Package @pulumi/eks

new Cluster(name: string, args?: ClusterOptions, opts?: pulumi.ComponentResourceOptions)

Create a new EKS cluster with worker nodes, optional storage classes, and deploy the Kubernetes Dashboard if requested.

• name The unique name of this component.
• args The arguments for this cluster.
• opts A bag of options that control this component's behavior.

createNodeGroup(name: string, args: ClusterNodeGroupOptions): NodeGroup

getProvider(moduleMember: string): ProviderResource | undefined

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

protected registerOutputs(outputs?: Inputs | Promise<Inputs> | Output<Inputs>): void

public clusterSecurityGroup: aws.ec2.SecurityGroup;

The security group for the EKS cluster.

public core: CoreData;

The EKS cluster and it’s dependencies.

public defaultNodeGroup: NodeGroupData | undefined;

The default Node Group configuration, or undefined if skipDefaultNodeGroup was specified.

public eksCluster: aws.eks.Cluster;

The EKS cluster.

public eksClusterIngressRule: aws.ec2.SecurityGroupRule;

The ingress rule that gives node group access to cluster API server

public instanceRoles: pulumi.Output<aws.iam.Role[]>;

The service roles used by the EKS cluster.

public kubeconfig: pulumi.Output<any>;

A kubeconfig that can be used to connect to the EKS cluster. This must be serialized as a string before passing to the Kubernetes provider.

public nodeSecurityGroup: aws.ec2.SecurityGroup;

The security group for the cluster’s nodes.

public provider: k8s.Provider;

A Kubernetes resource provider that can be used to deploy into this cluster. For example, the code below will create a new Pod in the EKS cluster.

let eks = new Cluster("eks");
let pod = new kubernetes.core.v1.Pod("pod", { ... }, { provider: eks.provider });

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

new NodeGroup(name: string, args: NodeGroupOptions, opts?: pulumi.ComponentResourceOptions)

Create a new EKS cluster with worker nodes, optional storage classes, and deploy the Kubernetes Dashboard if requested.

• name The unique name of this component.
• args The arguments for this cluster.
• opts A bag of options that control this component's behavior.

getProvider(moduleMember: string): ProviderResource | undefined

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

protected registerOutputs(outputs?: Inputs | Promise<Inputs> | Output<Inputs>): void

autoScalingGroupName: pulumi.Output<string>;

The AutoScalingGroup name for the Node group.

cfnStack: aws.cloudformation.Stack;

The CloudFormation Stack which defines the Node AutoScalingGroup.

public nodeSecurityGroup: aws.ec2.SecurityGroup;

The security group for the cluster’s nodes.

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

new ServiceRole(name: string, args: ServiceRoleArgs, opts?: pulumi.ResourceOptions)

Create a new ServiceRole.

• name The unique name of this component.
• args The arguments for this cluster.
• opts A bag of options that control this component's behavior.

getProvider(moduleMember: string): ProviderResource | undefined

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

protected registerOutputs(outputs?: Inputs | Promise<Inputs> | Output<Inputs>): void

public role: pulumi.Output<aws.iam.Role>;

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

new VpcCni(name: string, kubeconfig: pulumi.Input<any>, args?: VpcCniOptions, opts?: pulumi.CustomResourceOptions)

getProvider(moduleMember: string): ProviderResource | undefined

static isInstance(obj: any): boolean

Returns true if the given object is an instance of CustomResource. This is designed to work even when multiple copies of the Pulumi SDK have been loaded into the same process.

id: Output<ID>;

id is the provider-assigned unique ID for this managed resource. It is set during deployments and may be missing (undefined) during planning phases.

urn: Output<URN>;

urn is the stable logical URN used to distinctly address a resource, both before and after deployments.

amiId?: pulumi.Input<string>;

The AMI to use for worker nodes. Defaults to the current value of Amazon EKS - Optimized AMI at time of resource creation if no value is provided. More information about the AWS eks optimized ami is available at https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html. Use the information provided by AWS if you want to build your own AMI.

autoScalingGroupTags?: InputTags;

The tags to apply to the NodeGroup’s AutoScalingGroup in the CloudFormation Stack.

Per AWS, all stack-level tags, including automatically created tags, and the cloudFormationTags option are propagated to resources that AWS CloudFormation supports, including the AutoScalingGroup. See https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

bootstrapExtraArgs?: undefined | string;

Additional args to pass directly to /etc/eks/bootstrap.sh. Fror details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the --apiserver-endpoint, --b64-cluster-ca and --kubelet-extra-args flags are included automatically based on other configuration parameters.

cloudFormationTags?: InputTags;

The tags to apply to the CloudFormation Stack of the Worker NodeGroup.

