fix: set cluster admin via workflow input

.github/workflows/examples-complete.yaml

@@ -16,3 +16,12 @@ jobs:
     with:
       environment: examples
       tf_dir: examples/complete
+      tf_vars: |
+        cluster_admins = {
+          sso = {
+            role_name = "aws-reserved/sso.amazonaws.com/eu-west-1/AWSReservedSSO_AWSAdministratorAccess_3cb2c900c0e65cd2"
+          }
+          cicd = {
+            role_name = "cicd-iac"
+          }
+        }

.github/workflows/examples-lacework.yaml

@@ -16,3 +16,12 @@ jobs:
     with:
       environment: examples
       tf_dir: examples/lacework
+      tf_vars: |
+        cluster_admins = {
+          sso = {
+            role_name = "aws-reserved/sso.amazonaws.com/eu-west-1/AWSReservedSSO_AWSAdministratorAccess_3cb2c900c0e65cd2"
+          }
+          cicd = {
+            role_name = "cicd-iac"
+          }
+        }

examples/complete/main.tf

@@ -73,6 +73,8 @@ module "k8s_platform" {
 
   name = "complete"
 
+  cluster_admins = var.cluster_admins
+
   tags = {
     Environment = "sandbox"
     GithubRepo  = "terraform-aws-kubernetes-platform"

examples/complete/variables.tf

@@ -3,3 +3,12 @@ variable "region" {
   type        = string
   default     = "eu-central-1"
 }
+
+variable "cluster_admins" {
+  description = "Map of IAM roles to add as cluster admins"
+  type = map(object({
+    role_name         = string
+    kubernetes_groups = optional(list(string))
+  }))
+  default = {}
+}

examples/lacework/main.tf

@@ -92,6 +92,8 @@ module "k8s_platform" {
 
   name = "lacework"
 
+  cluster_admins = var.cluster_admins
+
   tags = {
     Environment = "sandbox"
     GithubRepo  = "terraform-aws-kubernetes-platform"

examples/lacework/variables.tf

@@ -3,3 +3,12 @@ variable "region" {
   type        = string
   default     = "eu-central-1"
 }
+
+variable "cluster_admins" {
+  description = "Map of IAM roles to add as cluster admins"
+  type = map(object({
+    role_name         = string
+    kubernetes_groups = optional(list(string))
+  }))
+  default = {}
+}