has anyone here been able to use `@pulumi/eks/Clus...
# general
has anyone here been able to use
with multiple people and IAM creds? If one of us creates the cluster, others can’t even refresh the stack since some K8S resources are created with a provider that doesn’t give them access. (no assume role inside of the
section We can create a new provider with the necessary changes to deploy things on top of the cluster but there are still resources created by the
class (configmaps, rbac, dashboard) which use the default provider This is blocking us from having multiple people work with the same stack.
I believe there are configuration options for specifying the IAM roles and rbac bindings you’d like to setup. Can you share any specific details on what you’ve tried and what specifically doesn’t work? I feel fairly confident what you describe is possible (and I know of several folks using the EKS package in multi-user contexts), but would be helpful to be talking in specifics.
I see that you can define IAM and RBAC role bindings via
but the default kubeconfig generated for the provider doesn’t inject it. https://github.com/pulumi/pulumi-eks/blob/master/nodejs/eks/cluster.ts#L192
After deploying an eks cluster on my machine, a coworker is unable to refresh the same stack and gets
when pulumi tries to refresh resources that are deployed using the cluster provider
Seems theres already an issue opened for this: https://github.com/pulumi/pulumi-eks/issues/140