3071
|
|
|
3073
3072
|
Defaults to 1.
|
|
3074
|
-
:param pulumi.Input[
|
|
3075
|
-
:param pulumi.Input[
|
|
3073
|
+
:param pulumi.Input[_builtins.int] warm_ip_target: Specifies the number of free IP addresses that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
3074
|
+
:param pulumi.Input[_builtins.int] warm_prefix_target: WARM_PREFIX_TARGET will allocate one full (/28) prefix even if a single IP is consumed with the existing prefix. Ref: https://github.com/aws/amazon-vpc-cni-k8s/blob/master/docs/prefix-and-ip-target.md
|
|
3076
3075
|
"""
|
|
3077
3076
|
if addon_version is not None:
|
|
3078
3077
|
pulumi.set(__self__, "addon_version", addon_version)
|
|
@@ -3127,55 +3126,55 @@ class VpcCniOptionsArgs:
|
|
|
3127
3126
|
if warm_prefix_target is not None:
|
|
3128
3127
|
pulumi.set(__self__, "warm_prefix_target", warm_prefix_target)
|
|
3129
3128
|
|
|
3130
|
-
@property
|
|
3129
|
+
@_builtins.property
|
|
3131
3130
|
@pulumi.getter(name="addonVersion")
|
|
3132
|
-
def addon_version(self) -> Optional[pulumi.Input[
|
|
3131
|
+
def addon_version(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3133
3132
|
"""
|
|
3134
3133
|
The version of the addon to use. If not specified, the latest version of the addon for the cluster's Kubernetes version will be used.
|
|
3135
3134
|
"""
|
|
3136
3135
|
return pulumi.get(self, "addon_version")
|
|
3137
3136
|
|
|
3138
3137
|
@addon_version.setter
|
|
3139
|
-
def addon_version(self, value: Optional[pulumi.Input[
|
|
3138
|
+
def addon_version(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3140
3139
|
pulumi.set(self, "addon_version", value)
|
|
3141
3140
|
|
|
3142
|
-
@property
|
|
3141
|
+
@_builtins.property
|
|
3143
3142
|
@pulumi.getter(name="cniConfigureRpfilter")
|
|
3144
|
-
def cni_configure_rpfilter(self) -> Optional[pulumi.Input[
|
|
3143
|
+
def cni_configure_rpfilter(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3145
3144
|
"""
|
|
3146
3145
|
Specifies whether ipamd should configure rp filter for primary interface. Default is `false`.
|
|
3147
3146
|
"""
|
|
3148
3147
|
return pulumi.get(self, "cni_configure_rpfilter")
|
|
3149
3148
|
|
|
3150
3149
|
@cni_configure_rpfilter.setter
|
|
3151
|
-
def cni_configure_rpfilter(self, value: Optional[pulumi.Input[
|
|
3150
|
+
def cni_configure_rpfilter(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3152
3151
|
pulumi.set(self, "cni_configure_rpfilter", value)
|
|
3153
3152
|
|
|
3154
|
-
@property
|
|
3153
|
+
@_builtins.property
|
|
3155
3154
|
@pulumi.getter(name="cniCustomNetworkCfg")
|
|
3156
|
-
def cni_custom_network_cfg(self) -> Optional[pulumi.Input[
|
|
3155
|
+
def cni_custom_network_cfg(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3157
3156
|
"""
|
|
3158
3157
|
Specifies that your pods may use subnets and security groups that are independent of your worker node's VPC configuration. By default, pods share the same subnet and security groups as the worker node's primary interface. Setting this variable to true causes ipamd to use the security groups and VPC subnet in a worker node's ENIConfig for elastic network interface allocation. You must create an ENIConfig custom resource for each subnet that your pods will reside in, and then annotate or label each worker node to use a specific ENIConfig (multiple worker nodes can be annotated or labelled with the same ENIConfig). Worker nodes can only be annotated with a single ENIConfig at a time, and the subnet in the ENIConfig must belong to the same Availability Zone that the worker node resides in. For more information, see CNI Custom Networking in the Amazon EKS User Guide. Default is `false`