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

clusterIngressRule?: aws.ec2.SecurityGroupRule;

The ingress rule that gives node group access.

desiredCapacity?: pulumi.Input<number>;

The number of worker nodes that should be running in the cluster. Defaults to 2.

instanceProfile?: aws.iam.InstanceProfile;

The instance profile to use for this node group. Note, the role for the instance profile must be supplied in the ClusterOptions as either: ‘instanceRole’, or as a role of ‘instanceRoles’.

instanceType?: pulumi.Input<aws.ec2.InstanceType>;

The instance type to use for the cluster’s nodes. Defaults to “t2.medium”.

keyName?: pulumi.Input<string>;

Name of the key pair to use for SSH access to worker nodes.

kubeletExtraArgs?: undefined | string;

Extra args to pass to the Kubelet. Corresponds to the options passed in the --kubeletExtraArgs flag to /etc/eks/bootstrap.sh. For example, ‘–port=10251 –address=0.0.0.0’. Note that the labels and taints properties will be applied to this list (using --node-labels and --register-with-taints respectively) after to the expicit kubeletExtraArgs.

labels?: undefined | {[key: string]: string};

Custom k8s node labels to be attached to each woker node. Adds the given key/value pairs to the --node-labels kubelet argument.

maxSize?: pulumi.Input<number>;

The maximum number of worker nodes running in the cluster. Defaults to 2.

minSize?: pulumi.Input<number>;

The minimum number of worker nodes running in the cluster. Defaults to 1.

nodeAssociatePublicIpAddress?: undefined | false | true;

Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.

nodePublicKey?: pulumi.Input<string>;

Public key material for SSH access to worker nodes. See allowed formats at: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html If not provided, no SSH access is enabled on VMs.

nodeRootVolumeSize?: pulumi.Input<number>;

The size in GiB of a cluster node’s root volume. Defaults to 20.

nodeSecurityGroup?: aws.ec2.SecurityGroup;

The security group to use for all nodes in this worker node group.

Note: The nodeSecurityGroup option and the cluster option nodeSecurityGroupTags are mutually exclusive.

nodeSubnetIds?: pulumi.Input<pulumi.Input<string>[]>;

The IDs of the explicit node subnets to attach to the worker node group.

This option overrides clusterSubnetIds option.

nodeUserData?: pulumi.Input<string>;

Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a #!).

spotPrice?: pulumi.Input<string>;

Bidding price for spot instance. If set, only spot instances will be added as worker node

taints?: undefined | {[key: string]: Taint};

Custom k8s node taints to be attached to each worker node. Adds the given taints to the --register-with-taints kubelet argument.

version?: pulumi.Input<string>;

Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.

clusterSecurityGroup?: aws.ec2.SecurityGroup;

The security group to use for the cluster API endpoint. If not provided, a new security group will be created with full internet egress and ingress from node groups.

clusterSecurityGroupTags?: InputTags;

The tags to apply to the cluster security group.

creationRoleProvider?: CreationRoleProvider;

The IAM Role Provider used to create & authenticate against the EKS cluster. This role is given [system:masters] permission in K8S, See: https://docs.aws.amazon.com/eks/latest/userguide/add-user-role.html

customInstanceRolePolicy?: pulumi.Input<string>;

desiredCapacity?: pulumi.Input<number>;

The number of worker nodes that should be running in the cluster. Defaults to 2.

enabledClusterLogTypes?: pulumi.Input<pulumi.Input<string>[]>;

Enable EKS control plane logging. This sends logs to cloudwatch. Possible list of values are: [“api”, “audit”, “authenticator”, “controllerManager”, “scheduler”]. By default it is off.

endpointPrivateAccess?: undefined | false | true;

Indicates whether or not the Amazon EKS private API server endpoint is enabled. The default is false.

endpointPublicAccess?: undefined | false | true;

Indicates whether or not the Amazon EKS public API server endpoint is enabled. Default is true.

instanceProfileName?: pulumi.Input<string>;

The default IAM InstanceProfile to use on the Worker NodeGroups, if one is not already set in the NodeGroup.

instanceRole?: pulumi.Input<aws.iam.Role>;

This enables the simple case of only registering a single IAM instance role with the cluster, that is required to be shared by all node groups in their instance profiles.

