Docs Home
Alibaba Cloud v3.81.0 published on Monday, Jun 23, 2025 by Pulumi
alicloud.cs.EdgeKubernetes
Explore with Pulumi AI
This resource will help you to manage a Edge Kubernetes Cluster in Alibaba Cloud Kubernetes Service, see What is edge kubernetes.
NOTE: Kubernetes cluster only supports VPC network and it can access internet while creating kubernetes cluster. A Nat Gateway and configuring a SNAT for it can ensure one VPC network access internet. If there is no nat gateway in the VPC, you can set
new_nat_gatewayto “true” to create one automatically.
NOTE: Creating kubernetes cluster need to install several packages and it will cost about 15 minutes. Please be patient.
NOTE: The provider supports to download kube config, client certificate, client key and cluster ca certificate after creating cluster successfully, and you can put them into the specified location, like ‘~/.kube/config’.
NOTE: The provider supports disabling internet load balancer for API Server by setting
falsetoslb_internet_enabled.
NOTE: If you want to manage Kubernetes, you can use Kubernetes Provider.
NOTE: Available since v1.103.0.
NOTE: From version 1.185.0+, support new fields
cluster_spec,runtimeandload_balancer_spec.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";
const config = new pulumi.Config();
const name = config.get("name") || "tf-example";
const _default = alicloud.getZones({
availableResourceCreation: "VSwitch",
});
const defaultGetInstanceTypes = _default.then(_default => alicloud.ecs.getInstanceTypes({
availabilityZone: _default.zones?.[0]?.id,
cpuCoreCount: 4,
memorySize: 8,
kubernetesNodeRole: "Master",
}));
const defaultNetwork = new alicloud.vpc.Network("default", {
vpcName: name,
cidrBlock: "10.4.0.0/16",
});
const defaultSwitch = new alicloud.vpc.Switch("default", {
vswitchName: name,
cidrBlock: "10.4.0.0/24",
vpcId: defaultNetwork.id,
zoneId: _default.then(_default => _default.zones?.[0]?.id),
});
const defaultEdgeKubernetes = new alicloud.cs.EdgeKubernetes("default", {
namePrefix: name,
workerVswitchIds: [defaultSwitch.id],
workerInstanceTypes: [defaultGetInstanceTypes.then(defaultGetInstanceTypes => defaultGetInstanceTypes.instanceTypes?.[0]?.id)],
version: "1.26.3-aliyun.1",
workerNumber: 1,
password: "Test12345",
podCidr: "10.99.0.0/16",
serviceCidr: "172.16.0.0/16",
workerInstanceChargeType: "PostPaid",
newNatGateway: true,
nodeCidrMask: 24,
installCloudMonitor: true,
slbInternetEnabled: true,
isEnterpriseSecurityGroup: true,
skipSetCertificateAuthority: true,
workerDataDisks: [{
category: "cloud_ssd",
size: "200",
encrypted: "false",
}],
});
import pulumi
import pulumi_alicloud as alicloud
config = pulumi.Config()
name = config.get("name")
if name is None:
name = "tf-example"
default = alicloud.get_zones(available_resource_creation="VSwitch")
default_get_instance_types = alicloud.ecs.get_instance_types(availability_zone=default.zones[0].id,
cpu_core_count=4,
memory_size=8,
kubernetes_node_role="Master")
default_network = alicloud.vpc.Network("default",
vpc_name=name,
cidr_block="10.4.0.0/16")
default_switch = alicloud.vpc.Switch("default",
vswitch_name=name,
cidr_block="10.4.0.0/24",
vpc_id=default_network.id,
zone_id=default.zones[0].id)
default_edge_kubernetes = alicloud.cs.EdgeKubernetes("default",
name_prefix=name,
worker_vswitch_ids=[default_switch.id],
worker_instance_types=[default_get_instance_types.instance_types[0].id],
version="1.26.3-aliyun.1",
worker_number=1,
password="Test12345",
pod_cidr="10.99.0.0/16",
service_cidr="172.16.0.0/16",
worker_instance_charge_type="PostPaid",
new_nat_gateway=True,
node_cidr_mask=24,
install_cloud_monitor=True,
slb_internet_enabled=True,
is_enterprise_security_group=True,
skip_set_certificate_authority=True,
worker_data_disks=[{
"category": "cloud_ssd",
"size": "200",
"encrypted": "false",
}])
package main
import (
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/cs"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/ecs"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/vpc"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
name := "tf-example"
if param := cfg.Get("name"); param != "" {
name = param
}
_default, err := alicloud.GetZones(ctx, &alicloud.GetZonesArgs{
AvailableResourceCreation: pulumi.StringRef("VSwitch"),
}, nil)
if err != nil {
return err
}
defaultGetInstanceTypes, err := ecs.GetInstanceTypes(ctx, &ecs.GetInstanceTypesArgs{
AvailabilityZone: pulumi.StringRef(_default.Zones[0].Id),
CpuCoreCount: pulumi.IntRef(4),
MemorySize: pulumi.Float64Ref(8),
KubernetesNodeRole: pulumi.StringRef("Master"),
}, nil)
if err != nil {
return err
}
defaultNetwork, err := vpc.NewNetwork(ctx, "default", &vpc.NetworkArgs{
VpcName: pulumi.String(name),
CidrBlock: pulumi.String("10.4.0.0/16"),
})
if err != nil {
return err
}
defaultSwitch, err := vpc.NewSwitch(ctx, "default", &vpc.SwitchArgs{
VswitchName: pulumi.String(name),
CidrBlock: pulumi.String("10.4.0.0/24"),
VpcId: defaultNetwork.ID(),
ZoneId: pulumi.String(_default.Zones[0].Id),
})
if err != nil {
return err
}
_, err = cs.NewEdgeKubernetes(ctx, "default", &cs.EdgeKubernetesArgs{
NamePrefix: pulumi.String(name),
WorkerVswitchIds: pulumi.StringArray{
defaultSwitch.ID(),
},
WorkerInstanceTypes: pulumi.StringArray{
pulumi.String(defaultGetInstanceTypes.InstanceTypes[0].Id),
},
Version: pulumi.String("1.26.3-aliyun.1"),
WorkerNumber: pulumi.Int(1),
Password: pulumi.String("Test12345"),
PodCidr: pulumi.String("10.99.0.0/16"),
ServiceCidr: pulumi.String("172.16.0.0/16"),
WorkerInstanceChargeType: pulumi.String("PostPaid"),
NewNatGateway: pulumi.Bool(true),
NodeCidrMask: pulumi.Int(24),
InstallCloudMonitor: pulumi.Bool(true),
SlbInternetEnabled: pulumi.Bool(true),
IsEnterpriseSecurityGroup: pulumi.Bool(true),
SkipSetCertificateAuthority: pulumi.Bool(true),
WorkerDataDisks: cs.EdgeKubernetesWorkerDataDiskArray{
&cs.EdgeKubernetesWorkerDataDiskArgs{
Category: pulumi.String("cloud_ssd"),
Size: pulumi.String("200"),
Encrypted: pulumi.String("false"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var name = config.Get("name") ?? "tf-example";
var @default = AliCloud.GetZones.Invoke(new()
{
AvailableResourceCreation = "VSwitch",
});
var defaultGetInstanceTypes = AliCloud.Ecs.GetInstanceTypes.Invoke(new()
{
AvailabilityZone = @default.Apply(getZonesResult => getZonesResult.Zones[0]?.Id),
CpuCoreCount = 4,
MemorySize = 8,
KubernetesNodeRole = "Master",
});
var defaultNetwork = new AliCloud.Vpc.Network("default", new()
{
VpcName = name,
CidrBlock = "10.4.0.0/16",
});
var defaultSwitch = new AliCloud.Vpc.Switch("default", new()
{
VswitchName = name,
CidrBlock = "10.4.0.0/24",
VpcId = defaultNetwork.Id,
ZoneId = @default.Apply(@default => @default.Apply(getZonesResult => getZonesResult.Zones[0]?.Id)),
});
var defaultEdgeKubernetes = new AliCloud.CS.EdgeKubernetes("default", new()
{
NamePrefix = name,
WorkerVswitchIds = new[]
{
defaultSwitch.Id,
},
WorkerInstanceTypes = new[]
{
defaultGetInstanceTypes.Apply(getInstanceTypesResult => getInstanceTypesResult.InstanceTypes[0]?.Id),
},
Version = "1.26.3-aliyun.1",
WorkerNumber = 1,
Password = "Test12345",
PodCidr = "10.99.0.0/16",
ServiceCidr = "172.16.0.0/16",
WorkerInstanceChargeType = "PostPaid",
NewNatGateway = true,
NodeCidrMask = 24,
InstallCloudMonitor = true,
SlbInternetEnabled = true,
IsEnterpriseSecurityGroup = true,
SkipSetCertificateAuthority = true,
WorkerDataDisks = new[]
{
new AliCloud.CS.Inputs.EdgeKubernetesWorkerDataDiskArgs
{
Category = "cloud_ssd",
Size = "200",
Encrypted = "false",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.AlicloudFunctions;
import com.pulumi.alicloud.inputs.GetZonesArgs;
import com.pulumi.alicloud.ecs.EcsFunctions;
import com.pulumi.alicloud.ecs.inputs.GetInstanceTypesArgs;
import com.pulumi.alicloud.vpc.Network;
import com.pulumi.alicloud.vpc.NetworkArgs;
import com.pulumi.alicloud.vpc.Switch;
import com.pulumi.alicloud.vpc.SwitchArgs;
import com.pulumi.alicloud.cs.EdgeKubernetes;
import com.pulumi.alicloud.cs.EdgeKubernetesArgs;
import com.pulumi.alicloud.cs.inputs.EdgeKubernetesWorkerDataDiskArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("tf-example");
final var default = AlicloudFunctions.getZones(GetZonesArgs.builder()
.availableResourceCreation("VSwitch")
.build());
final var defaultGetInstanceTypes = EcsFunctions.getInstanceTypes(GetInstanceTypesArgs.builder()
.availabilityZone(default_.zones()[0].id())
.cpuCoreCount(4)
.memorySize(8)
.kubernetesNodeRole("Master")
.build());
var defaultNetwork = new Network("defaultNetwork", NetworkArgs.builder()
.vpcName(name)
.cidrBlock("10.4.0.0/16")
.build());
var defaultSwitch = new Switch("defaultSwitch", SwitchArgs.builder()
.vswitchName(name)
.cidrBlock("10.4.0.0/24")
.vpcId(defaultNetwork.id())
.zoneId(default_.zones()[0].id())
.build());
var defaultEdgeKubernetes = new EdgeKubernetes("defaultEdgeKubernetes", EdgeKubernetesArgs.builder()
.namePrefix(name)
.workerVswitchIds(defaultSwitch.id())
.workerInstanceTypes(defaultGetInstanceTypes.instanceTypes()[0].id())
.version("1.26.3-aliyun.1")
.workerNumber(1)
.password("Test12345")
.podCidr("10.99.0.0/16")
.serviceCidr("172.16.0.0/16")
.workerInstanceChargeType("PostPaid")
.newNatGateway(true)
.nodeCidrMask(24)
.installCloudMonitor(true)
.slbInternetEnabled(true)
.isEnterpriseSecurityGroup(true)
.skipSetCertificateAuthority(true)
