pulumi-eks 4.3.0a1766451683__py3-none-any.whl → 4.3.0a1768307250__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- pulumi_eks/__init__.py +1 -1
- pulumi_eks/_enums.py +8 -8
- pulumi_eks/_inputs.py +630 -631
- pulumi_eks/addon.py +59 -60
- pulumi_eks/cluster.py +382 -383
- pulumi_eks/cluster_creation_role_provider.py +14 -15
- pulumi_eks/managed_node_group.py +195 -196
- pulumi_eks/node_group.py +265 -266
- pulumi_eks/node_group_security_group.py +21 -22
- pulumi_eks/node_group_v2.py +280 -281
- pulumi_eks/outputs.py +227 -228
- pulumi_eks/provider.py +1 -2
- pulumi_eks/pulumi-plugin.json +1 -1
- pulumi_eks/vpc_cni_addon.py +196 -197
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/METADATA +1 -1
- pulumi_eks-4.3.0a1768307250.dist-info/RECORD +20 -0
- pulumi_eks-4.3.0a1766451683.dist-info/RECORD +0 -20
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/WHEEL +0 -0
- {pulumi_eks-4.3.0a1766451683.dist-info → pulumi_eks-4.3.0a1768307250.dist-info}/top_level.txt +0 -0
pulumi_eks/cluster.py
CHANGED
|
@@ -2,8 +2,7 @@
|
|
|
2
2
|
# *** WARNING: this file was generated by pulumi-gen-eks. ***
|
|
3
3
|
# *** Do not edit by hand unless you're certain you know what you are doing! ***
|
|
4
4
|
|
|
5
|
-
import builtins
|
|
6
|
-
import copy
|
|
5
|
+
import builtins as _builtins
|
|
7
6
|
import warnings
|
|
8
7
|
import sys
|
|
9
8
|
import pulumi
|
|
@@ -29,60 +28,60 @@ class ClusterArgs:
|
|
|
29
28
|
access_entries: Optional[Mapping[str, 'AccessEntryArgs']] = None,
|
|
30
29
|
authentication_mode: Optional['AuthenticationMode'] = None,
|
|
31
30
|
auto_mode: Optional['AutoModeOptionsArgs'] = None,
|
|
32
|
-
bootstrap_self_managed_addons: Optional[pulumi.Input[
|
|
31
|
+
bootstrap_self_managed_addons: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
33
32
|
cluster_security_group: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']] = None,
|
|
34
|
-
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
35
|
-
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
33
|
+
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
34
|
+
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
36
35
|
coredns_addon_options: Optional['CoreDnsAddonOptionsArgs'] = None,
|
|
37
|
-
create_instance_role: Optional[
|
|
38
|
-
create_oidc_provider: Optional[pulumi.Input[
|
|
36
|
+
create_instance_role: Optional[_builtins.bool] = None,
|
|
37
|
+
create_oidc_provider: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
39
38
|
creation_role_provider: Optional['CreationRoleProviderArgs'] = None,
|
|
40
|
-
deletion_protection: Optional[pulumi.Input[
|
|
41
|
-
desired_capacity: Optional[pulumi.Input[
|
|
42
|
-
enable_config_map_mutable: Optional[pulumi.Input[
|
|
43
|
-
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
44
|
-
encryption_config_key_arn: Optional[pulumi.Input[
|
|
45
|
-
endpoint_private_access: Optional[pulumi.Input[
|
|
46
|
-
endpoint_public_access: Optional[pulumi.Input[
|
|
47
|
-
fargate: Optional[pulumi.Input[Union[
|
|
48
|
-
gpu: Optional[pulumi.Input[
|
|
49
|
-
instance_profile_name: Optional[pulumi.Input[
|
|
39
|
+
deletion_protection: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
40
|
+
desired_capacity: Optional[pulumi.Input[_builtins.int]] = None,
|
|
41
|
+
enable_config_map_mutable: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
42
|
+
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
43
|
+
encryption_config_key_arn: Optional[pulumi.Input[_builtins.str]] = None,
|
|
44
|
+
endpoint_private_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
45
|
+
endpoint_public_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
46
|
+
fargate: Optional[pulumi.Input[Union[_builtins.bool, 'FargateProfileArgs']]] = None,
|
|
47
|
+
gpu: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
48
|
+
instance_profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
50
49
|
instance_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
51
50
|
instance_roles: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]] = None,
|
|
52
|
-
instance_type: Optional[pulumi.Input[
|
|
53
|
-
ip_family: Optional[pulumi.Input[
|
|
51
|
+
instance_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
52
|
+
ip_family: Optional[pulumi.Input[_builtins.str]] = None,
|
|
54
53
|
kube_proxy_addon_options: Optional['KubeProxyAddonOptionsArgs'] = None,
|
|
55
|
-
kubernetes_service_ip_address_range: Optional[pulumi.Input[
|
|
56
|
-
max_size: Optional[pulumi.Input[
|
|
57
|
-
min_size: Optional[pulumi.Input[
|
|
58
|
-
name: Optional[pulumi.Input[
|
|
59
|
-
node_ami_id: Optional[pulumi.Input[
|
|
60
|
-
node_associate_public_ip_address: Optional[
|
|
54
|
+
kubernetes_service_ip_address_range: Optional[pulumi.Input[_builtins.str]] = None,
|
|
55
|
+
max_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
56
|
+
min_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
57
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
58
|
+
node_ami_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
59
|
+
node_associate_public_ip_address: Optional[_builtins.bool] = None,
|
|
61
60
|
node_group_options: Optional['ClusterNodeGroupOptionsArgs'] = None,
|
|
62
|
-
node_public_key: Optional[pulumi.Input[
|
|
63
|
-
node_root_volume_encrypted: Optional[pulumi.Input[
|
|
64
|
-
node_root_volume_size: Optional[pulumi.Input[
|
|
65
|
-
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
66
|
-
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
67
|
-
node_user_data: Optional[pulumi.Input[
|
|
68
|
-
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
61
|
+
node_public_key: Optional[pulumi.Input[_builtins.str]] = None,
|
|
62
|
+
node_root_volume_encrypted: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
63
|
+
node_root_volume_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
64
|
+
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
65
|
+
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
66
|
+
node_user_data: Optional[pulumi.Input[_builtins.str]] = None,
|
|
67
|
+
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
69
68
|
provider_credential_opts: Optional[pulumi.Input['KubeconfigOptionsArgs']] = None,
|
|
70
|
-
proxy: Optional[
|
|
71
|
-
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
72
|
-
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
69
|
+
proxy: Optional[_builtins.str] = None,
|
|
70
|
+
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
71
|
+
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
73
72
|
role_mappings: Optional[pulumi.Input[Sequence[pulumi.Input['RoleMappingArgs']]]] = None,
|
|
74
73
|
service_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
75
|
-
skip_default_node_group: Optional[
|
|
76
|
-
skip_default_security_groups: Optional[
|
|
77
|
-
storage_classes: Optional[Union[
|
|
78
|
-
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
79
|
-
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
74
|
+
skip_default_node_group: Optional[_builtins.bool] = None,
|
|
75
|
+
skip_default_security_groups: Optional[_builtins.bool] = None,
|
|
76
|
+
storage_classes: Optional[Union[_builtins.str, Mapping[str, 'StorageClassArgs']]] = None,
|
|
77
|
+
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
78
|
+
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
80
79
|
upgrade_policy: Optional[pulumi.Input['pulumi_aws.eks.ClusterUpgradePolicyArgs']] = None,
|
|
81
|
-
use_default_vpc_cni: Optional[
|
|
80
|
+
use_default_vpc_cni: Optional[_builtins.bool] = None,
|
|
82
81
|
user_mappings: Optional[pulumi.Input[Sequence[pulumi.Input['UserMappingArgs']]]] = None,
|
|
83
|
-
version: Optional[pulumi.Input[
|
|
82
|
+
version: Optional[pulumi.Input[_builtins.str]] = None,
|
|
84
83
|
vpc_cni_options: Optional['VpcCniOptionsArgs'] = None,
|
|
85
|
-
vpc_id: Optional[pulumi.Input[
|
|
84
|
+
vpc_id: Optional[pulumi.Input[_builtins.str]] = None):
|
|
86
85
|
"""
|
|
87
86
|
The set of arguments for constructing a Cluster resource.
|
|
88
87
|
:param Mapping[str, 'AccessEntryArgs'] access_entries: Access entries to add to the EKS cluster. They can be used to allow IAM principals to access the cluster. Access entries are only supported with authentication mode `API` or `API_AND_CONFIG_MAP`.
|
|
@@ -96,17 +95,17 @@ class ClusterArgs:
|
|
|
96
95
|
:param 'AutoModeOptionsArgs' auto_mode: Configuration Options for EKS Auto Mode. If EKS Auto Mode is enabled, AWS will manage cluster infrastructure on your behalf.
|
|
97
96
|
|
|
98
97
|
For more information, see: https://docs.aws.amazon.com/eks/latest/userguide/automode.html
|
|
99
|
-
:param pulumi.Input[
|
|
98
|
+
:param pulumi.Input[_builtins.bool] bootstrap_self_managed_addons: Install default unmanaged add-ons, such as `aws-cni`, `kube-proxy`, and CoreDNS during cluster creation. If `false`, you must manually install desired add-ons. Changing this value will force a new cluster to be created. Defaults to `true`
|
|
100
99
|
:param pulumi.Input['pulumi_aws.ec2.SecurityGroup'] cluster_security_group: The security group to use for the cluster API endpoint. If not provided, a new security group will be created with full internet egress and ingress from node groups.
|
|
101
100
|
|
|
102
101
|
Note: The security group resource should not contain any inline ingress or egress rules.
|
|
103
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
104
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
102
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] cluster_security_group_tags: The tags to apply to the cluster security group.
|
|
103
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] cluster_tags: The tags to apply to the EKS cluster.
|
|
105
104
|
:param 'CoreDnsAddonOptionsArgs' coredns_addon_options: Options for managing the `coredns` addon.
|
|
106
|
-
:param
|
|
105
|
+
:param _builtins.bool create_instance_role: Whether to create the instance role for the EKS cluster. Defaults to true when using the default node group, false otherwise.
|
|
107
106
|
If set to false when using the default node group, an instance role or instance profile must be provided.n
|
|
108
107
|
Note: this option has no effect if a custom instance role is provided with `instanceRole` or `instanceRoles`.
|
|
109
|
-
:param pulumi.Input[
|
|
108
|
+
:param pulumi.Input[_builtins.bool] create_oidc_provider: Indicates whether an IAM OIDC Provider is created for the EKS cluster.
|
|
110
109
|
|
|
111
110
|
The OIDC provider is used in the cluster in combination with k8s Service Account annotations to provide IAM roles at the k8s Pod level.
|
|
112
111
|
|
|
@@ -118,22 +117,22 @@ class ClusterArgs:
|
|
|
118
117
|
:param 'CreationRoleProviderArgs' creation_role_provider: The IAM Role Provider used to create & authenticate against the EKS cluster. This role is given `[system:masters]` permission in K8S, See: https://docs.aws.amazon.com/eks/latest/userguide/add-user-role.html
|
|
119
118
|
|
|
120
119
|
Note: This option is only supported with Pulumi nodejs programs. Please use `ProviderCredentialOpts` as an alternative instead.
|
|
121
|
-
:param pulumi.Input[
|
|
122
|
-
:param pulumi.Input[
|
|
123
|
-
:param pulumi.Input[
|
|
120
|
+
:param pulumi.Input[_builtins.bool] deletion_protection: Whether to enable deletion protection for the cluster. When enabled, the cluster cannot be deleted unless deletion protection is first disabled. Default: `false`.
|
|
121
|
+
:param pulumi.Input[_builtins.int] desired_capacity: The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
122
|
+
:param pulumi.Input[_builtins.bool] enable_config_map_mutable: Sets the 'enableConfigMapMutable' option on the cluster kubernetes provider.
|
|
124
123
|
|
|
125
124
|
Applies updates to the aws-auth ConfigMap in place over a replace operation if set to true.
|
|
126
125
|
https://www.pulumi.com/registry/packages/kubernetes/api-docs/provider/#enableconfigmapmutable_nodejs
|
|
127
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
128
|
-
:param pulumi.Input[
|
|
126
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] enabled_cluster_log_types: Enable EKS control plane logging. This sends logs to cloudwatch. Possible list of values are: ["api", "audit", "authenticator", "controllerManager", "scheduler"]. By default it is off.
|
|
127
|
+
:param pulumi.Input[_builtins.str] encryption_config_key_arn: KMS Key ARN to use with the encryption configuration for the cluster.
|
|
129
128
|
|
|
130
129
|
Only available on Kubernetes 1.13+ clusters created after March 6, 2020.
|
|
131
130
|
See for more details:
|
|
132
131
|
- https://aws.amazon.com/about-aws/whats-new/2020/03/amazon-eks-adds-envelope-encryption-for-secrets-with-aws-kms/
|
|
133
|
-
:param pulumi.Input[
|
|
134
|
-
:param pulumi.Input[
|
|
135
|
-
:param pulumi.Input[Union[
|
|
136
|
-
:param pulumi.Input[
|
|
132
|
+
:param pulumi.Input[_builtins.bool] endpoint_private_access: Indicates whether or not the Amazon EKS private API server endpoint is enabled. Default is `false`.
|
|
133
|
+
:param pulumi.Input[_builtins.bool] endpoint_public_access: Indicates whether or not the Amazon EKS public API server endpoint is enabled. Default is `true`.
|
|
134
|
+
:param pulumi.Input[Union[_builtins.bool, 'FargateProfileArgs']] fargate: Add support for launching pods in Fargate. Defaults to launching pods in the `default` namespace. If specified, the default node group is skipped as though `skipDefaultNodeGroup: true` had been passed.
|
|
135
|
+
:param pulumi.Input[_builtins.bool] gpu: Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
137
136
|
|
|
138
137
|
Defaults to false.
|
|
139
138
|
|
|
@@ -142,18 +141,18 @@ class ClusterArgs:
|
|
|
142
141
|
See for more details:
|
|
143
142
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html
|
|
144
143
|
- https://docs.aws.amazon.com/eks/latest/userguide/retrieve-ami-id.html
|
|
145
|
-
:param pulumi.Input[
|
|
144
|
+
:param pulumi.Input[_builtins.str] instance_profile_name: The default IAM InstanceProfile to use on the Worker NodeGroups, if one is not already set in the NodeGroup.
