fix: lacework module defines each node_affinity as an individual expr…

…esssion. Only set the fargte affinity( its a notin expression
tx-pts-dai · Apr 26, 2024 · bbe730f · bbe730f
1 parent 880a337
commit bbe730f
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 16 deletions.
diff --git a/modules/lacework/README.md b/modules/lacework/README.md
@@ -47,7 +47,7 @@ module "lacework" {
 |------|-------------|------|---------|:--------:|
 | <a name="input_cluster_name"></a> [cluster\_name](#input\_cluster\_name) | Name of the cluster | `string` | n/a | yes |
 | <a name="input_namespace"></a> [namespace](#input\_namespace) | Namespace for Lacework resources | `string` | `"lacework"` | no |
-| <a name="input_node_affinity"></a> [node\_affinity](#input\_node\_affinity) | Node affinity settings | <pre>list(object({<br>    key      = string<br>    operator = string<br>    values   = list(string)<br>  }))</pre> | <pre>[<br>  {<br>    "key": "kubernetes.io/arch",<br>    "operator": "In",<br>    "values": [<br>      "amd64",<br>      "arm64"<br>    ]<br>  },<br>  {<br>    "key": "kubernetes.io/os",<br>    "operator": "In",<br>    "values": [<br>      "linux"<br>    ]<br>  },<br>  {<br>    "key": "eks.amazonaws.com/compute-type",<br>    "operator": "NotIn",<br>    "values": [<br>      "fargate"<br>    ]<br>  }<br>]</pre> | no |
+| <a name="input_node_affinity"></a> [node\_affinity](#input\_node\_affinity) | Node affinity settings | <pre>list(object({<br>    key      = string<br>    operator = string<br>    values   = list(string)<br>  }))</pre> | <pre>[<br>  {<br>    "key": "eks.amazonaws.com/compute-type",<br>    "operator": "NotIn",<br>    "values": [<br>      "fargate"<br>    ]<br>  }<br>]</pre> | no |
 | <a name="input_pod_priority_class_name"></a> [pod\_priority\_class\_name](#input\_pod\_priority\_class\_name) | Name of the pod priority class | `string` | `"system-node-critical"` | no |
 | <a name="input_resources"></a> [resources](#input\_resources) | Resources for the Lacework agent | <pre>object({<br>    cpu_request = string<br>    mem_request = string<br>    cpu_limit   = string<br>    mem_limit   = string<br>  })</pre> | <pre>{<br>  "cpu_limit": "1000m",<br>  "cpu_request": "100m",<br>  "mem_limit": "1024Mi",<br>  "mem_request": "256Mi"<br>}</pre> | no |
 | <a name="input_server_url"></a> [server\_url](#input\_server\_url) | Lacework server URL | `string` | `"https://api.fra.lacework.net"` | no |

diff --git a/modules/lacework/variables.tf b/modules/lacework/variables.tf
@@ -29,21 +29,6 @@ variable "node_affinity" {
     values   = list(string)
   }))
   default = [
-    {
-      key      = "kubernetes.io/arch"
-      operator = "In"
-      values = [
-        "amd64",
-        "arm64"
-      ]
-    },
-    {
-      key      = "kubernetes.io/os"
-      operator = "In"
-      values = [
-        "linux"
-      ]
-    },
     {
       key      = "eks.amazonaws.com/compute-type"
       operator = "NotIn"