.workerDataDisks(EdgeKubernetesWorkerDataDiskArgs.builder()
.category("cloud_ssd")
.size("200")
.encrypted("false")
.build())
.build());
}
}
configuration:
name:
type: string
default: tf-example
resources:
defaultNetwork:
type: alicloud:vpc:Network
name: default
properties:
vpcName: ${name}
cidrBlock: 10.4.0.0/16
defaultSwitch:
type: alicloud:vpc:Switch
name: default
properties:
vswitchName: ${name}
cidrBlock: 10.4.0.0/24
vpcId: ${defaultNetwork.id}
zoneId: ${default.zones[0].id}
defaultEdgeKubernetes:
type: alicloud:cs:EdgeKubernetes
name: default
properties:
namePrefix: ${name}
workerVswitchIds:
- ${defaultSwitch.id}
workerInstanceTypes:
- ${defaultGetInstanceTypes.instanceTypes[0].id}
version: 1.26.3-aliyun.1
workerNumber: 1
password: Test12345
podCidr: 10.99.0.0/16
serviceCidr: 172.16.0.0/16
workerInstanceChargeType: PostPaid
newNatGateway: true
nodeCidrMask: 24
installCloudMonitor: true
slbInternetEnabled: true
isEnterpriseSecurityGroup: true
skipSetCertificateAuthority: true
workerDataDisks:
- category: cloud_ssd
size: '200'
encrypted: 'false'
variables:
default:
fn::invoke:
function: alicloud:getZones
arguments:
availableResourceCreation: VSwitch
defaultGetInstanceTypes:
fn::invoke:
function: alicloud:ecs:getInstanceTypes
arguments:
availabilityZone: ${default.zones[0].id}
cpuCoreCount: 4
memorySize: 8
kubernetesNodeRole: Master
You could create a professional kubernetes edge cluster now.
import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";
const config = new pulumi.Config();
const name = config.get("name") || "tf_example";
const _default = alicloud.getZones({
availableResourceCreation: "VSwitch",
});
const defaultGetInstanceTypes = _default.then(_default => alicloud.ecs.getInstanceTypes({
availabilityZone: _default.zones?.[0]?.id,
cpuCoreCount: 4,
memorySize: 8,
kubernetesNodeRole: "Master",
}));
const defaultNetwork = new alicloud.vpc.Network("default", {
vpcName: name,
cidrBlock: "10.4.0.0/16",
});
const defaultSwitch = new alicloud.vpc.Switch("default", {
vswitchName: name,
cidrBlock: "10.4.0.0/24",
vpcId: defaultNetwork.id,
zoneId: _default.then(_default => _default.zones?.[0]?.id),
});
const defaultEdgeKubernetes = new alicloud.cs.EdgeKubernetes("default", {
namePrefix: name,
workerVswitchIds: [defaultSwitch.id],
workerInstanceTypes: [defaultGetInstanceTypes.then(defaultGetInstanceTypes => defaultGetInstanceTypes.instanceTypes?.[0]?.id)],
clusterSpec: "ack.pro.small",
workerNumber: 1,
password: "Test12345",
podCidr: "10.99.0.0/16",
serviceCidr: "172.16.0.0/16",
workerInstanceChargeType: "PostPaid",
newNatGateway: true,
nodeCidrMask: 24,
loadBalancerSpec: "slb.s2.small",
installCloudMonitor: true,
slbInternetEnabled: true,
isEnterpriseSecurityGroup: true,
skipSetCertificateAuthority: true,
workerDataDisks: [{
category: "cloud_ssd",
size: "200",
encrypted: "false",
}],
});
import pulumi
import pulumi_alicloud as alicloud
config = pulumi.Config()
name = config.get("name")
if name is None:
name = "tf_example"
default = alicloud.get_zones(available_resource_creation="VSwitch")
default_get_instance_types = alicloud.ecs.get_instance_types(availability_zone=default.zones[0].id,
cpu_core_count=4,
memory_size=8,
kubernetes_node_role="Master")
default_network = alicloud.vpc.Network("default",
vpc_name=name,
cidr_block="10.4.0.0/16")
default_switch = alicloud.vpc.Switch("default",
vswitch_name=name,
cidr_block="10.4.0.0/24",
vpc_id=default_network.id,
zone_id=default.zones[0].id)
default_edge_kubernetes = alicloud.cs.EdgeKubernetes("default",
name_prefix=name,
worker_vswitch_ids=[default_switch.id],
worker_instance_types=[default_get_instance_types.instance_types[0].id],
cluster_spec="ack.pro.small",
worker_number=1,
password="Test12345",
pod_cidr="10.99.0.0/16",
service_cidr="172.16.0.0/16",
worker_instance_charge_type="PostPaid",
new_nat_gateway=True,
node_cidr_mask=24,
load_balancer_spec="slb.s2.small",
install_cloud_monitor=True,
slb_internet_enabled=True,
is_enterprise_security_group=True,
skip_set_certificate_authority=True,
worker_data_disks=[{
"category": "cloud_ssd",
"size": "200",
"encrypted": "false",
}])
package main
import (
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/cs"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/ecs"
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/vpc"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
name := "tf_example"
if param := cfg.Get("name"); param != "" {
name = param
}
_default, err := alicloud.GetZones(ctx, &alicloud.GetZonesArgs{
AvailableResourceCreation: pulumi.StringRef("VSwitch"),
}, nil)
if err != nil {
return err
}
defaultGetInstanceTypes, err := ecs.GetInstanceTypes(ctx, &ecs.GetInstanceTypesArgs{
AvailabilityZone: pulumi.StringRef(_default.Zones[0].Id),
CpuCoreCount: pulumi.IntRef(4),
MemorySize: pulumi.Float64Ref(8),
KubernetesNodeRole: pulumi.StringRef("Master"),
}, nil)
if err != nil {
return err
}
defaultNetwork, err := vpc.NewNetwork(ctx, "default", &vpc.NetworkArgs{
VpcName: pulumi.String(name),
CidrBlock: pulumi.String("10.4.0.0/16"),
})
if err != nil {
return err
}
defaultSwitch, err := vpc.NewSwitch(ctx, "default", &vpc.SwitchArgs{
VswitchName: pulumi.String(name),
CidrBlock: pulumi.String("10.4.0.0/24"),
VpcId: defaultNetwork.ID(),
ZoneId: pulumi.String(_default.Zones[0].Id),
})
if err != nil {
return err
}
_, err = cs.NewEdgeKubernetes(ctx, "default", &cs.EdgeKubernetesArgs{
NamePrefix: pulumi.String(name),
WorkerVswitchIds: pulumi.StringArray{
defaultSwitch.ID(),
},
WorkerInstanceTypes: pulumi.StringArray{
pulumi.String(defaultGetInstanceTypes.InstanceTypes[0].Id),
},
ClusterSpec: pulumi.String("ack.pro.small"),
WorkerNumber: pulumi.Int(1),
Password: pulumi.String("Test12345"),
PodCidr: pulumi.String("10.99.0.0/16"),
ServiceCidr: pulumi.String("172.16.0.0/16"),
WorkerInstanceChargeType: pulumi.String("PostPaid"),
NewNatGateway: pulumi.Bool(true),
NodeCidrMask: pulumi.Int(24),
LoadBalancerSpec: pulumi.String("slb.s2.small"),
InstallCloudMonitor: pulumi.Bool(true),
SlbInternetEnabled: pulumi.Bool(true),
IsEnterpriseSecurityGroup: pulumi.Bool(true),
SkipSetCertificateAuthority: pulumi.Bool(true),
WorkerDataDisks: cs.EdgeKubernetesWorkerDataDiskArray{
&cs.EdgeKubernetesWorkerDataDiskArgs{
Category: pulumi.String("cloud_ssd"),
Size: pulumi.String("200"),
Encrypted: pulumi.String("false"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var name = config.Get("name") ?? "tf_example";
var @default = AliCloud.GetZones.Invoke(new()
{
AvailableResourceCreation = "VSwitch",
});
var defaultGetInstanceTypes = AliCloud.Ecs.GetInstanceTypes.Invoke(new()
{
AvailabilityZone = @default.Apply(getZonesResult => getZonesResult.Zones[0]?.Id),
CpuCoreCount = 4,
MemorySize = 8,
KubernetesNodeRole = "Master",
});
var defaultNetwork = new AliCloud.Vpc.Network("default", new()
{
VpcName = name,
CidrBlock = "10.4.0.0/16",
});
var defaultSwitch = new AliCloud.Vpc.Switch("default", new()
{
VswitchName = name,
CidrBlock = "10.4.0.0/24",
VpcId = defaultNetwork.Id,
ZoneId = @default.Apply(@default => @default.Apply(getZonesResult => getZonesResult.Zones[0]?.Id)),
});
var defaultEdgeKubernetes = new AliCloud.CS.EdgeKubernetes("default", new()
{
NamePrefix = name,
WorkerVswitchIds = new[]
{
defaultSwitch.Id,
},
WorkerInstanceTypes = new[]
{
defaultGetInstanceTypes.Apply(getInstanceTypesResult => getInstanceTypesResult.InstanceTypes[0]?.Id),
},
ClusterSpec = "ack.pro.small",
WorkerNumber = 1,
Password = "Test12345",
PodCidr = "10.99.0.0/16",
ServiceCidr = "172.16.0.0/16",
WorkerInstanceChargeType = "PostPaid",
NewNatGateway = true,
NodeCidrMask = 24,
LoadBalancerSpec = "slb.s2.small",
InstallCloudMonitor = true,
SlbInternetEnabled = true,
IsEnterpriseSecurityGroup = true,
SkipSetCertificateAuthority = true,
WorkerDataDisks = new[]
{
new AliCloud.CS.Inputs.EdgeKubernetesWorkerDataDiskArgs
{
Category = "cloud_ssd",
Size = "200",
Encrypted = "false",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.AlicloudFunctions;
import com.pulumi.alicloud.inputs.GetZonesArgs;
import com.pulumi.alicloud.ecs.EcsFunctions;
import com.pulumi.alicloud.ecs.inputs.GetInstanceTypesArgs;
import com.pulumi.alicloud.vpc.Network;
import com.pulumi.alicloud.vpc.NetworkArgs;
import com.pulumi.alicloud.vpc.Switch;
import com.pulumi.alicloud.vpc.SwitchArgs;
import com.pulumi.alicloud.cs.EdgeKubernetes;
import com.pulumi.alicloud.cs.EdgeKubernetesArgs;
import com.pulumi.alicloud.cs.inputs.EdgeKubernetesWorkerDataDiskArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("tf_example");
final var default = AlicloudFunctions.getZones(GetZonesArgs.builder()
.availableResourceCreation("VSwitch")
.build());
final var defaultGetInstanceTypes = EcsFunctions.getInstanceTypes(GetInstanceTypesArgs.builder()
.availabilityZone(default_.zones()[0].id())
.cpuCoreCount(4)
.memorySize(8)
.kubernetesNodeRole("Master")
.build());
var defaultNetwork = new Network("defaultNetwork", NetworkArgs.builder()
.vpcName(name)
.cidrBlock("10.4.0.0/16")
.build());
var defaultSwitch = new Switch("defaultSwitch", SwitchArgs.builder()
.vswitchName(name)
.cidrBlock("10.4.0.0/24")
.vpcId(defaultNetwork.id())
.zoneId(default_.zones()[0].id())
.build());
var defaultEdgeKubernetes = new EdgeKubernetes("defaultEdgeKubernetes", EdgeKubernetesArgs.builder()
.namePrefix(name)
.workerVswitchIds(defaultSwitch.id())
.workerInstanceTypes(defaultGetInstanceTypes.instanceTypes()[0].id())