Note: options instanceRole and instanceRoles are mutually exclusive.

instanceRoles?: pulumi.Input<pulumi.Input<aws.iam.Role>[]>;

This enables the advanced case of registering many IAM instance roles with the cluster for per node group IAM, instead of the simpler, shared case of instanceRole.

Note: options instanceRole and instanceRoles are mutually exclusive.

instanceType?: pulumi.Input<aws.ec2.InstanceType>;

The instance type to use for the cluster’s nodes. Defaults to “t2.medium”.

maxSize?: pulumi.Input<number>;

The maximum number of worker nodes running in the cluster. Defaults to 2.

minSize?: pulumi.Input<number>;

The minimum number of worker nodes running in the cluster. Defaults to 1.

nodeAmiId?: pulumi.Input<string>;

The AMI to use for worker nodes. Defaults to the value of Amazon EKS - Optimized AMI if no value is provided. More information about the AWS eks optimized ami is available at https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html. Use the information provided by AWS if you want to build your own AMI.

nodeAssociatePublicIpAddress?: undefined | false | true;

Whether or not to auto-assign the EKS worker nodes public IP addresses. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.

nodePublicKey?: pulumi.Input<string>;

Public key material for SSH access to worker nodes. See allowed formats at: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html If not provided, no SSH access is enabled on VMs.

nodeRootVolumeSize?: pulumi.Input<number>;

The size in GiB of a cluster node’s root volume. Defaults to 20.

nodeSecurityGroupTags?: InputTags;

The tags to apply to the default nodeSecurityGroup created by the cluster.

Note: The nodeSecurityGroupTags option and the node group option nodeSecurityGroup are mutually exclusive.

nodeSubnetIds?: pulumi.Input<pulumi.Input<string>[]>;

The subnets to use for worker nodes. Defaults to the value of subnetIds.

nodeUserData?: pulumi.Input<string>;

Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a #!).

roleMappings?: pulumi.Input<pulumi.Input<RoleMapping>[]>;

Optional mappings from AWS IAM roles to Kubernetes users and groups.

serviceRole?: pulumi.Input<aws.iam.Role>;

IAM Service Role for EKS to use to manage the cluster.

skipDefaultNodeGroup?: undefined | false | true;

If this toggle is set to true, the EKS cluster will be created without node group attached.

storageClasses?: {[name: string]: StorageClass} | EBSVolumeType;

An optional set of StorageClasses to enable for the cluster. If this is a single volume type rather than a map, a single StorageClass will be created for that volume type.

Note: As of Kubernetes v1.11+ on EKS, a default gp2 storage class will always be created automatically for the cluster by the EKS service. See https://docs.aws.amazon.com/eks/latest/userguide/storage-classes.html

subnetIds?: pulumi.Input<pulumi.Input<string>[]>;

The subnets to attach to the EKS cluster. If either vpcId or subnetIds is unset, the cluster will use the default VPC’s subnets. If the list of subnets includes both public and private subnets, the Kubernetes API server and the worker nodes will only be attached to the private subnets. See https://docs.aws.amazon.com/eks/latest/userguide/network_reqs.html for more details.

tags?: InputTags;

Key-value mapping of tags that are automatically applied to all AWS resources directly under management with this cluster, which support tagging.

userMappings?: pulumi.Input<pulumi.Input<UserMapping>[]>;

Optional mappings from AWS IAM users to Kubernetes users and groups.

version?: pulumi.Input<string>;

Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.

vpcCniOptions?: VpcCniOptions;

The configuration of the Amazon VPC CNI plugin for this instance. Defaults are described in the documentation for the VpcCniOptions type.

vpcId?: pulumi.Input<string>;

The VPC in which to create the cluster and its worker nodes. If unset, the cluster will be created in the default VPC.

cluster: aws.eks.Cluster;

clusterSecurityGroup: aws.ec2.SecurityGroup;

eksNodeAccess?: k8s.core.v1.ConfigMap;

instanceProfile?: aws.iam.InstanceProfile;

instanceRoles: pulumi.Output<aws.iam.Role[]>;

kubeconfig?: pulumi.Output<any>;

nodeSecurityGroup?: aws.ec2.SecurityGroup;

nodeSecurityGroupTags?: InputTags;

provider: k8s.Provider;

storageClasses?: UserStorageClasses;

subnetIds: pulumi.Output<string[]>;

tags?: InputTags;

vpcCni?: VpcCni;

vpcId: pulumi.Output<string>;

provider: pulumi.ProviderResource;

role: aws.iam.Role;

amiId?: pulumi.Input<string>;

The AMI to use for worker nodes. Defaults to the current value of Amazon EKS - Optimized AMI at time of resource creation if no value is provided. More information about the AWS eks optimized ami is available at https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html. Use the information provided by AWS if you want to build your own AMI.

autoScalingGroupTags?: InputTags;

The tags to apply to the NodeGroup’s AutoScalingGroup in the CloudFormation Stack.

