Use new terraform resource kubernetes_config_map_v1_data for managing aws_auth data

[jonasneves-signifyd]

Have a question? Please checkout our Slack Community or visit our Slack Archive.

Describe the Feature

This resource allows Terraform to manage data within a pre-existing ConfigMap. This resource uses field management and server-side apply to manage only the data that is defined in the Terraform configuration. Existing data not specified in the configuration will be ignored.

Ref: https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/config_map_v1_data

[Nuru]

@jonasoneves Thank you for bringing this to our attention.

It looks like it could be difficult to migrate to that resource because it cannot be imported, and if you just naively upgraded then Terraform would delete the old ConfigMap and you would have a hard time re-creating it.

See also this comment about other problems with kubernetes_config_map_v1_data and the aws-auth config map.

I am still hoping AWS will do the right thing and provide an EKS API to manage the aws-auth ConfigMap.