.clusterSpec("ack.pro.small")
.workerNumber(1)
.password("Test12345")
.podCidr("10.99.0.0/16")
.serviceCidr("172.16.0.0/16")
.workerInstanceChargeType("PostPaid")
.newNatGateway(true)
.nodeCidrMask(24)
.loadBalancerSpec("slb.s2.small")
.installCloudMonitor(true)
.slbInternetEnabled(true)
.isEnterpriseSecurityGroup(true)
.skipSetCertificateAuthority(true)
.workerDataDisks(EdgeKubernetesWorkerDataDiskArgs.builder()
.category("cloud_ssd")
.size("200")
.encrypted("false")
.build())
.build());
}
}
configuration:
name:
type: string
default: tf_example
resources:
defaultNetwork:
type: alicloud:vpc:Network
name: default
properties:
vpcName: ${name}
cidrBlock: 10.4.0.0/16
defaultSwitch:
type: alicloud:vpc:Switch
name: default
properties:
vswitchName: ${name}
cidrBlock: 10.4.0.0/24
vpcId: ${defaultNetwork.id}
zoneId: ${default.zones[0].id}
defaultEdgeKubernetes:
type: alicloud:cs:EdgeKubernetes
name: default
properties:
namePrefix: ${name}
workerVswitchIds:
- ${defaultSwitch.id}
workerInstanceTypes:
- ${defaultGetInstanceTypes.instanceTypes[0].id}
clusterSpec: ack.pro.small
workerNumber: 1
password: Test12345
podCidr: 10.99.0.0/16
serviceCidr: 172.16.0.0/16
workerInstanceChargeType: PostPaid
newNatGateway: true
nodeCidrMask: 24
loadBalancerSpec: slb.s2.small
installCloudMonitor: true
slbInternetEnabled: true
isEnterpriseSecurityGroup: true
skipSetCertificateAuthority: true
workerDataDisks:
- category: cloud_ssd
size: '200'
encrypted: 'false'
variables:
default:
fn::invoke:
function: alicloud:getZones
arguments:
availableResourceCreation: VSwitch
defaultGetInstanceTypes:
fn::invoke:
function: alicloud:ecs:getInstanceTypes
arguments:
availabilityZone: ${default.zones[0].id}
cpuCoreCount: 4
memorySize: 8
kubernetesNodeRole: Master
Create EdgeKubernetes Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new EdgeKubernetes(name: string, args: EdgeKubernetesArgs, opts?: CustomResourceOptions);@overload
def EdgeKubernetes(resource_name: str,
args: EdgeKubernetesArgs,
opts: Optional[ResourceOptions] = None)
@overload
def EdgeKubernetes(resource_name: str,
opts: Optional[ResourceOptions] = None,
worker_instance_types: Optional[Sequence[str]] = None,
worker_vswitch_ids: Optional[Sequence[str]] = None,
worker_number: Optional[int] = None,
rds_instances: Optional[Sequence[str]] = None,
retain_resources: Optional[Sequence[str]] = None,
cluster_spec: Optional[str] = None,
deletion_protection: Optional[bool] = None,
install_cloud_monitor: Optional[bool] = None,
runtime: Optional[EdgeKubernetesRuntimeArgs] = None,
key_name: Optional[str] = None,
kube_config: Optional[str] = None,
load_balancer_spec: Optional[str] = None,
log_config: Optional[EdgeKubernetesLogConfigArgs] = None,
name: Optional[str] = None,
name_prefix: Optional[str] = None,
new_nat_gateway: Optional[bool] = None,
node_cidr_mask: Optional[int] = None,
password: Optional[str] = None,
pod_cidr: Optional[str] = None,
proxy_mode: Optional[str] = None,
addons: Optional[Sequence[EdgeKubernetesAddonArgs]] = None,
cluster_ca_cert: Optional[str] = None,
resource_group_id: Optional[str] = None,
is_enterprise_security_group: Optional[bool] = None,
security_group_id: Optional[str] = None,
service_cidr: Optional[str] = None,
skip_set_certificate_authority: Optional[bool] = None,
slb_internet_enabled: Optional[bool] = None,
tags: Optional[Mapping[str, str]] = None,
user_data: Optional[str] = None,
version: Optional[str] = None,
worker_data_disks: Optional[Sequence[EdgeKubernetesWorkerDataDiskArgs]] = None,
worker_disk_category: Optional[str] = None,
worker_disk_performance_level: Optional[str] = None,
worker_disk_size: Optional[int] = None,
worker_disk_snapshot_policy_id: Optional[str] = None,
worker_instance_charge_type: Optional[str] = None,
client_key: Optional[str] = None,
client_cert: Optional[str] = None,
availability_zone: Optional[str] = None)func NewEdgeKubernetes(ctx *Context, name string, args EdgeKubernetesArgs, opts ...ResourceOption) (*EdgeKubernetes, error)public EdgeKubernetes(string name, EdgeKubernetesArgs args, CustomResourceOptions? opts = null)
public EdgeKubernetes(String name, EdgeKubernetesArgs args)
public EdgeKubernetes(String name, EdgeKubernetesArgs args, CustomResourceOptions options)
type: alicloud:cs:EdgeKubernetes
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args EdgeKubernetesArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args EdgeKubernetesArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args EdgeKubernetesArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args EdgeKubernetesArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args EdgeKubernetesArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var edgeKubernetesResource = new AliCloud.CS.EdgeKubernetes("edgeKubernetesResource", new()
{
WorkerInstanceTypes = new[]
{
"string",
},
WorkerVswitchIds = new[]
{
"string",
},
WorkerNumber = 0,
RdsInstances = new[]
{
"string",
},
RetainResources = new[]
{
"string",
},
ClusterSpec = "string",
DeletionProtection = false,
InstallCloudMonitor = false,
Runtime = new AliCloud.CS.Inputs.EdgeKubernetesRuntimeArgs
{
Name = "string",
Version = "string",
},
KeyName = "string",
LoadBalancerSpec = "string",
Name = "string",
NamePrefix = "string",
NewNatGateway = false,
NodeCidrMask = 0,
Password = "string",
PodCidr = "string",
ProxyMode = "string",
Addons = new[]
{
new AliCloud.CS.Inputs.EdgeKubernetesAddonArgs
{
Config = "string",
Disabled = false,
Name = "string",
Version = "string",
},
},
ResourceGroupId = "string",
IsEnterpriseSecurityGroup = false,
SecurityGroupId = "string",
ServiceCidr = "string",
SkipSetCertificateAuthority = false,
SlbInternetEnabled = false,
Tags =
{
{ "string", "string" },
},
UserData = "string",
Version = "string",
WorkerDataDisks = new[]
{
new AliCloud.CS.Inputs.EdgeKubernetesWorkerDataDiskArgs
{
AutoSnapshotPolicyId = "string",
Category = "string",
Device = "string",
Encrypted = "string",
KmsKeyId = "string",
Name = "string",
PerformanceLevel = "string",
Size = "string",
SnapshotId = "string",
},
},
WorkerDiskCategory = "string",
WorkerDiskPerformanceLevel = "string",
WorkerDiskSize = 0,
WorkerDiskSnapshotPolicyId = "string",
WorkerInstanceChargeType = "string",
AvailabilityZone = "string",
});
example, err := cs.NewEdgeKubernetes(ctx, "edgeKubernetesResource", &cs.EdgeKubernetesArgs{
WorkerInstanceTypes: pulumi.StringArray{
pulumi.String("string"),
},
WorkerVswitchIds: pulumi.StringArray{
pulumi.String("string"),
},
WorkerNumber: pulumi.Int(0),
RdsInstances: pulumi.StringArray{
pulumi.String("string"),
},
RetainResources: pulumi.StringArray{
pulumi.String("string"),
},
ClusterSpec: pulumi.String("string"),
DeletionProtection: pulumi.Bool(false),
InstallCloudMonitor: pulumi.Bool(false),
Runtime: &cs.EdgeKubernetesRuntimeArgs{
Name: pulumi.String("string"),
Version: pulumi.String("string"),
},
KeyName: pulumi.String("string"),
LoadBalancerSpec: pulumi.String("string"),
Name: pulumi.String("string"),
NamePrefix: pulumi.String("string"),
NewNatGateway: pulumi.Bool(false),
NodeCidrMask: pulumi.Int(0),
Password: pulumi.String("string"),
PodCidr: pulumi.String("string"),
ProxyMode: pulumi.String("string"),
Addons: cs.EdgeKubernetesAddonArray{
&cs.EdgeKubernetesAddonArgs{
Config: pulumi.String("string"),
Disabled: pulumi.Bool(false),
Name: pulumi.String("string"),
Version: pulumi.String("string"),
},
},
ResourceGroupId: pulumi.String("string"),
IsEnterpriseSecurityGroup: pulumi.Bool(false),
SecurityGroupId: pulumi.String("string"),
ServiceCidr: pulumi.String("string"),
SkipSetCertificateAuthority: pulumi.Bool(false),
SlbInternetEnabled: pulumi.Bool(false),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
UserData: pulumi.String("string"),
Version: pulumi.String("string"),
WorkerDataDisks: cs.EdgeKubernetesWorkerDataDiskArray{
&cs.EdgeKubernetesWorkerDataDiskArgs{
AutoSnapshotPolicyId: pulumi.String("string"),
Category: pulumi.String("string"),
Device: pulumi.String("string"),
Encrypted: pulumi.String("string"),
KmsKeyId: pulumi.String("string"),
Name: pulumi.String("string"),
PerformanceLevel: pulumi.String("string"),
Size: pulumi.String("string"),
SnapshotId: pulumi.String("string"),
},
},
WorkerDiskCategory: pulumi.String("string"),
WorkerDiskPerformanceLevel: pulumi.String("string"),
WorkerDiskSize: pulumi.Int(0),
WorkerDiskSnapshotPolicyId: pulumi.String("string"),
WorkerInstanceChargeType: pulumi.String("string"),
AvailabilityZone: pulumi.String("string"),
})
var edgeKubernetesResource = new EdgeKubernetes("edgeKubernetesResource", EdgeKubernetesArgs.builder()
.workerInstanceTypes("string")
.workerVswitchIds("string")
.workerNumber(0)
.rdsInstances("string")
.retainResources("string")
.clusterSpec("string")
.deletionProtection(false)
.installCloudMonitor(false)
.runtime(EdgeKubernetesRuntimeArgs.builder()
.name("string")
.version("string")
.build())
.keyName("string")
.loadBalancerSpec("string")
.name("string")
.namePrefix("string")
.newNatGateway(false)
.nodeCidrMask(0)
.password("string")
.podCidr("string")
.proxyMode("string")
.addons(EdgeKubernetesAddonArgs.builder()
.config("string")
.disabled(false)
.name("string")
.version("string")
.build())
.resourceGroupId("string")
.isEnterpriseSecurityGroup(false)
.securityGroupId("string")
.serviceCidr("string")
.skipSetCertificateAuthority(false)
.slbInternetEnabled(false)