|
|
3159
3158
|
"""
|
|
3160
3159
|
return pulumi.get(self, "cni_custom_network_cfg")
|
|
3161
3160
|
|
|
3162
3161
|
@cni_custom_network_cfg.setter
|
|
3163
|
-
def cni_custom_network_cfg(self, value: Optional[pulumi.Input[
|
|
3162
|
+
def cni_custom_network_cfg(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3164
3163
|
pulumi.set(self, "cni_custom_network_cfg", value)
|
|
3165
3164
|
|
|
3166
|
-
@property
|
|
3165
|
+
@_builtins.property
|
|
3167
3166
|
@pulumi.getter(name="cniExternalSnat")
|
|
3168
|
-
def cni_external_snat(self) -> Optional[pulumi.Input[
|
|
3167
|
+
def cni_external_snat(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3169
3168
|
"""
|
|
3170
3169
|
Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied. Disable SNAT if you need to allow inbound communication to your pods from external VPNs, direct connections, and external VPCs, and your pods do not need to access the Internet directly via an Internet Gateway. However, your nodes must be running in a private subnet and connected to the internet through an AWS NAT Gateway or another external NAT device. Default is `false`
|
|
3171
3170
|
"""
|
|
3172
3171
|
return pulumi.get(self, "cni_external_snat")
|
|
3173
3172
|
|
|
3174
3173
|
@cni_external_snat.setter
|
|
3175
|
-
def cni_external_snat(self, value: Optional[pulumi.Input[
|
|
3174
|
+
def cni_external_snat(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3176
3175
|
pulumi.set(self, "cni_external_snat", value)
|
|
3177
3176
|
|
|
3178
|
-
@property
|
|
3177
|
+
@_builtins.property
|
|
3179
3178
|
@pulumi.getter(name="configurationValues")
|
|
3180
3179
|
def configuration_values(self) -> Optional[pulumi.Input[Mapping[str, Any]]]:
|
|
3181
3180
|
"""
|
|
@@ -3187,9 +3186,9 @@ class VpcCniOptionsArgs:
|
|
|
3187
3186
|
def configuration_values(self, value: Optional[pulumi.Input[Mapping[str, Any]]]):
|
|
3188
3187
|
pulumi.set(self, "configuration_values", value)
|
|
3189
3188
|
|
|
3190
|
-
@property
|
|
3189
|
+
@_builtins.property
|
|
3191
3190
|
@pulumi.getter(name="customNetworkConfig")
|
|
3192
|
-
def custom_network_config(self) -> Optional[pulumi.Input[
|
|
3191
|
+
def custom_network_config(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3193
3192
|
"""
|
|
3194
3193
|
Specifies that your pods may use subnets and security groups (within the same VPC as your control plane resources) that are independent of your cluster's `resourcesVpcConfig`.
|
|
3195
3194
|
|
|
@@ -3198,24 +3197,24 @@ class VpcCniOptionsArgs:
|
|
|
3198
3197
|
return pulumi.get(self, "custom_network_config")
|
|
3199
3198
|
|
|
3200
3199
|
@custom_network_config.setter
|
|
3201
|
-
def custom_network_config(self, value: Optional[pulumi.Input[
|
|
3200
|
+
def custom_network_config(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3202
3201
|
pulumi.set(self, "custom_network_config", value)
|
|
3203
3202
|
|
|
3204
|
-
@property
|
|
3203
|
+
@_builtins.property
|
|
3205
3204
|
@pulumi.getter(name="disableTcpEarlyDemux")
|
|
3206
|
-
def disable_tcp_early_demux(self) -> Optional[pulumi.Input[
|
|
3205
|
+
def disable_tcp_early_demux(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3207
3206
|
"""
|
|
3208
3207
|
Allows the kubelet's liveness and readiness probes to connect via TCP when pod ENI is enabled. This will slightly increase local TCP connection latency.
