Talos k8s with AWS CCM support #173
Conversation
00-locals.tf
Outdated
| }, | ||
| controllerManager = { | ||
| extraArgs = { | ||
| allocate-node-cidrs = var.allocate_node_cidrs | ||
| cloud-provider = "external" | ||
| leader-elect = true |
There was a problem hiding this comment.
| leader-elect = true |
This should already be the default, according to https://kubernetes.io/docs/reference/command-line-tools-reference/kube-controller-manager/.
00-locals.tf
Outdated
| module.elb_k8s_elb.elb_dns_name | ||
| ] | ||
| extraArgs = { | ||
| cloud-provider = "external" |
There was a problem hiding this comment.
| cloud-provider = "external" |
kube-apiserver doesn't have a cloud-provider extraArg, according to https://kubernetes.io/docs/reference/command-line-tools-reference/kube-apiserver/.
00-locals.tf
Outdated
| }, | ||
| certSANs = [ | ||
| module.elb_k8s_elb.elb_dns_name, | ||
| ] |
There was a problem hiding this comment.
Please fix the formatting
00-locals.tf
Outdated
| } | ||
| } | ||
| } | ||
| } | ||
|
|
||
| # Used to configure Cilium Kube-Proxy replacement | ||
|
|
00-locals.tf
Outdated
|
|
||
|
|
||
|
|
||
| config_patches_common = [ |
03-talos.tf
Outdated
| @@ -45,18 +49,32 @@ module "talos_worker_group" { | |||
| resource "talos_machine_secrets" "this" {} | |||
|
|
|||
| data "talos_machine_configuration" "controlplane" { | |||
| count = var.controlplane_count | |||
There was a problem hiding this comment.
Could we iterate via the same method (for_each) as for the worker_group talos_machine_configuration?
03-talos.tf
Outdated
| } | ||
|
|
||
| resource "talos_machine_configuration_apply" "controlplane" { | ||
| count = var.controlplane_count | ||
|
|
||
There was a problem hiding this comment.
Remove spaces from all empty lines
03-talos.tf
Outdated
| @@ -106,6 +137,7 @@ data "talos_client_configuration" "this" { | |||
| cluster_name = var.cluster_name | |||
| client_configuration = talos_machine_secrets.this.client_configuration | |||
| endpoints = module.talos_control_plane_nodes.*.public_ip | |||
| nodes = module.talos_control_plane_nodes.*.private_ip | |||
There was a problem hiding this comment.
Where does this come from? I don't see it in https://registry.terraform.io/providers/siderolabs/talos/0.7.0/docs/resources/machine_bootstrap. Same for endpoints (which was already there).
00-locals.tf
Outdated
| ] | ||
| extraArgs = { | ||
| cloud-provider = "external" | ||
| enable-admission-plugins = "MutatingAdmissionWebhook,ValidatingAdmissionWebhook, ServiceAccount" |
There was a problem hiding this comment.
| enable-admission-plugins = "MutatingAdmissionWebhook,ValidatingAdmissionWebhook, ServiceAccount" | |
| enable-admission-plugins = "MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ServiceAccount" |
& please make that configurable.
No description provided.