|
|
146
145
|
:param pulumi.Input['pulumi_aws.iam.Role'] instance_role: This enables the simple case of only registering a *single* IAM instance role with the cluster, that is required to be shared by *all* node groups in their instance profiles.
|
|
147
146
|
|
|
148
147
|
Note: options `instanceRole` and `instanceRoles` are mutually exclusive.
|
|
149
148
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]] instance_roles: This enables the advanced case of registering *many* IAM instance roles with the cluster for per node group IAM, instead of the simpler, shared case of `instanceRole`.
|
|
150
149
|
|
|
151
150
|
Note: options `instanceRole` and `instanceRoles` are mutually exclusive.
|
|
152
|
-
:param pulumi.Input[
|
|
153
|
-
:param pulumi.Input[
|
|
151
|
+
:param pulumi.Input[_builtins.str] instance_type: The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
152
|
+
:param pulumi.Input[_builtins.str] ip_family: The IP family used to assign Kubernetes pod and service addresses. Valid values are `ipv4` (default) and `ipv6`.
|
|
154
153
|
You can only specify an IP family when you create a cluster, changing this value will force a new cluster to be created.
|
|
155
154
|
:param 'KubeProxyAddonOptionsArgs' kube_proxy_addon_options: Options for managing the `kube-proxy` addon.
|
|
156
|
-
:param pulumi.Input[
|
|
155
|
+
:param pulumi.Input[_builtins.str] kubernetes_service_ip_address_range: The CIDR block to assign Kubernetes service IP addresses from. If you don't
|
|
157
156
|
specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or
|
|
158
157
|
172.20.0.0/16 CIDR blocks. This setting only applies to IPv4 clusters. We recommend that you specify a block
|
|
159
158
|
that does not overlap with resources in other networks that are peered or connected to your VPC. You can only specify
|
|
@@ -163,14 +162,14 @@ class ClusterArgs:
|
|
|
163
162
|
- Within one of the following private IP address blocks: 10.0.0.0/8, 172.16.0.0.0/12, or 192.168.0.0/16.
|
|
164
163
|
- Doesn't overlap with any CIDR block assigned to the VPC that you selected for VPC.
|
|
165
164
|
- Between /24 and /12.
|
|
166
|
-
:param pulumi.Input[
|
|
167
|
-
:param pulumi.Input[
|
|
168
|
-
:param pulumi.Input[
|
|
165
|
+
:param pulumi.Input[_builtins.int] max_size: The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
166
|
+
:param pulumi.Input[_builtins.int] min_size: The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
167
|
+
:param pulumi.Input[_builtins.str] name: The cluster's physical resource name.
|
|
169
168
|
|
|
170
169
|
If not specified, the default is to use auto-naming for the cluster's name, resulting in a physical name with the format `${name}-eksCluster-0123abcd`.
|
|
171
170
|
|
|
172
171
|
See for more details: https://www.pulumi.com/docs/intro/concepts/programming-model/#autonaming
|
|
173
|
-
:param pulumi.Input[
|
|
172
|
+
:param pulumi.Input[_builtins.str] node_ami_id: The AMI ID to use for the worker nodes.
|
|
174
173
|
|
|
175
174
|
Defaults to the latest recommended EKS Optimized Linux AMI from the AWS Systems Manager Parameter Store.
|
|
176
175
|
|
|
@@ -178,19 +177,19 @@ class ClusterArgs:
|
|
|
178
177
|
|
|
179
178
|
See for more details:
|
|
180
179
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html.
|
|
181
|
-
:param
|
|
180
|
+
:param _builtins.bool node_associate_public_ip_address: Whether or not to auto-assign the EKS worker nodes public IP addresses. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
182
181
|
:param 'ClusterNodeGroupOptionsArgs' node_group_options: The common configuration settings for NodeGroups.
|
|
183
|
-
:param pulumi.Input[
|
|
182
|
+
:param pulumi.Input[_builtins.str] node_public_key: Public key material for SSH access to worker nodes. See allowed formats at:
|
|
184
183
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
185
184
|
If not provided, no SSH access is enabled on VMs.
|
|
186
|
-
:param pulumi.Input[
|
|
187
|
-
:param pulumi.Input[
|
|
188
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
185
|
+
:param pulumi.Input[_builtins.bool] node_root_volume_encrypted: Encrypt the root block device of the nodes in the node group.
|
|
186
|
+
:param pulumi.Input[_builtins.int] node_root_volume_size: The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
187
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] node_security_group_tags: The tags to apply to the default `nodeSecurityGroup` created by the cluster.
|
|
189
188
|
|
|
190
189
|
Note: The `nodeSecurityGroupTags` option and the node group option `nodeSecurityGroup` are mutually exclusive.
|
|
191
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
192
|
-
:param pulumi.Input[
|
|
193
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
190
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] node_subnet_ids: The subnets to use for worker nodes. Defaults to the value of subnetIds.
|
|
191
|
+
:param pulumi.Input[_builtins.str] node_user_data: Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
192
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] private_subnet_ids: The set of private subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
194
193
|
|
|
195
194
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
196
195
|
|
|
@@ -218,7 +217,7 @@ class ClusterArgs:
|
|
|
218
217
|
- https://www.pulumi.com/docs/intro/cloud-providers/aws/setup/
|
|
219
218
|
- https://www.pulumi.com/docs/intro/cloud-providers/aws/#configuration
|
|
220
219
|
- https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html
|
|
221
|
-
:param
|
|
220
|
+
:param _builtins.str proxy: The HTTP(S) proxy to use within a proxied environment.
|
|
222
221
|
|
|
223
222
|
The proxy is used during cluster creation, and OIDC configuration.
|
|
224
223
|
|
|
@@ -233,8 +232,8 @@ class ClusterArgs:
|
|
|
233
232
|
- "http://proxy.example.com:3128"
|
|
234
233
|
- "https://proxy.example.com"
|
|
235
234
|
- "http://username:password@proxy.example.com:3128"
|
|
236
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
237
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
235
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] public_access_cidrs: Indicates which CIDR blocks can access the Amazon EKS public API server endpoint.
|
|
236
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] public_subnet_ids: The set of public subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
238
237
|
|
|
239
238
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
240
239
|
|
|
@@ -249,14 +248,14 @@ class ClusterArgs:
|
|
|
249
248
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html.Note: The use of `subnetIds`, along with `publicSubnetIds` and/or `privateSubnetIds` is mutually exclusive. The use of `publicSubnetIds` and `privateSubnetIds` is encouraged.
|
|
250
249
|
:param pulumi.Input[Sequence[pulumi.Input['RoleMappingArgs']]] role_mappings: Optional mappings from AWS IAM roles to Kubernetes users and groups. Only supported with authentication mode `CONFIG_MAP` or `API_AND_CONFIG_MAP`
|
|
251
250
|
:param pulumi.Input['pulumi_aws.iam.Role'] service_role: IAM Service Role for EKS to use to manage the cluster.
|
|
252
|
-
:param
|
|
253
|
-
:param
|
|
251
|
+
:param _builtins.bool skip_default_node_group: If this toggle is set to true, the EKS cluster will be created without node group attached. Defaults to false, unless `fargate` or `autoMode` is enabled.
|
|
252
|
+
:param _builtins.bool skip_default_security_groups: If this toggle is set to true, the EKS cluster will be created without the default node and cluster security groups. Defaults to false, unless `autoMode` is enabled.
|
|
254
253
|
|
|
255
254
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html
|
|
256
|
-
:param Union[
|
|
255
|
+
:param Union[_builtins.str, Mapping[str, 'StorageClassArgs']] storage_classes: An optional set of StorageClasses to enable for the cluster. If this is a single volume type rather than a map, a single StorageClass will be created for that volume type.
|
|
257
256
|
|
|
258
257
|
Note: As of Kubernetes v1.11+ on EKS, a default `gp2` storage class will always be created automatically for the cluster by the EKS service. See https://docs.aws.amazon.com/eks/latest/userguide/storage-classes.html
|
|
259
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
258
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] subnet_ids: The set of all subnets, public and private, to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
260
259
|
|
|
261
260
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
262
261
|
|
|
@@ -265,14 +264,14 @@ class ClusterArgs:
|
|
|
265
264
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html.
|
|
266
265
|
|
|
267
266
|
Note: The use of `subnetIds`, along with `publicSubnetIds` and/or `privateSubnetIds` is mutually exclusive. The use of `publicSubnetIds` and `privateSubnetIds` is encouraged.
|
|
268
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
267
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] tags: Key-value mapping of tags that are automatically applied to all AWS resources directly under management with this cluster, which support tagging.
|
|
269
268
|
:param pulumi.Input['pulumi_aws.eks.ClusterUpgradePolicyArgs'] upgrade_policy: The cluster's upgrade policy. Valid support types are "STANDARD" and "EXTENDED". Defaults to "EXTENDED".
|
|
270
|
-
:param
|
|
269
|
+
:param _builtins.bool use_default_vpc_cni: Use the default VPC CNI instead of creating a custom one. Should not be used in conjunction with `vpcCniOptions`.
|
|
271
270
|
Defaults to true, unless `autoMode` is enabled.
|
|
272
271
|
:param pulumi.Input[Sequence[pulumi.Input['UserMappingArgs']]] user_mappings: Optional mappings from AWS IAM users to Kubernetes users and groups. Only supported with authentication mode `CONFIG_MAP` or `API_AND_CONFIG_MAP`.
|
|
273
|
-
:param pulumi.Input[
|
|
272
|
+
:param pulumi.Input[_builtins.str] version: Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
274
273
|
:param 'VpcCniOptionsArgs' vpc_cni_options: The configuration of the Amazon VPC CNI plugin for this instance. Defaults are described in the documentation for the VpcCniOptions type.
|
|
275
|
-
:param pulumi.Input[
|
|
274
|
+
:param pulumi.Input[_builtins.str] vpc_id: The VPC in which to create the cluster and its worker nodes. If unset, the cluster will be created in the default VPC.
|
|
276
275
|
"""
|
|
277
276
|
if access_entries is not None:
|
|
278
277
|
pulumi.set(__self__, "access_entries", access_entries)
|
|
@@ -389,7 +388,7 @@ class ClusterArgs:
|
|
|
389
388
|
if vpc_id is not None:
|
|
390
389
|
pulumi.set(__self__, "vpc_id", vpc_id)
|
|
391
390
|
|
|
392
|
-
@property
|
|
391
|
+
@_builtins.property
|
|
393
392
|
@pulumi.getter(name="accessEntries")
|
|
394
393
|
def access_entries(self) -> Optional[Mapping[str, 'AccessEntryArgs']]:
|
|
395
394
|
"""
|
|
@@ -404,7 +403,7 @@ class ClusterArgs:
|
|
|
404
403
|
def access_entries(self, value: Optional[Mapping[str, 'AccessEntryArgs']]):
|
|
405
404
|
pulumi.set(self, "access_entries", value)
|
|
406
405
|
|
|
407
|
-
@property
|
|
406
|
+
@_builtins.property
|
|
408
407
|
@pulumi.getter(name="authenticationMode")
|
|
409
408
|
def authentication_mode(self) -> Optional['AuthenticationMode']:
|
|
410
409
|
"""
|
|
@@ -419,7 +418,7 @@ class ClusterArgs:
|
|
|
419
418
|
def authentication_mode(self, value: Optional['AuthenticationMode']):
|
|
420
419
|
pulumi.set(self, "authentication_mode", value)
|
|
421
420
|
|
|
422
|
-
@property
|
|
421
|
+
@_builtins.property
|
|
423
422
|
@pulumi.getter(name="autoMode")
|
|
424
423
|
def auto_mode(self) -> Optional['AutoModeOptionsArgs']:
|
|
425
424
|
"""
|
|
@@ -433,19 +432,19 @@ class ClusterArgs:
|
|
|
433
432
|
def auto_mode(self, value: Optional['AutoModeOptionsArgs']):
|
|
434
433
|
pulumi.set(self, "auto_mode", value)
|
|
435
434
|
|
|
436
|
-
@property
|
|
435
|
+
@_builtins.property
|
|
437
436
|
@pulumi.getter(name="bootstrapSelfManagedAddons")
|
|
438
|
-
def bootstrap_self_managed_addons(self) -> Optional[pulumi.Input[
|
|
437
|
+
def bootstrap_self_managed_addons(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
439
438
|
"""
|
|
440
439
|
Install default unmanaged add-ons, such as `aws-cni`, `kube-proxy`, and CoreDNS during cluster creation. If `false`, you must manually install desired add-ons. Changing this value will force a new cluster to be created. Defaults to `true`
|
|
441
440
|
"""
|
|
442
441
|
return pulumi.get(self, "bootstrap_self_managed_addons")
|
|
443
442
|
|
|
444
443
|
@bootstrap_self_managed_addons.setter
|
|
445
|
-
def bootstrap_self_managed_addons(self, value: Optional[pulumi.Input[
|
|
444
|
+
def bootstrap_self_managed_addons(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
446
445
|
pulumi.set(self, "bootstrap_self_managed_addons", value)
|
|
447
446
|
|
|
448
|
-
@property
|
|
447
|
+
@_builtins.property
|
|
449
448
|
@pulumi.getter(name="clusterSecurityGroup")
|
|
450
449
|
def cluster_security_group(self) -> Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]:
|
|
451
450
|
"""
|
|
@@ -459,31 +458,31 @@ class ClusterArgs:
|
|
|
459
458
|
def cluster_security_group(self, value: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']]):
|
|
460
459
|
pulumi.set(self, "cluster_security_group", value)
|
|
461
460
|
|
|
462
|
-
@property
|
|
461
|
+
@_builtins.property
|
|
463
462
|
@pulumi.getter(name="clusterSecurityGroupTags")
|
|
464
|
-
def cluster_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
463
|
+
def cluster_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
465
464
|
"""
|
|
466
465
|
The tags to apply to the cluster security group.
|
|
467
466
|
"""
|
|
468
467
|
return pulumi.get(self, "cluster_security_group_tags")
|
|
469
468
|
|
|
470
469
|
@cluster_security_group_tags.setter
|
|
471
|
-
def cluster_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
470
|
+
def cluster_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
472
471
|
pulumi.set(self, "cluster_security_group_tags", value)
|
|
473
472
|
|
|
474
|
-
@property
|
|
473
|
+
@_builtins.property
|
|
475
474
|
@pulumi.getter(name="clusterTags")
|
|
476
|
-
def cluster_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
475
|
+
def cluster_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
477
476
|
"""
|
|
478
477
|
The tags to apply to the EKS cluster.