|
|
3209
3208
|
"""
|
|
3210
3209
|
return pulumi.get(self, "disable_tcp_early_demux")
|
|
3211
3210
|
|
|
3212
3211
|
@disable_tcp_early_demux.setter
|
|
3213
|
-
def disable_tcp_early_demux(self, value: Optional[pulumi.Input[
|
|
3212
|
+
def disable_tcp_early_demux(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3214
3213
|
pulumi.set(self, "disable_tcp_early_demux", value)
|
|
3215
3214
|
|
|
3216
|
-
@property
|
|
3215
|
+
@_builtins.property
|
|
3217
3216
|
@pulumi.getter(name="enableNetworkPolicy")
|
|
3218
|
-
def enable_network_policy(self) -> Optional[pulumi.Input[
|
|
3217
|
+
def enable_network_policy(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3219
3218
|
"""
|
|
3220
3219
|
Enables using Kubernetes network policies. In Kubernetes, by default, all pod-to-pod communication is allowed. Communication can be restricted with Kubernetes NetworkPolicy objects.
|
|
3221
3220
|
|
|
@@ -3224,36 +3223,36 @@ class VpcCniOptionsArgs:
|
|
|
3224
3223
|
return pulumi.get(self, "enable_network_policy")
|
|
3225
3224
|
|
|
3226
3225
|
@enable_network_policy.setter
|
|
3227
|
-
def enable_network_policy(self, value: Optional[pulumi.Input[
|
|
3226
|
+
def enable_network_policy(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3228
3227
|
pulumi.set(self, "enable_network_policy", value)
|
|
3229
3228
|
|
|
3230
|
-
@property
|
|
3229
|
+
@_builtins.property
|
|
3231
3230
|
@pulumi.getter(name="enablePodEni")
|
|
3232
|
-
def enable_pod_eni(self) -> Optional[pulumi.Input[
|
|
3231
|
+
def enable_pod_eni(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3233
3232
|
"""
|
|
3234
3233
|
Specifies whether to allow IPAMD to add the `vpc.amazonaws.com/has-trunk-attached` label to the node if the instance has capacity to attach an additional ENI. Default is `false`. If using liveness and readiness probes, you will also need to disable TCP early demux.
|
|
3235
3234
|
"""
|
|
3236
3235
|
return pulumi.get(self, "enable_pod_eni")
|
|
3237
3236
|
|
|
3238
3237
|
@enable_pod_eni.setter
|
|
3239
|
-
def enable_pod_eni(self, value: Optional[pulumi.Input[
|
|
3238
|
+
def enable_pod_eni(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3240
3239
|
pulumi.set(self, "enable_pod_eni", value)
|
|
3241
3240
|
|
|
3242
|
-
@property
|
|
3241
|
+
@_builtins.property
|
|
3243
3242
|
@pulumi.getter(name="enablePrefixDelegation")
|
|
3244
|
-
def enable_prefix_delegation(self) -> Optional[pulumi.Input[
|
|
3243
|
+
def enable_prefix_delegation(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3245
3244
|
"""
|
|
3246
3245
|
IPAMD will start allocating (/28) prefixes to the ENIs with ENABLE_PREFIX_DELEGATION set to true.
|
|
3247
3246
|
"""
|
|
3248
3247
|
return pulumi.get(self, "enable_prefix_delegation")
|
|
3249
3248
|
|
|
3250
3249
|
@enable_prefix_delegation.setter
|
|
3251
|
-
def enable_prefix_delegation(self, value: Optional[pulumi.Input[
|
|
3250
|
+
def enable_prefix_delegation(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3252
3251
|
pulumi.set(self, "enable_prefix_delegation", value)
|
|
3253
3252
|
|
|
3254
|
-
@property
|
|
3253
|
+
@_builtins.property
|
|
3255
3254
|
@pulumi.getter(name="eniConfigLabelDef")
|
|
3256
|
-
def eni_config_label_def(self) -> Optional[pulumi.Input[
|
|
3255
|
+
def eni_config_label_def(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3257
3256
|
"""
|
|
3258
3257
|
Specifies the ENI_CONFIG_LABEL_DEF environment variable value for worker nodes. This is used to tell Kubernetes to automatically apply the ENIConfig for each Availability Zone
|
|
3259
3258
|
Ref: https://docs.aws.amazon.com/eks/latest/userguide/cni-custom-network.html (step 5(c))
|
|
@@ -3263,12 +3262,12 @@ class VpcCniOptionsArgs:
|
|
|
3263
3262
|
return pulumi.get(self, "eni_config_label_def")
|
|
3264
3263
|
|
|
3265
3264
|
@eni_config_label_def.setter
|
|
3266
|
-
def eni_config_label_def(self, value: Optional[pulumi.Input[
|
|
3265
|
+
def eni_config_label_def(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3267
3266
|
pulumi.set(self, "eni_config_label_def", value)
|
|
3268
3267
|
|
|
3269
|
-
@property
|
|
3268
|
+
@_builtins.property
|
|
3270
3269
|
@pulumi.getter(name="eniMtu")
|
|
3271
|
-
def eni_mtu(self) -> Optional[pulumi.Input[
|
|
3270
|
+
def eni_mtu(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
3272
3271
|
"""
|
|
3273
3272
|
Used to configure the MTU size for attached ENIs. The valid range is from 576 to 9001.
