diff --git a/README.md b/README.md
index 6826371bae..6aad481af7 100644
--- a/README.md
+++ b/README.md
@@ -335,6 +335,7 @@ We are grateful to the community for contributing bugfixes and improvements! Ple
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/examples/karpenter/README.md b/examples/karpenter/README.md
index e6b8a1e333..62291cdc07 100644
--- a/examples/karpenter/README.md
+++ b/examples/karpenter/README.md
@@ -136,6 +136,7 @@ No inputs.
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/examples/karpenter/outputs.tf b/examples/karpenter/outputs.tf
index de0e2e6a28..d85a8b034e 100644
--- a/examples/karpenter/outputs.tf
+++ b/examples/karpenter/outputs.tf
@@ -32,6 +32,11 @@ output "cluster_oidc_issuer_url" {
value = module.eks.cluster_oidc_issuer_url
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = module.eks.cluster_dualstack_oidc_issuer_url
+}
+
output "cluster_platform_version" {
description = "Platform version for the cluster"
value = module.eks.cluster_platform_version
diff --git a/examples/outposts/README.md b/examples/outposts/README.md
index 1dcab73cca..5057fc4a5e 100644
--- a/examples/outposts/README.md
+++ b/examples/outposts/README.md
@@ -90,6 +90,7 @@ terraform destroy --auto-approve
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/examples/outposts/outputs.tf b/examples/outposts/outputs.tf
index 24183fd207..9357464c29 100644
--- a/examples/outposts/outputs.tf
+++ b/examples/outposts/outputs.tf
@@ -32,6 +32,11 @@ output "cluster_oidc_issuer_url" {
value = module.eks.cluster_oidc_issuer_url
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = module.eks.cluster_dualstack_oidc_issuer_url
+}
+
output "cluster_platform_version" {
description = "Platform version for the cluster"
value = module.eks.cluster_platform_version
diff --git a/outputs.tf b/outputs.tf
index 45b68a4a23..0bd2d10f4e 100644
--- a/outputs.tf
+++ b/outputs.tf
@@ -1,3 +1,7 @@
+locals {
+ dualstack_oidc_issuer_url = try(replace(replace(aws_eks_cluster.this[0].identity[0].oidc[0].issuer, "https://oidc.eks.", "https://oidc-eks."), ".amazonaws.com/", ".api.aws/"), null)
+}
+
################################################################################
# Cluster
################################################################################
@@ -52,6 +56,11 @@ output "cluster_oidc_issuer_url" {
value = try(aws_eks_cluster.this[0].identity[0].oidc[0].issuer, null)
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = local.dualstack_oidc_issuer_url
+}
+
output "cluster_version" {
description = "The Kubernetes version for the cluster"
value = try(aws_eks_cluster.this[0].version, null)
diff --git a/tests/eks-managed-node-group/README.md b/tests/eks-managed-node-group/README.md
index 8a0bfb485a..f6f753897b 100644
--- a/tests/eks-managed-node-group/README.md
+++ b/tests/eks-managed-node-group/README.md
@@ -65,6 +65,7 @@ No inputs.
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/tests/eks-managed-node-group/outputs.tf b/tests/eks-managed-node-group/outputs.tf
index 24183fd207..9357464c29 100644
--- a/tests/eks-managed-node-group/outputs.tf
+++ b/tests/eks-managed-node-group/outputs.tf
@@ -32,6 +32,11 @@ output "cluster_oidc_issuer_url" {
value = module.eks.cluster_oidc_issuer_url
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = module.eks.cluster_dualstack_oidc_issuer_url
+}
+
output "cluster_platform_version" {
description = "Platform version for the cluster"
value = module.eks.cluster_platform_version
diff --git a/tests/fargate-profile/README.md b/tests/fargate-profile/README.md
index cb0fa88208..f0ac3d5390 100644
--- a/tests/fargate-profile/README.md
+++ b/tests/fargate-profile/README.md
@@ -56,6 +56,7 @@ No inputs.
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/tests/fargate-profile/outputs.tf b/tests/fargate-profile/outputs.tf
index 24183fd207..9357464c29 100644
--- a/tests/fargate-profile/outputs.tf
+++ b/tests/fargate-profile/outputs.tf
@@ -32,6 +32,11 @@ output "cluster_oidc_issuer_url" {
value = module.eks.cluster_oidc_issuer_url
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = module.eks.cluster_dualstack_oidc_issuer_url
+}
+
output "cluster_platform_version" {
description = "Platform version for the cluster"
value = module.eks.cluster_platform_version
diff --git a/tests/self-managed-node-group/README.md b/tests/self-managed-node-group/README.md
index c6eb533114..6f5ddce892 100644
--- a/tests/self-managed-node-group/README.md
+++ b/tests/self-managed-node-group/README.md
@@ -61,6 +61,7 @@ No inputs.
| [cluster\_addons](#output\_cluster\_addons) | Map of attribute maps for all EKS cluster addons enabled |
| [cluster\_arn](#output\_cluster\_arn) | The Amazon Resource Name (ARN) of the cluster |
| [cluster\_certificate\_authority\_data](#output\_cluster\_certificate\_authority\_data) | Base64 encoded certificate data required to communicate with the cluster |
+| [cluster\_dualstack\_oidc\_issuer\_url](#output\_cluster\_dualstack\_oidc\_issuer\_url) | Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider |
| [cluster\_endpoint](#output\_cluster\_endpoint) | Endpoint for your Kubernetes API server |
| [cluster\_iam\_role\_arn](#output\_cluster\_iam\_role\_arn) | IAM role ARN of the EKS cluster |
| [cluster\_iam\_role\_name](#output\_cluster\_iam\_role\_name) | IAM role name of the EKS cluster |
diff --git a/tests/self-managed-node-group/outputs.tf b/tests/self-managed-node-group/outputs.tf
index 24183fd207..9357464c29 100644
--- a/tests/self-managed-node-group/outputs.tf
+++ b/tests/self-managed-node-group/outputs.tf
@@ -32,6 +32,11 @@ output "cluster_oidc_issuer_url" {
value = module.eks.cluster_oidc_issuer_url
}
+output "cluster_dualstack_oidc_issuer_url" {
+ description = "Dual-stack compatible URL on the EKS cluster for the OpenID Connect identity provider"
+ value = module.eks.cluster_dualstack_oidc_issuer_url
+}
+
output "cluster_platform_version" {
description = "Platform version for the cluster"
value = module.eks.cluster_platform_version