chore(examples): migrate EKS examples to AWS provider 6.x

- Update AWS provider version to >= 6.23.0
- Update EKS module to ~> 21.0
- Migrate from ConfigMap to API-only authentication mode
- Replace aws_auth_roles with aws_eks_access_entry resources
- Fix deprecated resolve_conflicts attribute
- Update cluster_id references to cluster_name

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

Author: primoz-hrovat

examples/eks/eks_cluster_access_entries/eks.tf

@@ -1,28 +1,33 @@
 # 2. Create EKS cluster.
 module "eks" {
-  source       = "terraform-aws-modules/eks/aws"
-  version      = "21.3.1"
-  putin_khuylo = true
+  source  = "terraform-aws-modules/eks/aws"
+  version = "~> 21.0"
 
   name                   = var.cluster_name
   kubernetes_version     = var.cluster_version
   endpoint_public_access = true
 
   addons = {
-    coredns = {}
+    coredns = {
+      most_recent = true
+    }
     eks-pod-identity-agent = {
+      most_recent    = true
       before_compute = true
     }
-    kube-proxy = {}
+    kube-proxy = {
+      most_recent = true
+    }
     vpc-cni = {
+      most_recent    = true
       before_compute = true
     }
   }
 
   vpc_id     = module.vpc.vpc_id
   subnet_ids = module.vpc.private_subnets
 
-  authentication_mode = "API_AND_CONFIG_MAP"
+  authentication_mode = "API"
 
   access_entries = {
     for key, arn in var.additional_cluster_admin_arns :
@@ -73,8 +78,9 @@ resource "aws_security_group" "additional" {
   }
 }
 
-resource "aws_eks_access_entry" "access_entry" {
-  cluster_name  = var.cluster_name
+# CAST AI access entry for nodes to join the cluster.
+resource "aws_eks_access_entry" "castai" {
+  cluster_name  = module.eks.cluster_name
   principal_arn = module.castai-eks-role-iam.instance_profile_role_arn
   type          = "EC2_LINUX"
 }

examples/eks/eks_cluster_access_entries/versions.tf

@@ -12,7 +12,7 @@ terraform {
     }
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 6.0"
+      version = ">= 6.23.0"
     }
   }
   required_version = ">= 1.3.2"

examples/eks/eks_cluster_assumerole/eks.tf

@@ -1,14 +1,13 @@
 # 2. Create EKS cluster.
 module "eks" {
-  source       = "terraform-aws-modules/eks/aws"
-  version      = "19.4.2"
-  putin_khuylo = true
+  source  = "terraform-aws-modules/eks/aws"
+  version = "~> 21.0"
 
-  cluster_name                   = var.cluster_name
-  cluster_version                = var.cluster_version
-  cluster_endpoint_public_access = true
+  name                   = var.cluster_name
+  kubernetes_version     = var.cluster_version
+  endpoint_public_access = true
 
-  cluster_addons = {
+  addons = {
     coredns = {
       most_recent = true
     }
@@ -23,19 +22,7 @@ module "eks" {
   vpc_id     = module.vpc.vpc_id
   subnet_ids = module.vpc.private_subnets
 
-  manage_aws_auth_configmap = true
-
-  aws_auth_roles = [
-    # Add the CAST AI IAM role which required for CAST AI nodes to join the cluster.
-    {
-      rolearn  = module.castai-eks-role-iam.instance_profile_role_arn
-      username = "system:node:{{EC2PrivateDNSName}}"
-      groups = [
-        "system:bootstrappers",
-        "system:nodes",
-      ]
-    },
-  ]
+  authentication_mode = "API"
 
   self_managed_node_groups = {
     node_group_1 = {
@@ -78,3 +65,10 @@ resource "aws_security_group" "additional" {
     ]
   }
 }
+
+# CAST AI access entry for nodes to join the cluster.
+resource "aws_eks_access_entry" "castai" {
+  cluster_name  = module.eks.cluster_name
+  principal_arn = module.castai-eks-role-iam.instance_profile_role_arn
+  type          = "EC2_LINUX"
+}

examples/eks/eks_cluster_assumerole/versions.tf

@@ -12,7 +12,7 @@ terraform {
     }
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0"
+      version = ">= 6.23.0"
     }
   }
   required_version = ">= 1.3.2"

examples/eks/eks_cluster_autoscaler_policies/eks.tf

@@ -1,14 +1,13 @@
 # 2. Create EKS cluster.
 module "eks" {
-  source       = "terraform-aws-modules/eks/aws"
-  version      = "19.4.2"
-  putin_khuylo = true
+  source  = "terraform-aws-modules/eks/aws"
+  version = "~> 21.0"
 