.tags(Map.of("string", "string"))
.userData("string")
.version("string")
.workerDataDisks(EdgeKubernetesWorkerDataDiskArgs.builder()
.autoSnapshotPolicyId("string")
.category("string")
.device("string")
.encrypted("string")
.kmsKeyId("string")
.name("string")
.performanceLevel("string")
.size("string")
.snapshotId("string")
.build())
.workerDiskCategory("string")
.workerDiskPerformanceLevel("string")
.workerDiskSize(0)
.workerDiskSnapshotPolicyId("string")
.workerInstanceChargeType("string")
.availabilityZone("string")
.build());
edge_kubernetes_resource = alicloud.cs.EdgeKubernetes("edgeKubernetesResource",
worker_instance_types=["string"],
worker_vswitch_ids=["string"],
worker_number=0,
rds_instances=["string"],
retain_resources=["string"],
cluster_spec="string",
deletion_protection=False,
install_cloud_monitor=False,
runtime={
"name": "string",
"version": "string",
},
key_name="string",
load_balancer_spec="string",
name="string",
name_prefix="string",
new_nat_gateway=False,
node_cidr_mask=0,
password="string",
pod_cidr="string",
proxy_mode="string",
addons=[{
"config": "string",
"disabled": False,
"name": "string",
"version": "string",
}],
resource_group_id="string",
is_enterprise_security_group=False,
security_group_id="string",
service_cidr="string",
skip_set_certificate_authority=False,
slb_internet_enabled=False,
tags={
"string": "string",
},
user_data="string",
version="string",
worker_data_disks=[{
"auto_snapshot_policy_id": "string",
"category": "string",
"device": "string",
"encrypted": "string",
"kms_key_id": "string",
"name": "string",
"performance_level": "string",
"size": "string",
"snapshot_id": "string",
}],
worker_disk_category="string",
worker_disk_performance_level="string",
worker_disk_size=0,
worker_disk_snapshot_policy_id="string",
worker_instance_charge_type="string",
availability_zone="string")
const edgeKubernetesResource = new alicloud.cs.EdgeKubernetes("edgeKubernetesResource", {
workerInstanceTypes: ["string"],
workerVswitchIds: ["string"],
workerNumber: 0,
rdsInstances: ["string"],
retainResources: ["string"],
clusterSpec: "string",
deletionProtection: false,
installCloudMonitor: false,
runtime: {
name: "string",
version: "string",
},
keyName: "string",
loadBalancerSpec: "string",
name: "string",
namePrefix: "string",
newNatGateway: false,
nodeCidrMask: 0,
password: "string",
podCidr: "string",
proxyMode: "string",
addons: [{
config: "string",
disabled: false,
name: "string",
version: "string",
}],
resourceGroupId: "string",
isEnterpriseSecurityGroup: false,
securityGroupId: "string",
serviceCidr: "string",
skipSetCertificateAuthority: false,
slbInternetEnabled: false,
tags: {
string: "string",
},
userData: "string",
version: "string",
workerDataDisks: [{
autoSnapshotPolicyId: "string",
category: "string",
device: "string",
encrypted: "string",
kmsKeyId: "string",
name: "string",
performanceLevel: "string",
size: "string",
snapshotId: "string",
}],
workerDiskCategory: "string",
workerDiskPerformanceLevel: "string",
workerDiskSize: 0,
workerDiskSnapshotPolicyId: "string",
workerInstanceChargeType: "string",
availabilityZone: "string",
});
type: alicloud:cs:EdgeKubernetes
properties:
addons:
- config: string
disabled: false
name: string
version: string
availabilityZone: string
clusterSpec: string
deletionProtection: false
installCloudMonitor: false
isEnterpriseSecurityGroup: false
keyName: string
loadBalancerSpec: string
name: string
namePrefix: string
newNatGateway: false
nodeCidrMask: 0
password: string
podCidr: string
proxyMode: string
rdsInstances:
- string
resourceGroupId: string
retainResources:
- string
runtime:
name: string
version: string
securityGroupId: string
serviceCidr: string
skipSetCertificateAuthority: false
slbInternetEnabled: false
tags:
string: string
userData: string
version: string
workerDataDisks:
- autoSnapshotPolicyId: string
category: string
device: string
encrypted: string
kmsKeyId: string
name: string
performanceLevel: string
size: string
snapshotId: string
workerDiskCategory: string
workerDiskPerformanceLevel: string
workerDiskSize: 0
workerDiskSnapshotPolicyId: string
workerInstanceChargeType: string
workerInstanceTypes:
- string
workerNumber: 0
workerVswitchIds:
- string
EdgeKubernetes Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The EdgeKubernetes resource accepts the following input properties:
- Worker
Instance List<string>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- Worker
Number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- Worker
Vswitch List<string>Ids - The vswitches used by workers.
- Addons
List<Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Addon> - The addon you want to install in cluster. See
addonsbelow. - Availability
Zone string - The ID of availability zone.
- Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- Cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- Deletion
Protection bool - Whether to enable cluster deletion protection.
- Install
Cloud boolMonitor - Install cloud monitor agent on ECS. default:
true. - Is
Enterprise boolSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- Key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - Kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- Log
Config Pulumi.Ali Cloud. CS. Inputs. Edge Kubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - Name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- Name
Prefix string - New
Nat boolGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- Node
Cidr intMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- Password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - Pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- Proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- Rds
Instances List<string> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- Resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- Retain
Resources List<string> - Runtime
Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - Security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- Service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- Slb
Internet boolEnabled - Whether to create internet load balancer for API Server. Default to true.
- Dictionary<string, string>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- User
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- Version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- Worker
Data List<Pulumi.Disks Ali Cloud. CS. Inputs. Edge Kubernetes Worker Data Disk> - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - Worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - Worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Worker
Disk intSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- Worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- Worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
- Worker
Instance []stringTypes - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- Worker
Number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- Worker
Vswitch []stringIds - The vswitches used by workers.
- Addons
[]Edge
Kubernetes Addon Args - The addon you want to install in cluster. See
addonsbelow. - Availability
Zone string - The ID of availability zone.
- Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- Cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- Deletion
Protection bool - Whether to enable cluster deletion protection.
- Install
Cloud boolMonitor - Install cloud monitor agent on ECS. default:
true. - Is
Enterprise boolSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- Key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - Kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- Log
Config EdgeKubernetes Log Config Args - A list of one element containing information about the associated log store. See
log_configbelow. - Name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- Name
Prefix string - New
Nat boolGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- Node
Cidr intMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- Password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - Pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- Proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- Rds
Instances []string - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- Resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- Retain
Resources []string - Runtime
Edge
Kubernetes Runtime Args - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - Security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- Service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- Slb
Internet boolEnabled - Whether to create internet load balancer for API Server. Default to true.
- map[string]string
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- User
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- Version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- Worker
Data []EdgeDisks Kubernetes Worker Data Disk Args - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - Worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - Worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Worker
Disk intSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- Worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- Worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
- worker
