Skip to content

Commit

Permalink
Adding a unified truefoundry serviceaccount
Browse files Browse the repository at this point in the history
  • Loading branch information
@dunefro
dunefro committed Sep 30, 2024
1 parent 27f98c5 commit fd2df67
Show file tree
Hide file tree
Showing 2 changed files with 20 additions and 1 deletion.
3 changes: 2 additions & 1 deletion iam-sa.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,8 @@ module "truefoundry_oidc_iam" {
oidc_fully_qualified_subjects = [
"system:serviceaccount:${var.svcfoundry_k8s_namespace}:${var.svcfoundry_k8s_service_account}",
"system:serviceaccount:${var.mlfoundry_k8s_namespace}:${var.mlfoundry_k8s_service_account}",
"system:serviceaccount:${var.tfy_workflow_admin_k8s_namespace}:${var.tfy_workflow_admin_k8s_service_account}"
"system:serviceaccount:${var.tfy_workflow_admin_k8s_namespace}:${var.tfy_workflow_admin_k8s_service_account}",
"system:serviceaccount:${var.truefoundry_k8s_namespace}:${var.truefoundry_service_account}",
]

role_description = "Truefoundry IAM role for ${var.svcfoundry_name}, ${var.mlfoundry_name} and ${var.tfy_workflow_admin_name} in cluster ${var.cluster_name}"
Expand Down
18 changes: 18 additions & 0 deletions variables.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -314,6 +314,24 @@ variable "tfy_workflow_admin_k8s_namespace" {
type = string
}

##################################################################################
## Truefoundry service account
##################################################################################

variable "truefoundry_service_account" {
description = "Truefoundry k8s service name"
type = string
default = "truefoundry"
}


variable "truefoundry_k8s_namespace" {
description = "Truefoundry k8s namespace"
type = string
default = "truefoundry"
}


##################################################################################
## IAM role
##################################################################################
Expand Down

0 comments on commit fd2df67

Please sign in to comment.