aws ingress controller

ranjeet-pivotchain · ranjeet-pivotchain · commit efb164b83f5c · 2023-10-25T14:03:06.000+05:30
diff --git a/aws-devops/aws-eks/terra-eks/aws-load-balancer-controller-service-account.yaml b/aws-devops/aws-eks/terra-eks/aws-load-balancer-controller-service-account.yaml
@@ -7,4 +7,4 @@ metadata:
   name: aws-load-balancer-controller
   namespace: kube-system
   annotations:
-    eks.amazonaws.com/role-arn: arn:aws:iam::888887582627:role/AmazonEKSLoadBalancerControllerRole
+    eks.amazonaws.com/role-arn: arn:aws:iam::ACCOUNT-ID:role/AmazonEKSLoadBalancerControllerRole
diff --git a/aws-devops/aws-eks/terra-eks/load-balancer-role-trust-policy.json b/aws-devops/aws-eks/terra-eks/load-balancer-role-trust-policy.json
@@ -4,13 +4,13 @@
         {
             "Effect": "Allow",
             "Principal": {
-                "Federated": "arn:aws:iam::888887582627:oidc-provider/oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A"
+                "Federated": "arn:aws:iam::ACCOUNT-ID:oidc-provider/oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID"
             },
             "Action": "sts:AssumeRoleWithWebIdentity",
             "Condition": {
                 "StringEquals": {
-                    "oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A:aud": "sts.amazonaws.com",
-                    "oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A:sub": "system:serviceaccount:kube-system:aws-load-balancer-controller"
+                    "oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID:aud": "sts.amazonaws.com",
+                    "oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID:sub": "system:serviceaccount:kube-system:aws-load-balancer-controller"
                 }
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -4,13 +4,13 @@`
`4`	`4`	`{`
`5`	`5`	`"Effect": "Allow",`
`6`	`6`	`"Principal": {`
`7`		`- "Federated": "arn:aws:iam::888887582627:oidc-provider/oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A"`
	`7`	`+ "Federated": "arn:aws:iam::ACCOUNT-ID:oidc-provider/oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID"`
`8`	`8`	`},`
`9`	`9`	`"Action": "sts:AssumeRoleWithWebIdentity",`
`10`	`10`	`"Condition": {`
`11`	`11`	`"StringEquals": {`
`12`		`- "oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A:aud": "sts.amazonaws.com",`
`13`		`- "oidc.eks.us-east-2.amazonaws.com/id/6991E907D9EE0C39E47B57218C33776A:sub": "system:serviceaccount:kube-system:aws-load-balancer-controller"`
	`12`	`+ "oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID:aud": "sts.amazonaws.com",`
	`13`	`+ "oidc.eks.us-east-2.amazonaws.com/id/OIDC-ID:sub": "system:serviceaccount:kube-system:aws-load-balancer-controller"`
`14`	`14`	`}`
`15`	`15`	`}`
`16`	`16`	`}`