|
|
479
478
|
"""
|
|
480
479
|
return pulumi.get(self, "cluster_tags")
|
|
481
480
|
|
|
482
481
|
@cluster_tags.setter
|
|
483
|
-
def cluster_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
482
|
+
def cluster_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
484
483
|
pulumi.set(self, "cluster_tags", value)
|
|
485
484
|
|
|
486
|
-
@property
|
|
485
|
+
@_builtins.property
|
|
487
486
|
@pulumi.getter(name="corednsAddonOptions")
|
|
488
487
|
def coredns_addon_options(self) -> Optional['CoreDnsAddonOptionsArgs']:
|
|
489
488
|
"""
|
|
@@ -495,9 +494,9 @@ class ClusterArgs:
|
|
|
495
494
|
def coredns_addon_options(self, value: Optional['CoreDnsAddonOptionsArgs']):
|
|
496
495
|
pulumi.set(self, "coredns_addon_options", value)
|
|
497
496
|
|
|
498
|
-
@property
|
|
497
|
+
@_builtins.property
|
|
499
498
|
@pulumi.getter(name="createInstanceRole")
|
|
500
|
-
def create_instance_role(self) -> Optional[
|
|
499
|
+
def create_instance_role(self) -> Optional[_builtins.bool]:
|
|
501
500
|
"""
|
|
502
501
|
Whether to create the instance role for the EKS cluster. Defaults to true when using the default node group, false otherwise.
|
|
503
502
|
If set to false when using the default node group, an instance role or instance profile must be provided.n
|
|
@@ -506,12 +505,12 @@ class ClusterArgs:
|
|
|
506
505
|
return pulumi.get(self, "create_instance_role")
|
|
507
506
|
|
|
508
507
|
@create_instance_role.setter
|
|
509
|
-
def create_instance_role(self, value: Optional[
|
|
508
|
+
def create_instance_role(self, value: Optional[_builtins.bool]):
|
|
510
509
|
pulumi.set(self, "create_instance_role", value)
|
|
511
510
|
|
|
512
|
-
@property
|
|
511
|
+
@_builtins.property
|
|
513
512
|
@pulumi.getter(name="createOidcProvider")
|
|
514
|
-
def create_oidc_provider(self) -> Optional[pulumi.Input[
|
|
513
|
+
def create_oidc_provider(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
515
514
|
"""
|
|
516
515
|
Indicates whether an IAM OIDC Provider is created for the EKS cluster.
|
|
517
516
|
|
|
@@ -526,10 +525,10 @@ class ClusterArgs:
|
|
|
526
525
|
return pulumi.get(self, "create_oidc_provider")
|
|
527
526
|
|
|
528
527
|
@create_oidc_provider.setter
|
|
529
|
-
def create_oidc_provider(self, value: Optional[pulumi.Input[
|
|
528
|
+
def create_oidc_provider(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
530
529
|
pulumi.set(self, "create_oidc_provider", value)
|
|
531
530
|
|
|
532
|
-
@property
|
|
531
|
+
@_builtins.property
|
|
533
532
|
@pulumi.getter(name="creationRoleProvider")
|
|
534
533
|
def creation_role_provider(self) -> Optional['CreationRoleProviderArgs']:
|
|
535
534
|
"""
|
|
@@ -543,33 +542,33 @@ class ClusterArgs:
|
|
|
543
542
|
def creation_role_provider(self, value: Optional['CreationRoleProviderArgs']):
|
|
544
543
|
pulumi.set(self, "creation_role_provider", value)
|
|
545
544
|
|
|
546
|
-
@property
|
|
545
|
+
@_builtins.property
|
|
547
546
|
@pulumi.getter(name="deletionProtection")
|
|
548
|
-
def deletion_protection(self) -> Optional[pulumi.Input[
|
|
547
|
+
def deletion_protection(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
549
548
|
"""
|
|
550
549
|
Whether to enable deletion protection for the cluster. When enabled, the cluster cannot be deleted unless deletion protection is first disabled. Default: `false`.
|
|
551
550
|
"""
|
|
552
551
|
return pulumi.get(self, "deletion_protection")
|
|
553
552
|
|
|
554
553
|
@deletion_protection.setter
|
|
555
|
-
def deletion_protection(self, value: Optional[pulumi.Input[
|
|
554
|
+
def deletion_protection(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
556
555
|
pulumi.set(self, "deletion_protection", value)
|
|
557
556
|
|
|
558
|
-
@property
|
|
557
|
+
@_builtins.property
|
|
559
558
|
@pulumi.getter(name="desiredCapacity")
|
|
560
|
-
def desired_capacity(self) -> Optional[pulumi.Input[
|
|
559
|
+
def desired_capacity(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
561
560
|
"""
|
|
562
561
|
The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
563
562
|
"""
|
|
564
563
|
return pulumi.get(self, "desired_capacity")
|
|
565
564
|
|
|
566
565
|
@desired_capacity.setter
|
|
567
|
-
def desired_capacity(self, value: Optional[pulumi.Input[
|
|
566
|
+
def desired_capacity(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
568
567
|
pulumi.set(self, "desired_capacity", value)
|
|
569
568
|
|
|
570
|
-
@property
|
|
569
|
+
@_builtins.property
|
|
571
570
|
@pulumi.getter(name="enableConfigMapMutable")
|
|
572
|
-
def enable_config_map_mutable(self) -> Optional[pulumi.Input[
|
|
571
|
+
def enable_config_map_mutable(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
573
572
|
"""
|
|
574
573
|
Sets the 'enableConfigMapMutable' option on the cluster kubernetes provider.
|
|
575
574
|
|
|
@@ -579,24 +578,24 @@ class ClusterArgs:
|
|
|
579
578
|
return pulumi.get(self, "enable_config_map_mutable")
|
|
580
579
|
|
|
581
580
|
@enable_config_map_mutable.setter
|
|
582
|
-
def enable_config_map_mutable(self, value: Optional[pulumi.Input[
|
|
581
|
+
def enable_config_map_mutable(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
583
582
|
pulumi.set(self, "enable_config_map_mutable", value)
|
|
584
583
|
|
|
585
|
-
@property
|
|
584
|
+
@_builtins.property
|
|
586
585
|
@pulumi.getter(name="enabledClusterLogTypes")
|
|
587
|
-
def enabled_cluster_log_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
586
|
+
def enabled_cluster_log_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
588
587
|
"""
|
|
589
588
|
Enable EKS control plane logging. This sends logs to cloudwatch. Possible list of values are: ["api", "audit", "authenticator", "controllerManager", "scheduler"]. By default it is off.
|
|
590
589
|
"""
|
|
591
590
|
return pulumi.get(self, "enabled_cluster_log_types")
|
|
592
591
|
|
|
593
592
|
@enabled_cluster_log_types.setter
|
|
594
|
-
def enabled_cluster_log_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
593
|
+
def enabled_cluster_log_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
595
594
|
pulumi.set(self, "enabled_cluster_log_types", value)
|
|
596
595
|
|
|
597
|
-
@property
|
|
596
|
+
@_builtins.property
|
|
598
597
|
@pulumi.getter(name="encryptionConfigKeyArn")
|
|
599
|
-
def encryption_config_key_arn(self) -> Optional[pulumi.Input[
|
|
598
|
+
def encryption_config_key_arn(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
600
599
|
"""
|
|
601
600
|
KMS Key ARN to use with the encryption configuration for the cluster.
|
|
602
601
|
|
|
@@ -607,48 +606,48 @@ class ClusterArgs:
|
|
|
607
606
|
return pulumi.get(self, "encryption_config_key_arn")
|
|
608
607
|
|
|
609
608
|
@encryption_config_key_arn.setter
|
|
610
|
-
def encryption_config_key_arn(self, value: Optional[pulumi.Input[
|
|
609
|
+
def encryption_config_key_arn(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
611
610
|
pulumi.set(self, "encryption_config_key_arn", value)
|
|
612
611
|
|
|
613
|
-
@property
|
|
612
|
+
@_builtins.property
|
|
614
613
|
@pulumi.getter(name="endpointPrivateAccess")
|
|
615
|
-
def endpoint_private_access(self) -> Optional[pulumi.Input[
|
|
614
|
+
def endpoint_private_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
616
615
|
"""
|
|
617
616
|
Indicates whether or not the Amazon EKS private API server endpoint is enabled. Default is `false`.
|
|
618
617
|
"""
|
|
619
618
|
return pulumi.get(self, "endpoint_private_access")
|
|
620
619
|
|
|
621
620
|
@endpoint_private_access.setter
|
|
622
|
-
def endpoint_private_access(self, value: Optional[pulumi.Input[
|
|
621
|
+
def endpoint_private_access(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
623
622
|
pulumi.set(self, "endpoint_private_access", value)
|
|
624
623
|
|
|
625
|
-
@property
|
|
624
|
+
@_builtins.property
|
|
626
625
|
@pulumi.getter(name="endpointPublicAccess")
|
|
627
|
-
def endpoint_public_access(self) -> Optional[pulumi.Input[
|
|
626
|
+
def endpoint_public_access(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
628
627
|
"""
|
|
629
628
|
Indicates whether or not the Amazon EKS public API server endpoint is enabled. Default is `true`.
|
|
630
629
|
"""
|
|
631
630
|
return pulumi.get(self, "endpoint_public_access")
|
|
632
631
|
|
|
633
632
|
@endpoint_public_access.setter
|
|
634
|
-
def endpoint_public_access(self, value: Optional[pulumi.Input[
|
|
633
|
+
def endpoint_public_access(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
635
634
|
pulumi.set(self, "endpoint_public_access", value)
|
|
636
635
|
|
|
637
|
-
@property
|
|
636
|
+
@_builtins.property
|
|
638
637
|
@pulumi.getter
|
|
639
|
-
def fargate(self) -> Optional[pulumi.Input[Union[
|
|
638
|
+
def fargate(self) -> Optional[pulumi.Input[Union[_builtins.bool, 'FargateProfileArgs']]]:
|
|
640
639
|
"""
|
|
641
640
|
Add support for launching pods in Fargate. Defaults to launching pods in the `default` namespace. If specified, the default node group is skipped as though `skipDefaultNodeGroup: true` had been passed.
|
|
642
641
|
"""
|
|
643
642
|
return pulumi.get(self, "fargate")
|
|
644
643
|
|
|
645
644
|
@fargate.setter
|
|
646
|
-
def fargate(self, value: Optional[pulumi.Input[Union[
|
|
645
|
+
def fargate(self, value: Optional[pulumi.Input[Union[_builtins.bool, 'FargateProfileArgs']]]):
|
|
647
646
|
pulumi.set(self, "fargate", value)
|
|
648
647
|
|
|
649
|
-
@property
|
|
648
|
+
@_builtins.property
|
|
650
649
|
@pulumi.getter
|
|
651
|
-
def gpu(self) -> Optional[pulumi.Input[
|
|
650
|
+
def gpu(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
652
651
|
"""
|
|
653
652
|
Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
654
653
|
|
|
@@ -663,22 +662,22 @@ class ClusterArgs:
|
|
|
663
662
|
return pulumi.get(self, "gpu")
|
|
664
663
|
|
|
665
664
|
@gpu.setter
|
|
666
|
-
def gpu(self, value: Optional[pulumi.Input[
|
|
665
|
+
def gpu(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
667
666
|
pulumi.set(self, "gpu", value)
|
|
668
667
|
|
|
669
|
-
@property
|
|
668
|
+
@_builtins.property
|
|
670
669
|
@pulumi.getter(name="instanceProfileName")
|
|
671
|
-
def instance_profile_name(self) -> Optional[pulumi.Input[
|
|
670
|
+
def instance_profile_name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
672
671
|
"""
|
|
673
672
|
The default IAM InstanceProfile to use on the Worker NodeGroups, if one is not already set in the NodeGroup.
|
|
674
673
|
"""
|
|
675
674
|
return pulumi.get(self, "instance_profile_name")
|
|
676
675
|
|
|
677
676
|
@instance_profile_name.setter
|
|
678
|
-
def instance_profile_name(self, value: Optional[pulumi.Input[
|
|
677
|
+
def instance_profile_name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
679
678
|
pulumi.set(self, "instance_profile_name", value)
|
|
680
679
|
|
|
681
|
-
@property
|
|
680
|
+
@_builtins.property
|
|
682
681
|
@pulumi.getter(name="instanceRole")
|
|
683
682
|
def instance_role(self) -> Optional[pulumi.Input['pulumi_aws.iam.Role']]:
|
|
684
683
|
"""
|
|
@@ -692,7 +691,7 @@ class ClusterArgs:
|
|
|
692
691
|
def instance_role(self, value: Optional[pulumi.Input['pulumi_aws.iam.Role']]):
|
|
693
692
|
pulumi.set(self, "instance_role", value)
|
|
694
693
|
|
|
695
|
-
@property
|
|
694
|
+
@_builtins.property
|
|
696
695
|
@pulumi.getter(name="instanceRoles")
|
|
697
696
|
def instance_roles(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]]:
|
|
698
697
|
"""
|
|
@@ -706,21 +705,21 @@ class ClusterArgs:
|
|
|
706
705
|
def instance_roles(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]]):
|
|
707
706
|
pulumi.set(self, "instance_roles", value)
|
|
708
707
|
|
|
709
|
-
@property
|
|
708
|
+
@_builtins.property
|
|
710
709
|
@pulumi.getter(name="instanceType")
|
|
711
|
-
def instance_type(self) -> Optional[pulumi.Input[
|
|
710
|
+
def instance_type(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
712
711
|
"""
|
|
713
712
|
The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
714
713
|
"""
|
|
715
714
|
return pulumi.get(self, "instance_type")
|
|
716
715
|
|
|
717
716
|
@instance_type.setter
|
|
718
|
-
def instance_type(self, value: Optional[pulumi.Input[
|
|
717
|
+
def instance_type(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
719
718
|
pulumi.set(self, "instance_type", value)
|
|
720
719
|
|
|
721
|
-
@property
|
|
720
|
+
@_builtins.property
|
|
722
721
|
@pulumi.getter(name="ipFamily")
|
|
723
|
-
def ip_family(self) -> Optional[pulumi.Input[
|
|
722
|
+
def ip_family(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
724
723
|
"""
|
|
725
724
|
The IP family used to assign Kubernetes pod and service addresses. Valid values are `ipv4` (default) and `ipv6`.