Instance List<String>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Number Integer - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Vswitch List<String>Ids - The vswitches used by workers.
- addons
List<Edge
Kubernetes Addon> - The addon you want to install in cluster. See
addonsbelow. - availability
Zone String - The ID of availability zone.
- client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca StringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec String - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- deletion
Protection Boolean - Whether to enable cluster deletion protection.
- install
Cloud BooleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise BooleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name String - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config String - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer StringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config EdgeKubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - name String
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix String - new
Nat BooleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr IntegerMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password String
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr String - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode String - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances List<String> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group StringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources List<String> - runtime
Edge
Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group StringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr String - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- Boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet BooleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- Map<String,String>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data String - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version String
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- worker
Data List<EdgeDisks Kubernetes Worker Data Disk> - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk StringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk StringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk IntegerSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk StringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance StringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
- worker
Instance string[]Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Number number - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Vswitch string[]Ids - The vswitches used by workers.
- addons
Edge
Kubernetes Addon[] - The addon you want to install in cluster. See
addonsbelow. - availability
Zone string - The ID of availability zone.
- client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- deletion
Protection boolean - Whether to enable cluster deletion protection.
- install
Cloud booleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise booleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config EdgeKubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix string - new
Nat booleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr numberMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances string[] - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources string[] - runtime
Edge
Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet booleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- {[key: string]: string}
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- worker
Data EdgeDisks Kubernetes Worker Data Disk[] - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk numberSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
- worker_
instance_ Sequence[str]types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker_
number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker_
vswitch_ Sequence[str]ids - The vswitches used by workers.
- addons
Sequence[Edge
Kubernetes Addon Args] - The addon you want to install in cluster. See
addonsbelow. - availability_
zone str - The ID of availability zone.
- client_
cert str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client_
key str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster_
ca_ strcert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster_
spec str - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- deletion_
protection bool - Whether to enable cluster deletion protection.
- install_
cloud_ boolmonitor - Install cloud monitor agent on ECS. default:
true. - is_
enterprise_ boolsecurity_ group - Enable to create advanced security group. default: false. See Advanced security group.
- key_
name str - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube_
config str - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load_
balancer_ strspec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log_
config EdgeKubernetes Log Config Args - A list of one element containing information about the associated log store. See
log_configbelow. - name str
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name_
prefix str - new_
nat_ boolgateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node_
cidr_ intmask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password str
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod_
cidr str - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy_
mode str - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds_
instances Sequence[str] - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource_
group_ strid - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain_
resources Sequence[str] - runtime
Edge
Kubernetes Runtime Args - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security_
group_ strid - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service_
cidr str - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb_
internet_ boolenabled - Whether to create internet load balancer for API Server. Default to true.
- Mapping[str, str]
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user_
data str - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version str
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- worker_
data_ Sequence[Edgedisks Kubernetes Worker Data Disk Args] - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker_
disk_ strcategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker_
disk_ strperformance_ level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker_
disk_ intsize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker_
disk_ strsnapshot_ policy_ id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker_
instance_ strcharge_ type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
- worker
Instance List<String>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Number Number - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Vswitch List<String>Ids - The vswitches used by workers.
- addons List<Property Map>
- The addon you want to install in cluster. See
addonsbelow. - availability
Zone String - The ID of availability zone.
- client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca StringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec String - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- deletion
Protection Boolean - Whether to enable cluster deletion protection.
- install
Cloud BooleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise BooleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name String - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config String - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer StringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config Property Map - A list of one element containing information about the associated log store. See
log_configbelow. - name String
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix String - new
Nat BooleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr NumberMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password String
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr String - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode String - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances List<String> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group StringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources List<String> - runtime Property Map
- The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group StringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr String - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- Boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet BooleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- Map<String>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data String - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version String
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- worker
Data List<Property Map>Disks - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk StringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk StringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk NumberSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk StringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance StringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge.
