Issue creating internal ALB for development

[bgaber]

trafficstars

Initially I was having an issue with the Subnet tags. I added tag of kubernetes.io/cluster/eks-acg : shared into all Subnets.

Now I am getting a Security Group problem:

$ kubectl logs -n kube-system alb-ingress-controller-6dc55945f5-hfvhm
I0428 17:48:11.245900       1 security_group.go:36] development/central-ingress-internal: creating securityGroup 1ee8c3d1-development-centr-fc62:managed LoadBalancer securityGroup by ALB Ingress Controller
I0428 17:48:11.399506       1 tags.go:69] development/central-ingress-internal: modifying tags {  ingress.k8s.aws/resource: "ManagedLBSecurityGroup",  kubernetes.io/cluster-name: "eks-acg",  kubernetes.io/namespace: "development",  kubernetes.io/ingress-name: "central-ingress-internal",  ingress.k8s.aws/cluster: "eks-acg",  ingress.k8s.aws/stack: "development/central-ingress-internal"} on sg-06ec45032b3ed04ad
E0428 17:48:11.472221       1 controller.go:217] kubebuilder/controller "msg"="Reconciler error" "error"="failed to reconcile LB managed SecurityGroup: failed to reconcile managed LoadBalancer securityGroup due to failed to reconcile tags due to UnauthorizedOperation: You are not authorized to perform this operation. Encoded authorization failure message: 55D9MzRWNTBkPYQ6ejFCXjxCQn3q3-UTKsDnZ89ZLeH4UPNxQon9Mlgo_tumadEZ-OjCoAolP1ocMXmAN6HLakS4p9dfFUoSUz3hhVF56z0NZXbtl0HiSmtPnQG26RY__g3Gk-VALl2FzqMEJbkUvqK91G4MyzGcH-TWTcwIcFOdfQroO-dlrtmA_yB5oIS3qky1zANccHAUky3NY7S8eUNcxrrgdI87Q3naPrsTY85FOqF-KquagyM-QGG19sWPsnx75t60Ptv8rfzpI2aoahVbMw7Gg30Vn6YOjY3Cb0UhEvdtAzhj8ffDMwE02boq_E76EI_crk0Y3sjNcTxJru_JU4A4K4K1rJwVdT5URsk-7FXV0l9ig84NSdttIJLhfD-hsz5rtxv1GEUHwMSdzrcjdjKMVjZd6JfQUITMi_VPyXS8HOKZEhOTbEFug5azMkYYobu4QzLEggCEtre_1ne4lv0f-McHMDdTr6r36BVmL-TaRd_ncOw4qFIEwj-jkd7ehdDlViOp8q5qgAqCOq_AtF64F3uyd3UYcZqvtYcZScimGZ3QKHxVw8TdOdXgiW6nxZlO2sbn-YEiRbNHPX1haL974zFZojp3X74IKkGFdc4_ixgveMz5eG7Y_5BDFgfJTnYRuVcWUScsyhQPs8eaSUH9\n\tstatus code: 403, request id: fea48eee-8dcf-4561-8ee4-f16a16554081"  "controller"="alb-ingress-controller" "request"={"Namespace":"development","Name":"central-ingress-internal"}
I0428 17:48:11.472494       1 recorder.go:53] kubebuilder/manager/events "level"=1 "msg"="Warning"  "message"="error tagging sg-06ec45032b3ed04ad due to UnauthorizedOperation: You are not authorized to perform this operation. Encoded authorization failure message: 55D9MzRWNTBkPYQ6ejFCXjxCQn3q3-UTKsDnZ89ZLeH4UPNxQon9Mlgo_tumadEZ-OjCoAolP1ocMXmAN6HLakS4p9dfFUoSUz3hhVF56z0NZXbtl0HiSmtPnQG26RY__g3Gk-VALl2FzqMEJbkUvqK91G4MyzGcH-TWTcwIcFOdfQroO-dlrtmA_yB5oIS3qky1zANccHAUky3NY7S8eUNcxrrgdI87Q3naPrsTY85FOqF-KquagyM-QGG19sWPsnx75t60Ptv8rfzpI2aoahVbMw7Gg30Vn6YOjY3Cb0UhEvdtAzhj8ffDMwE02boq_E76EI_crk0Y3sjNcTxJru_JU4A4K4K1rJwVdT5URsk-7FXV0l9ig84NSdttIJLhfD-hsz5rtxv1GEUHwMSdzrcjdjKMVjZd6JfQUITMi_VPyXS8HOKZEhOTbEFug5azMkYYobu4QzLEggCEtre_1ne4lv0f-McHMDdTr6r36BVmL-TaRd_ncOw4qFIEwj-jkd7ehdDlViOp8q5qgAqCOq_AtF64F3uyd3UYcZqvtYcZScimGZ3QKHxVw8TdOdXgiW6nxZlO2sbn-YEiRbNHPX1haL974zFZojp3X74IKkGFdc4_ixgveMz5eG7Y_5BDFgfJTnYRuVcWUScsyhQPs8eaSUH9\n\tstatus code: 403, request id: fea48eee-8dcf-4561-8ee4-f16a16554081" "object"={"kind":"Ingress","namespace":"development","name":"central-ingress-internal","uid":"040adefb-66cc-4c36-9eea-f6477742f6e8","apiVersion":"extensions/v1beta1","resourceVersion":"260859"} "reason"="ERROR"