Per AWS, all stack-level tags, including automatically created tags, and the cloudFormationTags option are propagated to resources that AWS CloudFormation supports, including the AutoScalingGroup. See https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

bootstrapExtraArgs?: undefined | string;

Additional args to pass directly to /etc/eks/bootstrap.sh. Fror details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the --apiserver-endpoint, --b64-cluster-ca and --kubelet-extra-args flags are included automatically based on other configuration parameters.

cloudFormationTags?: InputTags;

The tags to apply to the CloudFormation Stack of the Worker NodeGroup.

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

clusterIngressRule?: aws.ec2.SecurityGroupRule;

The ingress rule that gives node group access.

desiredCapacity?: pulumi.Input<number>;

The number of worker nodes that should be running in the cluster. Defaults to 2.

instanceProfile?: aws.iam.InstanceProfile;

The instance profile to use for this node group. Note, the role for the instance profile must be supplied in the ClusterOptions as either: ‘instanceRole’, or as a role of ‘instanceRoles’.

instanceType?: pulumi.Input<aws.ec2.InstanceType>;

The instance type to use for the cluster’s nodes. Defaults to “t2.medium”.

keyName?: pulumi.Input<string>;

Name of the key pair to use for SSH access to worker nodes.

kubeletExtraArgs?: undefined | string;

Extra args to pass to the Kubelet. Corresponds to the options passed in the --kubeletExtraArgs flag to /etc/eks/bootstrap.sh. For example, ‘–port=10251 –address=0.0.0.0’. Note that the labels and taints properties will be applied to this list (using --node-labels and --register-with-taints respectively) after to the expicit kubeletExtraArgs.

labels?: undefined | {[key: string]: string};

Custom k8s node labels to be attached to each woker node. Adds the given key/value pairs to the --node-labels kubelet argument.

maxSize?: pulumi.Input<number>;

The maximum number of worker nodes running in the cluster. Defaults to 2.

minSize?: pulumi.Input<number>;

The minimum number of worker nodes running in the cluster. Defaults to 1.

nodeAssociatePublicIpAddress?: undefined | false | true;

Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.

nodePublicKey?: pulumi.Input<string>;

Public key material for SSH access to worker nodes. See allowed formats at: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html If not provided, no SSH access is enabled on VMs.

nodeRootVolumeSize?: pulumi.Input<number>;

The size in GiB of a cluster node’s root volume. Defaults to 20.

nodeSecurityGroup?: aws.ec2.SecurityGroup;

The security group to use for all nodes in this worker node group.

Note: The nodeSecurityGroup option and the cluster option nodeSecurityGroupTags are mutually exclusive.

nodeSubnetIds?: pulumi.Input<pulumi.Input<string>[]>;

The IDs of the explicit node subnets to attach to the worker node group.

This option overrides clusterSubnetIds option.

nodeUserData?: pulumi.Input<string>;

Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a #!).

spotPrice?: pulumi.Input<string>;

Bidding price for spot instance. If set, only spot instances will be added as worker node

taints?: undefined | {[key: string]: Taint};

Custom k8s node taints to be attached to each worker node. Adds the given taints to the --register-with-taints kubelet argument.

version?: pulumi.Input<string>;

Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.

autoScalingGroupName: pulumi.Output<string>;

The AutoScalingGroup name for the node group.

cfnStack: aws.cloudformation.Stack;

The CloudFormation Stack which defines the node group’s AutoScalingGroup.

nodeSecurityGroup: aws.ec2.SecurityGroup;

The security group for the node group.

amiId?: pulumi.Input<string>;

The AMI to use for worker nodes. Defaults to the current value of Amazon EKS - Optimized AMI at time of resource creation if no value is provided. More information about the AWS eks optimized ami is available at https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html. Use the information provided by AWS if you want to build your own AMI.

autoScalingGroupTags?: InputTags;

The tags to apply to the NodeGroup’s AutoScalingGroup in the CloudFormation Stack.

