feat: Made it clear that we stand with Ukraine · terraform-aws-modules/terraform-aws-eks@fad350d

11data "aws_partition" "current" {}223+locals {4+create = var.create && var.putin_khuylo5+}6+37################################################################################48# Cluster59################################################################################610711resource "aws_eks_cluster" "this" {8-count = var.create ? 1 : 012+count = local.create ? 1 : 09131014name = var.cluster_name1115role_arn = try(aws_iam_role.this[0].arn, var.iam_role_arn)

@@ -56,7 +60,7 @@ resource "aws_eks_cluster" "this" {

5660}57615862resource "aws_cloudwatch_log_group" "this" {59-count = var.create && var.create_cloudwatch_log_group ? 1 : 063+count = local.create && var.create_cloudwatch_log_group ? 1 : 060646165name = "/aws/eks/${var.cluster_name}/cluster"6266retention_in_days = var.cloudwatch_log_group_retention_in_days

@@ -72,7 +76,7 @@ resource "aws_cloudwatch_log_group" "this" {

72767377locals {7478cluster_sg_name = coalesce(var.cluster_security_group_name, "${var.cluster_name}-cluster")75-create_cluster_sg = var.create && var.create_cluster_security_group79+create_cluster_sg = local.create && var.create_cluster_security_group76807781cluster_security_group_id = local.create_cluster_sg ? aws_security_group.cluster[0].id : var.cluster_security_group_id7882

@@ -147,13 +151,13 @@ resource "aws_security_group_rule" "cluster" {

147151################################################################################148152149153data "tls_certificate" "this" {150-count = var.create && var.enable_irsa ? 1 : 0154+count = local.create && var.enable_irsa ? 1 : 0151155152156url = aws_eks_cluster.this[0].identity[0].oidc[0].issuer153157}154158155159resource "aws_iam_openid_connect_provider" "oidc_provider" {156-count = var.create && var.enable_irsa ? 1 : 0160+count = local.create && var.enable_irsa ? 1 : 0157161158162

client_id_list  = distinct(compact(concat(["sts.${data.aws_partition.current.dns_suffix}"], var.openid_connect_audiences)))

159163thumbprint_list = concat([data.tls_certificate.this[0].certificates[0].sha1_fingerprint], var.custom_oidc_thumbprints)

@@ -170,7 +174,7 @@ resource "aws_iam_openid_connect_provider" "oidc_provider" {

170174################################################################################171175172176locals {173-create_iam_role = var.create && var.create_iam_role177+create_iam_role = local.create && var.create_iam_role174178iam_role_name = coalesce(var.iam_role_name, "${var.cluster_name}-cluster")175179policy_arn_prefix = "arn:${data.aws_partition.current.partition}:iam::aws:policy"176180

@@ -182,7 +186,7 @@ locals {

182186}183187184188data "aws_iam_policy_document" "assume_role_policy" {185-count = var.create && var.create_iam_role ? 1 : 0189+count = local.create && var.create_iam_role ? 1 : 0186190187191statement {188192sid = "EKSClusterAssumeRole"

@@ -261,7 +265,7 @@ resource "aws_iam_policy" "cluster_encryption" {

261265################################################################################262266263267resource "aws_eks_addon" "this" {264-for_each = { for k, v in var.cluster_addons : k => v if var.create }268+for_each = { for k, v in var.cluster_addons : k => v if local.create }265269266270cluster_name = aws_eks_cluster.this[0].name267271addon_name = try(each.value.name, each.key)

@@ -291,7 +295,7 @@ resource "aws_eks_addon" "this" {

291295################################################################################292296293297resource "aws_eks_identity_provider_config" "this" {294-for_each = { for k, v in var.cluster_identity_providers : k => v if var.create }298+for_each = { for k, v in var.cluster_identity_providers : k => v if local.create }295299296300cluster_name = aws_eks_cluster.this[0].name297301