terraform-google-kubernetes-engine

terraform-google-kubernetes-engine copied to clipboard

A null value cannot be used as the collection in a 'for' expression.

10

When using the private-cluster module with 'add_cluster_firewall_rules' as true, the following error is produced during the terraform plan stage if using separate statefile for subnets: ``` on main.tf line 60,...

jgfincore

GKE Hub enhancements

1

Currently we support GKE hub membership registration via SA key. Moving forward we should also consider supporting hub memberships via [Workload Identity](https://cloud.google.com/sdk/gcloud/reference/alpha/container/hub/memberships/register#--enable-workload-identity) and via [kubeconfig](https://cloud.google.com/sdk/gcloud/reference/alpha/container/hub/memberships/register#--kubeconfig) for non GCP Kubernetes clusters....

bharathkkb

Currently we [support](https://github.com/terraform-google-modules/terraform-google-kubernetes-engine/blob/6399ca9e9040a0d8e6c1b7010c7b7009dbc70bca/modules/k8s-operator-crd-support/main.tf#L20) `cookie_file` for ACM git auth but it looks like we are not actually [creating a k8s secret ](https://cloud.google.com/anthos-config-management/docs/how-to/installing#git-creds-cookiefile)with the `cookie_file`.

bharathkkb

var.network and var.subnetwork are not used in cluster.tf

1

I don't know if this is the intended behaviour, but if you don't initialize the google provider and you don't specify the region (regional = false), the main example in...

lgandras

Integration test "stub-domains-private-local" fails, trying to reach internal network

2

Kitchen test `stub-domains-private-local` fails with: ``` -----> Converging ... ... module.example.module.gke.null_resource.wait_for_cluster (local-exec): Executing: ["/bin/sh" "-c" "../../../modules/private-cluster/scripts/wait-for-cluster.sh ci-gke-fd5d stub-domains-private-cluster-svj7"] module.example.module.gke.null_resource.wait_for_cluster (local-exec): Waiting for cluster stub-domains-private-cluster-svj7 in project ci-gke-fd5d to reconcile... module.example.module.gke.null_resource.delete_default_kube_dns_configmap[0]...

paulpalamarchuk

node_pool specific labels

2

currently we can only set labels for all node_pools but not possible on individual node pool which make the nodeSelection hard from workload point of view.

arvin-pjr

Using this module I am unable to authenticate to the gke private cluster

3

### TL;DR Hello, I am using this module to authenticate to gke private cluster but I am facing i/o timeout error. Can you please guide me what is missing ??/...

Rajchirag1993

google_container_node_pool create before destroy issue

2

### TL;DR When trying to change a machine type for a nodepool, using `create_before_destroy` to upgrade, getting error that the default nodepool already exists. ### Expected behavior Expect a new...

dyu-bot

ASM module behaves inconsistently with Autopilot clusters

3

### TL;DR When using the ASM module with Autopilot clusters, terraform starts to detect drift upon subsequent runs, which then break the ASM deployment on the cluster (e.g. istio-validation containers...

aablsk

fix: incorrect `node_pools` variable type

1

`node_pool` map is a mix of string, bool, and number. therefore, it is better to use `map(any)` to indicate its type moreover, `list(map(string))` is breaking the use of this module...

michaellzc