Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update main.tf #1405

Closed
wants to merge 1 commit into from
Closed

Update main.tf #1405

wants to merge 1 commit into from

Conversation

haytham0123
Copy link

What does this PR do?

🛑 Please open an issue first to discuss any significant work and flesh out details/direction - we would hate for your time to be wasted.
Consult the CONTRIBUTING guide for submitting pull-requests.

Motivation

  • Resolves #

More

  • Yes, I have tested the PR using my local account setup (Provide any test evidence report under Additional Notes)
  • Yes, I have added a new example under examples to support my PR
  • Yes, I have created another PR for add-ons under add-ons repo (if applicable)
  • Yes, I have updated the docs for this feature
  • Yes, I ran pre-commit run -a with this PR

Note: Not all the PRs require a new example and/or doc page. In general:

  • Use an existing example when possible to demonstrate a new addons usage
  • A new docs page under docs/add-ons/* is required for new a new addon

For Moderators

  • E2E Test successfully complete before merge?

Additional Notes

@haytham0123 haytham0123 requested a review from a team as a code owner February 3, 2023 13:17
FernandoMiguel
FernandoMiguel reviewed Feb 3, 2023
View reviewed changes
examples/node-groups/managed-node-groups/main.tf
@@ -126,7 +126,7 @@ module "eks_blueprints" {
public_ip = false # Use this to enable public IP for EC2 instances; only for public subnets used in launch templates

http_endpoint = "enabled"
http_tokens = "optional"
http_tokens = "required"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why this change?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

to introduce IMDSv2 which is a security best practice

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Or we can have it as a variable please instead of being hard coded

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

in the next iteration of blueprints, we will be utilizing the terraform-aws-eks module for cluster and node group creation and this module already has the default values set that you are looking for https://github.com/terraform-aws-modules/terraform-aws-eks/blob/a8e0de0b3f3a3e27232b35e9ed8814549273bced/node_groups.tf#L2-L6

@bryantbiggs
Copy link
Contributor

thank you but we won't be making this change at this time. Next time, please start with an issue and we can discuss the problem we are trying to solve for and potential solutions before a PR

@bryantbiggs bryantbiggs closed this Feb 3, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bryantbiggs bryantbiggs bryantbiggs left review comments

@FernandoMiguel FernandoMiguel FernandoMiguel left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@haytham0123 @bryantbiggs @FernandoMiguel