terraform-google-kubernetes-engine

terraform-google-kubernetes-engine copied to clipboard

Unable to use the new DNS endpoint exclusively.

7

### TL;DR My goal is to use only the DNS endpoint on my GKE clusters:  This is not possible at the moment because I need to set: ``` enable_private_endpoint...

TheKangaroo

Support the new IAM for GKE with Workload Identity Federation

5

### TL;DR Google Cloud IAM policies can directly reference GKE workloads and Kubernetes service accounts as described in the recently announced blog: https://cloud.google.com/blog/products/identity-security/make-iam-for-gke-easier-to-use-with-workload-identity-federation ### Terraform Resources ```markdown The resources declared...

yashwanth-l

Hi, i build a standard GKE private cluster in a shared VPC in which the netsec team implements secure tags for firewall policies. I would like to tag my worker...

ouarfhit

cluster maintenance window must be timestring

1

### TL;DR Support and the documentation both agree that the end date for the var.maintenance_end_time should allow a value of "" however using a value of "" generates the following...

mikebou

I'm encountering the same issue _Originally posted by @mqmr in [#2271](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/issues/2271#issuecomment-2690204913)_, where I have GKE clusters configured with NAP that have been set to `CGROUP_MODE_V2` by following the [guide](https://cloud.google.com/kubernetes-engine/docs/how-to/migrate-cgroupv2#migrate) and...

davidholsgrove

Enable Control Plane DNS endpoint on public clusters

1

### TL;DR Currently only private cluster modules allows configuring `control_plane_endpoints_config.dns_endpoint_config` which I believe should be available on public clusters as well for controlling the "Control Plane Networking -> DNS endpoint"...

Zachu

Currently, there is no method to manage or configure [private_endpoint_enforcement_enabled](https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/container_cluster#private_endpoint_enforcement_enabled-1) attribute, which limits its utility for users who need to enable or configure private endpoint enforcement for enhanced security https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/blob/main/cluster.tf#L213...

stuton

### TL;DR Currently it's not possible to set `node_pools = []`, becaues the module tries to perform lookups based on node_pools[0], but if the list is empty, that value doesn't...

claudio-vellage

Hi Team, Am trying to create cluster through terraform and follow to apply deployment yaml file on terraform. cluster is created and while apply resource "kubernetes_deployment_v1" "default", but on azure...

K8sexpert

A few questions about CGROUP migration

3

### Problem Statement Hello, I was hoping the group here would be able to answer some questions for me regarding the upcoming CGROUP v2 migrations. I am a new devops...

chalkboardbrad