fixup!: refactor: set variables with kustomize patches

This aligns the EKS example closer to how the rest of the examples are generated.

Author: dkoshkin

hack/examples/additional-resources/eks/cilium-configmap.yaml

@@ -0,0 +1,55 @@
+# Copyright 2025 Nutanix. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+apiVersion: v1
+data:
+  values.yaml: |-
+    cni:
+      exclusive: false
+    hubble:
+      enabled: true
+      tls:
+        auto:
+          enabled: true               # enable automatic TLS certificate generation
+          method: cronJob             # auto generate certificates using cronJob method
+          certValidityDuration: 60    # certificates validity duration in days (default 2 months)
+          schedule: "0 0 1 * *"       # schedule on the 1st day regeneration of each month
+      relay:
+        enabled: true
+        tls:
+          server:
+            enabled: true
+            mtls: true
+        image:
+          useDigest: false
+        priorityClassName: system-cluster-critical
+    image:
+      useDigest: false
+    operator:
+      image:
+        useDigest: false
+    certgen:
+      image:
+        useDigest: false
+    socketLB:
+      hostNamespaceOnly: true
+    envoy:
+      image:
+        useDigest: false
+    kubeProxyReplacement: true
+    k8sServiceHost: "{{ trimPrefix "https://" .Cluster.spec.controlPlaneEndpoint.host }}"
+    k8sServicePort: "{{ .Cluster.spec.controlPlaneEndpoint.port }}"
+    ipam:
+      mode: eni
+    enableIPv4Masquerade: false
+    eni:
+      enabled: true
+      awsReleaseExcessIPs: true
+    routingMode: native
+    endpointRoutes:
+      enabled: true
+kind: ConfigMap
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template

hack/examples/bases/eks/cluster/cluster.yaml

@@ -1,53 +1,3 @@
-apiVersion: v1
-data:
-  values.yaml: |-
-    cni:
-      exclusive: false
-    hubble:
-      enabled: true
-      tls:
-        auto:
-          enabled: true               # enable automatic TLS certificate generation
-          method: cronJob             # auto generate certificates using cronJob method
-          certValidityDuration: 60    # certificates validity duration in days (default 2 months)
-          schedule: "0 0 1 * *"       # schedule on the 1st day regeneration of each month
-      relay:
-        enabled: true
-        tls:
-          server:
-            enabled: true
-            mtls: true
-        image:
-          useDigest: false
-        priorityClassName: system-cluster-critical
-    image:
-      useDigest: false
-    operator:
-      image:
-        useDigest: false
-    certgen:
-      image:
-        useDigest: false
-    socketLB:
-      hostNamespaceOnly: true
-    envoy:
-      image:
-        useDigest: false
-    kubeProxyReplacement: true
-    k8sServiceHost: "{{ trimPrefix "https://" .Cluster.spec.controlPlaneEndpoint.host }}"
-    k8sServicePort: "{{ .Cluster.spec.controlPlaneEndpoint.port }}"
-    ipam:
-      mode: eni
-    enableIPv4Masquerade: false
-    eni:
-      enabled: true
-      awsReleaseExcessIPs: true
-    routingMode: native
-    endpointRoutes:
-      enabled: true
-kind: ConfigMap
-metadata:
-  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
 ---
 apiVersion: cluster.x-k8s.io/v1beta1
 kind: Cluster
@@ -59,20 +9,8 @@ spec:
   topology:
     class: eks-quick-start
     version: ${KUBERNETES_VERSION}
-    variables:
-      - name: clusterConfig
-        value:
-          addons:
-            cni:
-              provider: Cilium
-              values:
-                sourceRef:
-                  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
-                  kind: ConfigMap
-    controlPlane:
-      metadata:
-        annotations:
-          controlplane.cluster.x-k8s.io/skip-kube-proxy: ""
+    variables: []
+    controlPlane: {}
     workers:
       machineDeployments:
         - class: default-worker
@@ -81,6 +19,4 @@ spec:
           variables:
             overrides:
               - name: workerConfig
-                value:
-                  eks:
-                    instanceType: m5.2xlarge
+                value: {}

hack/examples/bases/eks/cluster/kustomization.yaml.tmpl

@@ -34,3 +34,7 @@ patches:
 - target:
     kind: Cluster
   path: ../../../patches/eks/config-var.yaml
+- target:
+    kind: Cluster
+  path: ../../../patches/eks/instance-type.yaml
+  

hack/examples/overlays/clusters/eks/kustomization.yaml.tmpl

@@ -5,7 +5,17 @@ apiVersion: kustomize.config.k8s.io/v1beta1
 kind: Kustomization
 
 resources:
+- ../../../additional-resources/eks/cilium-configmap.yaml
 - ../../../bases/eks/cluster
 
 sortOptions:
   order: fifo
+
+patches:
+  # TODO: Replace with generic cilium patch and dynamically generate the correct EKS values
+  - target:
+      kind: Cluster
+    path: ../../../patches/eks/cilium-with-custom-values.yaml
+  - target:
+      kind: Cluster
+    path: ../../../patches/skip-kube-proxy.yaml

hack/examples/patches/eks/ami-lookup.yaml

@@ -0,0 +1,11 @@
+# Copyright 2025 Nutanix. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+- op: "add"
+  path: "/spec/topology/variables/0/value/addons/cni"
+  value:
+    provider: Cilium
+    values:
+      sourceRef:
+        name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
+        kind: ConfigMap

hack/examples/patches/eks/cilium-with-custom-values.yaml

@@ -0,0 +1,8 @@
+# Copyright 2025 Nutanix. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+- op: "add"
+  path: "/spec/topology/workers/machineDeployments/0/variables/overrides/0/value"
+  value:
+    eks:
+      instanceType: m5.2xlarge