EKS Pod Identity support for driver level credentials#449
Closed
renanmagagnin wants to merge 12 commits into
Closed
EKS Pod Identity support for driver level credentials#449renanmagagnin wants to merge 12 commits into
renanmagagnin wants to merge 12 commits into
Conversation
renanmagagnin
had a problem deploying
to
approval-gate
GitHub Actions
Failure
renanmagagnin
had a problem deploying
to
approval-gate
GitHub Actions
Failure
yerzhan7
reviewed
Apr 30, 2025
unexge
reviewed
May 1, 2025
Contributor
unexge
left a comment
unexge
left a comment
There was a problem hiding this comment.
Left some comments but overall LGTM
renanmagagnin
had a problem deploying
to
approval-gate
GitHub Actions
Failure
renanmagagnin
changed the title
renanmagagnin
force-pushed
the
eks-pod-identity-support-driver-level
branch
from
e723e72 to
ed8ba1e
Compare
renanmagagnin
temporarily deployed
to
approval-gate
GitHub Actions
Inactive
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
renanmagagnin
force-pushed
the
eks-pod-identity-support-driver-level
branch
from
ed8ba1e to
711fba7
Compare
renanmagagnin
temporarily deployed
to
approval-gate
GitHub Actions
Inactive
Signed-off-by: Renan Magagnin <renanmag@amazon.co.uk>
Contributor
Author
|
Closing and replacing with #451 because we need the E2E tests to run with the newly added cluster-name parameter. This is not possible in a PR created from a fork. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR was closed and replaced with #451 because we need the E2E tests to run with the newly added cluster-name parameter. This is not possible in a PR created from a fork.
Description of changes: With this change, we will support the configuration of driver level credentials with EKS Pod Identity. In EKS clusters, this is an alternative to IRSA with an easier configuration process.
Key Changes:
Credential Provider
provider_driver.gothe container credentials used for EKS Pod Identity are fetched from the driver pod and forwarded to the Mountpoint process. This is done similarly to STS Web Identity credentials used for IRSA.Testing
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.