forked from basisai/terraform-aws-lb-controller
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmain.tf
107 lines (92 loc) · 5.85 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
data "aws_region" "current" {
}
locals {
service_account_name = var.service_account_name
values = {
name_override = var.name_override
fullname_override = var.fullname_override
replicas = var.replicas
image_repository = var.prefer_ecr_repositories ? lookup(local.image_base, data.aws_region.current.name, var.image_repository) : var.image_repository
image_tag = var.image_tag
service_account_name = var.service_account_name
service_account_annotations = jsonencode(merge(
{
"eks.amazonaws.com/role-arn" = module.iam_assumable_role_admin.iam_role_arn
},
var.service_account_annotations,
))
pod_security_context = jsonencode(var.pod_security_context)
security_context = jsonencode(var.security_context)
termination_grace_period_seconds = var.termination_grace_period_seconds
resources = jsonencode(var.resources)
priority_class_name = var.priority_class_name
tolerations = jsonencode(var.tolerations)
affinity = jsonencode(var.affinity)
pod_annotations = jsonencode(var.pod_annotations)
pod_labels = jsonencode(var.pod_labels)
env = jsonencode(var.env)
host_network = var.host_network
extra_volumes = jsonencode(var.extra_volumes)
extra_volume_mounts = jsonencode(var.extra_volume_mounts)
pdb = jsonencode(var.pdb)
enable_cert_manager = var.enable_cert_manager
cluster_name = var.cluster_name
ingress_class = var.ingress_class
region = var.region
vpc_id = var.vpc_id
aws_max_retries = var.aws_max_retries
enable_pod_readiness_gate_inject = var.enable_pod_readiness_gate_inject
enable_shield = var.enable_shield
enable_waf = var.enable_waf
enable_wafv2 = var.enable_wafv2
ingress_max_concurrent_reconciles = var.ingress_max_concurrent_reconciles
log_level = var.log_level
metrics_bind_addr = var.metrics_bind_addr
webhook_bind_port = var.webhook_bind_port
service_max_concurrent_reconciles = var.service_max_concurrent_reconciles
targetgroupbinding_max_concurrent_reconciles = var.targetgroupbinding_max_concurrent_reconciles
sync_period = var.sync_period
watch_namespace = var.watch_namespace
default_tags = jsonencode(var.default_tags)
}
# See releases at https://github.com/kubernetes-sigs/aws-load-balancer-controller/releases
image_base = {
us-gov-west-1 = "013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller"
us-gov-east-1 = "151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller"
me-south-1 = "558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller"
eu-south-1 = "590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller"
ap-northeast-1 = "602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller"
ap-northeast-2 = "602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller"
ap-northeast-3 = "602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller"
ap-south-1 = "602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller"
ap-southeast-1 = "602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller"
ap-southeast-2 = "602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller"
ca-central-1 = "602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller"
eu-central-1 = "602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller"
eu-north-1 = "602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller"
eu-west-1 = "602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller"
eu-west-2 = "602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller"
eu-west-3 = "602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller"
sa-east-1 = "602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller"
us-east-1 = "602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller"
us-east-2 = "602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller"
us-west-1 = "602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller"
us-west-2 = "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller"
ap-east-1 = "800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller"
af-south-1 = "877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller"
cn-north-1 = "918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller"
cn-northwest-1 = "961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller"
}
}
resource "helm_release" "release" {
name = var.release_name
chart = var.chart_name
repository = var.chart_repository
version = var.chart_version
namespace = var.chart_namespace
max_history = var.max_history
timeout = var.chart_timeout
values = [
templatefile("${path.module}/templates/values.yaml", local.values),
]
}