@@ -4,20 +4,33 @@ locals {
44 enabled = local.helm_releases[index (local. helm_releases . * . id , " external-dns"
55 chart = local.helm_releases[index (local. helm_releases . * . id , " external-dns"
66 repository = local.helm_releases[index (local. helm_releases . * . id , " external-dns"
7- chart_version = local.helm_releases[index (local. helm_releases . * . id , " external-dns" version
7+ chart_version = local.helm_releases[index (local. helm_releases . * . id , " external-dns" chart_version
88 namespace = local.helm_releases[index (local. helm_releases . * . id , " external-dns"
99 }
10- }
10+ external_dns_values = << VALUES
11+ rbac:
12+ create: true
1113
12- data "template_file" "external_dns" {
13- count = . external_dns . enabled ? 1 : 0
14+ serviceAccount:
15+ create: true
16+ name: "external-dns"
17+ annotations:
18+ "eks.amazonaws.com/role-arn": ${ local . external_dns . enabled ? module . aws_iam_external_dns [0 ]. role_arn : " " }
1419
15- template = file (" ${ path . module } /templates/external-dns.yaml"
16- vars =
17- role_arn = module.aws_iam_external_dns[count.index].role_arn
18- domain_name = local.domain_name
19- zone_type = " public"
20- }
20+ provider: aws
21+ domainFilters: [${ local . domain_name } ]
22+ extraArgs:
23+ - --aws-zone-type=public
24+ - --aws-batch-change-size=1000
25+
26+ serviceMonitor:
27+ enabled: false
28+
29+ sources:
30+ - service
31+ - ingress
32+ # - istio-virtualservice
33+ VALUES
2134}
2235
2336# tfsec:ignore:kubernetes-network-no-public-egress tfsec:ignore:kubernetes-network-no-public-ingress
@@ -121,7 +134,7 @@ resource "helm_release" "external_dns" {
121134 max_history = . helm_release_history_size
122135
123136 values =
124- data . template_file . external_dns [ count . index ] . rendered ,
137+ local . external_dns_values
125138 ]
126139
127140}
0 commit comments