|
|
726
725
|
You can only specify an IP family when you create a cluster, changing this value will force a new cluster to be created.
|
|
@@ -728,10 +727,10 @@ class ClusterArgs:
|
|
|
728
727
|
return pulumi.get(self, "ip_family")
|
|
729
728
|
|
|
730
729
|
@ip_family.setter
|
|
731
|
-
def ip_family(self, value: Optional[pulumi.Input[
|
|
730
|
+
def ip_family(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
732
731
|
pulumi.set(self, "ip_family", value)
|
|
733
732
|
|
|
734
|
-
@property
|
|
733
|
+
@_builtins.property
|
|
735
734
|
@pulumi.getter(name="kubeProxyAddonOptions")
|
|
736
735
|
def kube_proxy_addon_options(self) -> Optional['KubeProxyAddonOptionsArgs']:
|
|
737
736
|
"""
|
|
@@ -743,9 +742,9 @@ class ClusterArgs:
|
|
|
743
742
|
def kube_proxy_addon_options(self, value: Optional['KubeProxyAddonOptionsArgs']):
|
|
744
743
|
pulumi.set(self, "kube_proxy_addon_options", value)
|
|
745
744
|
|
|
746
|
-
@property
|
|
745
|
+
@_builtins.property
|
|
747
746
|
@pulumi.getter(name="kubernetesServiceIpAddressRange")
|
|
748
|
-
def kubernetes_service_ip_address_range(self) -> Optional[pulumi.Input[
|
|
747
|
+
def kubernetes_service_ip_address_range(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
749
748
|
"""
|
|
750
749
|
The CIDR block to assign Kubernetes service IP addresses from. If you don't
|
|
751
750
|
specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or
|
|
@@ -761,36 +760,36 @@ class ClusterArgs:
|
|
|
761
760
|
return pulumi.get(self, "kubernetes_service_ip_address_range")
|
|
762
761
|
|
|
763
762
|
@kubernetes_service_ip_address_range.setter
|
|
764
|
-
def kubernetes_service_ip_address_range(self, value: Optional[pulumi.Input[
|
|
763
|
+
def kubernetes_service_ip_address_range(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
765
764
|
pulumi.set(self, "kubernetes_service_ip_address_range", value)
|
|
766
765
|
|
|
767
|
-
@property
|
|
766
|
+
@_builtins.property
|
|
768
767
|
@pulumi.getter(name="maxSize")
|
|
769
|
-
def max_size(self) -> Optional[pulumi.Input[
|
|
768
|
+
def max_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
770
769
|
"""
|
|
771
770
|
The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
772
771
|
"""
|
|
773
772
|
return pulumi.get(self, "max_size")
|
|
774
773
|
|
|
775
774
|
@max_size.setter
|
|
776
|
-
def max_size(self, value: Optional[pulumi.Input[
|
|
775
|
+
def max_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
777
776
|
pulumi.set(self, "max_size", value)
|
|
778
777
|
|
|
779
|
-
@property
|
|
778
|
+
@_builtins.property
|
|
780
779
|
@pulumi.getter(name="minSize")
|
|
781
|
-
def min_size(self) -> Optional[pulumi.Input[
|
|
780
|
+
def min_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
782
781
|
"""
|
|
783
782
|
The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
784
783
|
"""
|
|
785
784
|
return pulumi.get(self, "min_size")
|
|
786
785
|
|
|
787
786
|
@min_size.setter
|
|
788
|
-
def min_size(self, value: Optional[pulumi.Input[
|
|
787
|
+
def min_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
789
788
|
pulumi.set(self, "min_size", value)
|
|
790
789
|
|
|
791
|
-
@property
|
|
790
|
+
@_builtins.property
|
|
792
791
|
@pulumi.getter
|
|
793
|
-
def name(self) -> Optional[pulumi.Input[
|
|
792
|
+
def name(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
794
793
|
"""
|
|
795
794
|
The cluster's physical resource name.
|
|
796
795
|
|
|
@@ -801,12 +800,12 @@ class ClusterArgs:
|
|
|
801
800
|
return pulumi.get(self, "name")
|
|
802
801
|
|
|
803
802
|
@name.setter
|
|
804
|
-
def name(self, value: Optional[pulumi.Input[
|
|
803
|
+
def name(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
805
804
|
pulumi.set(self, "name", value)
|
|
806
805
|
|
|
807
|
-
@property
|
|
806
|
+
@_builtins.property
|
|
808
807
|
@pulumi.getter(name="nodeAmiId")
|
|
809
|
-
def node_ami_id(self) -> Optional[pulumi.Input[
|
|
808
|
+
def node_ami_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
810
809
|
"""
|
|
811
810
|
The AMI ID to use for the worker nodes.
|
|
812
811
|
|
|
@@ -820,22 +819,22 @@ class ClusterArgs:
|
|
|
820
819
|
return pulumi.get(self, "node_ami_id")
|
|
821
820
|
|
|
822
821
|
@node_ami_id.setter
|
|
823
|
-
def node_ami_id(self, value: Optional[pulumi.Input[
|
|
822
|
+
def node_ami_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
824
823
|
pulumi.set(self, "node_ami_id", value)
|
|
825
824
|
|
|
826
|
-
@property
|
|
825
|
+
@_builtins.property
|
|
827
826
|
@pulumi.getter(name="nodeAssociatePublicIpAddress")
|
|
828
|
-
def node_associate_public_ip_address(self) -> Optional[
|
|
827
|
+
def node_associate_public_ip_address(self) -> Optional[_builtins.bool]:
|
|
829
828
|
"""
|
|
830
829
|
Whether or not to auto-assign the EKS worker nodes public IP addresses. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
831
830
|
"""
|
|
832
831
|
return pulumi.get(self, "node_associate_public_ip_address")
|
|
833
832
|
|
|
834
833
|
@node_associate_public_ip_address.setter
|
|
835
|
-
def node_associate_public_ip_address(self, value: Optional[
|
|
834
|
+
def node_associate_public_ip_address(self, value: Optional[_builtins.bool]):
|
|
836
835
|
pulumi.set(self, "node_associate_public_ip_address", value)
|
|
837
836
|
|
|
838
|
-
@property
|
|
837
|
+
@_builtins.property
|
|
839
838
|
@pulumi.getter(name="nodeGroupOptions")
|
|
840
839
|
def node_group_options(self) -> Optional['ClusterNodeGroupOptionsArgs']:
|
|
841
840
|
"""
|
|
@@ -847,9 +846,9 @@ class ClusterArgs:
|
|
|
847
846
|
def node_group_options(self, value: Optional['ClusterNodeGroupOptionsArgs']):
|
|
848
847
|
pulumi.set(self, "node_group_options", value)
|
|
849
848
|
|
|
850
|
-
@property
|
|
849
|
+
@_builtins.property
|
|
851
850
|
@pulumi.getter(name="nodePublicKey")
|
|
852
|
-
def node_public_key(self) -> Optional[pulumi.Input[
|
|
851
|
+
def node_public_key(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
853
852
|
"""
|
|
854
853
|
Public key material for SSH access to worker nodes. See allowed formats at:
|
|
855
854
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
@@ -858,36 +857,36 @@ class ClusterArgs:
|
|
|
858
857
|
return pulumi.get(self, "node_public_key")
|
|
859
858
|
|
|
860
859
|
@node_public_key.setter
|
|
861
|
-
def node_public_key(self, value: Optional[pulumi.Input[
|
|
860
|
+
def node_public_key(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
862
861
|
pulumi.set(self, "node_public_key", value)
|
|
863
862
|
|
|
864
|
-
@property
|
|
863
|
+
@_builtins.property
|
|
865
864
|
@pulumi.getter(name="nodeRootVolumeEncrypted")
|
|
866
|
-
def node_root_volume_encrypted(self) -> Optional[pulumi.Input[
|
|
865
|
+
def node_root_volume_encrypted(self) -> Optional[pulumi.Input[_builtins.bool]]:
|
|
867
866
|
"""
|
|
868
867
|
Encrypt the root block device of the nodes in the node group.
|
|
869
868
|
"""
|
|
870
869
|
return pulumi.get(self, "node_root_volume_encrypted")
|
|
871
870
|
|
|
872
871
|
@node_root_volume_encrypted.setter
|
|
873
|
-
def node_root_volume_encrypted(self, value: Optional[pulumi.Input[
|
|
872
|
+
def node_root_volume_encrypted(self, value: Optional[pulumi.Input[_builtins.bool]]):
|
|
874
873
|
pulumi.set(self, "node_root_volume_encrypted", value)
|
|
875
874
|
|
|
876
|
-
@property
|
|
875
|
+
@_builtins.property
|
|
877
876
|
@pulumi.getter(name="nodeRootVolumeSize")
|
|
878
|
-
def node_root_volume_size(self) -> Optional[pulumi.Input[
|
|
877
|
+
def node_root_volume_size(self) -> Optional[pulumi.Input[_builtins.int]]:
|
|
879
878
|
"""
|
|
880
879
|
The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
881
880
|
"""
|
|
882
881
|
return pulumi.get(self, "node_root_volume_size")
|
|
883
882
|
|
|
884
883
|
@node_root_volume_size.setter
|
|
885
|
-
def node_root_volume_size(self, value: Optional[pulumi.Input[
|
|
884
|
+
def node_root_volume_size(self, value: Optional[pulumi.Input[_builtins.int]]):
|
|
886
885
|
pulumi.set(self, "node_root_volume_size", value)
|
|
887
886
|
|
|
888
|
-
@property
|
|
887
|
+
@_builtins.property
|
|
889
888
|
@pulumi.getter(name="nodeSecurityGroupTags")
|
|
890
|
-
def node_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
889
|
+
def node_security_group_tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
891
890
|
"""
|
|
892
891
|
The tags to apply to the default `nodeSecurityGroup` created by the cluster.
|
|
893
892
|
|
|
@@ -896,36 +895,36 @@ class ClusterArgs:
|
|
|
896
895
|
return pulumi.get(self, "node_security_group_tags")
|
|
897
896
|
|
|
898
897
|
@node_security_group_tags.setter
|
|
899
|
-
def node_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
898
|
+
def node_security_group_tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
900
899
|
pulumi.set(self, "node_security_group_tags", value)
|
|
901
900
|
|
|
902
|
-
@property
|
|
901
|
+
@_builtins.property
|
|
903
902
|
@pulumi.getter(name="nodeSubnetIds")
|
|
904
|
-
def node_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
903
|
+
def node_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
905
904
|
"""
|
|
906
905
|
The subnets to use for worker nodes. Defaults to the value of subnetIds.
|
|
907
906
|
"""
|
|
908
907
|
return pulumi.get(self, "node_subnet_ids")
|
|
909
908
|
|
|
910
909
|
@node_subnet_ids.setter
|
|
911
|
-
def node_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
910
|
+
def node_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
912
911
|
pulumi.set(self, "node_subnet_ids", value)
|
|
913
912
|
|
|
914
|
-
@property
|
|
913
|
+
@_builtins.property
|
|
915
914
|
@pulumi.getter(name="nodeUserData")
|
|
916
|
-
def node_user_data(self) -> Optional[pulumi.Input[
|
|
915
|
+
def node_user_data(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
917
916
|
"""
|
|
918
917
|
Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
919
918
|
"""
|
|
920
919
|
return pulumi.get(self, "node_user_data")
|
|
921
920
|
|
|
922
921
|
@node_user_data.setter
|
|
923
|
-
def node_user_data(self, value: Optional[pulumi.Input[
|
|
922
|
+
def node_user_data(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
924
923
|
pulumi.set(self, "node_user_data", value)
|
|
925
924
|
|
|
926
|
-
@property
|
|
925
|
+
@_builtins.property
|
|
927
926
|
@pulumi.getter(name="privateSubnetIds")
|
|
928
|
-
def private_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
927
|
+
def private_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
929
928
|
"""
|
|
930
929
|
The set of private subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
931
930
|
|
|
@@ -946,10 +945,10 @@ class ClusterArgs:
|
|
|
946
945
|
return pulumi.get(self, "private_subnet_ids")
|
|
947
946
|
|
|
948
947
|
@private_subnet_ids.setter
|
|
949
|
-
def private_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
948
|
+
def private_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
950
949
|
pulumi.set(self, "private_subnet_ids", value)
|
|
951
950
|
|
|
952
|
-
@property
|
|
951
|
+
@_builtins.property
|
|
953
952
|
@pulumi.getter(name="providerCredentialOpts")
|
|
954
953
|
def provider_credential_opts(self) -> Optional[pulumi.Input['KubeconfigOptionsArgs']]:
|
|
955
954
|
"""
|
|
@@ -973,9 +972,9 @@ class ClusterArgs:
|
|
|
973
972
|
def provider_credential_opts(self, value: Optional[pulumi.Input['KubeconfigOptionsArgs']]):
|
|
974
973
|
pulumi.set(self, "provider_credential_opts", value)
|
|
975
974
|
|
|
976
|
-
@property
|
|
975
|
+
@_builtins.property
|
|
977
976
|
@pulumi.getter
|
|
978
|
-
def proxy(self) -> Optional[
|
|
977
|
+
def proxy(self) -> Optional[_builtins.str]:
|
|
979
978
|
"""
|
|
980
979
|
The HTTP(S) proxy to use within a proxied environment.
|
|
981
980
|
|
|
@@ -996,24 +995,24 @@ class ClusterArgs:
|
|
|
996
995
|
return pulumi.get(self, "proxy")
|
|
997
996
|
|
|
998
997
|
@proxy.setter
|
|
999
|
-
def proxy(self, value: Optional[
|
|
998
|
+
def proxy(self, value: Optional[_builtins.str]):
|
|
1000
999
|
pulumi.set(self, "proxy", value)
|
|
1001
1000
|
|
|
1002
|
-
@property
|
|
1001
|
+
@_builtins.property
|
|
1003
1002
|
@pulumi.getter(name="publicAccessCidrs")
|
|
1004
|
-
def public_access_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1003
|
+
def public_access_cidrs(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1005
1004
|
"""
|
|
1006
1005
|
Indicates which CIDR blocks can access the Amazon EKS public API server endpoint.
