amazon-eks-pod-identity-webhook
amazon-eks-pod-identity-webhook copied to clipboard
aws
Amazon EKS Pod Identity Webhook
**What would you like to be added**: Service Account permissions should be updated in place once IAM Policies associated with Service Account-bound IAM Role change. That'd probably mean resetting Pod's...
*Description of changes:* Add CHANGELOG.md and a script to generate it. Note: some items might be missing and should be added by hand -- it looks for merge commits with...
**What happened**: how we can get or add AZ details when pod is created. **What you expected to happen**: we didn't get any info when the pod is created on...
*Issue #, if available:* This pull request is related to #139 and #134. *Description of changes:* - deploy - Remove unnecessary roles - Add a kustomization file - Makefile -...
if i run `make cluster-up IMAGE=amazon/amazon-eks-pod-identity-webhook:latest` after deploying cert-manager I get an error: ``` unable to recognize "deploy/deployment.yaml": no matches for kind "ClusterIssuer" in version "cert-manager.io/v1" unable to recognize "deploy/deployment.yaml":...
Exposed the metrics port in the k8s service and configured Prometheus annotations to use the metrics port instead of the webhook one Fix: #136 *Issue #, if available:* *Description of...
**What happened**: Getting plenty of errors like: ``` 2022/01/21 00:39:53 http: TLS handshake error from 10.97.36.76:42820: remote error: tls: bad certificate ``` In my cluster, this IP relates to Prometheus...
**What happened**: we fixed https://github.com/aws/amazon-eks-pod-identity-webhook/issues/84 by upgrade client-go, however, it's not ideal. **What you expected to happen**: we shouldn't replace the whole containers in our mutating requests as https://github.com/aws/amazon-eks-pod-identity-webhook/blob/master/pkg/handler/handler.go#L349. Doing...
**What would you like to be added**: Would like to see if mapping a single IAM Role across Multiple Clusters. **Why is this needed**: Today we have multiple clusters logically...
**What would you like to be added**: Can you please inject the AZ information as an environment variable at the pod level, it basically will be the same as the...
