Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
l
lively-needle-84406
10/19/2022, 4:08 PMQuestion about EKS aws-auth configMap that gets created alongside the cluster.
Is it possible to edit this configMap during the cluster creation since this is using crosswalk?
I want to add a user to the managedUsers property, to allow access to myself (since the cluster is being created by a dedicated pulumi user)
I have attempted this solution by @billowy-army-68599, but I am getting this error:
kubernetes:core/v1:ConfigMap (aws-auth):
error: resource kube-system/aws-auth was not successfully created by the Kubernetes API server : Apply failed with 1 conflict: conflict with "pulumi-resource-kubernetes" using v1: .data.mapRolesHere is my code:
export const auth = cluster.eksCluster.endpoint.apply(endpoint =>
new k8s.core.v1.ConfigMap("aws-auth", {
metadata: {
name: "aws-auth",
namespace: "kube-system"
},
data: {
mapRoles: `- rolearn: '${nodeInstanceRole.arn}'\n username: 'system:node:{{EC2PrivateDNSName}}'\n groups:\n - 'system:bootstrappers'\n - 'system:nodes'\n`,
mapUsers: "- groups:\n - system:masters\n userarn: arn:aws:iam::xxxxxxxxxxxx:user/pulumi\n username: pulumi\n"
}
},
{
provider: k8sProvider,
dependsOn: [cluster, nodeInstanceRole]
})
)