Skip to content

Commit c6aebf8

Browse files
author
Sandip Das
committed
v5 changes
1 parent cfcdf9e commit c6aebf8

File tree

3 files changed

+53
-13
lines changed

3 files changed

+53
-13
lines changed

eks_cicd/aws-auth.yaml

Lines changed: 45 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -1,16 +1,50 @@
11
apiVersion: v1
2+
data:
3+
mapRoles: |
4+
- groups:
5+
- system:bootstrappers
6+
- system:nodes
7+
rolearn: arn:aws:iam::120717539064:role/eksctl-cicd-demo-nodegroup-ng-1-NodeInstanceRole-AHYQIRO1R4HE
8+
username: system:node:{{EC2PrivateDNSName}}
9+
- groups:
10+
- system:masters
11+
rolearn: arn:aws:iam::120717539064:role/service-role/codebuild-cicddemobuildproject-service-role
12+
username: codebuild-cicddemobuildproject-service-role
13+
- groups:
14+
- system:masters
15+
rolearn: arn:aws:iam::120717539064:role/CodeBuildKubectlRole
16+
username: CodeBuildKubectlRole
17+
mapUsers: |
18+
[]
219
kind: ConfigMap
320
metadata:
21+
annotations:
22+
kubectl.kubernetes.io/last-applied-configuration: |
23+
{"apiVersion":"v1","data":{"mapRoles":"- rolearn: arn:aws:iam::120717539064:role/service-role/codebuild-cicddemobuildproject-service-role\n username: codebuild-cicddemobuildproject-service-role\n groups:\n - system:masters\n \n- rolearn: arn:aws:iam::120717539064:role/eksctl-cicd-demo-nodegroup-ng-1-NodeInstanceRole-AHYQIRO1R4HE\n username: system:node:{{EC2PrivateDNSName}}\n groups:\n - system:bootstrappers\n - system:nodes\n"},"kind":"ConfigMap","metadata":{"annotations":{},"name":"aws-auth","namespace":"kube-system"}}
24+
creationTimestamp: "2021-04-27T20:43:23Z"
25+
managedFields:
26+
- apiVersion: v1
27+
fieldsType: FieldsV1
28+
fieldsV1:
29+
f:metadata:
30+
f:annotations:
31+
.: {}
32+
f:kubectl.kubernetes.io/last-applied-configuration: {}
33+
manager: kubectl
34+
operation: Update
35+
time: "2021-04-27T21:20:12Z"
36+
- apiVersion: v1
37+
fieldsType: FieldsV1
38+
fieldsV1:
39+
f:data:
40+
.: {}
41+
f:mapRoles: {}
42+
f:mapUsers: {}
43+
manager: eksctl
44+
operation: Update
45+
time: "2021-04-28T04:15:13Z"
446
name: aws-auth
547
namespace: kube-system
6-
data:
7-
mapRoles: |
8-
- rolearn: arn:aws:iam::11122223333:role/EKS-Worker-NodeInstanceRole-1I00GBC9U4U7B
9-
username: system:node:{{EC2PrivateDNSName}}
10-
groups:
11-
- system:bootstrappers
12-
- system:nodes
13-
- rolearn: arn:aws:iam::11122223333:role/designated_role
14-
username: designated_role
15-
groups:
16-
- system:masters
48+
resourceVersion: "98026"
49+
selfLink: /api/v1/namespaces/kube-system/configmaps/aws-auth
50+
uid: 414c6bae-79e4-4f24-a1d5-d30e615c904c

eks_cicd/sample.sh renamed to eks_cicd/create_iam_role.sh

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -9,4 +9,10 @@ aws iam put-role-policy --role-name CodeBuildKubectlRole --policy-name eks-descr
99

1010
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/CloudWatchLogsFullAccess
1111

12-
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/AWSCodeBuildAdminAccess
12+
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/AWSCodeBuildAdminAccess
13+
14+
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/AWSCodeCommitFullAccess
15+
16+
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/AmazonS3FullAccess
17+
18+
aws iam attach-role-policy --role-name CodeBuildKubectlRole --policy-arn arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryFullAccess

index.js

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@ const config = require('config')
55
console.log(config);
66

77
app.get('/', (req, res) => {
8-
res.send('CICD App V4!')
8+
res.send('CICD App V5!')
99
})
1010

1111
app.get('/status', (req, res) => {

0 commit comments

Comments
 (0)