|
|
1007
1006
|
"""
|
|
1008
1007
|
return pulumi.get(self, "public_access_cidrs")
|
|
1009
1008
|
|
|
1010
1009
|
@public_access_cidrs.setter
|
|
1011
|
-
def public_access_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1010
|
+
def public_access_cidrs(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1012
1011
|
pulumi.set(self, "public_access_cidrs", value)
|
|
1013
1012
|
|
|
1014
|
-
@property
|
|
1013
|
+
@_builtins.property
|
|
1015
1014
|
@pulumi.getter(name="publicSubnetIds")
|
|
1016
|
-
def public_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1015
|
+
def public_subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1017
1016
|
"""
|
|
1018
1017
|
The set of public subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
1019
1018
|
|
|
@@ -1032,10 +1031,10 @@ class ClusterArgs:
|
|
|
1032
1031
|
return pulumi.get(self, "public_subnet_ids")
|
|
1033
1032
|
|
|
1034
1033
|
@public_subnet_ids.setter
|
|
1035
|
-
def public_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1034
|
+
def public_subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1036
1035
|
pulumi.set(self, "public_subnet_ids", value)
|
|
1037
1036
|
|
|
1038
|
-
@property
|
|
1037
|
+
@_builtins.property
|
|
1039
1038
|
@pulumi.getter(name="roleMappings")
|
|
1040
1039
|
def role_mappings(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['RoleMappingArgs']]]]:
|
|
1041
1040
|
"""
|
|
@@ -1047,7 +1046,7 @@ class ClusterArgs:
|
|
|
1047
1046
|
def role_mappings(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['RoleMappingArgs']]]]):
|
|
1048
1047
|
pulumi.set(self, "role_mappings", value)
|
|
1049
1048
|
|
|
1050
|
-
@property
|
|
1049
|
+
@_builtins.property
|
|
1051
1050
|
@pulumi.getter(name="serviceRole")
|
|
1052
1051
|
def service_role(self) -> Optional[pulumi.Input['pulumi_aws.iam.Role']]:
|
|
1053
1052
|
"""
|
|
@@ -1059,21 +1058,21 @@ class ClusterArgs:
|
|
|
1059
1058
|
def service_role(self, value: Optional[pulumi.Input['pulumi_aws.iam.Role']]):
|
|
1060
1059
|
pulumi.set(self, "service_role", value)
|
|
1061
1060
|
|
|
1062
|
-
@property
|
|
1061
|
+
@_builtins.property
|
|
1063
1062
|
@pulumi.getter(name="skipDefaultNodeGroup")
|
|
1064
|
-
def skip_default_node_group(self) -> Optional[
|
|
1063
|
+
def skip_default_node_group(self) -> Optional[_builtins.bool]:
|
|
1065
1064
|
"""
|
|
1066
1065
|
If this toggle is set to true, the EKS cluster will be created without node group attached. Defaults to false, unless `fargate` or `autoMode` is enabled.
|
|
1067
1066
|
"""
|
|
1068
1067
|
return pulumi.get(self, "skip_default_node_group")
|
|
1069
1068
|
|
|
1070
1069
|
@skip_default_node_group.setter
|
|
1071
|
-
def skip_default_node_group(self, value: Optional[
|
|
1070
|
+
def skip_default_node_group(self, value: Optional[_builtins.bool]):
|
|
1072
1071
|
pulumi.set(self, "skip_default_node_group", value)
|
|
1073
1072
|
|
|
1074
|
-
@property
|
|
1073
|
+
@_builtins.property
|
|
1075
1074
|
@pulumi.getter(name="skipDefaultSecurityGroups")
|
|
1076
|
-
def skip_default_security_groups(self) -> Optional[
|
|
1075
|
+
def skip_default_security_groups(self) -> Optional[_builtins.bool]:
|
|
1077
1076
|
"""
|
|
1078
1077
|
If this toggle is set to true, the EKS cluster will be created without the default node and cluster security groups. Defaults to false, unless `autoMode` is enabled.
|
|
1079
1078
|
|
|
@@ -1082,12 +1081,12 @@ class ClusterArgs:
|
|
|
1082
1081
|
return pulumi.get(self, "skip_default_security_groups")
|
|
1083
1082
|
|
|
1084
1083
|
@skip_default_security_groups.setter
|
|
1085
|
-
def skip_default_security_groups(self, value: Optional[
|
|
1084
|
+
def skip_default_security_groups(self, value: Optional[_builtins.bool]):
|
|
1086
1085
|
pulumi.set(self, "skip_default_security_groups", value)
|
|
1087
1086
|
|
|
1088
|
-
@property
|
|
1087
|
+
@_builtins.property
|
|
1089
1088
|
@pulumi.getter(name="storageClasses")
|
|
1090
|
-
def storage_classes(self) -> Optional[Union[
|
|
1089
|
+
def storage_classes(self) -> Optional[Union[_builtins.str, Mapping[str, 'StorageClassArgs']]]:
|
|
1091
1090
|
"""
|
|
1092
1091
|
An optional set of StorageClasses to enable for the cluster. If this is a single volume type rather than a map, a single StorageClass will be created for that volume type.
|
|
1093
1092
|
|
|
@@ -1096,12 +1095,12 @@ class ClusterArgs:
|
|
|
1096
1095
|
return pulumi.get(self, "storage_classes")
|
|
1097
1096
|
|
|
1098
1097
|
@storage_classes.setter
|
|
1099
|
-
def storage_classes(self, value: Optional[Union[
|
|
1098
|
+
def storage_classes(self, value: Optional[Union[_builtins.str, Mapping[str, 'StorageClassArgs']]]):
|
|
1100
1099
|
pulumi.set(self, "storage_classes", value)
|
|
1101
1100
|
|
|
1102
|
-
@property
|
|
1101
|
+
@_builtins.property
|
|
1103
1102
|
@pulumi.getter(name="subnetIds")
|
|
1104
|
-
def subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1103
|
+
def subnet_ids(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
|
|
1105
1104
|
"""
|
|
1106
1105
|
The set of all subnets, public and private, to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
1107
1106
|
|
|
@@ -1116,22 +1115,22 @@ class ClusterArgs:
|
|
|
1116
1115
|
return pulumi.get(self, "subnet_ids")
|
|
1117
1116
|
|
|
1118
1117
|
@subnet_ids.setter
|
|
1119
|
-
def subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1118
|
+
def subnet_ids(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
|
|
1120
1119
|
pulumi.set(self, "subnet_ids", value)
|
|
1121
1120
|
|
|
1122
|
-
@property
|
|
1121
|
+
@_builtins.property
|
|
1123
1122
|
@pulumi.getter
|
|
1124
|
-
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1123
|
+
def tags(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
|
|
1125
1124
|
"""
|
|
1126
1125
|
Key-value mapping of tags that are automatically applied to all AWS resources directly under management with this cluster, which support tagging.
|
|
1127
1126
|
"""
|
|
1128
1127
|
return pulumi.get(self, "tags")
|
|
1129
1128
|
|
|
1130
1129
|
@tags.setter
|
|
1131
|
-
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1130
|
+
def tags(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
|
|
1132
1131
|
pulumi.set(self, "tags", value)
|
|
1133
1132
|
|
|
1134
|
-
@property
|
|
1133
|
+
@_builtins.property
|
|
1135
1134
|
@pulumi.getter(name="upgradePolicy")
|
|
1136
1135
|
def upgrade_policy(self) -> Optional[pulumi.Input['pulumi_aws.eks.ClusterUpgradePolicyArgs']]:
|
|
1137
1136
|
"""
|
|
@@ -1143,9 +1142,9 @@ class ClusterArgs:
|
|
|
1143
1142
|
def upgrade_policy(self, value: Optional[pulumi.Input['pulumi_aws.eks.ClusterUpgradePolicyArgs']]):
|
|
1144
1143
|
pulumi.set(self, "upgrade_policy", value)
|
|
1145
1144
|
|
|
1146
|
-
@property
|
|
1145
|
+
@_builtins.property
|
|
1147
1146
|
@pulumi.getter(name="useDefaultVpcCni")
|
|
1148
|
-
def use_default_vpc_cni(self) -> Optional[
|
|
1147
|
+
def use_default_vpc_cni(self) -> Optional[_builtins.bool]:
|
|
1149
1148
|
"""
|
|
1150
1149
|
Use the default VPC CNI instead of creating a custom one. Should not be used in conjunction with `vpcCniOptions`.
|
|
1151
1150
|
Defaults to true, unless `autoMode` is enabled.
|
|
@@ -1153,10 +1152,10 @@ class ClusterArgs:
|
|
|
1153
1152
|
return pulumi.get(self, "use_default_vpc_cni")
|
|
1154
1153
|
|
|
1155
1154
|
@use_default_vpc_cni.setter
|
|
1156
|
-
def use_default_vpc_cni(self, value: Optional[
|
|
1155
|
+
def use_default_vpc_cni(self, value: Optional[_builtins.bool]):
|
|
1157
1156
|
pulumi.set(self, "use_default_vpc_cni", value)
|
|
1158
1157
|
|
|
1159
|
-
@property
|
|
1158
|
+
@_builtins.property
|
|
1160
1159
|
@pulumi.getter(name="userMappings")
|
|
1161
1160
|
def user_mappings(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['UserMappingArgs']]]]:
|
|
1162
1161
|
"""
|
|
@@ -1168,19 +1167,19 @@ class ClusterArgs:
|
|
|
1168
1167
|
def user_mappings(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['UserMappingArgs']]]]):
|
|
1169
1168
|
pulumi.set(self, "user_mappings", value)
|
|
1170
1169
|
|
|
1171
|
-
@property
|
|
1170
|
+
@_builtins.property
|
|
1172
1171
|
@pulumi.getter
|
|
1173
|
-
def version(self) -> Optional[pulumi.Input[
|
|
1172
|
+
def version(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1174
1173
|
"""
|
|
1175
1174
|
Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
1176
1175
|
"""
|
|
1177
1176
|
return pulumi.get(self, "version")
|
|
1178
1177
|
|
|
1179
1178
|
@version.setter
|
|
1180
|
-
def version(self, value: Optional[pulumi.Input[
|
|
1179
|
+
def version(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1181
1180
|
pulumi.set(self, "version", value)
|
|
1182
1181
|
|
|
1183
|
-
@property
|
|
1182
|
+
@_builtins.property
|
|
1184
1183
|
@pulumi.getter(name="vpcCniOptions")
|
|
1185
1184
|
def vpc_cni_options(self) -> Optional['VpcCniOptionsArgs']:
|
|
1186
1185
|
"""
|
|
@@ -1192,16 +1191,16 @@ class ClusterArgs:
|
|
|
1192
1191
|
def vpc_cni_options(self, value: Optional['VpcCniOptionsArgs']):
|
|
1193
1192
|
pulumi.set(self, "vpc_cni_options", value)
|
|
1194
1193
|
|
|
1195
|
-
@property
|
|
1194
|
+
@_builtins.property
|
|
1196
1195
|
@pulumi.getter(name="vpcId")
|
|
1197
|
-
def vpc_id(self) -> Optional[pulumi.Input[
|
|
1196
|
+
def vpc_id(self) -> Optional[pulumi.Input[_builtins.str]]:
|
|
1198
1197
|
"""
|
|
1199
1198
|
The VPC in which to create the cluster and its worker nodes. If unset, the cluster will be created in the default VPC.