Per AWS, all stack-level tags, including automatically created tags, and the cloudFormationTags option are propagated to resources that AWS CloudFormation supports, including the AutoScalingGroup. See https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

bootstrapExtraArgs?: undefined | string;

Additional args to pass directly to /etc/eks/bootstrap.sh. Fror details on available options, see: https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh. Note that the --apiserver-endpoint, --b64-cluster-ca and --kubelet-extra-args flags are included automatically based on other configuration parameters.

cloudFormationTags?: InputTags;

The tags to apply to the CloudFormation Stack of the Worker NodeGroup.

Note: Given the inheritance of auto-generated CF tags and cloudFormationTags, you should either supply the tag in autoScalingGroupTags or cloudFormationTags, but not both.

cluster: Cluster | CoreData;

The target EKS cluster.

clusterIngressRule?: aws.ec2.SecurityGroupRule;

The ingress rule that gives node group access.

desiredCapacity?: pulumi.Input<number>;

The number of worker nodes that should be running in the cluster. Defaults to 2.

instanceProfile?: aws.iam.InstanceProfile;

The instance profile to use for this node group. Note, the role for the instance profile must be supplied in the ClusterOptions as either: ‘instanceRole’, or as a role of ‘instanceRoles’.

instanceType?: pulumi.Input<aws.ec2.InstanceType>;

The instance type to use for the cluster’s nodes. Defaults to “t2.medium”.

keyName?: pulumi.Input<string>;

Name of the key pair to use for SSH access to worker nodes.

kubeletExtraArgs?: undefined | string;

Extra args to pass to the Kubelet. Corresponds to the options passed in the --kubeletExtraArgs flag to /etc/eks/bootstrap.sh. For example, ‘–port=10251 –address=0.0.0.0’. Note that the labels and taints properties will be applied to this list (using --node-labels and --register-with-taints respectively) after to the expicit kubeletExtraArgs.

labels?: undefined | {[key: string]: string};

Custom k8s node labels to be attached to each woker node. Adds the given key/value pairs to the --node-labels kubelet argument.

maxSize?: pulumi.Input<number>;

The maximum number of worker nodes running in the cluster. Defaults to 2.

minSize?: pulumi.Input<number>;

The minimum number of worker nodes running in the cluster. Defaults to 1.

nodeAssociatePublicIpAddress?: undefined | false | true;

Whether or not to auto-assign public IP addresses on the EKS worker nodes. If this toggle is set to true, the EKS workers will be auto-assigned public IPs. If false, they will not be auto-assigned public IPs.

nodePublicKey?: pulumi.Input<string>;

Public key material for SSH access to worker nodes. See allowed formats at: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html If not provided, no SSH access is enabled on VMs.

nodeRootVolumeSize?: pulumi.Input<number>;

The size in GiB of a cluster node’s root volume. Defaults to 20.

nodeSecurityGroup?: aws.ec2.SecurityGroup;

The security group to use for all nodes in this worker node group.

Note: The nodeSecurityGroup option and the cluster option nodeSecurityGroupTags are mutually exclusive.

nodeSubnetIds?: pulumi.Input<pulumi.Input<string>[]>;

The IDs of the explicit node subnets to attach to the worker node group.

This option overrides clusterSubnetIds option.

nodeUserData?: pulumi.Input<string>;

Extra code to run on node startup. This code will run after the AWS EKS bootstrapping code and before the node signals its readiness to the managing CloudFormation stack. This code must be a typical user data script: critically it must begin with an interpreter directive (i.e. a #!).

spotPrice?: pulumi.Input<string>;

Bidding price for spot instance. If set, only spot instances will be added as worker node

taints?: undefined | {[key: string]: Taint};

Custom k8s node taints to be attached to each worker node. Adds the given taints to the --register-with-taints kubelet argument.

version?: pulumi.Input<string>;

Desired Kubernetes master / control plane version. If you do not specify a value, the latest available version is used.

clusterSecurityGroup: aws.ec2.SecurityGroup;

The security group associated with the EKS cluster.

eksCluster: aws.eks.Cluster;

The security group associated with the EKS cluster.

tags?: InputTags;

vpcId: pulumi.Input<string>;

The VPC in which to create the worker node group.

groups: pulumi.Input<pulumi.Input<string>[]>;

A list of groups within Kubernetes to which the role is mapped.

roleArn: pulumi.Input<aws.ARN>;

The ARN of the IAM role to add.

username: pulumi.Input<string>;

The user name within Kubernetes to map to the IAM role. By default, the user name is the ARN of the IAM role.

description?: pulumi.Input<string>;

The description of the role.

managedPolicyArns?: string[];

One or more managed policy ARNs to attach to this role.

service: pulumi.Input<string>;

The service associated with this role.

allowVolumeExpansion?: pulumi.Input<boolean>;

AllowVolumeExpansion shows whether the storage class allow volume expand

default?: pulumi.Input<boolean>;

True if this storage class should be a default storage class for the cluster.