Outputs
All input properties are implicitly available as output properties. Additionally, the EdgeKubernetes resource produces the following output properties:
-
Pulumi.
Ali Cloud. CS. Outputs. Edge Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Connections
Pulumi.
Ali Cloud. CS. Outputs. Edge Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- Id string
- The provider-assigned unique ID for this managed resource.
- Nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- Slb
Internet string - The public ip of load balancer.
- Slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- Vpc
Id string - The ID of VPC where the current cluster is located.
- Worker
Nodes List<Pulumi.Ali Cloud. CS. Outputs. Edge Kubernetes Worker Node> - List of cluster worker nodes.
- Worker
Ram stringRole Name - The RamRole Name attached to worker node.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- Id string
- The provider-assigned unique ID for this managed resource.
- Nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- Slb
Internet string - The public ip of load balancer.
- Slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- Vpc
Id string - The ID of VPC where the current cluster is located.
- Worker
Nodes []EdgeKubernetes Worker Node - List of cluster worker nodes.
- Worker
Ram stringRole Name - The RamRole Name attached to worker node.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- id String
- The provider-assigned unique ID for this managed resource.
- nat
Gateway StringId - The ID of nat gateway used to launch kubernetes cluster.
- slb
Internet String - The public ip of load balancer.
- slb
Intranet String - The ID of private load balancer where the current cluster master node is located.
- vpc
Id String - The ID of VPC where the current cluster is located.
- worker
Nodes List<EdgeKubernetes Worker Node> - List of cluster worker nodes.
- worker
Ram StringRole Name - The RamRole Name attached to worker node.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- id string
- The provider-assigned unique ID for this managed resource.
- nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- slb
Internet string - The public ip of load balancer.
- slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- vpc
Id string - The ID of VPC where the current cluster is located.
- worker
Nodes EdgeKubernetes Worker Node[] - List of cluster worker nodes.
- worker
Ram stringRole Name - The RamRole Name attached to worker node.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- id str
- The provider-assigned unique ID for this managed resource.
- nat_
gateway_ strid - The ID of nat gateway used to launch kubernetes cluster.
- slb_
internet str - The public ip of load balancer.
- slb_
intranet str - The ID of private load balancer where the current cluster master node is located.
- vpc_
id str - The ID of VPC where the current cluster is located.
- worker_
nodes Sequence[EdgeKubernetes Worker Node] - List of cluster worker nodes.
- worker_
ram_ strrole_ name - The RamRole Name attached to worker node.
- Property Map
- (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - connections Property Map
- (Map) Map of kubernetes cluster connection information.
- id String
- The provider-assigned unique ID for this managed resource.
- nat
Gateway StringId - The ID of nat gateway used to launch kubernetes cluster.
- slb
Internet String - The public ip of load balancer.
- slb
Intranet String - The ID of private load balancer where the current cluster master node is located.
- vpc
Id String - The ID of VPC where the current cluster is located.
- worker
Nodes List<Property Map> - List of cluster worker nodes.
- worker
Ram StringRole Name - The RamRole Name attached to worker node.
Look up Existing EdgeKubernetes Resource
Get an existing EdgeKubernetes resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: EdgeKubernetesState, opts?: CustomResourceOptions): EdgeKubernetes@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
addons: Optional[Sequence[EdgeKubernetesAddonArgs]] = None,
availability_zone: Optional[str] = None,
certificate_authority: Optional[EdgeKubernetesCertificateAuthorityArgs] = None,
client_cert: Optional[str] = None,
client_key: Optional[str] = None,
cluster_ca_cert: Optional[str] = None,
cluster_spec: Optional[str] = None,
connections: Optional[EdgeKubernetesConnectionsArgs] = None,
deletion_protection: Optional[bool] = None,
install_cloud_monitor: Optional[bool] = None,
is_enterprise_security_group: Optional[bool] = None,
key_name: Optional[str] = None,
kube_config: Optional[str] = None,
load_balancer_spec: Optional[str] = None,
log_config: Optional[EdgeKubernetesLogConfigArgs] = None,
name: Optional[str] = None,
name_prefix: Optional[str] = None,
nat_gateway_id: Optional[str] = None,
new_nat_gateway: Optional[bool] = None,
node_cidr_mask: Optional[int] = None,
password: Optional[str] = None,
pod_cidr: Optional[str] = None,
proxy_mode: Optional[str] = None,
rds_instances: Optional[Sequence[str]] = None,
resource_group_id: Optional[str] = None,
retain_resources: Optional[Sequence[str]] = None,
runtime: Optional[EdgeKubernetesRuntimeArgs] = None,
security_group_id: Optional[str] = None,
service_cidr: Optional[str] = None,
skip_set_certificate_authority: Optional[bool] = None,
slb_internet: Optional[str] = None,
slb_internet_enabled: Optional[bool] = None,
slb_intranet: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None,
user_data: Optional[str] = None,
version: Optional[str] = None,
vpc_id: Optional[str] = None,
worker_data_disks: Optional[Sequence[EdgeKubernetesWorkerDataDiskArgs]] = None,
worker_disk_category: Optional[str] = None,
worker_disk_performance_level: Optional[str] = None,
worker_disk_size: Optional[int] = None,
worker_disk_snapshot_policy_id: Optional[str] = None,
worker_instance_charge_type: Optional[str] = None,
worker_instance_types: Optional[Sequence[str]] = None,
worker_nodes: Optional[Sequence[EdgeKubernetesWorkerNodeArgs]] = None,
worker_number: Optional[int] = None,
worker_ram_role_name: Optional[str] = None,
worker_vswitch_ids: Optional[Sequence[str]] = None) -> EdgeKubernetesfunc GetEdgeKubernetes(ctx *Context, name string, id IDInput, state *EdgeKubernetesState, opts ...ResourceOption) (*EdgeKubernetes, error)public static EdgeKubernetes Get(string name, Input<string> id, EdgeKubernetesState? state, CustomResourceOptions? opts = null)public static EdgeKubernetes get(String name, Output<String> id, EdgeKubernetesState state, CustomResourceOptions options)resources: _: type: alicloud:cs:EdgeKubernetes get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Addons
List<Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Addon> - The addon you want to install in cluster. See
addonsbelow. - Availability
Zone string - The ID of availability zone.
-
Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- Cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- Connections
Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- Deletion
Protection bool - Whether to enable cluster deletion protection.
- Install
Cloud boolMonitor - Install cloud monitor agent on ECS. default:
true. - Is
Enterprise boolSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- Key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - Kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- Log
Config Pulumi.Ali Cloud. CS. Inputs. Edge Kubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - Name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- Name
Prefix string - Nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- New
Nat boolGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- Node
Cidr intMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- Password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - Pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- Proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- Rds
Instances List<string> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- Resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- Retain
Resources List<string> - Runtime
Pulumi.
Ali Cloud. CS. Inputs. Edge Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - Security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- Service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- Slb
Internet string - The public ip of load balancer.
- Slb
Internet boolEnabled - Whether to create internet load balancer for API Server. Default to true.
- Slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- Dictionary<string, string>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- User
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- Version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- Vpc
Id string - The ID of VPC where the current cluster is located.
- Worker
Data List<Pulumi.Disks Ali Cloud. CS. Inputs. Edge Kubernetes Worker Data Disk> - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - Worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - Worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Worker
Disk intSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- Worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- Worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - Worker
Instance List<string>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- Worker
Nodes List<Pulumi.Ali Cloud. CS. Inputs. Edge Kubernetes Worker Node> - List of cluster worker nodes.
- Worker
Number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- Worker
Ram stringRole Name - The RamRole Name attached to worker node.
- Worker
Vswitch List<string>Ids - The vswitches used by workers.
- Addons
[]Edge
Kubernetes Addon Args - The addon you want to install in cluster. See
addonsbelow. - Availability
Zone string - The ID of availability zone.
-
Edge
Kubernetes Certificate Authority Args - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- Cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- Connections
Edge
Kubernetes Connections Args - (Map) Map of kubernetes cluster connection information.
- Deletion
Protection bool - Whether to enable cluster deletion protection.
- Install
Cloud boolMonitor - Install cloud monitor agent on ECS. default:
true. - Is
Enterprise boolSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- Key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - Kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - Load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- Log
Config EdgeKubernetes Log Config Args - A list of one element containing information about the associated log store. See
log_configbelow. - Name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- Name
Prefix string - Nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- New
Nat boolGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- Node
Cidr intMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- Password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - Pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- Proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- Rds
Instances []string - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- Resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- Retain
Resources []string - Runtime
Edge
Kubernetes Runtime Args - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - Security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- Service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- Slb
Internet string - The public ip of load balancer.
- Slb
Internet boolEnabled - Whether to create internet load balancer for API Server. Default to true.
- Slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- map[string]string
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- User
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- Version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- Vpc
Id string - The ID of VPC where the current cluster is located.