|
|
1200
1199
|
"""
|
|
1201
1200
|
return pulumi.get(self, "vpc_id")
|
|
1202
1201
|
|
|
1203
1202
|
@vpc_id.setter
|
|
1204
|
-
def vpc_id(self, value: Optional[pulumi.Input[
|
|
1203
|
+
def vpc_id(self, value: Optional[pulumi.Input[_builtins.str]]):
|
|
1205
1204
|
pulumi.set(self, "vpc_id", value)
|
|
1206
1205
|
|
|
1207
1206
|
|
|
@@ -1214,60 +1213,60 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1214
1213
|
access_entries: Optional[Mapping[str, Union['AccessEntryArgs', 'AccessEntryArgsDict']]] = None,
|
|
1215
1214
|
authentication_mode: Optional['AuthenticationMode'] = None,
|
|
1216
1215
|
auto_mode: Optional[Union['AutoModeOptionsArgs', 'AutoModeOptionsArgsDict']] = None,
|
|
1217
|
-
bootstrap_self_managed_addons: Optional[pulumi.Input[
|
|
1216
|
+
bootstrap_self_managed_addons: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1218
1217
|
cluster_security_group: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']] = None,
|
|
1219
|
-
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1220
|
-
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1218
|
+
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1219
|
+
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1221
1220
|
coredns_addon_options: Optional[Union['CoreDnsAddonOptionsArgs', 'CoreDnsAddonOptionsArgsDict']] = None,
|
|
1222
|
-
create_instance_role: Optional[
|
|
1223
|
-
create_oidc_provider: Optional[pulumi.Input[
|
|
1221
|
+
create_instance_role: Optional[_builtins.bool] = None,
|
|
1222
|
+
create_oidc_provider: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1224
1223
|
creation_role_provider: Optional[Union['CreationRoleProviderArgs', 'CreationRoleProviderArgsDict']] = None,
|
|
1225
|
-
deletion_protection: Optional[pulumi.Input[
|
|
1226
|
-
desired_capacity: Optional[pulumi.Input[
|
|
1227
|
-
enable_config_map_mutable: Optional[pulumi.Input[
|
|
1228
|
-
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1229
|
-
encryption_config_key_arn: Optional[pulumi.Input[
|
|
1230
|
-
endpoint_private_access: Optional[pulumi.Input[
|
|
1231
|
-
endpoint_public_access: Optional[pulumi.Input[
|
|
1232
|
-
fargate: Optional[pulumi.Input[Union[
|
|
1233
|
-
gpu: Optional[pulumi.Input[
|
|
1234
|
-
instance_profile_name: Optional[pulumi.Input[
|
|
1224
|
+
deletion_protection: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1225
|
+
desired_capacity: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1226
|
+
enable_config_map_mutable: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1227
|
+
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1228
|
+
encryption_config_key_arn: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1229
|
+
endpoint_private_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1230
|
+
endpoint_public_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1231
|
+
fargate: Optional[pulumi.Input[Union[_builtins.bool, Union['FargateProfileArgs', 'FargateProfileArgsDict']]]] = None,
|
|
1232
|
+
gpu: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1233
|
+
instance_profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1235
1234
|
instance_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
1236
1235
|
instance_roles: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]] = None,
|
|
1237
|
-
instance_type: Optional[pulumi.Input[
|
|
1238
|
-
ip_family: Optional[pulumi.Input[
|
|
1236
|
+
instance_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1237
|
+
ip_family: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1239
1238
|
kube_proxy_addon_options: Optional[Union['KubeProxyAddonOptionsArgs', 'KubeProxyAddonOptionsArgsDict']] = None,
|
|
1240
|
-
kubernetes_service_ip_address_range: Optional[pulumi.Input[
|
|
1241
|
-
max_size: Optional[pulumi.Input[
|
|
1242
|
-
min_size: Optional[pulumi.Input[
|
|
1243
|
-
name: Optional[pulumi.Input[
|
|
1244
|
-
node_ami_id: Optional[pulumi.Input[
|
|
1245
|
-
node_associate_public_ip_address: Optional[
|
|
1239
|
+
kubernetes_service_ip_address_range: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1240
|
+
max_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1241
|
+
min_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1242
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1243
|
+
node_ami_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1244
|
+
node_associate_public_ip_address: Optional[_builtins.bool] = None,
|
|
1246
1245
|
node_group_options: Optional[Union['ClusterNodeGroupOptionsArgs', 'ClusterNodeGroupOptionsArgsDict']] = None,
|
|
1247
|
-
node_public_key: Optional[pulumi.Input[
|
|
1248
|
-
node_root_volume_encrypted: Optional[pulumi.Input[
|
|
1249
|
-
node_root_volume_size: Optional[pulumi.Input[
|
|
1250
|
-
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1251
|
-
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1252
|
-
node_user_data: Optional[pulumi.Input[
|
|
1253
|
-
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1246
|
+
node_public_key: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1247
|
+
node_root_volume_encrypted: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1248
|
+
node_root_volume_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1249
|
+
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1250
|
+
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1251
|
+
node_user_data: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1252
|
+
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1254
1253
|
provider_credential_opts: Optional[pulumi.Input[Union['KubeconfigOptionsArgs', 'KubeconfigOptionsArgsDict']]] = None,
|
|
1255
|
-
proxy: Optional[
|
|
1256
|
-
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1257
|
-
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1254
|
+
proxy: Optional[_builtins.str] = None,
|
|
1255
|
+
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1256
|
+
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1258
1257
|
role_mappings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['RoleMappingArgs', 'RoleMappingArgsDict']]]]] = None,
|
|
1259
1258
|
service_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
1260
|
-
skip_default_node_group: Optional[
|
|
1261
|
-
skip_default_security_groups: Optional[
|
|
1262
|
-
storage_classes: Optional[Union[
|
|
1263
|
-
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1264
|
-
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1259
|
+
skip_default_node_group: Optional[_builtins.bool] = None,
|
|
1260
|
+
skip_default_security_groups: Optional[_builtins.bool] = None,
|
|
1261
|
+
storage_classes: Optional[Union[_builtins.str, Mapping[str, Union['StorageClassArgs', 'StorageClassArgsDict']]]] = None,
|
|
1262
|
+
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1263
|
+
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1265
1264
|
upgrade_policy: Optional[pulumi.Input[pulumi.InputType['pulumi_aws.eks.ClusterUpgradePolicyArgs']]] = None,
|
|
1266
|
-
use_default_vpc_cni: Optional[
|
|
1265
|
+
use_default_vpc_cni: Optional[_builtins.bool] = None,
|
|
1267
1266
|
user_mappings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['UserMappingArgs', 'UserMappingArgsDict']]]]] = None,
|
|
1268
|
-
version: Optional[pulumi.Input[
|
|
1267
|
+
version: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1269
1268
|
vpc_cni_options: Optional[Union['VpcCniOptionsArgs', 'VpcCniOptionsArgsDict']] = None,
|
|
1270
|
-
vpc_id: Optional[pulumi.Input[
|
|
1269
|
+
vpc_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1271
1270
|
__props__=None):
|
|
1272
1271
|
"""
|
|
1273
1272
|
Cluster is a component that wraps the AWS and Kubernetes resources necessary to run an EKS cluster, its worker nodes, its optional StorageClasses, and an optional deployment of the Kubernetes Dashboard.
|
|
@@ -1303,17 +1302,17 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1303
1302
|
:param Union['AutoModeOptionsArgs', 'AutoModeOptionsArgsDict'] auto_mode: Configuration Options for EKS Auto Mode. If EKS Auto Mode is enabled, AWS will manage cluster infrastructure on your behalf.
|
|
1304
1303
|
|
|
1305
1304
|
For more information, see: https://docs.aws.amazon.com/eks/latest/userguide/automode.html
|
|
1306
|
-
:param pulumi.Input[
|
|
1305
|
+
:param pulumi.Input[_builtins.bool] bootstrap_self_managed_addons: Install default unmanaged add-ons, such as `aws-cni`, `kube-proxy`, and CoreDNS during cluster creation. If `false`, you must manually install desired add-ons. Changing this value will force a new cluster to be created. Defaults to `true`
|
|
1307
1306
|
:param pulumi.Input['pulumi_aws.ec2.SecurityGroup'] cluster_security_group: The security group to use for the cluster API endpoint. If not provided, a new security group will be created with full internet egress and ingress from node groups.
|
|
1308
1307
|
|
|
1309
1308
|
Note: The security group resource should not contain any inline ingress or egress rules.
|
|
1310
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1311
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1309
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] cluster_security_group_tags: The tags to apply to the cluster security group.
|
|
1310
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] cluster_tags: The tags to apply to the EKS cluster.
|
|
1312
1311
|
:param Union['CoreDnsAddonOptionsArgs', 'CoreDnsAddonOptionsArgsDict'] coredns_addon_options: Options for managing the `coredns` addon.
|
|
1313
|
-
:param
|
|
1312
|
+
:param _builtins.bool create_instance_role: Whether to create the instance role for the EKS cluster. Defaults to true when using the default node group, false otherwise.
|
|
1314
1313
|
If set to false when using the default node group, an instance role or instance profile must be provided.n
|
|
1315
1314
|
Note: this option has no effect if a custom instance role is provided with `instanceRole` or `instanceRoles`.
|
|
1316
|
-
:param pulumi.Input[
|
|
1315
|
+
:param pulumi.Input[_builtins.bool] create_oidc_provider: Indicates whether an IAM OIDC Provider is created for the EKS cluster.
|
|
1317
1316
|
|
|
1318
1317
|
The OIDC provider is used in the cluster in combination with k8s Service Account annotations to provide IAM roles at the k8s Pod level.
|
|
1319
1318
|
|
|
@@ -1325,22 +1324,22 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1325
1324
|
:param Union['CreationRoleProviderArgs', 'CreationRoleProviderArgsDict'] creation_role_provider: The IAM Role Provider used to create & authenticate against the EKS cluster. This role is given `[system:masters]` permission in K8S, See: https://docs.aws.amazon.com/eks/latest/userguide/add-user-role.html
|
|
1326
1325
|
|
|
1327
1326
|
Note: This option is only supported with Pulumi nodejs programs. Please use `ProviderCredentialOpts` as an alternative instead.
|
|
1328
|
-
:param pulumi.Input[
|
|
1329
|
-
:param pulumi.Input[
|
|
1330
|
-
:param pulumi.Input[
|
|
1327
|
+
:param pulumi.Input[_builtins.bool] deletion_protection: Whether to enable deletion protection for the cluster. When enabled, the cluster cannot be deleted unless deletion protection is first disabled. Default: `false`.
|
|
1328
|
+
:param pulumi.Input[_builtins.int] desired_capacity: The number of worker nodes that should be running in the cluster. Defaults to 2.
|
|
1329
|
+
:param pulumi.Input[_builtins.bool] enable_config_map_mutable: Sets the 'enableConfigMapMutable' option on the cluster kubernetes provider.
|
|
1331
1330
|
|
|
1332
1331
|
Applies updates to the aws-auth ConfigMap in place over a replace operation if set to true.
|
|
1333
1332
|
https://www.pulumi.com/registry/packages/kubernetes/api-docs/provider/#enableconfigmapmutable_nodejs
|
|
1334
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1335
|
-
:param pulumi.Input[
|
|
1333
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] enabled_cluster_log_types: Enable EKS control plane logging. This sends logs to cloudwatch. Possible list of values are: ["api", "audit", "authenticator", "controllerManager", "scheduler"]. By default it is off.
|
|
1334
|
+
:param pulumi.Input[_builtins.str] encryption_config_key_arn: KMS Key ARN to use with the encryption configuration for the cluster.
|
|
1336
1335
|
|
|
1337
1336
|
Only available on Kubernetes 1.13+ clusters created after March 6, 2020.
|
|
1338
1337
|
See for more details:
|
|
1339
1338
|
- https://aws.amazon.com/about-aws/whats-new/2020/03/amazon-eks-adds-envelope-encryption-for-secrets-with-aws-kms/
|
|
1340
|
-
:param pulumi.Input[
|
|
1341
|
-
:param pulumi.Input[
|
|
1342
|
-
:param pulumi.Input[Union[
|
|
1343
|
-
:param pulumi.Input[
|
|
1339
|
+
:param pulumi.Input[_builtins.bool] endpoint_private_access: Indicates whether or not the Amazon EKS private API server endpoint is enabled. Default is `false`.
|
|
1340
|
+
:param pulumi.Input[_builtins.bool] endpoint_public_access: Indicates whether or not the Amazon EKS public API server endpoint is enabled. Default is `true`.
|
|
1341
|
+
:param pulumi.Input[Union[_builtins.bool, Union['FargateProfileArgs', 'FargateProfileArgsDict']]] fargate: Add support for launching pods in Fargate. Defaults to launching pods in the `default` namespace. If specified, the default node group is skipped as though `skipDefaultNodeGroup: true` had been passed.
|
|
1342
|
+
:param pulumi.Input[_builtins.bool] gpu: Use the latest recommended EKS Optimized Linux AMI with GPU support for the worker nodes from the AWS Systems Manager Parameter Store.
|
|
1344
1343
|
|
|
1345
1344
|
Defaults to false.
|
|
1346
1345
|
|
|
@@ -1349,18 +1348,18 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1349
1348
|
See for more details:
|
|
1350
1349
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html
|
|
1351
1350
|
- https://docs.aws.amazon.com/eks/latest/userguide/retrieve-ami-id.html
|
|
1352
|
-
:param pulumi.Input[
|
|
1351
|
+
:param pulumi.Input[_builtins.str] instance_profile_name: The default IAM InstanceProfile to use on the Worker NodeGroups, if one is not already set in the NodeGroup.
|
|
1353
1352
|
:param pulumi.Input['pulumi_aws.iam.Role'] instance_role: This enables the simple case of only registering a *single* IAM instance role with the cluster, that is required to be shared by *all* node groups in their instance profiles.
|
|
1354
1353
|
|
|
1355
1354
|
Note: options `instanceRole` and `instanceRoles` are mutually exclusive.
|
|
1356
1355
|
:param pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]] instance_roles: This enables the advanced case of registering *many* IAM instance roles with the cluster for per node group IAM, instead of the simpler, shared case of `instanceRole`.
|
|
1357
1356
|
|
|
1358
1357
|
Note: options `instanceRole` and `instanceRoles` are mutually exclusive.
|
|
1359
|
-
:param pulumi.Input[
|
|
1360
|
-
:param pulumi.Input[
|
|
1358
|
+
:param pulumi.Input[_builtins.str] instance_type: The instance type to use for the cluster's nodes. Defaults to "t3.medium".
|
|
1359
|
+
:param pulumi.Input[_builtins.str] ip_family: The IP family used to assign Kubernetes pod and service addresses. Valid values are `ipv4` (default) and `ipv6`.
|
|
1361
1360
|
You can only specify an IP family when you create a cluster, changing this value will force a new cluster to be created.
|
|
1362
1361
|
:param Union['KubeProxyAddonOptionsArgs', 'KubeProxyAddonOptionsArgsDict'] kube_proxy_addon_options: Options for managing the `kube-proxy` addon.
|
|
1363
|
-
:param pulumi.Input[
|
|
1362
|
+
:param pulumi.Input[_builtins.str] kubernetes_service_ip_address_range: The CIDR block to assign Kubernetes service IP addresses from. If you don't
|
|
1364
1363
|
specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or
|
|
1365
1364
|
172.20.0.0/16 CIDR blocks. This setting only applies to IPv4 clusters. We recommend that you specify a block
|
|
1366
1365
|
that does not overlap with resources in other networks that are peered or connected to your VPC. You can only specify
|
|
@@ -1370,14 +1369,14 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1370
1369
|
- Within one of the following private IP address blocks: 10.0.0.0/8, 172.16.0.0.0/12, or 192.168.0.0/16.
|
|
1371
1370
|
- Doesn't overlap with any CIDR block assigned to the VPC that you selected for VPC.
|
|
1372
1371
|
- Between /24 and /12.
|
|
1373
|
-
:param pulumi.Input[
|
|
1374
|
-
:param pulumi.Input[
|
|
1375
|
-
:param pulumi.Input[
|
|
1372
|
+
:param pulumi.Input[_builtins.int] max_size: The maximum number of worker nodes running in the cluster. Defaults to 2.
|
|
1373
|
+
:param pulumi.Input[_builtins.int] min_size: The minimum number of worker nodes running in the cluster. Defaults to 1.
|
|
1374
|
+
:param pulumi.Input[_builtins.str] name: The cluster's physical resource name.
|
|
1376
1375
|
|
|
1377
1376
|
If not specified, the default is to use auto-naming for the cluster's name, resulting in a physical name with the format `${name}-eksCluster-0123abcd`.
|
|
1378
1377
|
|
|
1379
1378
|
See for more details: https://www.pulumi.com/docs/intro/concepts/programming-model/#autonaming
|
|
1380
|
-
:param pulumi.Input[
|
|
1379
|
+
:param pulumi.Input[_builtins.str] node_ami_id: The AMI ID to use for the worker nodes.
|
|
1381
1380
|
|
|
1382
1381
|
Defaults to the latest recommended EKS Optimized Linux AMI from the AWS Systems Manager Parameter Store.
|
|
1383
1382
|
|
|
@@ -1385,19 +1384,19 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1385
1384
|
|
|
1386
1385
|
See for more details:
|
|
1387
1386
|
- https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html.
|
|
1388
|
-
:param
|
|
1387
|
+
:param _builtins.bool node_associate_public_ip_address: Whether or not to auto-assign the EKS worker nodes public IP addresses. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.
