chore: bump EKS version
Description
This MR bumps the Kubernetes cluster version from v1.21 to v1.24. The unfortunate situation is that we cannot go directly from v1.21 to v1.24.
Supporting information
All terraform changes:
Terraform will perform the following actions:
# data.external.kubeconfig will be read during apply
# (depends on a resource or a module with changes pending)
<= data "external" "kubeconfig" {
+ id = (known after apply)
+ program = [
+ "/bin/sh",
+ "./kube-config.sh",
+ "oc-stage-us-east-1",
+ "us-east-1",
]
+ result = (known after apply)
}
# module.eks.data.tls_certificate.this[0] will be read during apply
# (depends on a resource or a module with changes pending)
<= data "tls_certificate" "this" {
+ certificates = (known after apply)
+ id = (known after apply)
+ url = "https://oidc.eks.us-east-1.amazonaws.com/id/3F8B87916BFFDFA1CA8A671F4A7CE7A0"
}
# module.eks.aws_eks_cluster.this[0] will be updated in-place
~ resource "aws_eks_cluster" "this" {
id = "oc-stage-us-east-1"
name = "oc-stage-us-east-1"
tags = {
"ManagedBy" = "Grove"
"Terraform" = "true"
}
~ version = "1.21" -> "1.24"
# (10 unchanged attributes hidden)
# (3 unchanged blocks hidden)
}
# module.eks.aws_iam_openid_connect_provider.oidc_provider[0] will be updated in-place
~ resource "aws_iam_openid_connect_provider" "oidc_provider" {
id = "arn:aws:iam::466538543953:oidc-provider/oidc.eks.us-east-1.amazonaws.com/id/3F8B87916BFFDFA1CA8A671F4A7CE7A0"
tags = {
"ManagedBy" = "Grove"
"Name" = "oc-stage-us-east-1-eks-irsa"
"Terraform" = "true"
}
~ thumbprint_list = [
- "9e99a48a9960b14926bb7f3b02e22da2b0ab7280",
] -> (known after apply)
# (4 unchanged attributes hidden)
}
# module.k8s_monitoring.data.external.opensearch_admin_key_pkcs8 will be read during apply
# (depends on a resource or a module with changes pending)
<= data "external" "opensearch_admin_key_pkcs8" {
+ id = (known after apply)
+ program = [
+ "/bin/sh",
+ "../provider-modules/k8s-monitoring/java_key.sh",
+ (sensitive),
]
+ result = (known after apply)
}
# module.k8s_monitoring.kubernetes_secret.opensearch_http_certificates will be updated in-place
~ resource "kubernetes_secret" "opensearch_http_certificates" {
~ data = (sensitive value)
id = "monitoring/opensearch-http-certificates"
# (3 unchanged attributes hidden)
# (1 unchanged block hidden)
}
# module.eks.module.self_managed_node_group["worker_group"].aws_autoscaling_group.this[0] will be updated in-place
~ resource "aws_autoscaling_group" "this" {
id = "oc-stage-us-east-1-workers-20221026111703486900000014"
name = "oc-stage-us-east-1-workers-20221026111703486900000014"
# (24 unchanged attributes hidden)
~ launch_template {
id = "lt-02b33bc5362328789"
name = "worker_group-20221026111701481200000012"
~ version = "3" -> (known after apply)
}
# (6 unchanged blocks hidden)
}
# module.eks.module.self_managed_node_group["worker_group"].aws_launch_template.this[0] will be updated in-place
~ resource "aws_launch_template" "this" {
~ default_version = 3 -> (known after apply)
id = "lt-02b33bc5362328789"
~ image_id = "ami-0302d6cb8f79a5485" -> "ami-0c84934009677b6d5"
~ latest_version = 3 -> (known after apply)
name = "worker_group-20221026111701481200000012"
tags = {
"ManagedBy" = "Grove"
"Terraform" = "true"
}
# (11 unchanged attributes hidden)
# (6 unchanged blocks hidden)
}
Plan: 0 to add, 5 to change, 0 to destroy.Testing instructions
Steps to test the changes:
- TBD
Dependencies
List the dependencies required for this change, if any. Do not forget to link grove-template merge request here if that's affected by this change.
Screenshots
If applicable, add screenshots to help explain your feature.
Checklist
If any of the items below is not applicable, do not remove them, but put a check in it.
-
All providers include the new feature/change -
All affected providers can provision new clusters -
Unit tests are added/updated -
Documentation is added/updated -
The TOOLS_CONTAINER_IMAGE_VERSIONin ci_vars.yml is updated -
The grove-template repository is updated
Additional context
Add any other context about the merge request here.
Edited by Boros Gábor