- Worker
Data []EdgeDisks Kubernetes Worker Data Disk Args - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - Worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - Worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Worker
Disk intSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- Worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- Worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - Worker
Instance []stringTypes - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- Worker
Nodes []EdgeKubernetes Worker Node Args - List of cluster worker nodes.
- Worker
Number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- Worker
Ram stringRole Name - The RamRole Name attached to worker node.
- Worker
Vswitch []stringIds - The vswitches used by workers.
- addons
List<Edge
Kubernetes Addon> - The addon you want to install in cluster. See
addonsbelow. - availability
Zone String - The ID of availability zone.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca StringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec String - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- deletion
Protection Boolean - Whether to enable cluster deletion protection.
- install
Cloud BooleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise BooleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name String - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config String - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer StringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config EdgeKubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - name String
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix String - nat
Gateway StringId - The ID of nat gateway used to launch kubernetes cluster.
- new
Nat BooleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr IntegerMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password String
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr String - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode String - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances List<String> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group StringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources List<String> - runtime
Edge
Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group StringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr String - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- Boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet String - The public ip of load balancer.
- slb
Internet BooleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- slb
Intranet String - The ID of private load balancer where the current cluster master node is located.
- Map<String,String>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data String - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version String
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- vpc
Id String - The ID of VPC where the current cluster is located.
- worker
Data List<EdgeDisks Kubernetes Worker Data Disk> - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk StringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk StringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk IntegerSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk StringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance StringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - worker
Instance List<String>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Nodes List<EdgeKubernetes Worker Node> - List of cluster worker nodes.
- worker
Number Integer - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Ram StringRole Name - The RamRole Name attached to worker node.
- worker
Vswitch List<String>Ids - The vswitches used by workers.
- addons
Edge
Kubernetes Addon[] - The addon you want to install in cluster. See
addonsbelow. - availability
Zone string - The ID of availability zone.
-
Edge
Kubernetes Certificate Authority - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca stringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec string - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- connections
Edge
Kubernetes Connections - (Map) Map of kubernetes cluster connection information.
- deletion
Protection boolean - Whether to enable cluster deletion protection.
- install
Cloud booleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise booleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name string - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config string - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer stringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config EdgeKubernetes Log Config - A list of one element containing information about the associated log store. See
log_configbelow. - name string
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix string - nat
Gateway stringId - The ID of nat gateway used to launch kubernetes cluster.
- new
Nat booleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr numberMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password string
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr string - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode string - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances string[] - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group stringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources string[] - runtime
Edge
Kubernetes Runtime - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group stringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr string - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet string - The public ip of load balancer.
- slb
Internet booleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- slb
Intranet string - The ID of private load balancer where the current cluster master node is located.
- {[key: string]: string}
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data string - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version string
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- vpc
Id string - The ID of VPC where the current cluster is located.
- worker
Data EdgeDisks Kubernetes Worker Data Disk[] - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk stringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk stringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk numberSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk stringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance stringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - worker
Instance string[]Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Nodes EdgeKubernetes Worker Node[] - List of cluster worker nodes.
- worker
Number number - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Ram stringRole Name - The RamRole Name attached to worker node.
- worker
Vswitch string[]Ids - The vswitches used by workers.
- addons
Sequence[Edge
Kubernetes Addon Args] - The addon you want to install in cluster. See
addonsbelow. - availability_
zone str - The ID of availability zone.
-
Edge
Kubernetes Certificate Authority Args - (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - client_
cert str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client_
key str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster_
ca_ strcert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster_
spec str - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- connections
Edge
Kubernetes Connections Args - (Map) Map of kubernetes cluster connection information.
- deletion_
protection bool - Whether to enable cluster deletion protection.
- install_
cloud_ boolmonitor - Install cloud monitor agent on ECS. default:
true. - is_
enterprise_ boolsecurity_ group - Enable to create advanced security group. default: false. See Advanced security group.
- key_
name str - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube_
config str - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load_
balancer_ strspec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log_
config EdgeKubernetes Log Config Args - A list of one element containing information about the associated log store. See
log_configbelow. - name str
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name_
prefix str - nat_
gateway_ strid - The ID of nat gateway used to launch kubernetes cluster.
- new_
nat_ boolgateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node_
cidr_ intmask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password str
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod_
cidr str - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy_
mode str - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds_
instances Sequence[str] - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource_
group_ strid - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain_
resources Sequence[str] - runtime
Edge
Kubernetes Runtime Args - The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security_
group_ strid - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service_
cidr str - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- bool
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb_
internet str - The public ip of load balancer.
- slb_
internet_ boolenabled - Whether to create internet load balancer for API Server. Default to true.
- slb_
intranet str - The ID of private load balancer where the current cluster master node is located.
- Mapping[str, str]
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user_
data str - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version str
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- vpc_
id str - The ID of VPC where the current cluster is located.
- worker_
data_ Sequence[Edgedisks Kubernetes Worker Data Disk Args] - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker_
disk_ strcategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker_
disk_ strperformance_ level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker_
disk_ intsize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker_
disk_ strsnapshot_ policy_ id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker_
instance_ strcharge_ type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - worker_
instance_ Sequence[str]types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker_
nodes Sequence[EdgeKubernetes Worker Node Args] - List of cluster worker nodes.
- worker_
number int - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker_
ram_ strrole_ name - The RamRole Name attached to worker node.
- worker_
vswitch_ Sequence[str]ids - The vswitches used by workers.
- addons List<Property Map>
- The addon you want to install in cluster. See
addonsbelow. - availability
Zone String - The ID of availability zone.
- Property Map
- (Map, Deprecated from v1.248.0) Nested attribute containing certificate authority data for your cluster. Please use the attribute certificate_authority of new DataSource
alicloud.cs.getClusterCredentialto replace it. - client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Ca StringCert From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.cluster_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/cluster-ca-cert.pem) for replace it.Removed params
- cluster
Spec String - The cluster specifications of kubernetes cluster,which can be empty. Valid values:
- ack.standard : Standard edge clusters.
- ack.pro.small : Professional edge clusters.
- connections Property Map
- (Map) Map of kubernetes cluster connection information.
- deletion
Protection Boolean - Whether to enable cluster deletion protection.
- install
Cloud BooleanMonitor - Install cloud monitor agent on ECS. default:
true. - is
Enterprise BooleanSecurity Group - Enable to create advanced security group. default: false. See Advanced security group.
- key
Name String - The keypair of ssh login cluster node, you have to create it first. You have to specify one of
passwordkey_namekms_encrypted_passwordfields. - kube
Config String - The path of kube config, like ~/.kube/config. Please use the attribute output_file of new DataSource
alicloud.cs.getClusterCredentialto replace it. - load
Balancer StringSpec The cluster api server load balance instance specification. For more information on how to select a LB instance specification, see SLB instance overview. ->NOTE: If you want to use
Flannelas CNI network plugin, You need to specific thepod_cidrfield and addons withflannel.Worker params
- log
Config Property Map - A list of one element containing information about the associated log store. See
log_configbelow. - name String
- The kubernetes cluster's name. It is unique in one Alicloud account.
- name
Prefix String - nat
Gateway StringId - The ID of nat gateway used to launch kubernetes cluster.
- new
Nat BooleanGateway - Whether to create a new nat gateway while creating kubernetes cluster. Default to true. Then openapi in Alibaba Cloud are not all on intranet, So turn this option on is a good choice.
- node
Cidr NumberMask - The node cidr block to specific how many pods can run on single node. 24-28 is allowed. 24 means 2^(32-24)-1=255 and the node can run at most 255 pods. default: 24
- password String
- The password of ssh login cluster node. You have to specify one of
password,key_namekms_encrypted_passwordfields. - pod
Cidr String - [Flannel Specific] The CIDR block for the pod network when using Flannel.
- proxy
Mode String - Proxy mode is option of kube-proxy. options: iptables|ipvs. default: ipvs.
- rds
Instances List<String> - RDS instance list, You can choose which RDS instances whitelist to add instances to.
- resource
Group StringId - The ID of the resource group,by default these cloud resources are automatically assigned to the default resource group.
- retain
Resources List<String> - runtime Property Map
- The runtime of containers. If you select another container runtime, see Comparison of Docker, containerd, and Sandboxed-Container. See
runtimebelow. - security
Group StringId - The ID of the security group to which the ECS instances in the cluster belong. If it is not specified, a new Security group will be built.
- service
Cidr String - The CIDR block for the service network. It cannot be duplicated with the VPC CIDR and CIDR used by Kubernetes cluster in VPC, cannot be modified after creation.
- Boolean
Configure whether to save certificate authority data for your cluster to attribute
certificate_authority. For cluster security, recommended configuration astrue. Will be removed with attribute certificate_authority removed.Network params
- slb
Internet String - The public ip of load balancer.
- slb
Internet BooleanEnabled - Whether to create internet load balancer for API Server. Default to true.
- slb
Intranet String - The ID of private load balancer where the current cluster master node is located.
- Map<String>
- Default nil, A map of tags assigned to the kubernetes cluster and work node.
