Skip to content

Commit

Permalink
Revert "fix: (PSKD-678) viya4-aws-iac creates an incomplete IAM polic…
Browse files Browse the repository at this point in the history
…y for the autoscaler Service Account"
  • Loading branch information
iadomi authored Sep 6, 2024
1 parent f50549f commit be418e5
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions modules/aws_autoscaling/main.tf
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@


# Permissions based off the IAM Policy recommended by kubernetes/autoscaler
# https://github.com/kubernetes/autoscaler/blob/cluster-autoscaler-chart-9.36.0/cluster-autoscaler/cloudprovider/aws/README.md
# https://github.com/kubernetes/autoscaler/blob/cluster-autoscaler-chart-9.25.0/cluster-autoscaler/cloudprovider/aws/README.md
data "aws_iam_policy_document" "worker_autoscaling" {
statement {
sid = "eksWorkerAutoscalingAll"
Expand All @@ -17,9 +17,6 @@ data "aws_iam_policy_document" "worker_autoscaling" {
"autoscaling:DescribeTags",
"ec2:DescribeInstanceTypes",
"ec2:DescribeLaunchTemplateVersions",
"ec2:DescribeImages",
"ec2:GetInstanceTypesFromInstanceRequirements",
"eks:DescribeNodegroup"
]

resources = ["*"]
Expand All @@ -32,7 +29,10 @@ data "aws_iam_policy_document" "worker_autoscaling" {
actions = [
"autoscaling:SetDesiredCapacity",
"autoscaling:TerminateInstanceInAutoScalingGroup",
"autoscaling:UpdateAutoScalingGroup"
"autoscaling:UpdateAutoScalingGroup",
"ec2:DescribeImages",
"ec2:GetInstanceTypesFromInstanceRequirements",
"eks:DescribeNodegroup"
]

resources = ["*"]
Expand Down

0 comments on commit be418e5

Please sign in to comment.