|
|
1389
1388
|
:param Union['ClusterNodeGroupOptionsArgs', 'ClusterNodeGroupOptionsArgsDict'] node_group_options: The common configuration settings for NodeGroups.
|
|
1390
|
-
:param pulumi.Input[
|
|
1389
|
+
:param pulumi.Input[_builtins.str] node_public_key: Public key material for SSH access to worker nodes. See allowed formats at:
|
|
1391
1390
|
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
|
|
1392
1391
|
If not provided, no SSH access is enabled on VMs.
|
|
1393
|
-
:param pulumi.Input[
|
|
1394
|
-
:param pulumi.Input[
|
|
1395
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1392
|
+
:param pulumi.Input[_builtins.bool] node_root_volume_encrypted: Encrypt the root block device of the nodes in the node group.
|
|
1393
|
+
:param pulumi.Input[_builtins.int] node_root_volume_size: The size in GiB of a cluster node's root volume. Defaults to 20.
|
|
1394
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] node_security_group_tags: The tags to apply to the default `nodeSecurityGroup` created by the cluster.
|
|
1396
1395
|
|
|
1397
1396
|
Note: The `nodeSecurityGroupTags` option and the node group option `nodeSecurityGroup` are mutually exclusive.
|
|
1398
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1399
|
-
:param pulumi.Input[
|
|
1400
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1397
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] node_subnet_ids: The subnets to use for worker nodes. Defaults to the value of subnetIds.
|
|
1398
|
+
:param pulumi.Input[_builtins.str] node_user_data: Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a `#!`).
|
|
1399
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] private_subnet_ids: The set of private subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
1401
1400
|
|
|
1402
1401
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
1403
1402
|
|
|
@@ -1425,7 +1424,7 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1425
1424
|
- https://www.pulumi.com/docs/intro/cloud-providers/aws/setup/
|
|
1426
1425
|
- https://www.pulumi.com/docs/intro/cloud-providers/aws/#configuration
|
|
1427
1426
|
- https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html
|
|
1428
|
-
:param
|
|
1427
|
+
:param _builtins.str proxy: The HTTP(S) proxy to use within a proxied environment.
|
|
1429
1428
|
|
|
1430
1429
|
The proxy is used during cluster creation, and OIDC configuration.
|
|
1431
1430
|
|
|
@@ -1440,8 +1439,8 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1440
1439
|
- "http://proxy.example.com:3128"
|
|
1441
1440
|
- "https://proxy.example.com"
|
|
1442
1441
|
- "http://username:password@proxy.example.com:3128"
|
|
1443
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1444
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1442
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] public_access_cidrs: Indicates which CIDR blocks can access the Amazon EKS public API server endpoint.
|
|
1443
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] public_subnet_ids: The set of public subnets to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
1445
1444
|
|
|
1446
1445
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
1447
1446
|
|
|
@@ -1456,14 +1455,14 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1456
1455
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html.Note: The use of `subnetIds`, along with `publicSubnetIds` and/or `privateSubnetIds` is mutually exclusive. The use of `publicSubnetIds` and `privateSubnetIds` is encouraged.
|
|
1457
1456
|
:param pulumi.Input[Sequence[pulumi.Input[Union['RoleMappingArgs', 'RoleMappingArgsDict']]]] role_mappings: Optional mappings from AWS IAM roles to Kubernetes users and groups. Only supported with authentication mode `CONFIG_MAP` or `API_AND_CONFIG_MAP`
|
|
1458
1457
|
:param pulumi.Input['pulumi_aws.iam.Role'] service_role: IAM Service Role for EKS to use to manage the cluster.
|
|
1459
|
-
:param
|
|
1460
|
-
:param
|
|
1458
|
+
:param _builtins.bool skip_default_node_group: If this toggle is set to true, the EKS cluster will be created without node group attached. Defaults to false, unless `fargate` or `autoMode` is enabled.
|
|
1459
|
+
:param _builtins.bool skip_default_security_groups: If this toggle is set to true, the EKS cluster will be created without the default node and cluster security groups. Defaults to false, unless `autoMode` is enabled.
|
|
1461
1460
|
|
|
1462
1461
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/sec-group-reqs.html
|
|
1463
|
-
:param Union[
|
|
1462
|
+
:param Union[_builtins.str, Mapping[str, Union['StorageClassArgs', 'StorageClassArgsDict']]] storage_classes: An optional set of StorageClasses to enable for the cluster. If this is a single volume type rather than a map, a single StorageClass will be created for that volume type.
|
|
1464
1463
|
|
|
1465
1464
|
Note: As of Kubernetes v1.11+ on EKS, a default `gp2` storage class will always be created automatically for the cluster by the EKS service. See https://docs.aws.amazon.com/eks/latest/userguide/storage-classes.html
|
|
1466
|
-
:param pulumi.Input[Sequence[pulumi.Input[
|
|
1465
|
+
:param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] subnet_ids: The set of all subnets, public and private, to use for the worker node groups on the EKS cluster. These subnets are automatically tagged by EKS for Kubernetes purposes.
|
|
1467
1466
|
|
|
1468
1467
|
If `vpcId` is not set, the cluster will use the AWS account's default VPC subnets.
|
|
1469
1468
|
|
|
@@ -1472,14 +1471,14 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1472
1471
|
See for more details: https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html.
|
|
1473
1472
|
|
|
1474
1473
|
Note: The use of `subnetIds`, along with `publicSubnetIds` and/or `privateSubnetIds` is mutually exclusive. The use of `publicSubnetIds` and `privateSubnetIds` is encouraged.
|
|
1475
|
-
:param pulumi.Input[Mapping[str, pulumi.Input[
|
|
1474
|
+
:param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] tags: Key-value mapping of tags that are automatically applied to all AWS resources directly under management with this cluster, which support tagging.
|
|
1476
1475
|
:param pulumi.Input[pulumi.InputType['pulumi_aws.eks.ClusterUpgradePolicyArgs']] upgrade_policy: The cluster's upgrade policy. Valid support types are "STANDARD" and "EXTENDED". Defaults to "EXTENDED".
|
|
1477
|
-
:param
|
|
1476
|
+
:param _builtins.bool use_default_vpc_cni: Use the default VPC CNI instead of creating a custom one. Should not be used in conjunction with `vpcCniOptions`.
|
|
1478
1477
|
Defaults to true, unless `autoMode` is enabled.
|
|
1479
1478
|
:param pulumi.Input[Sequence[pulumi.Input[Union['UserMappingArgs', 'UserMappingArgsDict']]]] user_mappings: Optional mappings from AWS IAM users to Kubernetes users and groups. Only supported with authentication mode `CONFIG_MAP` or `API_AND_CONFIG_MAP`.
|
|
1480
|
-
:param pulumi.Input[
|
|
1479
|
+
:param pulumi.Input[_builtins.str] version: Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.
|
|
1481
1480
|
:param Union['VpcCniOptionsArgs', 'VpcCniOptionsArgsDict'] vpc_cni_options: The configuration of the Amazon VPC CNI plugin for this instance. Defaults are described in the documentation for the VpcCniOptions type.
|
|
1482
|
-
:param pulumi.Input[
|
|
1481
|
+
:param pulumi.Input[_builtins.str] vpc_id: The VPC in which to create the cluster and its worker nodes. If unset, the cluster will be created in the default VPC.
|
|
1483
1482
|
"""
|
|
1484
1483
|
...
|
|
1485
1484
|
@overload
|
|
@@ -1526,60 +1525,60 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1526
1525
|
access_entries: Optional[Mapping[str, Union['AccessEntryArgs', 'AccessEntryArgsDict']]] = None,
|
|
1527
1526
|
authentication_mode: Optional['AuthenticationMode'] = None,
|
|
1528
1527
|
auto_mode: Optional[Union['AutoModeOptionsArgs', 'AutoModeOptionsArgsDict']] = None,
|
|
1529
|
-
bootstrap_self_managed_addons: Optional[pulumi.Input[
|
|
1528
|
+
bootstrap_self_managed_addons: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1530
1529
|
cluster_security_group: Optional[pulumi.Input['pulumi_aws.ec2.SecurityGroup']] = None,
|
|
1531
|
-
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1532
|
-
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1530
|
+
cluster_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1531
|
+
cluster_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1533
1532
|
coredns_addon_options: Optional[Union['CoreDnsAddonOptionsArgs', 'CoreDnsAddonOptionsArgsDict']] = None,
|
|
1534
|
-
create_instance_role: Optional[
|
|
1535
|
-
create_oidc_provider: Optional[pulumi.Input[
|
|
1533
|
+
create_instance_role: Optional[_builtins.bool] = None,
|
|
1534
|
+
create_oidc_provider: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1536
1535
|
creation_role_provider: Optional[Union['CreationRoleProviderArgs', 'CreationRoleProviderArgsDict']] = None,
|
|
1537
|
-
deletion_protection: Optional[pulumi.Input[
|
|
1538
|
-
desired_capacity: Optional[pulumi.Input[
|
|
1539
|
-
enable_config_map_mutable: Optional[pulumi.Input[
|
|
1540
|
-
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1541
|
-
encryption_config_key_arn: Optional[pulumi.Input[
|
|
1542
|
-
endpoint_private_access: Optional[pulumi.Input[
|
|
1543
|
-
endpoint_public_access: Optional[pulumi.Input[
|
|
1544
|
-
fargate: Optional[pulumi.Input[Union[
|
|
1545
|
-
gpu: Optional[pulumi.Input[
|
|
1546
|
-
instance_profile_name: Optional[pulumi.Input[
|
|
1536
|
+
deletion_protection: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1537
|
+
desired_capacity: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1538
|
+
enable_config_map_mutable: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1539
|
+
enabled_cluster_log_types: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1540
|
+
encryption_config_key_arn: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1541
|
+
endpoint_private_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1542
|
+
endpoint_public_access: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1543
|
+
fargate: Optional[pulumi.Input[Union[_builtins.bool, Union['FargateProfileArgs', 'FargateProfileArgsDict']]]] = None,
|
|
1544
|
+
gpu: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1545
|
+
instance_profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1547
1546
|
instance_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
1548
1547
|
instance_roles: Optional[pulumi.Input[Sequence[pulumi.Input['pulumi_aws.iam.Role']]]] = None,
|
|
1549
|
-
instance_type: Optional[pulumi.Input[
|
|
1550
|
-
ip_family: Optional[pulumi.Input[
|
|
1548
|
+
instance_type: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1549
|
+
ip_family: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1551
1550
|
kube_proxy_addon_options: Optional[Union['KubeProxyAddonOptionsArgs', 'KubeProxyAddonOptionsArgsDict']] = None,
|
|
1552
|
-
kubernetes_service_ip_address_range: Optional[pulumi.Input[
|
|
1553
|
-
max_size: Optional[pulumi.Input[
|
|
1554
|
-
min_size: Optional[pulumi.Input[
|
|
1555
|
-
name: Optional[pulumi.Input[
|
|
1556
|
-
node_ami_id: Optional[pulumi.Input[
|
|
1557
|
-
node_associate_public_ip_address: Optional[
|
|
1551
|
+
kubernetes_service_ip_address_range: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1552
|
+
max_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1553
|
+
min_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1554
|
+
name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1555
|
+
node_ami_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1556
|
+
node_associate_public_ip_address: Optional[_builtins.bool] = None,
|
|
1558
1557
|
node_group_options: Optional[Union['ClusterNodeGroupOptionsArgs', 'ClusterNodeGroupOptionsArgsDict']] = None,
|
|
1559
|
-
node_public_key: Optional[pulumi.Input[
|
|
1560
|
-
node_root_volume_encrypted: Optional[pulumi.Input[
|
|
1561
|
-
node_root_volume_size: Optional[pulumi.Input[
|
|
1562
|
-
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1563
|
-
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1564
|
-
node_user_data: Optional[pulumi.Input[
|
|
1565
|
-
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1558
|
+
node_public_key: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1559
|
+
node_root_volume_encrypted: Optional[pulumi.Input[_builtins.bool]] = None,
|
|
1560
|
+
node_root_volume_size: Optional[pulumi.Input[_builtins.int]] = None,
|
|
1561
|
+
node_security_group_tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1562
|
+
node_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1563
|
+
node_user_data: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1564
|
+
private_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1566
1565
|
provider_credential_opts: Optional[pulumi.Input[Union['KubeconfigOptionsArgs', 'KubeconfigOptionsArgsDict']]] = None,
|
|
1567
|
-
proxy: Optional[
|
|
1568
|
-
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1569
|
-
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1566
|
+
proxy: Optional[_builtins.str] = None,
|
|
1567
|
+
public_access_cidrs: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1568
|
+
public_subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1570
1569
|
role_mappings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['RoleMappingArgs', 'RoleMappingArgsDict']]]]] = None,
|
|
1571
1570
|
service_role: Optional[pulumi.Input['pulumi_aws.iam.Role']] = None,
|
|
1572
|
-
skip_default_node_group: Optional[
|
|
1573
|
-
skip_default_security_groups: Optional[
|
|
1574
|
-
storage_classes: Optional[Union[
|
|
1575
|
-
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[
|
|
1576
|
-
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[
|
|
1571
|
+
skip_default_node_group: Optional[_builtins.bool] = None,
|
|
1572
|
+
skip_default_security_groups: Optional[_builtins.bool] = None,
|
|
1573
|
+
storage_classes: Optional[Union[_builtins.str, Mapping[str, Union['StorageClassArgs', 'StorageClassArgsDict']]]] = None,
|
|
1574
|
+
subnet_ids: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
|
|
1575
|
+
tags: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
|
|
1577
1576
|
upgrade_policy: Optional[pulumi.Input[pulumi.InputType['pulumi_aws.eks.ClusterUpgradePolicyArgs']]] = None,
|
|
1578
|
-
use_default_vpc_cni: Optional[
|
|
1577
|
+
use_default_vpc_cni: Optional[_builtins.bool] = None,
|
|
1579
1578
|
user_mappings: Optional[pulumi.Input[Sequence[pulumi.Input[Union['UserMappingArgs', 'UserMappingArgsDict']]]]] = None,
|
|
1580
|
-
version: Optional[pulumi.Input[
|
|
1579
|
+
version: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1581
1580
|
vpc_cni_options: Optional[Union['VpcCniOptionsArgs', 'VpcCniOptionsArgsDict']] = None,
|
|
1582
|
-
vpc_id: Optional[pulumi.Input[
|
|
1581
|
+
vpc_id: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1583
1582
|
__props__=None):
|
|
1584
1583
|
opts = pulumi.ResourceOptions.merge(_utilities.get_resource_opts_defaults(), opts)
|
|
1585
1584
|
if not isinstance(opts, pulumi.ResourceOptions):
|
|
@@ -1673,15 +1672,15 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1673
1672
|
opts,
|
|
1674
1673
|
remote=True)
|
|
1675
1674
|
|
|
1676
|
-
@property
|
|
1675
|
+
@_builtins.property
|
|
1677
1676
|
@pulumi.getter(name="autoModeNodeRoleName")
|
|
1678
|
-
def auto_mode_node_role_name(self) -> pulumi.Output[
|
|
1677
|
+
def auto_mode_node_role_name(self) -> pulumi.Output[_builtins.str]:
|
|
1679
1678
|
"""
|
|
1680
1679
|
The name of the IAM role created for nodes managed by EKS Auto Mode. Defaults to an empty string.