|
|
3274
3273
|
|
|
@@ -3277,12 +3276,12 @@ class VpcCniOptionsArgs:
|
|
|
3277
3276
|
return pulumi.get(self, "eni_mtu")
|
|
3278
3277
|
|
|
3279
3278
|
@eni_mtu.setter
|
|
3280
|
-
def eni_mtu(self, value: Optional[pulumi.Input[
|
|
3279
|
+
def eni_mtu(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
3281
3280
|
pulumi.set(self, "eni_mtu", value)
|
|
3282
3281
|
|
|
3283
|
-
@property
|
|
3282
|
+
@_builtins.property
|
|
3284
3283
|
@pulumi.getter(name="externalSnat")
|
|
3285
|
-
def external_snat(self) -> Optional[pulumi.Input[
|
|
3284
|
+
def external_snat(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3286
3285
|
"""
|
|
3287
3286
|
Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied.
|
|
3288
3287
|
|
|
@@ -3291,12 +3290,12 @@ class VpcCniOptionsArgs:
|
|
|
3291
3290
|
return pulumi.get(self, "external_snat")
|
|
3292
3291
|
|
|
3293
3292
|
@external_snat.setter
|
|
3294
|
-
def external_snat(self, value: Optional[pulumi.Input[
|
|
3293
|
+
def external_snat(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3295
3294
|
pulumi.set(self, "external_snat", value)
|
|
3296
3295
|
|
|
3297
|
-
@property
|
|
3296
|
+
@_builtins.property
|
|
3298
3297
|
@pulumi.getter(name="logFile")
|
|
3299
|
-
def log_file(self) -> Optional[pulumi.Input[
|
|
3298
|
+
def log_file(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3300
3299
|
"""
|
|
3301
3300
|
Specifies the file path used for logs.
|
|
3302
3301
|
|
|
@@ -3305,12 +3304,12 @@ class VpcCniOptionsArgs:
|
|
|
3305
3304
|
return pulumi.get(self, "log_file")
|
|
3306
3305
|
|
|
3307
3306
|
@log_file.setter
|
|
3308
|
-
def log_file(self, value: Optional[pulumi.Input[
|
|
3307
|
+
def log_file(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3309
3308
|
pulumi.set(self, "log_file", value)
|
|
3310
3309
|
|
|
3311
|
-
@property
|
|
3310
|
+
@_builtins.property
|
|
3312
3311
|
@pulumi.getter(name="logLevel")
|
|
3313
|
-
def log_level(self) -> Optional[pulumi.Input[
|
|
3312
|
+
def log_level(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3314
3313
|
"""
|
|
3315
3314
|
Specifies the log level used for logs.
|
|
3316
3315
|
|
|
@@ -3320,12 +3319,12 @@ class VpcCniOptionsArgs:
|
|
|
3320
3319
|
return pulumi.get(self, "log_level")
|
|
3321
3320
|
|
|
3322
3321
|
@log_level.setter
|
|
3323
|
-
def log_level(self, value: Optional[pulumi.Input[
|
|
3322
|
+
def log_level(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3324
3323
|
pulumi.set(self, "log_level", value)
|
|
3325
3324
|
|
|
3326
|
-
@property
|
|
3325
|
+
@_builtins.property
|
|
3327
3326
|
@pulumi.getter(name="nodePortSupport")
|
|
3328
|
-
def node_port_support(self) -> Optional[pulumi.Input[
|
|
3327
|
+
def node_port_support(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3329
3328
|
"""
|
|
3330
3329
|
Specifies whether NodePort services are enabled on a worker node's primary network interface. This requires additional iptables rules and that the kernel's reverse path filter on the primary interface is set to loose.