- user
Data String - Windows instances support batch and PowerShell scripts. If your script file is larger than 1 KB, we recommend that you upload the script to Object Storage Service (OSS) and pull it through the internal endpoint of your OSS bucket.
- version String
- Desired Kubernetes version. If you do not specify a value, the latest available version at resource creation is used and no upgrades will occur except you set a higher version number. The value must be configured and increased to upgrade the version when desired. Downgrades are not supported by ACK.
- vpc
Id String - The ID of VPC where the current cluster is located.
- worker
Data List<Property Map>Disks - The data disk configurations of worker nodes, such as the disk type and disk size. See
worker_data_disksbelow. - worker
Disk StringCategory - The system disk category of worker node. Its valid value are
cloud_efficiency,cloud_ssdandcloud_essdand . Default tocloud_efficiency. - worker
Disk StringPerformance Level - Worker node system disk performance level, when
worker_disk_categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - worker
Disk NumberSize - The system disk size of worker node. Its valid value range [20~32768] in GB. Default to 40.
- worker
Disk StringSnapshot Policy Id Worker node system disk auto snapshot policy.
Computed params
You can set some file paths to save kube_config information, but this way is cumbersome. Since version 1.105.0, we've written it to tf state file. About its use,see export attribute certificate_authority. From version 1.187.0+, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kube_config.- worker
Instance StringCharge Type - Worker payment type, its valid value is
PostPaid. Defaults toPostPaid. More charge details in ACK@edge charge. - worker
Instance List<String>Types - The instance types of worker node, you can set multiple types to avoid NoStock of a certain type.
- worker
Nodes List<Property Map> - List of cluster worker nodes.
- worker
Number Number - The cloud worker node number of the edge kubernetes cluster. Default to 1. It is limited up to 50 and if you want to enlarge it, please apply white list or contact with us.
- worker
Ram StringRole Name - The RamRole Name attached to worker node.
- worker
Vswitch List<String>Ids - The vswitches used by workers.
Supporting Types
EdgeKubernetesAddon, EdgeKubernetesAddonArgs
- Config string
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- Disabled bool
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- Name string
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- Version string
- It specifies the version of the component.
- Config string
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- Disabled bool
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- Name string
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- Version string
- It specifies the version of the component.
- config String
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- disabled Boolean
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- name String
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- version String
- It specifies the version of the component.
- config string
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- disabled boolean
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- name string
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- version string
- It specifies the version of the component.
- config str
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- disabled bool
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- name str
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- version str
- It specifies the version of the component.
- config String
- The ACK add-on configurations. For more config information, see cs_kubernetes_addon_metadata.
- disabled Boolean
Disables the automatic installation of a component. Default is
false.The following example is the definition of addons block, The type of this field is list:
# install nginx ingress, conflict with SLB ingress addons { name = "nginx-ingress-controller" # use internet config = "{\"IngressSlbNetworkType\":\"internet",\"IngressSlbSpec\":\"slb.s2.small\"}" # if use intranet, detail below. # config = "{\"IngressSlbNetworkType\":\"intranet",\"IngressSlbSpec\":\"slb.s2.small\"}" }- name String
- Name of the ACK add-on. The name must match one of the names returned by DescribeAddons.
- version String
- It specifies the version of the component.
EdgeKubernetesCertificateAuthority, EdgeKubernetesCertificateAuthorityArgs
- Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Cert string - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
- Client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - Client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - Cluster
Cert string - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
- client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Cert String - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
- client
Cert string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key string - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Cert string - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
- client_
cert str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client_
key str - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster_
cert str - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
- client
Cert String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_cert attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-cert.pem) for replace it. - client
Key String - From version 1.248.0, new DataSource
alicloud.cs.getClusterCredentialis recommended to manage cluster's kubeconfig, you can also save the certificate_authority.client_key attribute content of new DataSourcealicloud.cs.getClusterCredentialto an appropriate path(like ~/.kube/client-key.pem) for replace it. - cluster
Cert String - The base64 encoded cluster certificate data required to communicate with your cluster. Add this to the certificate-authority-data section of the kubeconfig file for your cluster.
EdgeKubernetesConnections, EdgeKubernetesConnectionsArgs
- Api
Server stringInternet - API Server Internet endpoint.
- Api
Server stringIntranet - API Server Intranet endpoint.
- Master
Public stringIp - Master node SSH IP address.
- Service
Domain string - Service Access Domain.
- Api
Server stringInternet - API Server Internet endpoint.
- Api
Server stringIntranet - API Server Intranet endpoint.
- Master
Public stringIp - Master node SSH IP address.
- Service
Domain string - Service Access Domain.
- api
Server StringInternet - API Server Internet endpoint.
- api
Server StringIntranet - API Server Intranet endpoint.
- master
Public StringIp - Master node SSH IP address.
- service
Domain String - Service Access Domain.
- api
Server stringInternet - API Server Internet endpoint.
- api
Server stringIntranet - API Server Intranet endpoint.
- master
Public stringIp - Master node SSH IP address.
- service
Domain string - Service Access Domain.
- api_
server_ strinternet - API Server Internet endpoint.
- api_
server_ strintranet - API Server Intranet endpoint.
- master_
public_ strip - Master node SSH IP address.
- service_
domain str - Service Access Domain.
- api
Server StringInternet - API Server Internet endpoint.
- api
Server StringIntranet - API Server Intranet endpoint.
- master
Public StringIp - Master node SSH IP address.
- service
Domain String - Service Access Domain.
EdgeKubernetesLogConfig, EdgeKubernetesLogConfigArgs
EdgeKubernetesRuntime, EdgeKubernetesRuntimeArgs
EdgeKubernetesWorkerDataDisk, EdgeKubernetesWorkerDataDiskArgs
- Auto
Snapshot stringPolicy Id - Worker node data disk auto snapshot policy.
- Category string
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - Device string
- The device of the data disks.
- Encrypted string
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - Kms
Key stringId - The id of the kms key.
- Name string
- The name of the data disks.
- Performance
Level string - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Size string
- The size of a data disk, at least 40. Unit: GiB.
- Snapshot
Id string - The id of snapshot.
- Auto
Snapshot stringPolicy Id - Worker node data disk auto snapshot policy.
- Category string
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - Device string
- The device of the data disks.
- Encrypted string
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - Kms
Key stringId - The id of the kms key.
- Name string
- The name of the data disks.
- Performance
Level string - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - Size string
- The size of a data disk, at least 40. Unit: GiB.
- Snapshot
Id string - The id of snapshot.
- auto
Snapshot StringPolicy Id - Worker node data disk auto snapshot policy.
- category String
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - device String
- The device of the data disks.
- encrypted String
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - kms
Key StringId - The id of the kms key.
- name String
- The name of the data disks.
- performance
Level String - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - size String
- The size of a data disk, at least 40. Unit: GiB.
- snapshot
Id String - The id of snapshot.
- auto
Snapshot stringPolicy Id - Worker node data disk auto snapshot policy.
- category string
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - device string
- The device of the data disks.
- encrypted string
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - kms
Key stringId - The id of the kms key.
- name string
- The name of the data disks.
- performance
Level string - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - size string
- The size of a data disk, at least 40. Unit: GiB.
- snapshot
Id string - The id of snapshot.
- auto_
snapshot_ strpolicy_ id - Worker node data disk auto snapshot policy.
- category str
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - device str
- The device of the data disks.
- encrypted str
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - kms_
key_ strid - The id of the kms key.
- name str
- The name of the data disks.
- performance_
level str - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - size str
- The size of a data disk, at least 40. Unit: GiB.
- snapshot_
id str - The id of snapshot.
- auto
Snapshot StringPolicy Id - Worker node data disk auto snapshot policy.
- category String
- The type of the data disks. Valid values:
cloud,cloud_efficiency,cloud_ssdandcloud_essd. Default tocloud_efficiency. - device String
- The device of the data disks.
- encrypted String
- Specifies whether to encrypt data disks. Valid values: true and false. Default is
false. - kms
Key StringId - The id of the kms key.
- name String
- The name of the data disks.
- performance
Level String - Worker node data disk performance level, when
categoryvaluescloud_essd, the optional values arePL0,PL1,PL2orPL3, but the specific performance level is related to the disk capacity. For more information, see Enhanced SSDs. Default isPL1. - size String
- The size of a data disk, at least 40. Unit: GiB.
- snapshot
Id String - The id of snapshot.
EdgeKubernetesWorkerNode, EdgeKubernetesWorkerNodeArgs
- id str
- ID of the node.
- name str
- The kubernetes cluster's name. It is unique in one Alicloud account.
- private_
ip str - The private IP address of node.
Import
Kubernetes edge cluster can be imported using the id, e.g. Then complete the main.tf accords to the result of pulumi preview.
$ pulumi import alicloud:cs/edgeKubernetes:EdgeKubernetes main cluster-id
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Alibaba Cloud pulumi/pulumi-alicloud
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
alicloudTerraform Provider.