v0.5.0-beta.0
Pre-release- EKS: Allow configuring mapRoles, mapUsers and mapAccounts.
See #69 for usage details. - EKS: Add security groups to allow apiserver webhook communication.
- Update versions of Terraform and used providers.
- Update versions of cloud provider CLIs.
- Update version of Kustomize and add
apiVersion
to kustomization files.
Thanks @youngnicks, @piotrszlenk and @cbek for contributions to this release.
Upgrade Notes
Cluster services (AKS, EKS, GKE)
The previous release included a version of the nginx ingress controller cluster service which had the version set as a label and as a labelSelector. Since the labelSelectors are immutable, this causes applying the update to the deployment to fail. This issue has since been fixed in the nginx ingress controller base, however, for existing clusters this requires the deployment to be recreated manually to update to this release.
AKS
Upstream has added support for multiple node pools. This was implemented by switching from AvailabilitySet
s to VirtualMachineScaleSets
. This change is reflected in the azurerm
Terraform provider by renaming the agent_pool_profile
attribute to default_node_pool
. This requires recreating AKS clusters. While backwards compatibility is an important goal for Kubestack, it would require a lot of complexity to support the upstream changes in Terraform which isn't justified for an early beta release.
To avoid a service disruption consider creating a new cluster pair, migrate the workloads, then destroy the previous one by temporarily loading the old and new module version in clusters.tf.