|
|
3331
3330
|
|
|
@@ -3334,10 +3333,10 @@ class VpcCniOptionsArgs:
|
|
|
3334
3333
|
return pulumi.get(self, "node_port_support")
|
|
3335
3334
|
|
|
3336
3335
|
@node_port_support.setter
|
|
3337
|
-
def node_port_support(self, value: Optional[pulumi.Input[
|
|
3336
|
+
def node_port_support(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3338
3337
|
pulumi.set(self, "node_port_support", value)
|
|
3339
3338
|
|
|
3340
|
-
@property
|
|
3339
|
+
@_builtins.property
|
|
3341
3340
|
@pulumi.getter(name="resolveConflictsOnCreate")
|
|
3342
3341
|
def resolve_conflicts_on_create(self) -> Optional['ResolveConflictsOnCreate']:
|
|
3343
3342
|
"""
|
|
@@ -3349,7 +3348,7 @@ class VpcCniOptionsArgs:
|
|
|
3349
3348
|
def resolve_conflicts_on_create(self, value: Optional['ResolveConflictsOnCreate']):
|
|
3350
3349
|
pulumi.set(self, "resolve_conflicts_on_create", value)
|
|
3351
3350
|
|
|
3352
|
-
@property
|
|
3351
|
+
@_builtins.property
|
|
3353
3352
|
@pulumi.getter(name="resolveConflictsOnUpdate")
|
|
3354
3353
|
def resolve_conflicts_on_update(self) -> Optional['ResolveConflictsOnUpdate']:
|
|
3355
3354
|
"""
|
|
@@ -3361,21 +3360,21 @@ class VpcCniOptionsArgs:
|
|
|
3361
3360
|
def resolve_conflicts_on_update(self, value: Optional['ResolveConflictsOnUpdate']):
|
|
3362
3361
|
pulumi.set(self, "resolve_conflicts_on_update", value)
|
|
3363
3362
|
|
|
3364
|
-
@property
|
|
3363
|
+
@_builtins.property
|
|
3365
3364
|
@pulumi.getter(name="securityContextPrivileged")
|
|
3366
|
-
def security_context_privileged(self) -> Optional[pulumi.Input[
|
|
3365
|
+
def security_context_privileged(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
3367
3366
|
"""
|
|
3368
3367
|
Pass privilege to containers securityContext. This is required when SELinux is enabled. This value will not be passed to the CNI config by default
|
|
3369
3368
|
"""
|
|
3370
3369
|
return pulumi.get(self, "security_context_privileged")
|
|
3371
3370
|
|
|
3372
3371
|
@security_context_privileged.setter
|
|
3373
|
-
def security_context_privileged(self, value: Optional[pulumi.Input[
|
|
3372
|
+
def security_context_privileged(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
3374
3373
|
pulumi.set(self, "security_context_privileged", value)
|
|
3375
3374
|
|
|
3376
|
-
@property
|
|
3375
|
+
@_builtins.property
|
|
3377
3376
|
@pulumi.getter(name="serviceAccountRoleArn")
|
|
3378
|
-
def service_account_role_arn(self) -> Optional[pulumi.Input[
|
|
3377
|
+
def service_account_role_arn(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3379
3378
|
"""
|
|
3380
3379
|
The Amazon Resource Name (ARN) of an existing IAM role to bind to the add-on's service account. The role must be assigned the IAM permissions required by the add-on. If you don't specify an existing IAM role, then the add-on uses the permissions assigned to the node IAM role.
