blob: ef51cee09ca0653c5287f84b89881b7568630061 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
# frozen_string_literal: true
module Gitlab
module Kubernetes
module ConfigMaps
class AwsNodeAuth
attr_reader :node_role
def initialize(node_role)
@node_role = node_role
end
def generate
Kubeclient::Resource.new(
metadata: metadata,
data: data
)
end
private
def metadata
{
'name' => 'aws-auth',
'namespace' => 'kube-system'
}
end
def data
{ 'mapRoles' => instance_role_config(node_role) }
end
def instance_role_config(role)
[{
'rolearn' => role,
'username' => 'system:node:{{EC2PrivateDNSName}}',
'groups' => [
'system:bootstrappers',
'system:nodes'
]
}].to_yaml
end
end
end
end
end
|