Note: As of Kubernetes v1.11+ on EKS, a default gp2 storage class will always be created automatically for the cluster by the EKS service. See https://docs.aws.amazon.com/eks/latest/userguide/storage-classes.html

Please note that at most one storage class can be marked as default. If two or more of them are marked as default, a PersistentVolumeClaim without storageClassName explicitly specified cannot be created. See: https://kubernetes.io/docs/tasks/administer-cluster/change-default-storage-class/#changing-the-default-storageclass

encrypted?: pulumi.Input<boolean>;

Denotes whether the EBS volume should be encrypted.

iopsPerGb?: pulumi.Input<number>;

I/O operations per second per GiB for “io1” volumes. The AWS volume plugin multiplies this with the size of a requested volume to compute IOPS of the volume and caps the result at 20,000 IOPS.

kmsKeyId?: pulumi.Input<string>;

The full Amazon Resource Name of the key to use when encrypting the volume. If none is supplied but encrypted is true, a key is generated by AWS.

metadata?: pulumi.Input<k8sInputs.meta.v1.ObjectMeta>;

Standard object’s metadata. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#metadata

mountOptions?: pulumi.Input<string[]>;

Dynamically provisioned PersistentVolumes of this storage class are created with these mountOptions, e.g. [“ro”, “soft”]. Not validated - mount of the PVs will simply fail if one is invalid.

reclaimPolicy?: pulumi.Input<string>;

Dynamically provisioned PersistentVolumes of this storage class are created with this reclaimPolicy. Defaults to Delete.

type: pulumi.Input<EBSVolumeType>;

The EBS volume type.

volumeBindingMode?: pulumi.Input<string>;

VolumeBindingMode indicates how PersistentVolumeClaims should be provisioned and bound. When unset, VolumeBindingImmediate is used. This field is alpha-level and is only honored by servers that enable the VolumeScheduling feature.

zones?: pulumi.Input<pulumi.Input<string>[]>;

The AWS zone or zones for the EBS volume. If zones is not specified, volumes are generally round-robin-ed across all active zones where Kubernetes cluster has a node. zone and zones parameters must not be used at the same time.

effect: “NoSchedule” | “NoExecute” | “PreferNoSchedule”;

The effect of the taint.

value: string;

The value of the taint.

groups: pulumi.Input<pulumi.Input<string>[]>;

A list of groups within Kubernetes to which the user is mapped to.

userArn: pulumi.Input<aws.ARN>;

The ARN of the IAM user to add.

username: pulumi.Input<string>;

The user name within Kubernetes to map to the IAM user. By default, the user name is the ARN of the IAM user.

customNetworkConfig?: pulumi.Input<boolean>;

Specifies that your pods may use subnets and security groups (within the same VPC as your control plane resources) that are independent of your cluster’s resourcesVpcConfig.

Defaults to false.

externalSnat?: pulumi.Input<boolean>;

Specifies whether an external NAT gateway should be used to provide SNAT of secondary ENI IP addresses. If set to true, the SNAT iptables rule and off-VPC IP rule are not applied, and these rules are removed if they have already been applied.

Defaults to false.

image?: pulumi.Input<string>;

Specifies the container image to use in the AWS CNI cluster DaemonSet.

Defaults to the official AWS CNI image in ECR.

logFile?: pulumi.Input<string>;

Specifies the file path used for logs.

Defaults to “stdout” to emit Pod logs for kubectl logs.

logLevel?: pulumi.Input<string>;

Specifies the log level used for logs.

Defaults to “DEBUG”. See more options: https://git.io/fj92K

nodePortSupport?: pulumi.Input<boolean>;

Specifies whether NodePort services are enabled on a worker node’s primary network interface. This requires additional iptables rules and that the kernel’s reverse path filter on the primary interface is set to loose.

Defaults to true.

warmEniTarget?: pulumi.Input<number>;

Specifies the number of free elastic network interfaces (and all of their available IP addresses) that the ipamD daemon should attempt to keep available for pod assignment on the node.

Defaults to 1.

warmIpTarget?: pulumi.Input<number>;

Specifies the number of free IP addresses that the ipamD daemon should attempt to keep available for pod assignment on the node.