|
|
3381
3380
|
|
|
@@ -3386,12 +3385,12 @@ class VpcCniOptionsArgs:
|
|
|
3386
3385
|
return pulumi.get(self, "service_account_role_arn")
|
|
3387
3386
|
|
|
3388
3387
|
@service_account_role_arn.setter
|
|
3389
|
-
def service_account_role_arn(self, value: Optional[pulumi.Input[
|
|
3388
|
+
def service_account_role_arn(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3390
3389
|
pulumi.set(self, "service_account_role_arn", value)
|
|
3391
3390
|
|
|
3392
|
-
@property
|
|
3391
|
+
@_builtins.property
|
|
3393
3392
|
@pulumi.getter(name="vethPrefix")
|
|
3394
|
-
def veth_prefix(self) -> Optional[pulumi.Input[
|
|
3393
|
+
def veth_prefix(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
3395
3394
|
"""
|
|
3396
3395
|
Specifies the veth prefix used to generate the host-side veth device name for the CNI.
|
|
3397
3396
|
|
|
@@ -3402,12 +3401,12 @@ class VpcCniOptionsArgs:
|
|
|
3402
3401
|
return pulumi.get(self, "veth_prefix")
|
|
3403
3402
|
|
|
3404
3403
|
@veth_prefix.setter
|
|
3405
|
-
def veth_prefix(self, value: Optional[pulumi.Input[
|
|
3404
|
+
def veth_prefix(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
3406
3405
|
pulumi.set(self, "veth_prefix", value)
|
|
3407
3406
|
|
|
3408
|
-
@property
|
|
3407
|
+
@_builtins.property
|
|
3409
3408
|
@pulumi.getter(name="warmEniTarget")
|
|
3410
|
-
def warm_eni_target(self) -> Optional[pulumi.Input[
|
|
3409
|
+
def warm_eni_target(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
3411
3410
|
"""
|
|
3412
3411
|
Specifies the number of free elastic network interfaces (and all of their available IP addresses) that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
3413
3412
|
|
|
@@ -3416,31 +3415,31 @@ class VpcCniOptionsArgs:
|
|
|
3416
3415
|
return pulumi.get(self, "warm_eni_target")
|
|
3417
3416
|
|
|
3418
3417
|
@warm_eni_target.setter
|
|
3419
|
-
def warm_eni_target(self, value: Optional[pulumi.Input[
|
|
3418
|
+
def warm_eni_target(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
3420
3419
|
pulumi.set(self, "warm_eni_target", value)
|
|
3421
3420
|
|
|
3422
|
-
@property
|
|
3421
|
+
@_builtins.property
|
|
3423
3422
|
@pulumi.getter(name="warmIpTarget")
|
|
3424
|
-
def warm_ip_target(self) -> Optional[pulumi.Input[
|
|
3423
|
+
def warm_ip_target(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
3425
3424
|
"""
|
|
3426
3425
|
Specifies the number of free IP addresses that the ipamD daemon should attempt to keep available for pod assignment on the node.
|
|
3427
3426
|
"""
|
|
3428
3427
|
return pulumi.get(self, "warm_ip_target")
|
|
3429
3428
|
|
|
3430
3429
|
@warm_ip_target.setter
|
|
3431
|
-
def warm_ip_target(self, value: Optional[pulumi.Input[
|
|
3430
|
+
def warm_ip_target(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
3432
3431
|
pulumi.set(self, "warm_ip_target", value)
|
|
3433
3432
|
|
|
3434
|
-
@property
|
|
3433
|
+
@_builtins.property
|
|
3435
3434
|
@pulumi.getter(name="warmPrefixTarget")
|
|
3436
|
-
def warm_prefix_target(self) -> Optional[pulumi.Input[
|
|
3435
|
+
def warm_prefix_target(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
3437
3436
|
"""
|
|
3438
3437
|
WARM_PREFIX_TARGET will allocate one full (/28) prefix even if a single IP is consumed with the existing prefix. Ref: https://github.com/aws/amazon-vpc-cni-k8s/blob/master/docs/prefix-and-ip-target.md
|
|
3439
3438
|
"""
|
|
3440
3439
|
return pulumi.get(self, "warm_prefix_target")
|
|
3441
3440
|
|
|
3442
3441
|
@warm_prefix_target.setter
|
|
3443
|
-
def warm_prefix_target(self, value: Optional[pulumi.Input[
|
|
3442
|
+
def warm_prefix_target(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
3444
3443
|
pulumi.set(self, "warm_prefix_target", value)
|
|
3445
3444
|
|
|
3446
3445
|
|