From 15043b88d43b650bd55dff7e34fd5aabed018630 Mon Sep 17 00:00:00 2001
From: Massimiliano Giovagnoli <me@maxgio.it>
Date: Thu, 21 Mar 2024 20:25:03 +0100
Subject: [PATCH] chore(eks): map test-infra-reader aws role to k8s group

Signed-off-by: Massimiliano Giovagnoli <me@maxgio.it>
---
 config/clusters/prow.auto.tfvars | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/config/clusters/prow.auto.tfvars b/config/clusters/prow.auto.tfvars
index fca7ce898d1..c704537fd34 100644
--- a/config/clusters/prow.auto.tfvars
+++ b/config/clusters/prow.auto.tfvars
@@ -13,3 +13,17 @@ eks_default_worker_group_asg_desired_capacity = 3
 eks_default_worker_group_asg_max_capacity  = 10
 eks_jobs_worker_group_asg_max_capacity     = 20
 eks_jobs_arm_worker_group_asg_max_capacity = 20
+
+eks_roles = [
+  {
+    rolearn  = "arn:aws:iam::292999226676:role/github_actions-test-infra-cluster"
+    username = "githubactions-test-infra-cluster"
+    groups   = ["system:masters"]
+  },
+  {
+    rolearn  = "arn:aws:iam::292999226676:role/github_actions-test-infra-reader"
+    username = "githubactions-test-infra-reader"
+    groups   = ["aws-config-readers"]
+  },
+]
+