AWS PCA Issuer

[anshrma]

What does this PR do?

This PR adds a new module for helm installation of AWS PCA issuer, which is an extension of cert-manager for certificate management using AWS ACM.

Motivation

Working with a large Partner in API Gateway space (another PR coming next), which requires this

More

• [ Y] Yes, I have tested the PR using my local account setup (Provide any test evidence report under Additional Notes)
• [ NA] Yes, I have added a new example under examples to support my PR
• [NA] Yes, I have created another PR for add-ons under add-ons repo (if applicable)
• [ Y] Yes, I have updated the docs for this feature
• Yes, I ran pre-commit run -a with this PR

Note: Not all the PRs required examples and docs except a new pattern or add-on added.

For Moderators

• E2E Test successfully complete before merge?

Additional Notes

[vara-bonthu]

Thanks @anshrma for the PR. This will be a great add-on. Would you mind creating a pattern to show with example on how to use this Add-on?

Update docs page as well here https://github.com/aws-samples/aws-eks-accelerator-for-terraform/tree/main/docs/add-ons

[askulkarni2]

@anshrma thanks so much for the PR. Its looking good, some minor changes are needed as per our convention. Also please address @vara-bonthu's comments as well.

[anshrma]

@vara-bonthu / @askulkarni2 - Thanks for review. Addressed all the feedback with updated code. Pls let me know, if anything else. Once this gets merged, next i will send another PR for a partner using these add-ons

[askulkarni2]

@anshrma some nitpicky comments, but PR is looking really good.

One question on whether we should remove all IRSA for cert-manager. I don't have enough knowledge there, will wait on a few confirmations there from @vara-bonthu, @kcaws.

[anshrma]

@askulkarni2 / @vara-bonthu - Addressed all the review feedback.

[askulkarni2]

@anshrma thanks for the updates. LGTM!

[vara-bonthu]

Good work on this PR @anshrma.

Please see comments and it requires few changes.

[vara-bonthu]

Yes, I have provided the IRSA policies above

[askulkarni2]

@anshrma have you had a chance to review @vara-bonthu's feedback?

[anshrma]

@anshrma have you had a chance to review @vara-bonthu's feedback?

Hi @askulkarni2 - Will pick this up tomorrow. Back today after PTO. Thanks

[anshrma]

Thanks for all the feedback @vara-bonthu . Done with all the changes suggested.

[anshrma]

hi @vara-bonthu / @askulkarni2 - Pls review this when you get a chance. All the feedback comments have been addressed.

[vara-bonthu]

Looks good 👍🏼 Needs to run E2E

[askulkarni2]

@anshrma I am running our e2e tests and I see some terraform fmt errors. See https://github.com/aws-ia/terraform-aws-eks-blueprints/runs/6201070488?check_suite_focus=true. Can you please fix them?

FYI.. I am also running terratest here https://github.com/aws-ia/terraform-aws-eks-blueprints/runs/6201005974?check_suite_focus=true.

[anshrma]

@anshrma I am running our e2e tests and I see some terraform fmt errors. See https://github.com/aws-ia/terraform-aws-eks-blueprints/runs/6201070488?check_suite_focus=true. Can you please fix them?

FYI.. I am also running terratest here https://github.com/aws-ia/terraform-aws-eks-blueprints/runs/6201005974?check_suite_focus=true.

hi @askulkarni2 - fixed the terraform fmt errors