-  cluster_name                   = var.cluster_name
-  cluster_version                = var.cluster_version
-  cluster_endpoint_public_access = true
+  name                   = var.cluster_name
+  kubernetes_version     = var.cluster_version
+  endpoint_public_access = true
 
-  cluster_addons = {
+  addons = {
     coredns = {
       most_recent = true
     }
@@ -23,19 +22,7 @@ module "eks" {
   vpc_id     = module.vpc.vpc_id
   subnet_ids = module.vpc.private_subnets
 
-  manage_aws_auth_configmap = true
-
-  aws_auth_roles = [
-    # Add the CAST AI IAM role which required for CAST AI nodes to join the cluster.
-    {
-      rolearn  = module.castai-eks-role-iam.instance_profile_role_arn
-      username = "system:node:{{EC2PrivateDNSName}}"
-      groups = [
-        "system:bootstrappers",
-        "system:nodes",
-      ]
-    },
-  ]
+  authentication_mode = "API"
 
   self_managed_node_groups = {
     node_group_1 = {
@@ -78,3 +65,10 @@ resource "aws_security_group" "additional" {
     ]
   }
 }
+
+# CAST AI access entry for nodes to join the cluster.
+resource "aws_eks_access_entry" "castai" {
+  cluster_name  = module.eks.cluster_name
+  principal_arn = module.castai-eks-role-iam.instance_profile_role_arn
+  type          = "EC2_LINUX"
+}

examples/eks/eks_cluster_autoscaler_policies/versions.tf

@@ -12,7 +12,7 @@ terraform {
     }
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0"
+      version = ">= 6.23.0"
     }
   }
   required_version = ">= 1.3.2"

examples/eks/eks_cluster_custom_iam/eks.tf

@@ -1,14 +1,13 @@
 # 2. Create EKS cluster.
 module "eks" {
-  source       = "terraform-aws-modules/eks/aws"
-  version      = "19.4.2"
-  putin_khuylo = true
+  source  = "terraform-aws-modules/eks/aws"
+  version = "~> 21.0"
 
-  cluster_name                   = var.cluster_name
-  cluster_version                = var.cluster_version
-  cluster_endpoint_public_access = true
+  name                   = var.cluster_name
+  kubernetes_version     = var.cluster_version
+  endpoint_public_access = true
 
-  cluster_addons = {
+  addons = {
     coredns = {
       most_recent = true
     }
@@ -23,11 +22,7 @@ module "eks" {
   vpc_id     = module.vpc.vpc_id
   subnet_ids = module.vpc.private_subnets
 
-  manage_aws_auth_configmap = true
-  aws_auth_node_iam_role_arns_non_windows = [
-    # Required for CAST AI nodes to join cluster.
-    aws_iam_role.castai_instance_profile_role.arn,
-  ]
+  authentication_mode = "API"
 
   self_managed_node_groups = {
     node_group_1 = {
@@ -70,3 +65,10 @@ resource "aws_security_group" "additional" {
     ]
   }
 }
+
+# CAST AI access entry for nodes to join the cluster.
+resource "aws_eks_access_entry" "castai" {
+  cluster_name  = module.eks.cluster_name
+  principal_arn = aws_iam_role.castai_instance_profile_role.arn
+  type          = "EC2_LINUX"
+}

examples/eks/eks_cluster_custom_iam/versions.tf

@@ -12,7 +12,7 @@ terraform {
     }
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0"
+      version = ">= 6.23.0"
     }
   }
   required_version = ">= 1.3.2"

examples/eks/eks_cluster_existing/versions.tf

@@ -12,7 +12,7 @@ terraform {
     }
     aws = {
       source  = "hashicorp/aws"
-      version = "~> 5.0"
+      version = ">= 6.23.0"
     }
   }
   required_version = ">= 1.3.2"

examples/eks/eks_cluster_gitops/versions.tf

@@ -6,5 +6,9 @@ terraform {
       source  = "castai/castai"
       version = ">= 3.11.0"
     }
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 6.23.0"
+    }
   }
 }