|
|
1681
1680
|
"""
|
|
1682
1681
|
return pulumi.get(self, "auto_mode_node_role_name")
|
|
1683
1682
|
|
|
1684
|
-
@property
|
|
1683
|
+
@_builtins.property
|
|
1685
1684
|
@pulumi.getter(name="awsProvider")
|
|
1686
1685
|
def aws_provider(self) -> pulumi.Output['pulumi_aws.Provider']:
|
|
1687
1686
|
"""
|
|
@@ -1689,15 +1688,15 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1689
1688
|
"""
|
|
1690
1689
|
return pulumi.get(self, "aws_provider")
|
|
1691
1690
|
|
|
1692
|
-
@property
|
|
1691
|
+
@_builtins.property
|
|
1693
1692
|
@pulumi.getter(name="clusterIngressRuleId")
|
|
1694
|
-
def cluster_ingress_rule_id(self) -> pulumi.Output[
|
|
1693
|
+
def cluster_ingress_rule_id(self) -> pulumi.Output[_builtins.str]:
|
|
1695
1694
|
"""
|
|
1696
1695
|
The ID of the security group rule that gives node group access to the cluster API server. Defaults to an empty string if `skipDefaultSecurityGroups` is set to true.
|
|
1697
1696
|
"""
|
|
1698
1697
|
return pulumi.get(self, "cluster_ingress_rule_id")
|
|
1699
1698
|
|
|
1700
|
-
@property
|
|
1699
|
+
@_builtins.property
|
|
1701
1700
|
@pulumi.getter(name="clusterSecurityGroup")
|
|
1702
1701
|
def cluster_security_group(self) -> pulumi.Output[Optional['pulumi_aws.ec2.SecurityGroup']]:
|
|
1703
1702
|
"""
|
|
@@ -1705,15 +1704,15 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1705
1704
|
"""
|
|
1706
1705
|
return pulumi.get(self, "cluster_security_group")
|
|
1707
1706
|
|
|
1708
|
-
@property
|
|
1707
|
+
@_builtins.property
|
|
1709
1708
|
@pulumi.getter(name="clusterSecurityGroupId")
|
|
1710
|
-
def cluster_security_group_id(self) -> pulumi.Output[
|
|
1709
|
+
def cluster_security_group_id(self) -> pulumi.Output[_builtins.str]:
|
|
1711
1710
|
"""
|
|
1712
1711
|
The cluster security group ID of the EKS cluster. Returns the EKS created security group if `skipDefaultSecurityGroups` is set to true.
|
|
1713
1712
|
"""
|
|
1714
1713
|
return pulumi.get(self, "cluster_security_group_id")
|
|
1715
1714
|
|
|
1716
|
-
@property
|
|
1715
|
+
@_builtins.property
|
|
1717
1716
|
@pulumi.getter
|
|
1718
1717
|
def core(self) -> pulumi.Output['outputs.CoreData']:
|
|
1719
1718
|
"""
|
|
@@ -1721,7 +1720,7 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1721
1720
|
"""
|
|
1722
1721
|
return pulumi.get(self, "core")
|
|
1723
1722
|
|
|
1724
|
-
@property
|
|
1723
|
+
@_builtins.property
|
|
1725
1724
|
@pulumi.getter(name="defaultNodeGroup")
|
|
1726
1725
|
def default_node_group(self) -> pulumi.Output[Optional['outputs.NodeGroupData']]:
|
|
1727
1726
|
"""
|
|
@@ -1729,15 +1728,15 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1729
1728
|
"""
|
|
1730
1729
|
return pulumi.get(self, "default_node_group")
|
|
1731
1730
|
|
|
1732
|
-
@property
|
|
1731
|
+
@_builtins.property
|
|
1733
1732
|
@pulumi.getter(name="defaultNodeGroupAsgName")
|
|
1734
|
-
def default_node_group_asg_name(self) -> pulumi.Output[
|
|
1733
|
+
def default_node_group_asg_name(self) -> pulumi.Output[_builtins.str]:
|
|
1735
1734
|
"""
|
|
1736
1735
|
The name of the default node group's AutoScaling Group. Defaults to an empty string if `skipDefaultNodeGroup` is set to true.
|
|
1737
1736
|
"""
|
|
1738
1737
|
return pulumi.get(self, "default_node_group_asg_name")
|
|
1739
1738
|
|
|
1740
|
-
@property
|
|
1739
|
+
@_builtins.property
|
|
1741
1740
|
@pulumi.getter(name="eksCluster")
|
|
1742
1741
|
def eks_cluster(self) -> pulumi.Output['pulumi_aws.eks.Cluster']:
|
|
1743
1742
|
"""
|
|
@@ -1745,7 +1744,7 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1745
1744
|
"""
|
|
1746
1745
|
return pulumi.get(self, "eks_cluster")
|
|
1747
1746
|
|
|
1748
|
-
@property
|
|
1747
|
+
@_builtins.property
|
|
1749
1748
|
@pulumi.getter(name="eksClusterIngressRule")
|
|
1750
1749
|
def eks_cluster_ingress_rule(self) -> pulumi.Output[Optional['pulumi_aws.ec2.SecurityGroupRule']]:
|
|
1751
1750
|
"""
|
|
@@ -1753,23 +1752,23 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1753
1752
|
"""
|
|
1754
1753
|
return pulumi.get(self, "eks_cluster_ingress_rule")
|
|
1755
1754
|
|
|
1756
|
-
@property
|
|
1755
|
+
@_builtins.property
|
|
1757
1756
|
@pulumi.getter(name="fargateProfileId")
|
|
1758
|
-
def fargate_profile_id(self) -> pulumi.Output[
|
|
1757
|
+
def fargate_profile_id(self) -> pulumi.Output[_builtins.str]:
|
|
1759
1758
|
"""
|
|
1760
1759
|
The ID of the Fargate Profile. Defaults to an empty string if no Fargate profile is configured.
|
|
1761
1760
|
"""
|
|
1762
1761
|
return pulumi.get(self, "fargate_profile_id")
|
|
1763
1762
|
|
|
1764
|
-
@property
|
|
1763
|
+
@_builtins.property
|
|
1765
1764
|
@pulumi.getter(name="fargateProfileStatus")
|
|
1766
|
-
def fargate_profile_status(self) -> pulumi.Output[
|
|
1765
|
+
def fargate_profile_status(self) -> pulumi.Output[_builtins.str]:
|
|
1767
1766
|
"""
|
|
1768
1767
|
The status of the Fargate Profile. Defaults to an empty string if no Fargate profile is configured.
|
|
1769
1768
|
"""
|
|
1770
1769
|
return pulumi.get(self, "fargate_profile_status")
|
|
1771
1770
|
|
|
1772
|
-
@property
|
|
1771
|
+
@_builtins.property
|
|
1773
1772
|
@pulumi.getter(name="instanceRoles")
|
|
1774
1773
|
def instance_roles(self) -> pulumi.Output[Sequence['pulumi_aws.iam.Role']]:
|
|
1775
1774
|
"""
|
|
@@ -1777,7 +1776,7 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1777
1776
|
"""
|
|
1778
1777
|
return pulumi.get(self, "instance_roles")
|
|
1779
1778
|
|
|
1780
|
-
@property
|
|
1779
|
+
@_builtins.property
|
|
1781
1780
|
@pulumi.getter
|
|
1782
1781
|
def kubeconfig(self) -> pulumi.Output[Any]:
|
|
1783
1782
|
"""
|
|
@@ -1785,15 +1784,15 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1785
1784
|
"""
|
|
1786
1785
|
return pulumi.get(self, "kubeconfig")
|
|
1787
1786
|
|
|
1788
|
-
@property
|
|
1787
|
+
@_builtins.property
|
|
1789
1788
|
@pulumi.getter(name="kubeconfigJson")
|
|
1790
|
-
def kubeconfig_json(self) -> pulumi.Output[
|
|
1789
|
+
def kubeconfig_json(self) -> pulumi.Output[_builtins.str]:
|
|
1791
1790
|
"""
|
|
1792
1791
|
A kubeconfig that can be used to connect to the EKS cluster as a JSON string.
|
|
1793
1792
|
"""
|
|
1794
1793
|
return pulumi.get(self, "kubeconfig_json")
|
|
1795
1794
|
|
|
1796
|
-
@property
|
|
1795
|
+
@_builtins.property
|
|
1797
1796
|
@pulumi.getter(name="nodeSecurityGroup")
|
|
1798
1797
|
def node_security_group(self) -> pulumi.Output[Optional['pulumi_aws.ec2.SecurityGroup']]:
|
|
1799
1798
|
"""
|
|
@@ -1801,17 +1800,17 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1801
1800
|
"""
|
|
1802
1801
|
return pulumi.get(self, "node_security_group")
|
|
1803
1802
|
|
|
1804
|
-
@property
|
|
1803
|
+
@_builtins.property
|
|
1805
1804
|
@pulumi.getter(name="nodeSecurityGroupId")
|
|
1806
|
-
def node_security_group_id(self) -> pulumi.Output[
|
|
1805
|
+
def node_security_group_id(self) -> pulumi.Output[_builtins.str]:
|
|
1807
1806
|
"""
|
|
1808
1807
|
The node security group ID of the EKS cluster. Returns the EKS created security group if `skipDefaultSecurityGroups` is set to true.
|
|
1809
1808
|
"""
|
|
1810
1809
|
return pulumi.get(self, "node_security_group_id")
|
|
1811
1810
|
|
|
1812
|
-
@property
|
|
1811
|
+
@_builtins.property
|
|
1813
1812
|
@pulumi.getter(name="oidcIssuer")
|
|
1814
|
-
def oidc_issuer(self) -> pulumi.Output[
|
|
1813
|
+
def oidc_issuer(self) -> pulumi.Output[_builtins.str]:
|
|
1815
1814
|
"""
|
|
1816
1815
|
The OIDC Issuer of the EKS cluster (OIDC Provider URL without leading `https://`).
|
|
1817
1816
|
|
|
@@ -1819,17 +1818,17 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1819
1818
|
"""
|
|
1820
1819
|
return pulumi.get(self, "oidc_issuer")
|
|
1821
1820
|
|
|
1822
|
-
@property
|
|
1821
|
+
@_builtins.property
|
|
1823
1822
|
@pulumi.getter(name="oidcProviderArn")
|
|
1824
|
-
def oidc_provider_arn(self) -> pulumi.Output[
|
|
1823
|
+
def oidc_provider_arn(self) -> pulumi.Output[_builtins.str]:
|
|
1825
1824
|
"""
|
|
1826
1825
|
The ARN of the IAM OpenID Connect Provider for the EKS cluster. Defaults to an empty string if no OIDC provider is configured.
|
|
1827
1826
|
"""
|
|
1828
1827
|
return pulumi.get(self, "oidc_provider_arn")
|
|
1829
1828
|
|
|
1830
|
-
@property
|
|
1829
|
+
@_builtins.property
|
|
1831
1830
|
@pulumi.getter(name="oidcProviderUrl")
|
|
1832
|
-
def oidc_provider_url(self) -> pulumi.Output[
|
|
1831
|
+
def oidc_provider_url(self) -> pulumi.Output[_builtins.str]:
|
|
1833
1832
|
"""
|
|
1834
1833
|
Issuer URL for the OpenID Connect identity provider of the EKS cluster.
|
|
1835
1834
|
"""
|
|
@@ -1842,17 +1841,17 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1842
1841
|
raise TypeError("Expected argument 'result' to be a str")
|
|
1843
1842
|
pulumi.set(__self__, "result", result)
|
|
1844
1843
|
|
|
1845
|
-
@property
|
|
1844
|
+
@_builtins.property
|
|
1846
1845
|
@pulumi.getter
|
|
1847
|
-
def result(self) ->
|
|
1846
|
+
def result(self) -> _builtins.str:
|
|
1848
1847
|
"""
|
|
1849
1848
|
The kubeconfig for the cluster.
|
|
1850
1849
|
"""
|
|
1851
1850
|
return pulumi.get(self, "result")
|
|
1852
1851
|
|
|
1853
1852
|
def get_kubeconfig(__self__, *,
|
|
1854
|
-
profile_name: Optional[pulumi.Input[
|
|
1855
|
-
role_arn: Optional[pulumi.Input[
|
|
1853
|
+
profile_name: Optional[pulumi.Input[_builtins.str]] = None,
|
|
1854
|
+
role_arn: Optional[pulumi.Input[_builtins.str]] = None) -> pulumi.Output['str']:
|
|
1856
1855
|
"""
|
|
1857
1856
|
Generate a kubeconfig for cluster authentication that does not use the default AWS credential provider chain, and instead is scoped to the supported options in `KubeconfigOptions`.
|
|
1858
1857
|
|
|
@@ -1864,10 +1863,10 @@ class Cluster(pulumi.ComponentResource):
|
|
|
1864
1863
|
- https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-profiles.html
|
|
1865
1864
|
|
|
1866
1865
|
|
|
1867
|
-
:param pulumi.Input[
|
|
1866
|
+
:param pulumi.Input[_builtins.str] profile_name: AWS credential profile name to always use instead of the default AWS credential provider chain.
|
|
1868
1867
|
|
|
1869
1868
|
The profile is passed to kubeconfig as an authentication environment setting.
|
|
1870
|
-
:param pulumi.Input[
|
|
1869
|
+
:param pulumi.Input[_builtins.str] role_arn: Role ARN to assume instead of the default AWS credential provider chain.
|
|
1871
1870
|
|
|
1872
1871
|
The role is passed to kubeconfig as an authentication exec argument.
|
|
1873
1872
|
"""
|